Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS20207.roa
File: AS20207.roa (raw, json)
Hash identifier: G6nLkiEF+xmTzteFvOTVTQWlQZhKyXn6+CXKiFwsofY=
Subject key identifier: 74:67:0D:94:41:D6:00:2B:6F:C6:D8:31:78:8B:B4:F9:2F:20:DE:BC
Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial: 929429755B2D90D4BA4E1214A41D08BDEA87FD
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS20207.roa
Signing time: Tue 04 Feb 2025 18:13:39 +0000
ROA not before: Tue 04 Feb 2025 18:08:39 +0000
ROA not after: Tue 03 Feb 2026 18:13:39 +0000
asID: 20207
IP address blocks: 179.40.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
92:94:29:75:5b:2d:90:d4:ba:4e:12:14:a4:1d:08:bd:ea:87:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Validity
Not Before: Feb 4 18:08:39 2025 GMT
Not After : Feb 3 18:13:39 2026 GMT
Subject: CN=74670D9441D6002B6FC6D831788BB4F92F20DEBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:df:01:51:c2:b7:29:11:6d:71:ad:9a:2e:
de:34:17:8a:8f:55:ae:eb:78:67:a6:3e:86:92:95:
2e:2f:99:0f:24:91:5b:c9:92:a0:f8:4e:ce:97:b1:
2a:3d:35:d7:1d:2f:b4:3d:d5:fa:b0:e2:7d:57:fe:
04:45:30:f1:64:9b:3a:2d:e9:fd:04:52:b3:60:16:
52:73:0f:72:9c:31:90:da:84:e0:5d:0f:cc:f4:bf:
75:4b:a3:6e:f6:7a:2e:9e:5c:b8:c1:d4:53:95:90:
9e:66:bb:de:aa:91:56:ea:f5:86:2b:9f:9a:d0:40:
c7:c7:aa:0a:c3:db:5f:f7:69:7f:03:6a:eb:1e:bc:
32:73:70:8f:d6:0b:ce:8c:91:d3:6a:ac:65:32:2e:
72:69:7b:82:c7:1f:d9:ca:d7:79:72:8e:ec:f9:c0:
06:7f:bd:40:31:e6:c1:8b:ca:57:ae:b2:ad:f7:70:
d7:0a:2b:ea:b9:4d:7d:db:ae:58:06:e4:4c:81:06:
65:f8:39:f8:7c:9a:7f:4a:30:d0:97:98:0f:67:9b:
01:10:8a:5f:81:e8:dc:47:27:be:98:06:1b:c3:34:
6b:64:19:6b:7c:4d:10:13:23:d5:f8:52:70:ad:f0:
ef:08:38:3f:62:d3:d1:78:ee:54:21:b8:67:e8:fb:
43:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:67:0D:94:41:D6:00:2B:6F:C6:D8:31:78:8B:B4:F9:2F:20:DE:BC
X509v3 Authority Key Identifier:
keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS20207.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.40.8.0/22
Signature Algorithm: sha256WithRSAEncryption
59:df:fa:07:1d:b0:f5:16:8d:07:76:62:0f:ed:47:f3:17:ca:
1d:83:e5:87:eb:55:50:45:11:e8:73:24:cb:dd:41:d5:78:a0:
28:c5:32:bd:ee:0e:04:bd:dd:9e:4b:72:86:03:80:41:4f:e2:
54:27:3d:f4:fb:82:9e:0e:10:af:52:8e:a7:41:d8:60:bd:44:
d4:f7:70:22:b6:80:b5:15:90:c5:20:28:68:ee:3b:a8:59:cd:
0f:7f:39:3a:c7:a4:88:2a:25:48:2d:1a:ea:81:9d:bd:2c:06:
ab:f6:4b:00:c7:d8:8b:47:a1:2f:13:ff:09:7f:2b:72:a5:14:
9f:f2:c3:e9:c2:81:54:f9:c5:bb:6a:af:c0:3c:1d:4e:31:99:
63:87:b5:9e:0c:13:a8:56:6d:65:5d:e3:4c:8c:9d:05:4a:74:
c4:3a:2b:1b:33:01:4a:ed:f8:73:7e:c1:38:89:7f:df:d3:5e:
11:63:87:db:d2:fe:67:60:9a:b8:66:09:b3:98:94:7a:63:fd:
1c:e5:fa:02:f1:b6:02:e7:32:13:ff:b7:22:ed:91:2e:bf:fc:
e7:7e:d2:c4:0a:68:3c:af:35:73:aa:e3:51:70:8c:f0:38:a7:
65:a7:41:44:59:a5:35:34:2b:0c:a8:3e:66:56:39:c0:ef:44:
ef:f9:df:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 07:40:06 2025 by rpki-client