Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c0edfb24-be89-4e67-ae08-dd7edc5666ea/7e77aec2106a6251f03fe1ea9d705ed5da84d57a.roa
File: 7e77aec2106a6251f03fe1ea9d705ed5da84d57a.roa (raw, json)
Hash identifier: 0jnLff+jmUe1gbv5NdgcqtISCQDCSeBrrovdHm1+5fQ=
Subject key identifier: 25:F3:6E:CB:94:4D:BF:86:73:8F:E1:B1:85:53:20:D0:E4:11:A2:54
Certificate issuer: /CN=3070426b746ffaf94407f39e1e550bba97179b09
Certificate serial: 1A2C44
Authority key identifier: 4B:07:95:9B:1B:BB:5F:F3:F5:C4:7D:C6:6C:33:B9:37:3B:FC:EF:27
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3070426b746ffaf94407f39e1e550bba97179b09.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c0edfb24-be89-4e67-ae08-dd7edc5666ea/7e77aec2106a6251f03fe1ea9d705ed5da84d57a.roa
Signing time: Fri 18 Aug 2023 16:12:35 +0000
ROA not before: Thu 17 Aug 2023 16:12:35 +0000
ROA not after: Mon 18 Aug 2025 16:12:35 +0000
asID: 265540
IP address blocks: 190.123.40.0/22 maxlen: 24
200.63.40.0/21 maxlen: 24
192.141.244.0/22 maxlen: 24
2806:2f4::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1715268 (0x1a2c44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3070426b746ffaf94407f39e1e550bba97179b09
Validity
Not Before: Aug 17 16:12:35 2023 GMT
Not After : Aug 18 16:12:35 2025 GMT
Subject: CN=7e77aec2106a6251f03fe1ea9d705ed5da84d57a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:61:0f:e7:aa:7c:0a:0b:4a:60:3a:f5:a2:b4:
e8:fd:f3:45:f1:00:5e:eb:e3:73:39:5e:2a:4a:b7:
6e:47:94:66:30:28:a8:d7:cd:ab:4f:e9:eb:17:50:
d7:f7:98:16:44:d1:0d:fa:49:72:a5:ac:b7:56:bd:
63:b1:c0:87:8b:22:84:bf:76:81:b0:1c:99:6e:cf:
35:e1:12:be:9f:71:4a:19:32:b9:b7:7a:ce:94:88:
27:fa:b6:77:02:ed:69:b4:f8:e7:9f:61:74:a6:3d:
14:b8:ec:b6:da:ea:81:f2:b5:98:ef:45:57:da:70:
a3:01:64:1e:61:dc:73:94:73:d5:f4:ba:04:a5:2a:
52:b5:9b:95:e0:24:22:07:bf:7b:55:e5:ff:2f:b9:
b2:72:50:ff:ed:49:58:6e:d3:28:95:04:19:cf:6f:
02:74:e1:ca:15:06:71:58:0c:d1:b5:f5:86:25:40:
b8:0e:f8:d9:94:3f:fe:03:58:ce:e9:d8:9c:51:4a:
50:e0:0d:12:6e:4f:3f:a4:f8:c6:3a:28:a7:00:a3:
55:db:9b:be:1b:d1:4e:a0:d6:69:bc:39:97:16:98:
2b:42:4d:a5:ae:14:cf:0f:01:ec:88:46:96:d2:9c:
8e:b5:66:c0:67:ef:c6:b4:b8:d6:d7:89:51:7f:69:
b0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F3:6E:CB:94:4D:BF:86:73:8F:E1:B1:85:53:20:D0:E4:11:A2:54
X509v3 Authority Key Identifier:
keyid:4B:07:95:9B:1B:BB:5F:F3:F5:C4:7D:C6:6C:33:B9:37:3B:FC:EF:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3070426b746ffaf94407f39e1e550bba97179b09.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c0edfb24-be89-4e67-ae08-dd7edc5666ea/7e77aec2106a6251f03fe1ea9d705ed5da84d57a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c0edfb24-be89-4e67-ae08-dd7edc5666ea/3070426b746ffaf94407f39e1e550bba97179b09.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.123.40.0/22
192.141.244.0/22
200.63.40.0/21
IPv6:
2806:2f4::/32
Signature Algorithm: sha256WithRSAEncryption
95:2e:2a:0d:9f:46:e7:7b:ab:c2:04:f4:ba:a3:74:80:94:85:
74:26:50:5d:a8:da:a9:a6:95:65:52:0e:24:fa:8d:f4:cb:bf:
b6:a3:ef:98:df:79:0d:96:cd:1a:93:47:5d:dd:5b:5c:64:64:
25:65:23:a4:9a:c2:19:e9:8f:2d:4e:a7:94:b7:cb:33:a5:ad:
cd:c7:12:f8:45:d9:b6:34:60:eb:9d:53:7f:1e:0a:d1:87:0b:
8d:59:b7:89:0a:af:59:16:d6:65:5e:0e:6d:1c:a9:f8:c4:04:
51:d2:95:e0:bf:0e:72:78:ec:ce:57:7f:d2:50:a2:f2:8a:d3:
3d:08:2a:ef:c8:53:71:e3:6d:db:1d:b3:19:99:76:ea:dc:67:
83:84:1a:e8:d8:aa:85:fe:d2:ed:12:bf:96:a9:53:be:fa:97:
de:b8:17:eb:e5:fe:ec:b4:cc:cd:4c:5f:85:85:e0:86:8a:50:
61:61:d2:e1:56:64:fd:61:6f:b5:5e:01:3a:c4:e3:2e:a0:5e:
3a:09:f4:e5:e8:bd:a6:c4:1a:5a:99:80:f2:03:aa:73:00:4a:
0c:25:07:b3:7f:91:bf:40:4d:70:c5:8c:c6:c7:d8:7e:91:b9:
51:bf:35:de:58:89:48:a3:e2:75:d9:13:16:b3:bf:a8:ae:7b:
94:e3:45:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:30 2024 by rpki-client on console-fra.rpki-client.org