Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/b1593d9f1f3e46ef364b71ff663333f4452a03d8.roa
File: b1593d9f1f3e46ef364b71ff663333f4452a03d8.roa (raw, json)
Hash identifier: vVGJ1QAXYptfnsvwmo3AMa9Sy6VWoq+1k8xPCfkH7j8=
Subject key identifier: AD:25:42:A1:57:86:2D:BA:78:AA:CC:C4:A8:2B:42:7F:18:9F:66:C0
Certificate issuer: /CN=b5d1117ae408cf5674d277fb7690575abaf8ac60
Certificate serial: 29A55C
Authority key identifier: 1D:70:01:B3:6F:E8:15:02:20:97:48:42:D0:1E:89:9B:74:12:94:A4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b5d1117ae408cf5674d277fb7690575abaf8ac60.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/b1593d9f1f3e46ef364b71ff663333f4452a03d8.roa
Signing time: Sat 16 Mar 2024 22:03:24 +0000
ROA not before: Sat 16 Mar 2024 22:03:19 +0000
ROA not after: Fri 16 Mar 2029 22:03:19 +0000
asID: 27742
IP address blocks: 200.30.128.0/24 maxlen: 24
200.30.132.0/24 maxlen: 24
200.30.165.0/24 maxlen: 24
200.30.170.0/24 maxlen: 24
200.30.177.0/24 maxlen: 24
200.30.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2729308 (0x29a55c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5d1117ae408cf5674d277fb7690575abaf8ac60
Validity
Not Before: Mar 16 22:03:19 2024 GMT
Not After : Mar 16 22:03:19 2029 GMT
Subject: CN=b1593d9f1f3e46ef364b71ff663333f4452a03d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:63:b1:d1:0c:df:35:f0:eb:99:55:34:4a:61:
2c:04:c9:f4:11:f2:19:bd:0b:c2:81:57:7c:6d:6a:
cf:ed:60:ac:f8:69:23:43:79:2a:43:d2:f1:42:41:
c0:f4:aa:4b:02:9d:08:bb:c3:39:11:14:09:38:21:
3a:66:1f:9b:26:85:20:5b:1b:8b:c7:69:25:b3:19:
22:99:b5:5a:90:fe:71:d8:24:36:a0:0f:a2:f5:71:
d2:12:26:5f:bf:c9:78:71:b0:6b:98:e4:ec:51:be:
c9:49:85:6a:63:bf:ad:53:ff:da:1e:3b:0f:50:b6:
55:ba:66:53:9f:37:5f:8e:8e:af:d2:9b:dd:86:b0:
61:41:6b:44:23:2e:e7:f6:65:db:20:3d:fb:f1:c1:
11:41:c6:06:83:3a:c5:ad:28:f0:0d:f2:32:ae:f4:
e9:95:39:28:c8:4e:77:b2:9b:f6:cf:86:29:c9:f2:
15:2a:cd:8c:f8:c0:22:fe:24:8e:8f:24:45:95:b7:
86:6f:e9:07:31:9a:4d:a3:03:46:22:9e:01:96:60:
ae:df:f2:0e:99:41:3e:9d:29:cc:33:69:bc:9b:ca:
8a:00:bb:69:c5:63:27:58:58:7f:e2:0f:a6:ed:74:
b1:87:71:37:07:70:80:56:18:f9:a6:ef:fd:11:94:
53:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:25:42:A1:57:86:2D:BA:78:AA:CC:C4:A8:2B:42:7F:18:9F:66:C0
X509v3 Authority Key Identifier:
keyid:1D:70:01:B3:6F:E8:15:02:20:97:48:42:D0:1E:89:9B:74:12:94:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b5d1117ae408cf5674d277fb7690575abaf8ac60.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/b1593d9f1f3e46ef364b71ff663333f4452a03d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1a646a5a-e03b-48ec-8ec3-8065cce10e9e/b5d1117ae408cf5674d277fb7690575abaf8ac60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.30.128.0/24
200.30.132.0/24
200.30.165.0/24
200.30.170.0/24
200.30.177.0/24
200.30.182.0/24
Signature Algorithm: sha256WithRSAEncryption
16:f5:90:f8:ad:45:e8:ed:f8:13:2b:30:01:d0:78:4a:0a:46:
c0:f6:0b:f8:e5:dc:a8:fa:df:86:8a:fc:ae:e0:05:83:69:66:
33:c8:f8:f4:a4:33:98:a8:f9:08:df:46:70:1b:7e:a7:f1:80:
25:b4:ca:95:28:ae:3b:98:c4:c7:e6:2d:0d:75:39:0a:ea:57:
e7:57:1e:9a:82:fd:32:05:f4:df:a4:87:48:f1:1f:64:da:92:
5a:d3:08:c0:e4:a7:c6:18:42:9d:3b:1f:1a:47:98:6d:f9:58:
bf:8b:7d:8b:25:1d:f6:06:a7:fb:e6:73:51:67:79:ad:28:0c:
1c:17:33:aa:25:1d:07:99:a2:ff:05:d2:2a:ab:fe:38:69:57:
82:e9:13:2a:f3:57:f7:95:55:37:83:30:3e:94:a9:cc:4d:44:
ae:70:87:a6:ca:02:68:a6:04:8a:c5:24:7c:4a:3e:89:cf:e8:
c3:a5:65:26:db:69:8a:78:4e:b2:a2:8c:d0:3e:ea:cc:c3:47:
bc:6a:e8:5d:74:00:d7:a5:2c:8b:7d:1f:89:2c:5f:9e:9a:55:
58:3d:e8:e8:75:95:22:73:5d:f7:3f:a8:ef:dc:73:99:00:c2:
75:78:ca:51:59:37:13:d6:a8:be:9f:6b:21:32:66:f4:e5:2e:
03:f2:6b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-ams.rpki-client.org