Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/283b97b0e7c05975da5c90e3117e0a006814c5e2.roa
File: 283b97b0e7c05975da5c90e3117e0a006814c5e2.roa (raw, json)
Hash identifier: 7ewdpz6I7MaZiPN/lI6T8s6s+S8or908tZsVhBtgosk=
Subject key identifier: 3C:D0:88:FD:0B:A7:C5:B9:7F:48:43:31:A1:1D:41:86:D7:C9:E2:E9
Certificate issuer: /CN=b5d1117ae408cf5674d277fb7690575abaf8ac60
Certificate serial: 29B077
Authority key identifier: 1D:70:01:B3:6F:E8:15:02:20:97:48:42:D0:1E:89:9B:74:12:94:A4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b5d1117ae408cf5674d277fb7690575abaf8ac60.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/283b97b0e7c05975da5c90e3117e0a006814c5e2.roa
Signing time: Sat 16 Mar 2024 22:03:27 +0000
ROA not before: Sat 16 Mar 2024 22:03:19 +0000
ROA not after: Fri 16 Mar 2029 22:03:19 +0000
asID: 20299
IP address blocks: 200.30.133.0/24 maxlen: 24
200.30.139.0/24 maxlen: 24
200.30.140.0/22 maxlen: 24
200.30.144.0/22 maxlen: 24
200.30.148.0/23 maxlen: 24
200.30.154.0/24 maxlen: 24
200.30.159.0/24 maxlen: 24
200.30.160.0/24 maxlen: 24
200.30.166.0/23 maxlen: 24
200.30.172.0/24 maxlen: 24
200.30.174.0/23 maxlen: 24
200.30.176.0/24 maxlen: 24
200.30.181.0/24 maxlen: 24
200.30.186.0/24 maxlen: 24
200.30.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2732151 (0x29b077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5d1117ae408cf5674d277fb7690575abaf8ac60
Validity
Not Before: Mar 16 22:03:19 2024 GMT
Not After : Mar 16 22:03:19 2029 GMT
Subject: CN=283b97b0e7c05975da5c90e3117e0a006814c5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:96:44:d9:17:c0:42:1c:50:a0:16:09:8b:d0:
77:86:e8:bb:d6:b1:55:18:25:a1:34:8f:6a:6b:21:
5b:9d:48:69:84:d9:6f:bc:01:51:f1:ac:0f:69:dc:
b5:6d:fe:9a:5b:6a:86:f5:db:f8:45:96:7e:e6:e2:
0c:18:90:5e:57:9c:57:6b:5d:99:d3:68:34:71:5a:
f2:6c:46:7d:91:f1:d0:ec:70:b2:75:9a:34:4f:3b:
e0:a4:04:d6:be:7b:ad:cd:2e:6d:b4:b9:d4:9b:cb:
8a:99:5a:8a:86:c7:0e:8f:7c:6b:2b:db:2e:ee:53:
b3:4a:39:b8:40:7e:66:23:6b:1b:fc:40:6a:f5:54:
11:9d:3a:31:23:f5:b6:8c:1e:45:fc:17:b0:a8:70:
57:a1:f5:c7:af:ae:5e:38:2d:9d:29:26:6c:b1:aa:
33:be:ed:58:c1:1a:b0:04:62:07:ba:6e:98:df:9a:
b6:71:96:11:fe:df:ca:72:7f:04:3e:cd:73:4f:8c:
24:c7:9b:ff:67:ef:94:ca:7b:5e:47:a2:b7:95:72:
f6:0c:c7:8a:4f:5f:18:72:af:ca:d9:92:94:85:43:
ee:2b:bc:14:ba:ba:1c:f1:d6:21:68:48:59:9d:97:
93:46:2a:ea:a1:10:3a:83:84:80:2f:0a:cb:54:22:
38:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D0:88:FD:0B:A7:C5:B9:7F:48:43:31:A1:1D:41:86:D7:C9:E2:E9
X509v3 Authority Key Identifier:
keyid:1D:70:01:B3:6F:E8:15:02:20:97:48:42:D0:1E:89:9B:74:12:94:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b5d1117ae408cf5674d277fb7690575abaf8ac60.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/283b97b0e7c05975da5c90e3117e0a006814c5e2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/b5d1117ae408cf5674d277fb7690575abaf8ac60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.30.133.0/24
200.30.139.0-200.30.149.255
200.30.154.0/24
200.30.159.0-200.30.160.255
200.30.166.0/23
200.30.172.0/24
200.30.174.0-200.30.176.255
200.30.181.0/24
200.30.186.0/24
200.30.188.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:2c:7c:d4:1f:d4:88:2e:32:63:6f:c9:ec:82:bc:31:64:78:
cb:04:79:0f:1e:93:4d:0b:a4:a0:a5:73:cc:f4:fe:04:a8:7d:
17:09:bd:5c:5a:2a:35:b9:fc:97:ab:02:de:c6:48:a3:18:31:
5b:d0:82:2e:f9:24:51:e4:bc:bc:93:61:e1:79:7b:63:c3:65:
0c:83:61:08:ad:58:98:86:f4:4a:86:f2:c9:9d:0a:b2:20:3f:
a1:77:6d:d8:26:05:f7:f8:13:75:05:35:51:f8:ac:79:66:e4:
eb:d1:c3:89:27:64:83:c0:c1:d1:ba:d4:9b:d7:5f:1a:d9:62:
2f:3d:f5:ad:2a:fe:09:06:84:8f:8a:55:25:d0:c4:c0:7e:04:
07:ef:df:6a:a5:0d:45:12:09:8f:4f:12:38:0a:01:60:6a:ee:
d2:77:8b:63:6f:3a:52:af:92:0d:8e:c7:16:42:fb:b8:8e:a1:
02:54:e9:a2:21:bd:82:ca:8d:42:26:2c:0c:a2:d0:ce:bb:83:
3d:d3:7e:3a:35:c5:ee:d7:79:e8:47:78:0d:3a:9c:12:d5:54:
fe:b4:30:9e:1d:8e:fb:7f:f0:ee:ec:85:84:b1:2d:4e:d6:8d:
8b:55:36:e6:6b:3d:49:d0:42:db:f7:c6:80:9a:4d:a6:f8:1a:
23:62:89:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-ams.rpki-client.org