Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27788.roa
File: AS27788.roa (raw, json)
Hash identifier: KyNUCC0rtP70xIOqINnRj1nS/NrjyuGSzWxDPSMKskk=
Subject key identifier: 8C:D4:38:83:70:1E:46:01:26:E1:19:06:2F:A6:D6:45:F1:C2:73:1F
Certificate issuer: /CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Certificate serial: 049A943FAFA1A471D89C74B985B2A8F10B0D77F9
Authority key identifier: 5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27788.roa
Signing time: Tue 04 Feb 2025 18:02:48 +0000
ROA not before: Tue 04 Feb 2025 17:57:48 +0000
ROA not after: Tue 03 Feb 2026 18:02:48 +0000
asID: 27788
IP address blocks: 200.46.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:9a:94:3f:af:a1:a4:71:d8:9c:74:b9:85:b2:a8:f1:0b:0d:77:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Validity
Not Before: Feb 4 17:57:48 2025 GMT
Not After : Feb 3 18:02:48 2026 GMT
Subject: CN=8CD43883701E460126E119062FA6D645F1C2731F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:00:5b:a6:99:91:88:91:ec:bc:9a:7f:77:9f:
7d:3a:08:20:28:92:5b:19:54:3c:da:69:f3:25:4a:
15:c4:29:3e:ef:ed:59:ec:45:e1:2f:c9:3c:3f:ef:
b4:4c:12:91:bd:bd:50:0b:7d:fd:c0:ef:30:cd:64:
59:ad:27:5e:1c:51:ed:a9:3b:e5:f2:cf:36:68:b5:
79:60:0a:07:a6:a9:0e:ce:fe:72:80:47:7f:5c:90:
1b:41:cf:5f:fa:de:ce:91:fb:5b:25:3e:29:e9:86:
d2:76:39:9a:f0:44:f6:4f:e8:ea:ad:41:36:f9:a1:
3f:f3:61:2f:29:32:ab:a5:4b:34:1c:52:67:0a:ad:
93:10:59:44:b7:62:24:93:a8:6f:71:ae:9f:01:45:
f1:bd:0c:74:62:fc:e3:4c:1a:c6:64:33:11:d7:46:
90:2c:cc:cc:9b:d1:f8:33:22:04:da:99:85:c5:63:
75:3c:20:19:6b:00:53:30:35:23:ea:70:24:e6:99:
3f:79:5c:04:95:9d:e0:ca:42:88:22:bd:96:7d:47:
cd:89:50:f6:cd:22:85:fe:47:7c:61:cc:1e:cd:32:
86:dd:6e:88:59:9f:66:2d:fe:f0:1c:7d:e9:89:2a:
6f:56:5f:e2:63:7a:84:54:10:03:37:00:63:8a:a4:
0b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D4:38:83:70:1E:46:01:26:E1:19:06:2F:A6:D6:45:F1:C2:73:1F
X509v3 Authority Key Identifier:
keyid:5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27788.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.46.246.0/24
Signature Algorithm: sha256WithRSAEncryption
79:f8:67:28:4f:25:c8:49:91:8a:06:58:94:bf:c6:8f:a9:82:
20:c2:54:b5:11:96:bd:cb:8b:90:1c:1d:ed:95:dc:e2:c5:28:
8f:8c:f3:da:97:3e:db:03:13:5f:51:3c:b2:7b:fa:b6:99:71:
d2:c4:ee:43:60:07:65:34:db:f2:de:07:b3:82:b8:2b:70:a4:
f9:76:2b:de:0a:d6:52:35:97:e3:b6:94:d6:52:18:b7:85:34:
a5:39:97:ed:0f:31:79:22:37:80:55:22:b4:19:2e:24:df:82:
a3:52:bc:db:46:70:b9:31:4b:7d:2d:5a:0a:ea:e1:be:b4:56:
7f:77:06:9a:b7:79:72:bc:13:3b:22:33:96:7e:f0:0d:9d:a7:
dc:d6:50:13:68:3c:6c:73:47:3e:0f:6d:d1:0a:13:ab:04:fd:
c0:45:06:68:05:cd:b2:79:0c:43:f4:d0:69:26:d4:fa:d4:1a:
57:49:2a:f9:4a:50:d2:a2:ee:12:fb:b0:19:92:9b:94:4e:16:
93:03:ba:20:89:14:5c:25:c6:1a:79:dd:24:0d:6b:ad:04:11:
27:40:ac:38:25:59:09:61:86:3e:9f:84:9e:54:aa:01:4a:dc:
82:f3:1d:ad:9c:25:02:9f:9f:b6:01:fd:4d:c0:2a:2d:d2:1e:
44:78:41:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:43:26 2025 by rpki-client