Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/66871f9cc9be4848ed9ed98fb3ee3a2cda86c3df.roa
File: 66871f9cc9be4848ed9ed98fb3ee3a2cda86c3df.roa (raw, json)
Hash identifier: WK6ckZYyQwulgplPhdyr65URtgbCgnaRxKYUKOHOlXE=
Subject key identifier: 3C:B9:01:56:12:1B:72:C8:D9:62:B4:77:AB:52:87:DB:ED:AF:0A:72
Certificate issuer: /CN=7aa34ce93acbfe70c4de64538dca0894b670f0d2
Certificate serial: 27B43C
Authority key identifier: 5F:85:D3:6E:A2:27:14:35:40:49:19:8D:ED:3B:94:16:27:FD:D5:35
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7aa34ce93acbfe70c4de64538dca0894b670f0d2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/66871f9cc9be4848ed9ed98fb3ee3a2cda86c3df.roa
Signing time: Tue 30 Jan 2024 04:02:48 +0000
ROA not before: Tue 30 Jan 2024 04:02:39 +0000
ROA not after: Fri 30 Jan 2026 04:02:39 +0000
asID: 6429
IP address blocks: 200.29.192.0/19 maxlen: 24
200.27.0.0/16 maxlen: 24
200.14.245.0/24 maxlen: 24
200.14.246.0/23 maxlen: 24
200.14.248.0/22 maxlen: 24
200.14.252.0/24 maxlen: 24
200.14.254.0/23 maxlen: 23
200.14.192.0/24 maxlen: 24
200.14.200.0/24 maxlen: 24
200.14.202.0/23 maxlen: 24
200.14.208.0/23 maxlen: 24
200.14.213.0/24 maxlen: 24
200.14.214.0/23 maxlen: 24
200.14.216.0/22 maxlen: 24
200.14.222.0/23 maxlen: 24
200.14.226.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2602044 (0x27b43c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aa34ce93acbfe70c4de64538dca0894b670f0d2
Validity
Not Before: Jan 30 04:02:39 2024 GMT
Not After : Jan 30 04:02:39 2026 GMT
Subject: CN=66871f9cc9be4848ed9ed98fb3ee3a2cda86c3df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ca:c3:9a:97:f5:14:16:a2:22:d3:f3:76:c7:
7b:25:61:7c:ab:24:ac:1a:3d:bd:c4:85:54:b6:6c:
9c:84:27:b0:56:d6:9f:4a:29:96:9a:75:aa:a2:ed:
cd:64:97:0e:2f:4c:6c:e4:57:90:a9:2e:da:6d:9b:
d8:75:8e:32:48:29:3c:e3:42:66:17:73:1f:2b:dd:
74:da:46:6c:1e:6c:a5:87:3f:1d:d7:7c:66:e4:a2:
39:80:a2:34:b6:34:fb:97:86:9f:8b:aa:48:6b:08:
5b:70:3b:22:f8:aa:db:bd:bb:9e:28:7f:29:c5:1e:
48:52:f6:d0:d3:6b:8c:2c:e0:42:c3:bd:aa:20:fe:
c4:ca:8e:b4:0b:fd:e7:4b:47:19:1d:2e:84:0a:2a:
39:55:92:17:96:02:5c:5a:20:28:df:33:b6:99:34:
d7:70:95:59:d2:b8:5e:2e:b1:cb:a1:11:5a:5a:cf:
b1:bc:41:42:bb:56:b0:a2:a3:53:e9:4d:11:05:6f:
25:99:04:c5:8a:cd:cd:89:3d:fc:2f:a2:03:7c:34:
40:9d:83:2d:76:1e:bb:ff:c4:b9:59:da:d1:bf:d3:
69:39:57:0d:4e:9f:04:9a:8c:7d:1b:9f:27:ef:b1:
e3:a4:f0:31:65:94:05:7d:b9:3b:1b:ef:00:00:cc:
24:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B9:01:56:12:1B:72:C8:D9:62:B4:77:AB:52:87:DB:ED:AF:0A:72
X509v3 Authority Key Identifier:
keyid:5F:85:D3:6E:A2:27:14:35:40:49:19:8D:ED:3B:94:16:27:FD:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7aa34ce93acbfe70c4de64538dca0894b670f0d2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/66871f9cc9be4848ed9ed98fb3ee3a2cda86c3df.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/e4e43743-cebb-4f29-956e-360d8d220f54/7aa34ce93acbfe70c4de64538dca0894b670f0d2.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.14.192.0/24
200.14.200.0/24
200.14.202.0/23
200.14.208.0/23
200.14.213.0-200.14.219.255
200.14.222.0/23
200.14.226.0/23
200.14.245.0-200.14.252.255
200.14.254.0/23
200.27.0.0/16
200.29.192.0/19
Signature Algorithm: sha256WithRSAEncryption
2a:2b:ac:ee:36:da:da:e6:e8:06:c3:ec:ed:e6:65:bd:3b:9a:
fb:be:96:59:e1:60:39:93:53:a4:6a:55:15:0d:53:77:f8:25:
53:1b:60:22:61:d4:2c:71:1b:9b:17:51:3b:6d:c0:1e:4f:61:
d2:d9:dc:6b:35:97:27:e5:f9:99:d3:2e:c9:f2:ff:c6:7b:e0:
60:33:34:51:e2:c2:e0:04:75:57:25:26:c9:46:2a:46:e4:a2:
a4:d6:86:31:b5:6d:43:78:4e:77:28:17:88:f4:64:90:8d:6d:
22:1d:2d:5b:bd:90:00:25:8b:ed:4a:ac:1d:68:09:83:cc:e7:
aa:a8:13:d4:06:3e:2a:1b:1b:bd:c9:a3:56:ab:4a:66:3b:10:
b6:f6:16:06:b7:64:1b:5a:ad:28:9d:bc:30:f7:84:80:e8:24:
f5:18:31:4d:d9:d6:bc:46:59:57:2b:ae:57:5d:d5:de:af:c7:
fb:91:65:c6:ce:0e:8e:df:71:d6:03:ad:42:15:5e:5e:1b:07:
69:e9:6c:40:b3:94:36:c9:bc:00:81:fc:c3:b2:18:72:09:f3:
ee:b3:29:af:2e:9c:33:3a:2f:a0:61:eb:63:54:a2:3f:c8:77:
be:99:20:b5:76:94:a8:55:84:1b:0c:54:cd:80:c8:9c:94:5c:
cb:65:e0:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:38 2024 by rpki-client on console-ams.rpki-client.org