Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/58a7451f-2617-4d0f-9e75-6d2ae9ccf566/1da7f520711907203636fd0cb71e865e789c2dea.roa
File: 1da7f520711907203636fd0cb71e865e789c2dea.roa (raw, json)
Hash identifier: a1YE4ufq23BbL2r+h3BwPZveFxOMZVH9iTqoCztJnHk=
Subject key identifier: 05:C4:64:61:1C:97:F6:5E:9A:F6:D0:2A:8D:A2:58:AA:60:77:B6:76
Certificate issuer: /CN=43a1dd4035b8d29ba7566c64529634ff64783a4f
Certificate serial: 2998D9
Authority key identifier: 10:C0:5B:66:2A:57:45:36:50:20:F1:D6:FA:8F:59:EF:4D:94:FE:DC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/43a1dd4035b8d29ba7566c64529634ff64783a4f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/58a7451f-2617-4d0f-9e75-6d2ae9ccf566/1da7f520711907203636fd0cb71e865e789c2dea.roa
Signing time: Tue 06 Feb 2024 15:37:00 +0000
ROA not before: Tue 06 Feb 2024 15:36:47 +0000
ROA not after: Tue 06 Feb 2029 15:36:47 +0000
asID: 19114
IP address blocks: 200.7.192.0/20 maxlen: 20
200.7.192.0/24 maxlen: 24
200.7.193.0/24 maxlen: 24
200.7.194.0/24 maxlen: 24
200.7.195.0/24 maxlen: 24
200.7.204.0/24 maxlen: 24
200.7.208.0/20 maxlen: 20
200.7.221.0/24 maxlen: 24
200.7.224.0/21 maxlen: 21
200.7.224.0/23 maxlen: 23
200.7.226.0/23 maxlen: 23
200.7.228.0/23 maxlen: 23
200.7.232.0/22 maxlen: 22
200.7.236.0/24 maxlen: 24
200.7.237.0/24 maxlen: 24
200.7.238.0/24 maxlen: 24
200.7.239.0/24 maxlen: 24
200.7.240.0/23 maxlen: 23
200.7.242.0/24 maxlen: 24
200.7.243.0/24 maxlen: 24
200.7.244.0/22 maxlen: 22
200.7.246.0/24 maxlen: 24
200.7.247.0/24 maxlen: 24
200.7.248.0/23 maxlen: 23
200.7.251.0/24 maxlen: 24
200.7.252.0/23 maxlen: 23
200.7.254.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2726105 (0x2998d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43a1dd4035b8d29ba7566c64529634ff64783a4f
Validity
Not Before: Feb 6 15:36:47 2024 GMT
Not After : Feb 6 15:36:47 2029 GMT
Subject: CN=1da7f520711907203636fd0cb71e865e789c2dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8c:f8:71:91:e2:6a:7b:cf:28:70:75:de:1e:
a7:fc:8f:6f:d7:18:ee:c9:9c:b0:eb:26:70:20:2c:
51:7c:01:4f:21:58:17:02:86:ff:e3:de:12:ba:db:
da:d4:02:0e:e3:f9:cd:71:af:5c:00:ec:69:87:4e:
4b:ba:30:2a:f6:63:cc:3c:7d:91:93:a1:f5:1b:b8:
8b:ab:52:04:d7:71:f3:e3:a5:3b:fa:c3:84:f3:17:
12:24:c5:e0:6f:81:fe:a2:74:d8:d4:e2:2a:1b:02:
bf:7b:54:81:9a:1b:d9:e9:50:4c:3e:dc:5f:66:1b:
c2:3a:7c:f7:75:56:07:ba:af:6d:d8:4f:cf:ad:6b:
24:58:2a:31:24:70:8e:30:b8:6e:3b:25:3d:27:51:
40:72:85:f0:01:c4:3b:3e:b7:91:3d:bb:23:fc:37:
1b:4e:cd:57:28:af:0e:68:28:b8:20:a2:25:0a:97:
09:17:94:1f:2e:84:6f:b2:7e:8a:95:71:36:47:5b:
a9:b7:4d:e8:21:c7:e2:62:c7:e9:fe:81:81:c8:a9:
30:6f:06:da:d0:ff:e6:c2:cb:9c:72:83:46:4e:92:
4d:82:63:4e:c5:9b:0d:61:ec:b0:cd:e4:51:86:b3:
6b:df:77:d0:72:c4:c2:7c:47:c4:bc:62:1e:54:f5:
dd:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C4:64:61:1C:97:F6:5E:9A:F6:D0:2A:8D:A2:58:AA:60:77:B6:76
X509v3 Authority Key Identifier:
keyid:10:C0:5B:66:2A:57:45:36:50:20:F1:D6:FA:8F:59:EF:4D:94:FE:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/43a1dd4035b8d29ba7566c64529634ff64783a4f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/58a7451f-2617-4d0f-9e75-6d2ae9ccf566/1da7f520711907203636fd0cb71e865e789c2dea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/58a7451f-2617-4d0f-9e75-6d2ae9ccf566/43a1dd4035b8d29ba7566c64529634ff64783a4f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.7.192.0-200.7.249.255
200.7.251.0-200.7.255.255
Signature Algorithm: sha256WithRSAEncryption
6a:3a:14:a1:53:24:6d:7f:f7:bf:ed:b9:b8:f6:7e:f6:d8:ff:
9b:d1:f1:2e:1d:64:24:ca:e6:72:8b:d9:17:5f:e9:d5:1c:f3:
95:0d:e6:86:9d:5d:0a:aa:1e:81:11:30:19:eb:61:b6:c7:44:
fa:41:9c:61:7d:21:a8:52:e8:f3:f7:04:b4:3d:f9:5d:33:59:
51:17:b4:fa:9e:d1:9a:55:ce:1a:bd:9f:80:b5:90:11:3e:12:
e0:6d:f2:34:ef:2a:97:17:ae:4b:3d:bf:0c:bc:f5:42:7b:c8:
95:3f:33:05:e9:50:d8:1c:b0:0d:e9:3a:e1:fb:a4:4f:88:7e:
dc:c6:fb:2d:cc:86:78:20:12:a0:a7:06:4e:03:84:5c:f9:ed:
5b:c8:5d:0b:28:ab:bb:23:28:e8:0a:6a:de:ac:07:a5:87:05:
4b:85:fa:a3:dc:68:5a:73:b5:0c:c9:64:b3:05:cf:f1:10:95:
19:1d:71:9e:ef:82:b5:56:de:d0:fb:57:b1:ff:e4:83:37:20:
21:c5:55:8b:65:4f:37:94:26:cb:9a:78:ab:d7:ad:e3:d5:11:
5f:16:67:9b:b4:69:9f:1f:6e:ed:fa:9a:b1:0f:af:f8:e0:ec:
86:d7:f3:f3:70:3b:79:7c:22:3c:7b:1a:6f:9f:03:97:5b:fb:
83:a3:4d:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:44 2024 by rpki-client on console-fra.rpki-client.org