Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/58a7451f-2617-4d0f-9e75-6d2ae9ccf566/3b23ad5a6fc8eaa10b800e1ab5e288f6318e0fe5.roa
File: 3b23ad5a6fc8eaa10b800e1ab5e288f6318e0fe5.roa (raw, json)
Hash identifier: 4Tpxu001K2DTzO2liee81W3ElvrkQ5Wahr7YeYOR6GU=
Subject key identifier: B7:58:E0:67:BB:43:4B:82:B7:4A:8C:3A:54:68:83:6E:FC:B8:D0:95
Certificate issuer: /CN=43a1dd4035b8d29ba7566c64529634ff64783a4f
Certificate serial: 29897A
Authority key identifier: 10:C0:5B:66:2A:57:45:36:50:20:F1:D6:FA:8F:59:EF:4D:94:FE:DC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/43a1dd4035b8d29ba7566c64529634ff64783a4f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/58a7451f-2617-4d0f-9e75-6d2ae9ccf566/3b23ad5a6fc8eaa10b800e1ab5e288f6318e0fe5.roa
Signing time: Tue 06 Feb 2024 15:36:55 +0000
ROA not before: Tue 06 Feb 2024 15:36:47 +0000
ROA not after: Tue 06 Feb 2029 15:36:47 +0000
asID: 22724
IP address blocks: 200.7.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2722170 (0x29897a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43a1dd4035b8d29ba7566c64529634ff64783a4f
Validity
Not Before: Feb 6 15:36:47 2024 GMT
Not After : Feb 6 15:36:47 2029 GMT
Subject: CN=3b23ad5a6fc8eaa10b800e1ab5e288f6318e0fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:97:22:be:a1:a1:f8:19:5c:95:59:61:cc:a7:
de:56:7e:ee:e7:3b:c7:26:18:d8:0a:3a:7a:a8:b2:
d1:a2:d5:25:33:cf:94:4b:9e:ff:e5:b9:e0:4c:93:
2f:29:3f:c2:ba:55:b9:e1:7d:b0:64:64:43:b6:9b:
36:a4:17:88:80:a8:21:3b:0d:3f:12:5b:82:a1:c6:
ce:03:09:28:98:69:ab:f2:91:91:e6:40:80:b1:f9:
19:4a:a4:4d:72:17:8e:07:6c:eb:e7:7b:b8:24:ea:
e3:2b:b4:7d:74:d3:33:08:4d:e9:76:12:b2:d1:15:
1a:bd:88:1c:ae:13:60:c2:7c:8b:c6:a6:2b:f5:7d:
d6:74:37:d0:38:60:1b:0b:5e:b5:25:7f:f6:1b:86:
0c:94:5f:34:9d:72:95:8d:f7:24:e3:19:6c:ba:35:
6f:3a:d5:c4:ff:6a:8d:d6:72:bd:ba:1c:f9:3c:10:
83:c1:bc:e0:57:fe:a0:2d:c8:10:08:c1:49:76:c8:
7c:42:7c:fe:bc:6a:88:1b:00:00:bf:9d:2c:06:e9:
97:2f:a7:82:f1:97:3b:66:08:df:e0:c7:2f:f6:f5:
9a:56:66:bd:7e:35:13:d0:e3:60:15:f8:cb:86:b9:
62:4c:01:5a:5c:71:ef:2a:b6:d1:4c:b5:b3:32:37:
e2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:58:E0:67:BB:43:4B:82:B7:4A:8C:3A:54:68:83:6E:FC:B8:D0:95
X509v3 Authority Key Identifier:
keyid:10:C0:5B:66:2A:57:45:36:50:20:F1:D6:FA:8F:59:EF:4D:94:FE:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/43a1dd4035b8d29ba7566c64529634ff64783a4f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/58a7451f-2617-4d0f-9e75-6d2ae9ccf566/3b23ad5a6fc8eaa10b800e1ab5e288f6318e0fe5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/58a7451f-2617-4d0f-9e75-6d2ae9ccf566/43a1dd4035b8d29ba7566c64529634ff64783a4f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.7.211.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ab:fc:78:26:4c:9d:75:39:30:1d:78:b7:31:03:98:c9:b0:
7d:8b:2f:20:d1:fb:2f:cb:c2:02:3b:ee:f4:00:67:d8:b2:dd:
a4:12:c9:cf:a7:29:fe:95:ec:77:48:6e:9e:ba:b4:ac:11:b6:
f9:d6:5d:c8:4e:b0:62:df:4c:db:42:62:08:4e:60:a3:21:f7:
1c:fb:af:59:e8:ec:e2:95:63:a7:2e:81:a5:8a:75:2d:0d:d5:
e3:c5:dc:d6:fd:08:ff:1b:7c:93:dd:75:64:2a:1a:c4:6c:e1:
7b:73:ee:f6:bb:e4:fc:bc:5b:f1:ed:17:16:c8:ef:b5:47:38:
52:82:45:d2:4d:92:21:68:90:59:82:da:f5:d8:60:33:90:f5:
0a:44:dc:a6:41:59:f7:0b:f7:ae:81:24:74:b2:a0:b8:c5:bd:
d4:43:85:fa:50:7b:a8:4b:34:15:98:0b:2b:93:75:6a:9d:b2:
dc:99:a8:2a:fb:0a:d7:47:04:de:68:5d:f4:21:6d:04:a5:e1:
9b:6f:92:ab:38:54:d8:a0:df:81:06:54:c6:ac:f1:9c:72:df:
95:07:fb:21:4b:6f:0c:b6:1a:75:8e:ff:f6:99:f5:64:1e:a5:
c9:58:74:91:9f:45:41:fb:11:3f:9f:d7:f6:bf:37:65:4a:9a:
d9:cb:b6:17
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDKYl6MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDQz
YTFkZDQwMzViOGQyOWJhNzU2NmM2NDUyOTYzNGZmNjQ3ODNhNGYwHhcNMjQwMjA2
MTUzNjQ3WhcNMjkwMjA2MTUzNjQ3WjAzMTEwLwYDVQQDEygzYjIzYWQ1YTZmYzhl
YWExMGI4MDBlMWFiNWUyODhmNjMxOGUwZmU1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmpcivqGh+BlclVlhzKfeVn7u5zvHJhjYCjp6qLLRotUlM8+U
S57/5bngTJMvKT/CulW54X2wZGRDtps2pBeIgKghOw0/EluCocbOAwkomGmr8pGR
5kCAsfkZSqRNcheOB2zr53u4JOrjK7R9dNMzCE3pdhKy0RUavYgcrhNgwnyLxqYr
9X3WdDfQOGAbC161JX/2G4YMlF80nXKVjfck4xlsujVvOtXE/2qN1nK9uhz5PBCD
wbzgV/6gLcgQCMFJdsh8Qnz+vGqIGwAAv50sBumXL6eC8Zc7Zgjf4Mcv9vWaVma9
fjUT0ONgFfjLhrliTAFaXHHvKrbRTLWzMjficwIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFLdY4Ge7Q0uCt0qMOlRog278uNCVMB8GA1UdIwQYMBaAFBDAW2YqV0U2UCDx
1vqPWe9NlP7cMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNDNhMWRk
NDAzNWI4ZDI5YmE3NTY2YzY0NTI5NjM0ZmY2NDc4M2E0Zi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNThhNzQ1MWYtMjYxNy00ZDBmLTllNzUtNmQyYWU5
Y2NmNTY2LzNiMjNhZDVhNmZjOGVhYTEwYjgwMGUxYWI1ZTI4OGY2MzE4ZTBmZTUu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy81OGE3NDUxZi0yNjE3LTRkMGYtOWU3NS02ZDJh
ZTljY2Y1NjYvNDNhMWRkNDAzNWI4ZDI5YmE3NTY2YzY0NTI5NjM0ZmY2NDc4M2E0
Zi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAMgH0zANBgkqhkiG9w0BAQsFAAOCAQEAaqv8eCZMnXU5MB14
tzEDmMmwfYsvINH7L8vCAjvu9ABn2LLdpBLJz6cp/pXsd0hunrq0rBG2+dZdyE6w
Yt9M20JiCE5goyH3HPuvWejs4pVjpy6BpYp1LQ3V48Xc1v0I/xt8k911ZCoaxGzh
e3Pu9rvk/Lxb8e0XFsjvtUc4UoJF0k2SIWiQWYLa9dhgM5D1CkTcpkFZ9wv3roEk
dLKguMW91EOF+lB7qEs0FZgLK5N1ap2y3JmoKvsK10cE3mhd9CFtBKXhm2+SqzhU
2KDfgQZUxqzxnHLflQf7IUtvDLYadY7/9pn1ZB6lyVh0kZ9FQfsRP5/X9r83ZUqa
2cu2Fw==
-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:20 2024 by rpki-client on console-fra.rpki-client.org