Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS19905.roa
File: AS19905.roa (raw, json)
Hash identifier: rX2zX5/wHc+80VIdLwFbyYv/M8F4DZ1vgcGnCKUs4bc=
Subject key identifier: AF:F8:61:BD:C3:B4:AC:32:C3:46:CC:C8:6E:BE:00:E4:88:8C:9D:FF
Certificate issuer: /CN=55E5523033B41B7E990D9D490339137189366F33
Certificate serial: 437FCBC70E8465E7B02A9E5DCC76ED93FCEDD7B7
Authority key identifier: 55:E5:52:30:33:B4:1B:7E:99:0D:9D:49:03:39:13:71:89:36:6F:33
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS19905.roa
Signing time: Wed 29 Jan 2025 17:35:00 +0000
ROA not before: Wed 29 Jan 2025 17:30:00 +0000
ROA not after: Wed 28 Jan 2026 17:35:00 +0000
asID: 19905
IP address blocks: 200.23.1.0/24 maxlen: 24
200.23.179.0/24 maxlen: 24
200.34.22.0/24 maxlen: 24
200.94.180.0/24 maxlen: 24
200.94.181.0/24 maxlen: 24
201.131.248.0/24 maxlen: 24
201.131.249.0/24 maxlen: 24
201.131.250.0/24 maxlen: 24
201.131.251.0/24 maxlen: 24
207.248.64.0/24 maxlen: 24
207.248.65.0/24 maxlen: 24
2001:1250::/44 maxlen: 44
2001:1250:10::/44 maxlen: 44
2001:1250:1000::/44 maxlen: 44
2001:1250:2000::/44 maxlen: 44
2001:1250:3000::/44 maxlen: 44
2001:1250:a000::/44 maxlen: 44
2001:1250:b000::/44 maxlen: 44
2001:1250:c000::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:7f:cb:c7:0e:84:65:e7:b0:2a:9e:5d:cc:76:ed:93:fc:ed:d7:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55E5523033B41B7E990D9D490339137189366F33
Validity
Not Before: Jan 29 17:30:00 2025 GMT
Not After : Jan 28 17:35:00 2026 GMT
Subject: CN=AFF861BDC3B4AC32C346CCC86EBE00E4888C9DFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:21:0c:69:0c:f8:f7:42:28:40:a8:27:cd:db:
84:ab:37:f7:a1:cb:6b:ae:d3:03:48:e8:b7:b2:7d:
0f:58:18:d2:7a:cf:3d:85:c1:80:98:03:20:93:07:
a3:99:52:c1:70:7f:61:d9:96:61:ed:3e:b9:6c:bd:
e5:6b:29:3d:b6:c0:00:6b:75:34:9a:c5:3f:69:57:
13:0c:46:2d:b6:b1:d6:0a:69:b4:03:fb:aa:95:be:
0f:3e:c2:a0:27:0a:24:33:aa:9a:f3:21:0e:dd:84:
89:85:52:b7:f6:a8:8b:4e:cd:a4:ab:6a:7d:44:55:
e8:2e:7d:8c:7d:77:d0:98:87:99:b2:9e:7e:ca:c0:
e8:5a:ac:7a:2a:e5:ef:78:5d:c0:8c:c0:a4:d7:fd:
d3:6e:10:2f:c2:bd:51:4b:6a:a4:f6:de:5f:6b:0c:
95:bd:da:68:d2:fb:b7:fd:25:06:93:07:17:3d:12:
ab:4b:97:cc:32:e0:03:1b:08:a9:9a:68:a7:16:05:
06:95:e5:65:3e:24:39:08:e6:19:c5:51:7d:48:81:
39:c1:8b:be:d0:b4:54:2c:87:2e:dd:64:61:25:c1:
b3:04:8f:e5:a4:10:aa:6a:da:2f:8f:b9:ce:c3:39:
86:74:9d:37:43:c7:12:3c:78:83:a9:68:f8:c8:db:
c5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F8:61:BD:C3:B4:AC:32:C3:46:CC:C8:6E:BE:00:E4:88:8C:9D:FF
X509v3 Authority Key Identifier:
keyid:55:E5:52:30:33:B4:1B:7E:99:0D:9D:49:03:39:13:71:89:36:6F:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/55E5523033B41B7E990D9D490339137189366F33.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55E5523033B41B7E990D9D490339137189366F33.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B4531BAA384EF4D91078C105290C4F0FBC052138FC9B21E7D912FBE9AA8A7F0/0/AS19905.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.23.1.0/24
200.23.179.0/24
200.34.22.0/24
200.94.180.0/23
201.131.248.0/22
207.248.64.0/23
IPv6:
2001:1250::/43
2001:1250:1000::/44
2001:1250:2000::/44
2001:1250:3000::/44
2001:1250:a000::/44
2001:1250:b000::/44
2001:1250:c000::/44
Signature Algorithm: sha256WithRSAEncryption
9e:31:27:ce:40:e7:40:58:3e:8f:dc:72:74:26:76:a6:7f:f1:
40:8b:de:a8:fb:54:22:34:e8:db:ed:fa:75:95:e4:9c:99:a6:
78:90:8e:3d:69:ff:da:cf:ef:a5:24:95:b0:dc:6c:45:45:cb:
53:ac:86:9b:c6:8d:8c:7a:97:ef:8b:a2:48:ac:68:43:10:92:
4c:01:aa:12:05:9d:86:6b:95:cd:41:32:0b:ea:e7:33:e5:09:
b5:2d:f2:40:0f:7d:9e:6f:d4:97:da:d7:cd:ce:24:ea:65:a2:
40:98:f8:c7:9c:f1:c6:5a:e9:47:a4:fc:d2:90:8a:67:42:a6:
e9:41:b7:e0:7d:c7:fc:03:64:3f:d0:87:f8:71:4b:91:c9:ea:
ef:03:83:fc:21:b4:af:cf:d2:11:d6:7c:1c:b0:e6:b7:17:d8:
f6:5d:c3:15:e2:26:8c:83:71:1f:da:eb:aa:54:68:72:11:02:
0f:48:e8:0e:9d:fb:50:35:8f:ae:d3:86:71:bc:53:d1:4f:c8:
54:df:58:9e:73:06:a1:4a:04:c8:a4:be:94:5f:05:8d:7a:35:
b0:37:d8:89:52:76:b1:59:14:51:25:e1:51:b3:b5:62:8d:3d:
fa:79:a9:2b:f1:60:88:c8:25:c6:13:94:bf:12:bb:d2:36:b4:
0c:20:41:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:17:58 2025 by rpki-client