Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS28031.roa
File: AS28031.roa (raw, json)
Hash identifier: zCJrMXcNSxJphPaQLL4CotzV+/sm89dGEMcyxtStHaE=
Subject key identifier: BC:38:C8:AD:C9:E6:0F:A7:82:CF:BF:25:6E:62:79:BE:A2:62:CA:F9
Certificate issuer: /CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Certificate serial: 05F75730025D0B55233E1286809C62794483EAD5
Authority key identifier: 5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS28031.roa
Signing time: Tue 04 Feb 2025 18:02:42 +0000
ROA not before: Tue 04 Feb 2025 17:57:42 +0000
ROA not after: Tue 03 Feb 2026 18:02:42 +0000
asID: 28031
IP address blocks: 201.218.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:f7:57:30:02:5d:0b:55:23:3e:12:86:80:9c:62:79:44:83:ea:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Validity
Not Before: Feb 4 17:57:42 2025 GMT
Not After : Feb 3 18:02:42 2026 GMT
Subject: CN=BC38C8ADC9E60FA782CFBF256E6279BEA262CAF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4a:05:4c:94:5b:10:b5:e0:2e:b8:fb:7c:c6:
27:24:0a:ac:db:60:41:d7:0b:a1:6f:7c:58:75:e7:
35:85:86:21:1a:ed:aa:8d:9a:f5:20:92:57:1c:fb:
9d:7e:f1:c1:e7:91:e1:dd:0e:0c:42:78:61:be:08:
07:d1:d1:e4:03:c8:65:81:a3:d6:f2:ef:47:47:9f:
f2:a3:98:57:22:f5:ae:ba:6c:fe:f3:63:f7:73:a5:
69:33:ee:24:00:97:d6:a1:30:14:ea:17:e5:0a:6f:
ef:98:18:ca:e6:be:42:84:01:2e:4a:15:66:46:29:
4a:f7:bb:75:00:70:ce:02:26:10:ff:47:16:b6:90:
1f:8f:77:1e:b6:7b:2d:26:55:20:c9:66:9c:47:b6:
16:f3:9c:ed:b3:32:00:4e:56:98:0e:68:0a:17:a5:
85:59:39:59:fd:df:4b:73:32:a5:58:d5:f3:c7:cb:
34:04:a3:30:b2:52:9a:ac:35:99:fc:c9:67:5b:6d:
d1:12:53:fa:93:f2:15:21:64:eb:65:f6:c3:c0:cf:
e3:02:c3:71:de:19:56:b9:30:97:00:18:35:26:9a:
08:03:8f:d7:d2:25:77:72:c6:75:e6:23:d3:ee:d0:
3e:0d:d9:5a:2f:f4:b4:f3:14:a5:c6:2f:d9:c6:56:
5e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:38:C8:AD:C9:E6:0F:A7:82:CF:BF:25:6E:62:79:BE:A2:62:CA:F9
X509v3 Authority Key Identifier:
keyid:5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS28031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.218.212.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:64:e8:e6:9c:f5:ce:b4:b2:11:4c:36:c8:d5:d4:9f:5d:fc:
70:25:a2:d9:e4:c6:9f:60:e4:c2:9e:86:a1:12:5f:ab:03:50:
fc:f6:d4:ae:6f:14:d4:55:58:c9:3f:52:6c:48:58:bf:97:53:
f4:a5:db:56:51:04:3f:bd:fb:55:4d:58:67:d3:7f:ba:61:14:
cc:ef:d0:d4:a1:1f:72:df:21:f1:49:5c:57:02:c8:f5:c6:2f:
b2:6f:85:94:5f:01:d6:33:2b:5a:f2:13:df:4f:9d:b2:29:08:
a8:a3:b9:b8:91:c9:c7:b8:62:23:05:03:3b:6d:6a:82:34:76:
c3:7f:75:62:5f:fb:f3:97:3f:67:7d:85:78:f5:aa:4e:26:f2:
5f:e3:e1:73:4e:88:99:71:0f:33:f7:02:f5:3c:f5:5d:c6:f7:
ff:9a:46:28:b0:97:f0:7a:15:1a:eb:14:da:50:b6:bc:0d:04:
97:19:11:b4:fd:96:55:b5:cb:4f:05:93:33:cd:1c:d2:f6:a3:
f5:d1:dd:ea:e2:3d:e4:ff:a5:70:ee:d9:2e:ee:a9:e5:3d:95:
49:b1:83:ba:7e:b0:50:2a:ae:a9:be:36:33:2b:e9:02:b5:37:
fc:42:ec:85:3d:f5:a4:9c:32:10:a5:86:e2:fc:7b:37:03:1e:
69:d5:37:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:42:40 2025 by rpki-client