Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a7caa4b1-1c6d-48ab-9405-96b5c18284c5/ad0202682bc5c4995b5cabf41423f534884c64a4.roa
File: ad0202682bc5c4995b5cabf41423f534884c64a4.roa (raw, json)
Hash identifier: C2GD1BDyb1By3EGyDZ+KqSPw3STY/MJgQGWlaf2gpgo=
Subject key identifier: AB:63:60:7E:12:FE:35:5D:62:88:AA:5A:CA:85:9F:F6:49:64:25:14
Certificate issuer: /CN=f0b0fcc180bba84bf5319f1223a5e1cfe1b1a47e
Certificate serial: 2975FB
Authority key identifier: 87:F8:D4:35:76:20:56:6B:10:27:8C:92:DC:36:C0:19:51:36:F4:1C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f0b0fcc180bba84bf5319f1223a5e1cfe1b1a47e.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/a7caa4b1-1c6d-48ab-9405-96b5c18284c5/ad0202682bc5c4995b5cabf41423f534884c64a4.roa
Signing time: Tue 26 Mar 2024 19:27:49 +0000
ROA not before: Tue 26 Mar 2024 19:27:49 +0000
ROA not after: Thu 26 Mar 2026 19:27:49 +0000
asID: 14187
IP address blocks: 200.47.216.0/22 maxlen: 24
201.220.32.0/19 maxlen: 24
200.85.224.0/19 maxlen: 24
200.47.172.0/22 maxlen: 24
2800:1d0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2717179 (0x2975fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0b0fcc180bba84bf5319f1223a5e1cfe1b1a47e
Validity
Not Before: Mar 26 19:27:49 2024 GMT
Not After : Mar 26 19:27:49 2026 GMT
Subject: CN=ad0202682bc5c4995b5cabf41423f534884c64a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:91:29:9d:a9:a4:8f:13:1f:e0:a8:df:83:b6:
95:01:aa:fe:3c:51:18:db:02:50:c0:da:7f:17:5e:
9b:8a:f8:2a:25:3a:80:d9:38:e4:23:1e:53:82:36:
76:76:bc:ee:bf:ca:e6:d0:87:e0:40:0d:1e:3e:00:
ce:3f:7b:5f:02:84:bf:c3:1d:f2:78:e7:25:1d:8b:
a0:0f:86:7c:b6:47:16:9d:d6:50:df:60:3d:77:8d:
96:4f:59:53:cf:85:c5:12:83:d2:0a:0b:2b:fb:96:
d3:34:32:4c:d0:c9:49:4a:eb:8c:aa:c1:d2:4d:ab:
bb:a1:dc:98:6a:b4:c7:ae:32:ec:13:65:ca:4d:d9:
f9:a1:08:a6:54:23:5e:00:24:2f:37:53:4b:39:b6:
2f:48:74:95:bb:75:db:b4:b4:60:60:a2:f6:96:e7:
4d:31:e3:6d:16:77:fe:75:30:92:72:a2:5f:a2:f3:
c6:c7:0e:ba:e3:9b:b4:4c:19:cf:d1:9a:8e:a7:b9:
c1:92:7f:84:ab:c1:34:aa:ac:a5:8b:af:66:78:14:
d1:bc:91:8d:ea:c9:90:2c:c9:db:09:f8:d5:50:70:
78:ba:8a:53:34:c4:df:e4:41:e5:65:35:6f:23:eb:
36:7c:d0:93:92:50:13:b0:a6:34:84:3a:b6:fd:dd:
5b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:63:60:7E:12:FE:35:5D:62:88:AA:5A:CA:85:9F:F6:49:64:25:14
X509v3 Authority Key Identifier:
keyid:87:F8:D4:35:76:20:56:6B:10:27:8C:92:DC:36:C0:19:51:36:F4:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f0b0fcc180bba84bf5319f1223a5e1cfe1b1a47e.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a7caa4b1-1c6d-48ab-9405-96b5c18284c5/ad0202682bc5c4995b5cabf41423f534884c64a4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/a7caa4b1-1c6d-48ab-9405-96b5c18284c5/f0b0fcc180bba84bf5319f1223a5e1cfe1b1a47e.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.47.172.0/22
200.47.216.0/22
200.85.224.0/19
201.220.32.0/19
IPv6:
2800:1d0::/32
Signature Algorithm: sha256WithRSAEncryption
af:cd:46:e2:ef:8d:d6:c1:f7:4c:07:2f:da:b9:71:34:03:93:
1f:b8:64:72:63:01:87:6b:ab:4c:25:4f:64:81:1f:ea:6a:42:
0e:24:85:c6:7d:42:7a:d8:3c:1e:b5:71:8b:11:72:3f:00:62:
aa:27:ab:fb:8a:d9:02:23:fb:81:23:90:c3:1a:ed:a2:86:4b:
f8:b1:3a:50:e6:d6:b8:60:e1:ef:e4:65:a5:e1:c7:b3:95:e6:
a1:65:47:d3:5e:0e:3b:d2:6a:3a:5b:5e:27:4d:5b:29:5a:64:
63:05:02:09:5b:43:93:17:ef:c8:be:5f:a3:8b:9c:1c:b7:43:
e4:ac:33:b8:45:b9:4c:95:49:3b:40:bc:6e:68:72:83:0e:3e:
3d:21:c1:32:88:fc:e2:ff:26:98:c0:86:d6:25:be:4a:d3:27:
18:59:96:92:79:64:c9:10:dc:c3:1d:3a:dd:14:5c:74:69:81:
a9:97:30:ea:c1:b9:7d:23:e4:ee:df:3d:68:08:d7:9f:46:b7:
cb:21:48:d0:91:b1:11:ed:de:b4:33:4f:7a:84:22:a5:a6:82:
ec:9a:88:be:1a:d4:7c:3a:37:6d:e0:56:29:c0:35:97:aa:55:
33:90:a7:bb:db:23:92:ba:a5:2a:4e:9c:9c:08:21:1c:d2:fe:
4b:54:ee:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:00 2024 by rpki-client on console-fra.rpki-client.org