Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/31b58715431626cf1cbd954c43b987812b6c3240.roa
File: 31b58715431626cf1cbd954c43b987812b6c3240.roa (raw, json)
Hash identifier: OT2FahZtyBwGmLz8NY4qHLtvE2JYDH5DUZOuc7UuecA=
Subject key identifier: BF:61:05:5D:45:DD:97:39:1D:23:5C:DB:87:A5:63:57:BD:6A:D0:F6
Certificate issuer: /CN=b5d1117ae408cf5674d277fb7690575abaf8ac60
Certificate serial: 29B278
Authority key identifier: 1D:70:01:B3:6F:E8:15:02:20:97:48:42:D0:1E:89:9B:74:12:94:A4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b5d1117ae408cf5674d277fb7690575abaf8ac60.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/31b58715431626cf1cbd954c43b987812b6c3240.roa
Signing time: Sat 16 Mar 2024 22:03:29 +0000
ROA not before: Sat 16 Mar 2024 22:03:19 +0000
ROA not after: Fri 16 Mar 2029 22:03:19 +0000
asID: 23383
IP address blocks: 200.30.129.0/24 maxlen: 24
200.30.135.0/24 maxlen: 24
200.30.136.0/23 maxlen: 24
200.30.155.0/24 maxlen: 24
200.30.156.0/23 maxlen: 24
200.30.163.0/24 maxlen: 24
200.30.164.0/24 maxlen: 24
200.30.168.0/24 maxlen: 24
200.30.178.0/24 maxlen: 24
200.30.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2732664 (0x29b278)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5d1117ae408cf5674d277fb7690575abaf8ac60
Validity
Not Before: Mar 16 22:03:19 2024 GMT
Not After : Mar 16 22:03:19 2029 GMT
Subject: CN=31b58715431626cf1cbd954c43b987812b6c3240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:55:ad:38:4a:11:95:69:7d:51:3e:51:65:5b:
8e:2a:d3:44:b1:79:c0:ef:40:ff:4c:73:50:07:60:
f0:ab:9f:a9:b0:31:3d:15:a7:b1:84:c9:5d:9f:4c:
66:bc:ff:a7:9c:20:76:0f:6b:bc:3a:db:28:e8:06:
f5:cb:57:34:cf:50:02:6b:3d:63:93:2d:49:2a:99:
fd:18:af:3c:04:d8:3f:5f:46:9e:02:a4:e8:34:35:
5e:12:a9:8a:90:fe:36:ce:ce:56:d5:fb:4d:38:3f:
c1:0e:10:0b:7a:42:b8:21:02:65:c6:c2:b7:a8:0b:
94:60:bd:6d:64:cb:86:34:27:62:5e:21:3a:6b:80:
29:90:da:77:fc:e3:61:3e:08:8d:11:96:0b:7b:29:
71:70:15:e6:fe:35:9c:47:dc:60:64:84:6a:e4:9c:
89:58:27:be:d6:4e:28:65:3e:1b:7b:9c:ff:e6:9e:
c5:c4:1d:b7:9e:93:a2:8a:e3:e9:c1:76:49:f7:77:
14:db:47:25:1d:90:b5:6c:46:9f:21:c1:2b:d7:d2:
88:12:5c:cd:fb:ec:68:c1:89:81:33:5c:b1:5a:db:
b6:2f:2f:33:f6:38:b2:d5:33:66:7e:62:1b:05:4b:
f3:14:be:e5:0d:32:76:cf:74:85:09:46:77:4b:e4:
b9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:61:05:5D:45:DD:97:39:1D:23:5C:DB:87:A5:63:57:BD:6A:D0:F6
X509v3 Authority Key Identifier:
keyid:1D:70:01:B3:6F:E8:15:02:20:97:48:42:D0:1E:89:9B:74:12:94:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b5d1117ae408cf5674d277fb7690575abaf8ac60.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/31b58715431626cf1cbd954c43b987812b6c3240.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/b5d1117ae408cf5674d277fb7690575abaf8ac60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.30.129.0/24
200.30.135.0-200.30.137.255
200.30.155.0-200.30.157.255
200.30.163.0-200.30.164.255
200.30.168.0/24
200.30.178.0/24
200.30.185.0/24
Signature Algorithm: sha256WithRSAEncryption
82:56:a9:91:ea:ed:e3:e2:ca:2c:58:9e:a5:50:ec:8f:cb:5c:
f1:c0:b6:11:d4:6d:fd:4e:37:26:5e:61:aa:f7:47:f2:41:c8:
db:e3:f7:b9:b7:6a:9b:18:28:19:e7:31:be:ce:95:b0:79:67:
b9:19:e0:dd:42:0d:4f:e0:5c:26:c4:c3:c0:6a:11:60:25:e0:
4a:c4:69:94:71:32:19:c9:a2:e4:2b:f1:99:51:74:fc:11:da:
1e:08:10:86:cc:df:cd:56:68:1f:b5:c2:9b:7f:df:0e:cf:db:
c6:7e:af:de:68:23:23:fa:8b:1e:26:c8:71:08:1c:06:bf:8f:
e1:3f:d6:ec:ee:8a:91:fa:bb:f7:49:0e:be:ab:20:fa:25:0e:
ff:14:62:68:de:b4:92:14:9a:1f:5e:c9:10:9a:d6:f5:ff:f6:
9a:99:0b:fd:7c:46:77:0c:02:78:1b:d0:20:52:bd:58:7a:ff:
40:f1:ed:66:ee:4d:bb:02:57:d7:9d:91:c6:03:02:7c:dd:9e:
dd:28:25:d2:c5:b6:75:00:42:7b:0b:9f:0d:b4:f0:58:cf:69:
36:ec:d2:25:dc:5f:f8:99:c7:72:81:bd:cc:6b:75:0f:6e:e3:
f3:fd:9f:1e:cb:8d:61:3f:f1:6c:b8:3b:21:56:84:46:01:6f:
25:78:26:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:17 2024 by rpki-client on console-ams.rpki-client.org