Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/e292cf36-d052-443b-ac4b-7b4ba73bc218/b23bfe12fc10c2cddff7f2ceadffcd740a28c07c.roa
File: b23bfe12fc10c2cddff7f2ceadffcd740a28c07c.roa (raw, json)
Hash identifier: pP4Nteg61aWqevnYftaTig/OlstFZM/8jeC5+AGwYXw=
Subject key identifier: E0:63:AE:49:98:09:76:F7:4D:4A:EA:0D:3E:AF:92:10:16:B5:CA:8F
Certificate issuer: /CN=8174f9e0234527f23fb0bcfd7cea896897ec3191
Certificate serial: 0A510B
Authority key identifier: FD:9C:B9:83:74:37:2D:36:5A:88:25:24:4D:C8:2A:CE:E1:EE:26:0A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8174f9e0234527f23fb0bcfd7cea896897ec3191.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/e292cf36-d052-443b-ac4b-7b4ba73bc218/b23bfe12fc10c2cddff7f2ceadffcd740a28c07c.roa
Signing time: Wed 29 Mar 2023 12:48:01 +0000
ROA not before: Tue 28 Mar 2023 12:47:32 +0000
ROA not after: Sat 29 Mar 2025 12:47:32 +0000
asID: 12684
IP address blocks: 200.47.140.0/22 maxlen: 24
200.47.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 676107 (0xa510b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8174f9e0234527f23fb0bcfd7cea896897ec3191
Validity
Not Before: Mar 28 12:47:32 2023 GMT
Not After : Mar 29 12:47:32 2025 GMT
Subject: CN=b23bfe12fc10c2cddff7f2ceadffcd740a28c07c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ed:5d:67:41:7f:db:db:c9:53:f9:c3:5a:ba:
e3:fd:49:27:de:b7:aa:88:f5:87:f8:1c:2d:c5:1a:
1b:35:41:a7:80:0a:ac:8c:bf:46:54:2c:95:e8:b1:
34:0a:c2:55:b9:e8:b8:ab:35:78:ab:35:41:6f:f5:
bd:74:e5:5b:95:4b:1f:c1:69:9d:37:70:0a:b9:89:
04:61:24:c5:84:77:99:d9:37:7a:b2:a9:19:fb:d7:
f9:f1:8a:87:2e:40:d1:c5:db:cf:98:a1:b3:18:71:
25:3e:38:28:ae:14:9b:53:63:1c:44:0c:ae:c9:a5:
a3:3d:93:67:88:cb:a4:d0:ce:56:33:65:5b:b3:04:
91:c5:c6:6b:a9:63:e6:f5:bc:50:0e:de:60:42:43:
15:41:72:e6:f5:ce:68:e8:a1:52:15:a0:d9:be:59:
da:15:28:77:45:92:35:1c:02:5b:da:c1:78:3c:48:
5e:22:f8:8d:72:19:ee:e2:c3:c9:a6:e5:76:5e:b4:
42:a1:db:3e:88:80:51:0a:87:9d:59:1c:f8:ba:91:
1d:18:25:2b:89:94:98:39:7c:b0:d4:97:53:2d:0f:
40:52:4c:51:f4:6b:78:26:b9:35:b3:fc:a8:52:cc:
d1:4d:b9:07:90:7f:81:f1:09:63:bd:d8:ca:af:80:
4c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:63:AE:49:98:09:76:F7:4D:4A:EA:0D:3E:AF:92:10:16:B5:CA:8F
X509v3 Authority Key Identifier:
keyid:FD:9C:B9:83:74:37:2D:36:5A:88:25:24:4D:C8:2A:CE:E1:EE:26:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8174f9e0234527f23fb0bcfd7cea896897ec3191.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/e292cf36-d052-443b-ac4b-7b4ba73bc218/b23bfe12fc10c2cddff7f2ceadffcd740a28c07c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/e292cf36-d052-443b-ac4b-7b4ba73bc218/8174f9e0234527f23fb0bcfd7cea896897ec3191.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.47.140.0/22
200.47.180.0/22
Signature Algorithm: sha256WithRSAEncryption
81:c6:58:7e:9e:99:cc:af:37:a9:c7:b7:c5:a5:b7:41:fd:fb:
35:63:18:5c:d3:03:13:7f:38:32:a8:59:ca:27:41:5a:66:c5:
18:7e:ab:e9:dd:f7:cc:15:45:5f:73:2a:52:81:9e:2f:d5:ad:
23:a3:b5:21:ef:c4:db:f9:bc:28:9b:31:e8:9b:57:1b:47:95:
4d:2f:d8:28:e9:93:a6:6e:3b:24:8c:6c:25:f2:fd:42:4c:90:
62:2f:73:8d:ee:22:d2:02:5d:e3:7d:9f:f9:79:d2:4c:29:af:
96:eb:28:e2:a1:0a:ad:88:6c:55:74:e6:61:40:99:6f:57:0d:
68:ac:cf:46:48:1b:db:79:89:ea:b1:fd:90:cb:85:bb:4d:c9:
00:1f:6a:e9:c1:45:19:6d:1d:48:26:ae:7a:eb:ab:b6:a8:cf:
55:e4:b5:0d:31:73:20:b2:d4:d1:58:8e:ad:f3:09:61:0d:ca:
bb:7d:a0:5a:a3:7b:7c:c3:82:56:d5:c5:3a:cc:c2:ac:03:9f:
03:b4:04:a6:62:8e:1f:2c:fc:26:13:57:23:fc:02:e8:de:cb:
1a:9c:ee:1e:d3:29:1a:1b:91:7b:23:79:c8:21:95:c3:4f:5f:
55:b7:f1:09:1b:d7:d9:a5:21:09:e3:7d:44:57:ba:8c:72:21:
05:f9:29:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:09 2024 by rpki-client on console-fra.rpki-client.org