Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/b0026b35628a872edbb913c16679a5bf6b49a07e.roa
File: b0026b35628a872edbb913c16679a5bf6b49a07e.roa (raw, json)
Hash identifier: LH/YDWILs9mThyQ0eFegItcMXnNVax8W+QaP2sTqA2M=
Subject key identifier: 10:0A:D9:4D:B0:C1:F5:4A:1E:F0:AF:6B:E3:91:55:4E:A6:3C:61:4A
Certificate issuer: /CN=65c204767f404590bc5cf1ab5b3449ef14940fd0
Certificate serial: 2B2348
Authority key identifier: 2B:02:56:AA:9A:85:82:6B:BE:11:87:5E:57:72:BB:0B:00:D5:70:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/65c204767f404590bc5cf1ab5b3449ef14940fd0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/b0026b35628a872edbb913c16679a5bf6b49a07e.roa
Signing time: Thu 15 Feb 2024 21:18:35 +0000
ROA not before: Thu 15 Feb 2024 21:18:29 +0000
ROA not after: Thu 15 Feb 2029 21:18:29 +0000
asID: 28001
IP address blocks: 200.3.12.0/22 maxlen: 24
200.10.60.0/23 maxlen: 24
200.7.86.0/24 maxlen: 24
2001:13c7:7010::/46 maxlen: 48
2801:1b8::/44 maxlen: 48
2001:13c7:7002::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2827080 (0x2b2348)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65c204767f404590bc5cf1ab5b3449ef14940fd0
Validity
Not Before: Feb 15 21:18:29 2024 GMT
Not After : Feb 15 21:18:29 2029 GMT
Subject: CN=b0026b35628a872edbb913c16679a5bf6b49a07e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8d:54:b4:1d:30:d6:a1:3d:6b:e0:c0:2e:f2:
80:ba:4f:87:66:f2:00:49:e3:5d:cb:06:3f:01:6a:
7a:74:88:33:7c:92:88:48:d4:1e:83:83:19:d5:09:
d8:99:6c:41:fc:76:32:87:99:5d:d2:d1:4e:0f:be:
8c:01:92:e6:4a:1d:df:6f:b5:2a:b4:6e:76:2f:f2:
25:11:6d:c8:d2:34:30:78:4d:28:99:46:0f:00:85:
02:f6:d8:bc:f3:15:c1:51:9a:4b:30:5a:9e:bb:49:
65:61:e8:e0:7c:d1:61:de:db:d5:e1:74:30:fc:9d:
e5:80:4b:2f:57:5c:68:52:10:5e:13:59:bb:14:82:
42:7f:3e:a7:b3:d5:27:88:91:f1:40:18:f3:d5:7d:
59:73:ba:ab:c6:90:e5:80:95:3f:79:8c:66:41:3c:
8d:59:30:46:27:6d:10:ff:9b:5d:ab:fa:00:8d:bb:
cf:3d:51:e0:b9:fe:99:1f:a0:5b:33:b1:34:b5:64:
d5:42:33:f1:ac:ad:05:ce:cb:15:85:a8:9e:4b:14:
ef:36:2f:6c:f1:ff:df:df:30:f6:65:1f:41:71:ee:
ce:3d:7b:f6:cd:c5:52:0c:49:93:f5:23:56:e5:b7:
c1:33:92:6c:c8:fa:c1:e2:7c:29:37:cc:a0:b2:63:
73:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0A:D9:4D:B0:C1:F5:4A:1E:F0:AF:6B:E3:91:55:4E:A6:3C:61:4A
X509v3 Authority Key Identifier:
keyid:2B:02:56:AA:9A:85:82:6B:BE:11:87:5E:57:72:BB:0B:00:D5:70:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/65c204767f404590bc5cf1ab5b3449ef14940fd0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/b0026b35628a872edbb913c16679a5bf6b49a07e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/65c204767f404590bc5cf1ab5b3449ef14940fd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.3.12.0/22
200.7.86.0/24
200.10.60.0/23
IPv6:
2001:13c7:7002::/48
2001:13c7:7010::/46
2801:1b8::/44
Signature Algorithm: sha256WithRSAEncryption
52:3d:2c:cf:7d:ad:4b:95:38:28:56:70:dc:c7:0b:f7:5a:5c:
c7:94:51:f4:5c:94:05:15:98:2e:21:52:c3:42:7a:09:ec:ec:
4c:b7:8c:ea:2d:5f:7a:07:02:e1:fd:82:a7:92:de:ad:02:2b:
0e:e3:b2:33:6c:1f:5d:1b:50:7f:5e:32:0f:60:a6:aa:35:6d:
8a:6b:41:20:53:4a:d0:15:0f:7a:3d:8c:9d:6a:bf:30:7b:e8:
40:31:1b:da:13:b9:c3:03:ac:c7:68:33:34:0b:cf:f6:9e:45:
2e:64:51:73:22:00:dc:06:5e:3e:2b:03:9c:b0:96:2c:62:cd:
ec:2a:ae:0b:c5:71:47:92:e3:b8:3d:78:a4:47:97:9a:02:d6:
63:82:cf:17:7d:fc:26:75:a2:22:c2:3b:5c:03:49:66:de:8b:
64:b4:92:01:e1:27:07:15:fe:50:09:dc:d4:ff:b4:a9:78:16:
40:1c:92:c3:9d:28:3b:41:06:63:1e:24:b2:03:bf:b5:70:d7:
87:80:08:ca:3e:ba:fe:ca:f7:3d:54:00:7b:ed:74:88:3d:0b:
bc:f5:55:9c:61:d5:33:58:c6:7d:1b:fd:d9:d5:81:73:1e:a8:
75:20:f7:e1:ae:24:3e:d8:d2:4a:93:4c:c3:07:f2:c9:d0:48:
0a:98:31:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-ams.rpki-client.org