Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/204c5b92fbf0d04c25dc33850e4c88c93e1b7354.roa
File: 204c5b92fbf0d04c25dc33850e4c88c93e1b7354.roa (raw, json)
Hash identifier: 7D7pYK3zW2klzP8RIOywQ65OOPDn92OjVad60t9pk1I=
Subject key identifier: 20:C7:AD:B6:A0:95:BA:EA:36:99:0C:DA:F6:7D:FE:EF:EF:86:C8:FB
Certificate issuer: /CN=7aa34ce93acbfe70c4de64538dca0894b670f0d2
Certificate serial: 279D37
Authority key identifier: 5F:85:D3:6E:A2:27:14:35:40:49:19:8D:ED:3B:94:16:27:FD:D5:35
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7aa34ce93acbfe70c4de64538dca0894b670f0d2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/204c5b92fbf0d04c25dc33850e4c88c93e1b7354.roa
Signing time: Tue 30 Jan 2024 04:02:42 +0000
ROA not before: Tue 30 Jan 2024 04:02:39 +0000
ROA not after: Fri 30 Jan 2026 04:02:39 +0000
asID: 6535
IP address blocks: 200.29.200.0/21 maxlen: 21
200.14.204.0/24 maxlen: 24
200.14.211.0/24 maxlen: 24
200.27.128.0/24 maxlen: 24
200.14.228.0/23 maxlen: 24
200.14.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2596151 (0x279d37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aa34ce93acbfe70c4de64538dca0894b670f0d2
Validity
Not Before: Jan 30 04:02:39 2024 GMT
Not After : Jan 30 04:02:39 2026 GMT
Subject: CN=204c5b92fbf0d04c25dc33850e4c88c93e1b7354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:52:0e:a7:86:19:f2:ad:42:27:db:4e:89:a3:
e9:e2:87:95:c3:81:b8:ef:3a:eb:3d:c3:d8:a8:c9:
9e:f9:83:d1:9b:67:d2:be:ab:59:ba:28:07:e1:97:
84:98:57:e1:3e:51:f0:3b:8b:c5:e0:ab:d2:26:58:
eb:50:29:88:03:af:bb:cc:d3:a4:22:e8:75:3f:22:
50:1e:46:70:dc:99:92:e6:60:65:f4:64:9a:83:92:
62:97:9e:ec:3f:e7:1e:46:c2:10:14:51:a0:a0:49:
2c:39:6f:4a:59:29:54:00:58:52:05:7e:46:19:c9:
0b:2d:17:88:a2:a1:6a:2c:60:fb:26:26:f1:e1:34:
a8:ea:b1:33:f7:3a:db:17:0a:f8:76:77:ba:ac:1b:
20:82:ae:3a:d4:01:4c:e3:8e:a4:16:2d:bb:51:ee:
6c:57:f8:46:a7:7e:52:a4:92:be:c7:63:75:3e:79:
a3:0b:7c:27:cb:e1:de:7d:cb:16:54:cc:be:c7:32:
24:1a:db:2c:8d:63:33:9e:f9:2b:b9:a1:a8:69:5b:
66:28:f3:ae:b3:9e:d6:f5:7b:62:a0:bb:9c:03:a2:
f2:4b:bf:e6:ae:26:b1:54:ce:5a:14:b5:6e:e3:96:
ed:4e:19:a9:de:c2:30:a3:30:91:0d:c1:09:ce:d0:
db:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C7:AD:B6:A0:95:BA:EA:36:99:0C:DA:F6:7D:FE:EF:EF:86:C8:FB
X509v3 Authority Key Identifier:
keyid:5F:85:D3:6E:A2:27:14:35:40:49:19:8D:ED:3B:94:16:27:FD:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7aa34ce93acbfe70c4de64538dca0894b670f0d2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/204c5b92fbf0d04c25dc33850e4c88c93e1b7354.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/7aa34ce93acbfe70c4de64538dca0894b670f0d2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.14.204.0/24
200.14.211.0/24
200.14.228.0-200.14.230.255
200.27.128.0/24
200.29.200.0/21
Signature Algorithm: sha256WithRSAEncryption
38:da:7a:5f:b2:e1:0e:62:5e:b2:cf:8e:7e:c7:ad:20:89:66:
73:97:ac:47:2c:cb:ce:6c:f7:ca:79:a3:b9:8e:26:fd:40:ce:
21:9b:d6:cd:4a:c3:cd:7d:b4:b7:61:80:4d:0f:23:08:27:9d:
ce:55:a0:bf:30:7c:19:b7:7c:4e:9f:bf:ab:6b:7a:40:79:69:
aa:bb:b2:62:ac:82:df:54:dc:96:1b:9d:fc:a0:f0:2d:17:63:
dc:5d:87:2a:82:d6:79:9b:22:e3:b5:41:18:c6:c2:ec:31:5d:
e2:9a:dc:0f:62:9f:ec:96:8c:62:68:fc:ef:3c:db:57:57:cf:
8b:82:7b:ee:f3:ea:23:e9:f2:12:bb:10:50:2a:f4:63:89:84:
0c:4d:9f:7a:4a:17:c4:03:4e:c9:27:8e:ad:9b:0b:ae:e7:8f:
45:b4:b4:44:47:da:66:dc:3d:16:55:e7:43:b0:51:e4:e2:9f:
d8:c4:9b:26:21:36:1b:1e:c4:f5:4c:78:a9:60:61:fc:95:c1:
a6:cb:d2:74:1a:4a:a9:52:c3:58:d4:08:d8:f1:71:b1:bc:d6:
fe:5c:d0:ad:48:78:78:a4:fd:29:c2:6a:d1:9a:40:41:99:11:
24:a8:2a:51:42:8c:59:13:bb:f8:5f:73:52:d2:ec:f0:ce:34:
e5:1a:ff:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:38 2024 by rpki-client on console-ams.rpki-client.org