Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS27997.roa
File: AS27997.roa (raw, json)
Hash identifier: 1eGEqkYS/hfLem+m+88b8+iRUT3USLTIaR8lT2wPXq8=
Subject key identifier: D0:91:77:D6:C7:7B:96:90:6D:60:17:A0:2A:91:E8:61:CE:57:B3:7D
Certificate issuer: /CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Certificate serial: 186857D3B68393D93ED7C9E8FF1E773C155E0C2E
Authority key identifier: 27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS27997.roa
Signing time: Tue 04 Feb 2025 20:06:59 +0000
ROA not before: Tue 04 Feb 2025 20:01:59 +0000
ROA not after: Tue 03 Feb 2026 20:06:59 +0000
asID: 27997
IP address blocks: 190.226.241.0/24 maxlen: 24
200.43.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:68:57:d3:b6:83:93:d9:3e:d7:c9:e8:ff:1e:77:3c:15:5e:0c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Validity
Not Before: Feb 4 20:01:59 2025 GMT
Not After : Feb 3 20:06:59 2026 GMT
Subject: CN=D09177D6C77B96906D6017A02A91E861CE57B37D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6f:4b:9c:0d:da:67:9b:dc:12:2f:b0:f6:31:
81:67:d8:f3:c8:77:e6:44:98:26:7e:c8:4a:35:35:
6a:88:72:ce:2d:d4:dc:e2:a1:c7:5b:78:76:a2:a2:
07:0e:8d:dd:aa:5e:86:06:e8:49:ad:da:56:9d:64:
8f:84:9c:c2:a0:c6:1c:bf:74:1e:62:73:b9:d3:7b:
df:11:af:28:ac:05:6a:52:3e:d9:4a:f1:2e:73:44:
c5:da:92:c3:dc:0d:b4:72:7f:88:ab:83:aa:6a:d0:
3a:9c:1f:09:2a:6e:1a:35:ff:c3:e2:94:38:b9:a4:
1d:ac:2a:a9:30:9e:93:2b:43:0f:4f:30:84:ce:5d:
9e:49:49:d5:be:23:7b:08:a5:fb:e3:b0:b2:49:21:
eb:c0:6b:6c:73:c6:4a:d1:d6:a1:67:33:ca:88:23:
c1:c1:8e:76:6a:de:7e:ac:75:07:90:72:49:a3:d8:
ec:34:08:f4:70:82:73:ff:57:18:72:a2:65:e5:58:
ea:8b:43:84:52:b0:87:3f:84:67:8d:70:ec:24:75:
a4:41:0a:67:47:18:d9:61:7b:f1:66:ee:b1:f8:9a:
d0:92:d2:53:ef:9e:10:a8:ac:74:56:11:36:a9:42:
30:d1:8a:c2:39:b6:d2:1f:1d:04:89:83:2d:e3:e3:
ee:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:91:77:D6:C7:7B:96:90:6D:60:17:A0:2A:91:E8:61:CE:57:B3:7D
X509v3 Authority Key Identifier:
keyid:27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS27997.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.226.241.0/24
200.43.55.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:95:b6:1d:44:6a:f9:70:b1:68:49:12:43:14:b2:71:42:cd:
77:d1:45:7c:77:1d:56:e7:55:5a:b5:fc:11:43:bd:e0:63:95:
e0:7c:71:78:7a:c6:96:24:b3:b6:62:20:ff:49:bb:21:5f:a8:
45:8f:24:bf:44:e8:dd:a9:52:f1:2c:3d:64:48:aa:c9:72:7b:
fe:5b:9f:61:73:86:3e:07:d7:df:99:f9:bb:0b:4a:9b:0d:dd:
41:77:a5:62:2c:e7:dc:0c:ae:44:c9:bb:b2:e0:ac:fd:05:a5:
71:71:5a:37:d9:4c:61:81:1b:7b:50:d2:67:be:ac:12:dd:fd:
ac:bd:af:c9:40:7b:95:76:96:48:b5:51:1f:a9:6c:d0:e9:8e:
c1:b1:cb:60:3d:ef:a5:8e:2b:8b:6a:6d:28:1b:ad:ca:00:7e:
8d:15:d1:5c:d9:1b:f8:73:3d:cd:9f:cb:b1:9d:3f:99:c7:71:
bb:b7:1a:e2:90:8b:cd:22:c1:a6:f3:39:73:bb:a8:7e:56:80:
20:ba:49:18:67:db:b3:8d:1f:8a:19:22:9b:54:26:54:f4:6a:
bb:58:07:6d:66:9d:cc:2b:fd:17:6c:7f:fd:0d:56:a2:44:6b:
a0:72:5c:0d:44:2d:94:96:44:f9:f7:b2:88:61:da:e0:84:cd:
5e:09:9a:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:24:54 2025 by rpki-client