Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27812.roa
File: AS27812.roa (raw, json)
Hash identifier: ldJBtuYznxw2et3l9++C4rFTKPwy0UW6DCtp32NGu8M=
Subject key identifier: B8:48:6A:12:CC:B3:2E:E3:C2:2F:4B:1F:21:AB:57:88:48:0D:0F:EB
Certificate issuer: /CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Certificate serial: 1CC5B808C68F2A2C6DB3046A0250C2B68994FC06
Authority key identifier: 5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27812.roa
Signing time: Tue 04 Feb 2025 18:02:41 +0000
ROA not before: Tue 04 Feb 2025 17:57:41 +0000
ROA not after: Tue 03 Feb 2026 18:02:41 +0000
asID: 27812
IP address blocks: 201.218.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:c5:b8:08:c6:8f:2a:2c:6d:b3:04:6a:02:50:c2:b6:89:94:fc:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Validity
Not Before: Feb 4 17:57:41 2025 GMT
Not After : Feb 3 18:02:41 2026 GMT
Subject: CN=B8486A12CCB32EE3C22F4B1F21AB5788480D0FEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:96:0c:d7:86:b5:86:b1:6f:ff:f2:40:0d:5f:
b3:fd:2d:8a:fd:85:5f:58:3d:45:89:e2:80:4c:e4:
65:25:18:ee:fb:9b:4e:23:2b:24:ea:a7:5b:81:53:
a3:04:c5:83:bd:72:7c:32:a0:c7:2d:50:65:d7:f3:
87:fd:69:7a:82:b0:49:3f:60:1a:05:93:7f:12:44:
47:b2:0d:16:ff:29:2b:80:69:4a:ea:a9:22:ba:3a:
98:b9:de:f9:f0:60:35:d8:6b:b6:d5:24:49:a8:0a:
f0:be:ed:b9:44:a8:49:c4:e0:79:02:0d:09:ab:15:
40:a0:f9:95:90:04:d6:d5:e7:b5:8f:25:72:d4:b2:
74:26:a4:73:0d:37:b9:92:7f:50:bd:e7:63:39:51:
92:1e:98:57:80:3a:c1:aa:9d:a6:78:eb:b3:cf:b8:
f1:4f:33:01:41:bd:aa:36:d8:84:03:8f:1f:fd:4e:
69:75:81:a4:9d:32:cf:6b:4f:55:57:f3:e8:67:dd:
10:5c:2a:b9:e6:93:ef:7c:58:6b:15:73:12:d7:c8:
17:98:6a:24:61:e7:48:32:b1:0e:4c:95:9e:b1:5c:
74:0f:b4:04:0d:3e:72:89:a4:12:f4:e8:f2:30:57:
11:1c:57:15:51:46:af:ff:a0:56:2c:78:fa:25:60:
cd:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:48:6A:12:CC:B3:2E:E3:C2:2F:4B:1F:21:AB:57:88:48:0D:0F:EB
X509v3 Authority Key Identifier:
keyid:5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27812.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.218.192.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:13:69:8d:47:97:c6:72:08:a8:f8:a7:ef:32:5d:53:60:e3:
a9:24:23:28:1e:38:21:b7:14:ae:4d:bc:07:4b:f5:0a:62:c5:
0c:dc:cd:16:c8:4a:f1:c2:e0:5d:7a:e7:42:fd:b3:29:9e:c2:
aa:a0:62:2e:8d:ec:71:ea:cc:a0:95:04:58:5a:d1:5c:8b:95:
da:e8:86:9a:84:73:8f:62:09:0f:b6:90:81:1d:c0:f7:96:29:
c1:a0:b8:2e:47:7f:ab:3c:02:63:c6:e7:c9:f7:97:e1:d7:17:
2b:4d:93:ef:48:10:82:e5:68:da:12:4a:dc:be:53:1f:d6:30:
47:59:bc:fb:7d:7b:a8:03:26:c4:95:76:b2:ce:80:12:4b:b9:
94:0f:c8:9c:da:aa:a9:76:9e:e1:7d:48:10:1f:a8:55:fb:b2:
62:af:63:90:e2:ef:3e:31:40:59:5c:19:5f:4d:40:dc:35:c6:
bf:1b:63:2f:29:8d:31:63:97:48:11:08:17:85:99:e0:30:e1:
ee:32:db:b8:86:93:d4:7f:51:9e:25:1b:52:d1:98:33:20:64:
fe:de:3e:be:6e:0e:d5:f1:cc:68:b4:76:59:a6:eb:2b:00:d6:
3a:27:fd:4e:bc:35:8d:2f:71:22:9b:5e:f2:09:0f:96:82:dc:
54:c2:8f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:59:35 2025 by rpki-client