Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/0d2850a79075d68692afc1aa40e23c8307710315.roa
File: 0d2850a79075d68692afc1aa40e23c8307710315.roa (raw, json)
Hash identifier: 12D68ySvEPDKFx52rkB5UNahoMp7QgEI5iDs3zz+qEU=
Subject key identifier: BB:ED:F3:01:EE:4B:C5:CF:6A:82:F4:5D:18:C7:A1:77:F3:47:23:CA
Certificate issuer: /CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Certificate serial: 206F03
Authority key identifier: A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/0d2850a79075d68692afc1aa40e23c8307710315.roa
Signing time: Thu 24 Nov 2022 23:02:33 +0000
ROA not before: Mon 15 Nov 2021 03:00:00 +0000
ROA not after: Thu 18 Nov 2060 03:00:00 +0000
asID: 14080
IP address blocks: 186.82.62.0/23 maxlen: 23
190.158.112.0/22 maxlen: 24
201.221.164.0/22 maxlen: 24
201.216.12.0/22 maxlen: 24
190.84.115.0/24 maxlen: 24
200.118.96.0/22 maxlen: 24
200.118.187.0/24 maxlen: 24
200.118.198.0/24 maxlen: 24
200.118.194.0/24 maxlen: 24
190.157.0.0/16 maxlen: 24
181.53.69.0/24 maxlen: 24
181.53.70.0/24 maxlen: 24
181.53.71.0/24 maxlen: 24
181.59.44.0/24 maxlen: 24
181.59.45.0/24 maxlen: 24
181.59.46.0/24 maxlen: 24
181.59.47.0/24 maxlen: 24
186.85.10.0/24 maxlen: 24
186.85.11.0/24 maxlen: 24
186.85.12.0/24 maxlen: 24
186.85.13.0/24 maxlen: 24
186.85.14.0/24 maxlen: 24
186.85.15.0/24 maxlen: 24
186.87.68.0/24 maxlen: 24
186.87.69.0/24 maxlen: 24
186.87.70.0/24 maxlen: 24
186.87.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2125571 (0x206f03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Validity
Not Before: Nov 15 03:00:00 2021 GMT
Not After : Nov 18 03:00:00 2060 GMT
Subject: CN=0d2850a79075d68692afc1aa40e23c8307710315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:9c:99:a2:85:eb:5b:ac:c3:42:9d:66:b1:24:
2c:41:81:d9:4e:fb:24:2b:f8:a6:3c:c5:ff:cd:69:
20:ec:dd:15:82:b0:52:60:80:7f:3f:9a:e0:0c:07:
e8:36:26:4d:14:87:ff:a2:df:a6:4f:12:06:b4:e4:
a9:4a:6e:9b:b1:7e:85:61:e6:0a:9a:c0:8e:96:d5:
3d:ab:47:74:f1:5b:d3:bd:65:b3:6d:f7:d9:cf:6f:
86:8a:52:94:38:80:0c:3f:81:45:fd:c3:bc:f1:94:
33:9a:cb:b2:3d:0a:5e:30:b5:fe:46:3d:7f:43:b5:
34:51:7f:83:ec:c1:27:78:6b:d2:4b:33:55:66:0c:
c8:08:15:b4:63:1e:83:fc:46:3c:aa:9d:e4:8e:77:
02:8d:6b:82:eb:46:8a:84:3b:45:fc:19:17:80:16:
4a:9a:6f:17:47:0d:5c:b1:96:3c:5f:29:43:00:d6:
76:fa:dd:2c:4c:1c:e7:ce:01:50:2d:9f:ea:bb:7c:
41:f1:ee:59:b8:a9:03:79:77:a2:49:79:e4:18:9a:
6d:1c:f7:5f:82:82:7c:5c:44:9c:5a:80:42:9b:db:
cd:60:19:f7:5a:a0:e7:25:a6:6a:29:3a:6d:c8:d9:
62:06:60:f2:19:d5:4a:16:49:f0:9b:84:c0:34:f8:
5b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:ED:F3:01:EE:4B:C5:CF:6A:82:F4:5D:18:C7:A1:77:F3:47:23:CA
X509v3 Authority Key Identifier:
keyid:A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/0d2850a79075d68692afc1aa40e23c8307710315.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/c1f68ecd3896b3288f83c29a2c3da44c821c7684.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.53.69.0-181.53.71.255
181.59.44.0/22
186.82.62.0/23
186.85.10.0-186.85.15.255
186.87.68.0/22
190.84.115.0/24
190.157.0.0/16
190.158.112.0/22
200.118.96.0/22
200.118.187.0/24
200.118.194.0/24
200.118.198.0/24
201.216.12.0/22
201.221.164.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:09:2a:1a:30:62:6e:5f:e5:76:cf:94:17:71:4f:f9:ad:98:
1f:f1:f8:f7:28:dc:b4:7f:41:96:c8:f3:5b:dd:86:6b:51:0f:
27:a8:20:69:73:eb:e4:1c:3a:bd:61:60:73:db:b7:9c:48:94:
a2:ed:a7:ba:de:88:9d:4b:1a:bf:27:f3:5f:ea:87:19:19:40:
16:1b:02:ae:74:29:c9:08:40:af:0a:39:9d:2c:39:b2:5f:91:
de:bc:2f:48:22:9b:cc:a0:04:20:57:f1:69:c7:28:08:24:9a:
0d:9a:97:b3:8a:39:8c:69:a5:d5:f2:89:53:c5:e8:fd:e6:b3:
fe:29:03:a6:b9:c6:4c:10:43:8e:3e:cc:f2:28:06:0d:cf:38:
1f:88:06:d4:1b:b4:cb:ca:5e:7e:1b:a5:31:e0:df:cd:8d:c4:
05:fd:ca:46:e8:3c:76:5e:22:ba:44:ab:3d:2a:6b:f3:54:95:
5d:fa:ac:bc:7e:cc:ac:0a:58:18:2c:7c:59:48:3a:f2:97:3b:
d6:94:a7:e2:e4:e0:12:d7:b0:cf:7d:6a:3d:78:3d:4b:11:52:
b9:70:fe:b2:66:e1:33:9d:e5:72:2b:e3:c2:79:2a:cc:98:92:
49:75:1f:0b:47:8d:3f:90:87:c9:2c:2d:86:31:e5:1d:db:8b:
b2:59:c9:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:17 2024 by rpki-client on console-fra.rpki-client.org