Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/99366c7a-2bd9-4084-b7a4-a625dfdb3c27/3c3ecedcb6d60eb6aef91d387697217eb514853c.roa
File: 3c3ecedcb6d60eb6aef91d387697217eb514853c.roa (raw, json)
Hash identifier: bRPk3L9+VoNJqeTc5n2zihY7GruG239DSGuiu7CM9Cs=
Subject key identifier: FA:94:9F:60:F4:6F:DF:1D:DB:8A:67:CC:2A:3B:02:9B:4E:91:03:7F
Certificate issuer: /CN=f970f202e47da3240414c89f65127afcb786a7ba
Certificate serial: 045EC6
Authority key identifier: 69:CD:84:A4:FE:E8:C7:98:63:06:2D:F0:14:03:E3:A0:6F:7F:FB:A8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f970f202e47da3240414c89f65127afcb786a7ba.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/99366c7a-2bd9-4084-b7a4-a625dfdb3c27/3c3ecedcb6d60eb6aef91d387697217eb514853c.roa
Signing time: Wed 24 Mar 2021 14:32:33 +0000
ROA not before: Wed 24 Mar 2021 14:32:33 +0000
ROA not after: Tue 24 Mar 2026 14:32:33 +0000
asID: 52424
IP address blocks: 200.61.248.0/22 maxlen: 24
2801:1c0::/39 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 286406 (0x45ec6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f970f202e47da3240414c89f65127afcb786a7ba
Validity
Not Before: Mar 24 14:32:33 2021 GMT
Not After : Mar 24 14:32:33 2026 GMT
Subject: CN=3c3ecedcb6d60eb6aef91d387697217eb514853c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:94:f3:ee:86:75:2d:9d:db:bb:71:64:5c:80:
d9:60:5b:30:f8:da:4c:1b:c3:f6:64:49:51:87:a8:
27:a0:63:3e:e6:21:11:61:36:17:b2:bd:3f:82:67:
34:38:8f:4a:51:e6:8f:42:93:29:fa:d5:a0:36:cf:
86:7e:6d:17:22:32:44:eb:fa:b7:37:d8:e4:0e:6d:
8b:95:6a:9f:4d:77:7e:da:59:88:27:22:0c:a5:7a:
b6:e3:2c:04:52:7c:30:5c:23:3d:99:90:f8:3d:35:
9c:f6:06:d2:72:86:9b:21:09:5e:7a:cf:83:f2:97:
3c:50:4f:e6:cf:7b:30:f8:8f:20:5d:20:3f:22:20:
c7:2a:cc:30:f2:d9:34:c0:37:59:ce:44:74:8f:d5:
52:b2:42:7d:74:e1:93:f4:7a:78:25:49:72:6d:f3:
f8:78:65:3c:43:48:f3:f1:1c:c3:c4:78:6a:b1:51:
ba:8b:af:22:0e:f5:e0:f6:c1:a5:00:98:c1:52:e2:
ca:33:99:18:5a:c3:c8:57:1a:fe:77:34:a4:d1:73:
bd:7d:cc:46:70:71:06:2d:86:e8:87:15:32:ea:3d:
0e:7d:bf:49:c3:ec:66:b7:d7:0b:45:29:05:62:dd:
88:02:b4:82:4f:0d:c7:be:11:5f:9d:e2:8f:be:92:
a0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:94:9F:60:F4:6F:DF:1D:DB:8A:67:CC:2A:3B:02:9B:4E:91:03:7F
X509v3 Authority Key Identifier:
keyid:69:CD:84:A4:FE:E8:C7:98:63:06:2D:F0:14:03:E3:A0:6F:7F:FB:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f970f202e47da3240414c89f65127afcb786a7ba.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/99366c7a-2bd9-4084-b7a4-a625dfdb3c27/3c3ecedcb6d60eb6aef91d387697217eb514853c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/99366c7a-2bd9-4084-b7a4-a625dfdb3c27/f970f202e47da3240414c89f65127afcb786a7ba.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.61.248.0/22
IPv6:
2801:1c0::/39
Signature Algorithm: sha256WithRSAEncryption
c6:10:da:dd:f0:0c:b3:2f:b7:ab:7e:5e:bc:bf:f7:8c:66:0b:
c4:c5:0c:7e:e8:17:52:74:36:55:fd:af:8e:57:bb:40:23:1d:
48:63:ca:7f:a0:0c:e4:ff:a0:05:63:1a:d9:74:56:e9:fb:ab:
b7:1d:f5:e3:31:52:51:33:a9:9d:9f:ef:e4:ed:3e:f3:ee:62:
65:1d:a6:b2:c2:22:c9:92:41:0e:87:7a:50:36:4e:a4:42:7c:
a9:7e:fe:b6:7b:1b:42:6b:40:54:55:24:fb:0e:c2:46:7a:d9:
a4:9a:c4:e5:97:c3:f7:f4:c6:b7:f0:16:b1:24:c8:b7:02:65:
e5:48:62:dc:8e:09:da:96:19:60:c8:4c:76:06:f6:32:df:a4:
9e:2c:18:da:54:69:8f:83:0e:58:3f:9e:5d:2b:85:9a:d4:8c:
72:d5:80:12:e0:06:d6:c6:db:33:37:22:76:3f:74:22:cd:60:
44:19:61:d8:8e:d7:cd:67:92:f9:22:1c:29:21:93:06:8f:98:
35:58:5c:97:bf:7c:24:89:ef:b8:af:f9:4c:f3:cc:b2:25:d5:
c4:dd:33:09:ac:c5:48:1e:41:ca:5c:fe:cc:38:35:cd:ab:c4:
8f:5b:1e:70:58:c1:33:bb:32:83:54:f0:03:c8:73:6f:2c:7e:
fa:7c:ef:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:57 2024 by rpki-client on console-fra.rpki-client.org