Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/90abb6df-ecb0-4eba-9a99-8204c3e13df4/5b8a95c29eace3a7c146dd64c0852a26b4de0852.roa
File: 5b8a95c29eace3a7c146dd64c0852a26b4de0852.roa (raw, json)
Hash identifier: Epuzjxxf+THMinVu6cOtNN7erQ7T21TwZEThsuSQAy8=
Subject key identifier: 20:4A:99:7E:6F:9A:22:1D:64:8D:BB:B3:36:5E:C1:A6:BB:2E:79:41
Certificate issuer: /CN=4df029da8a6fe8589cc92276ebd6c7161dc8ea75
Certificate serial: 191E76
Authority key identifier: C6:9C:3D:EB:97:F9:2C:9B:B7:3C:34:78:44:90:45:B3:DF:E5:3E:2E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4df029da8a6fe8589cc92276ebd6c7161dc8ea75.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/90abb6df-ecb0-4eba-9a99-8204c3e13df4/5b8a95c29eace3a7c146dd64c0852a26b4de0852.roa
Signing time: Tue 28 Jun 2022 20:20:02 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Mon 24 Mar 2036 03:00:00 +0000
asID: 52399
IP address blocks: 138.117.128.0/22 maxlen: 22
138.117.128.0/23 maxlen: 23
138.117.130.0/23 maxlen: 23
138.117.128.0/24 maxlen: 24
138.117.129.0/24 maxlen: 24
138.117.130.0/24 maxlen: 24
138.117.131.0/24 maxlen: 24
200.7.152.0/21 maxlen: 21
200.7.152.0/22 maxlen: 22
200.7.156.0/22 maxlen: 22
200.7.152.0/23 maxlen: 23
200.7.154.0/23 maxlen: 23
200.7.156.0/23 maxlen: 23
200.7.158.0/23 maxlen: 23
200.7.152.0/24 maxlen: 24
200.7.153.0/24 maxlen: 24
200.7.154.0/24 maxlen: 24
200.7.155.0/24 maxlen: 24
200.7.156.0/24 maxlen: 24
200.7.157.0/24 maxlen: 24
200.7.158.0/24 maxlen: 24
200.7.159.0/24 maxlen: 24
2803:9e00::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1646198 (0x191e76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df029da8a6fe8589cc92276ebd6c7161dc8ea75
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2036 GMT
Subject: CN=5b8a95c29eace3a7c146dd64c0852a26b4de0852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6e:ed:af:83:ce:bc:56:a5:22:01:0b:9b:c4:
18:2c:00:a7:5c:da:06:6c:00:1b:c0:23:be:67:9a:
4d:1d:3d:50:bd:da:d0:1f:a8:d6:c7:c7:d1:f5:8e:
e7:cc:2c:cc:51:e6:77:7e:65:7e:52:f9:5c:26:b9:
d7:59:19:e4:78:1b:79:68:d0:8a:ad:35:f3:4a:26:
11:1a:3d:5b:e7:79:0a:b3:0a:54:a0:4e:0f:22:28:
99:cf:f1:c2:f1:5e:7b:00:15:ab:c1:ff:ea:fd:63:
aa:63:d5:24:e0:aa:a1:2b:99:79:46:f0:57:55:2e:
96:79:32:bc:4a:fc:ed:d7:2c:f6:61:b1:d4:33:41:
c9:3e:f4:c9:60:19:84:8f:57:ac:4e:a8:41:b0:0a:
9e:67:35:52:4d:bd:15:1f:83:31:96:d4:54:13:89:
bc:a2:7a:59:40:30:64:62:c7:17:dc:23:65:2e:21:
12:13:68:e8:6f:1b:38:76:a4:c4:dd:35:54:c0:49:
02:42:99:0d:5c:84:aa:7b:63:cb:d6:37:07:1e:a6:
f5:e9:fe:3f:b6:80:48:0e:e4:1c:a0:77:ef:fb:3f:
1d:c8:82:b5:11:4d:d0:c1:71:f2:1e:de:40:90:1e:
ae:10:16:76:68:1f:56:02:06:54:23:0c:4e:b5:d5:
b1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4A:99:7E:6F:9A:22:1D:64:8D:BB:B3:36:5E:C1:A6:BB:2E:79:41
X509v3 Authority Key Identifier:
keyid:C6:9C:3D:EB:97:F9:2C:9B:B7:3C:34:78:44:90:45:B3:DF:E5:3E:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4df029da8a6fe8589cc92276ebd6c7161dc8ea75.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/90abb6df-ecb0-4eba-9a99-8204c3e13df4/5b8a95c29eace3a7c146dd64c0852a26b4de0852.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/90abb6df-ecb0-4eba-9a99-8204c3e13df4/4df029da8a6fe8589cc92276ebd6c7161dc8ea75.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.128.0/22
200.7.152.0/21
IPv6:
2803:9e00::/32
Signature Algorithm: sha256WithRSAEncryption
47:ae:24:81:e9:2f:b5:d6:ff:97:8c:41:1e:da:a4:08:4e:58:
95:db:eb:2e:32:d9:a4:ca:df:84:33:13:2b:b9:c5:e7:d8:56:
ff:b9:01:a6:e1:75:1f:c8:4e:57:67:c2:d5:19:0d:47:bb:9c:
4f:08:d1:9b:a7:a4:19:d2:6f:5b:70:9a:84:0b:fc:db:4b:3b:
fa:42:6b:8d:b0:1c:3a:a9:e1:5c:b7:fe:6f:8a:ed:2b:bc:48:
1f:29:7a:63:90:d0:aa:5a:70:9a:c2:37:cc:c2:54:d9:92:51:
bb:fb:07:ac:01:57:c4:bd:02:6d:ed:4f:ef:27:85:25:e6:99:
f9:7b:21:c0:de:72:57:99:d9:e2:0b:7d:a6:0b:05:97:98:9e:
b4:11:8e:18:37:d5:a9:1e:ad:55:e6:e4:61:6c:ae:37:7b:db:
85:c0:22:54:f9:ff:c6:2e:cf:cf:a4:ce:aa:a0:6d:72:bc:4f:
68:56:e1:1e:3a:17:ef:a0:4b:83:73:77:7e:7b:a5:7e:c7:3b:
04:e1:e2:09:8b:d5:45:0f:d9:64:02:37:51:98:29:8b:64:4f:
8a:da:35:b6:fd:ee:b7:9b:3b:a0:7e:aa:ec:25:32:e7:29:a5:
34:94:5b:5b:46:d9:3d:e0:0e:7f:71:7c:df:e8:e7:cf:b5:9b:
95:14:d9:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:08 2024 by rpki-client on console-ams.rpki-client.org