Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27944.roa
File: AS27944.roa (raw, json)
Hash identifier: ggBy6+RlHHk7OdIYOJIIRczZ/R7gA6rjbuXVBUxRGK0=
Subject key identifier: 21:8D:A1:70:A9:57:4C:65:CE:77:70:67:4E:7A:E5:15:0C:EC:04:A0
Certificate issuer: /CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Certificate serial: 0524C6D496BA286486D39128C9B1339A929D76DC
Authority key identifier: 5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27944.roa
Signing time: Tue 04 Feb 2025 18:02:47 +0000
ROA not before: Tue 04 Feb 2025 17:57:47 +0000
ROA not after: Tue 03 Feb 2026 18:02:47 +0000
asID: 27944
IP address blocks: 201.218.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:24:c6:d4:96:ba:28:64:86:d3:91:28:c9:b1:33:9a:92:9d:76:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Validity
Not Before: Feb 4 17:57:47 2025 GMT
Not After : Feb 3 18:02:47 2026 GMT
Subject: CN=218DA170A9574C65CE7770674E7AE5150CEC04A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:47:6c:31:04:53:78:fe:b1:4a:70:2a:34:1b:
d6:9e:0e:b5:2a:c9:4d:1c:20:63:1f:5c:bf:ee:ad:
03:f3:d4:2d:a9:11:50:5b:ed:69:7f:b9:62:ff:e1:
b2:35:49:11:c5:29:e4:be:e7:79:bf:bf:4d:bb:74:
e6:63:d6:4d:3f:40:a1:60:70:ef:7e:f4:d5:f2:24:
65:e6:9f:3e:db:dd:e1:b7:1a:1b:09:b7:8f:5e:76:
58:77:e1:21:f9:f3:12:16:72:17:e3:bc:49:a6:25:
1c:66:e5:73:da:79:3a:04:4f:e3:b7:5c:3b:38:d5:
7b:21:8d:7c:3b:f0:37:ee:56:a5:32:b1:95:84:d8:
fd:fb:1e:87:2e:90:ab:f3:55:dd:62:24:f9:7b:4f:
22:78:05:d9:3c:9f:80:7d:9b:18:c5:4f:fa:2b:0b:
52:a6:30:0d:88:d2:ad:36:c2:d3:23:d1:04:88:8e:
f2:ab:ba:19:b6:fa:25:42:fe:c4:37:05:3b:38:9d:
36:9b:6b:32:34:08:c7:d9:86:06:71:fd:da:8d:b8:
bb:24:4a:09:a5:a3:3b:fa:f0:06:7d:60:75:ca:d2:
68:62:eb:e6:f6:d5:f4:52:af:81:20:6a:3f:1e:1d:
6f:29:52:a0:c0:31:9c:8b:38:35:3e:71:70:c4:cc:
92:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8D:A1:70:A9:57:4C:65:CE:77:70:67:4E:7A:E5:15:0C:EC:04:A0
X509v3 Authority Key Identifier:
keyid:5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27944.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.218.240.0/24
Signature Algorithm: sha256WithRSAEncryption
07:e9:16:21:ac:85:d5:aa:ea:49:a8:b5:4e:6b:6c:a5:83:d9:
6f:19:21:60:64:6e:23:07:e3:70:ca:05:9f:b9:cc:2f:62:92:
2f:4a:9c:2d:35:44:3d:48:1f:17:39:47:80:09:be:37:4a:8a:
19:22:b1:85:f4:a8:cb:76:fb:4d:b5:91:90:16:84:bc:f8:85:
7b:07:66:e6:b9:ff:bf:dd:bb:22:19:77:a4:16:ac:b3:5c:85:
31:fc:1e:00:dd:f2:c6:f2:5f:ff:a5:99:b3:48:3d:9d:d0:95:
95:81:ef:07:1e:f5:2c:e1:9c:56:52:d0:ee:8e:66:7f:18:96:
bf:58:ee:16:98:e0:a2:f7:40:b2:fe:74:d6:c8:68:4b:84:a1:
8e:6a:59:0f:2c:d2:1c:d0:87:0b:3e:4b:43:4d:a3:9b:37:1d:
18:74:7d:7a:3a:51:9f:35:0a:d7:43:99:83:86:b1:2b:89:86:
e6:8f:f4:76:a5:32:bf:cf:f6:3c:7a:81:20:50:36:35:48:67:
18:9c:9c:ac:b3:a3:d2:b1:70:23:85:64:58:1f:12:5b:c1:ff:
11:91:f2:50:0d:35:6d:e8:42:bf:13:f0:03:b8:57:70:58:f6:
60:c5:7b:98:e3:12:26:84:15:91:a5:41:6c:9e:38:c2:7c:81:
c1:a6:a3:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:31 2025 by rpki-client