Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/20f92b488f7a932fb4bf24597b82a8162252d3e1.roa
File: 20f92b488f7a932fb4bf24597b82a8162252d3e1.roa (raw, json)
Hash identifier: 02jYvzI7OGal21Pi74lqNrVab0op/i36sqLK2kZ6JCI=
Subject key identifier: 16:47:2C:DA:BC:BA:57:42:6F:90:5D:32:2B:20:CE:52:EF:91:02:39
Certificate issuer: /CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Certificate serial: 2A3B65
Authority key identifier: A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/20f92b488f7a932fb4bf24597b82a8162252d3e1.roa
Signing time: Sat 02 Dec 2023 07:30:04 +0000
ROA not before: Sat 02 Dec 2023 07:30:04 +0000
ROA not after: Mon 01 Dec 2025 07:30:04 +0000
asID: 14080
IP address blocks: 186.83.29.0/24 maxlen: 24
186.83.31.0/24 maxlen: 30
186.86.125.0/24 maxlen: 29
186.86.124.0/24 maxlen: 29
190.158.204.0/22 maxlen: 24
201.221.172.0/22 maxlen: 24
181.48.176.0/24 maxlen: 24
181.49.106.0/24 maxlen: 24
190.144.130.0/24 maxlen: 24
190.144.174.0/24 maxlen: 24
190.145.103.0/24 maxlen: 24
181.60.225.0/24 maxlen: 24
181.60.226.0/24 maxlen: 24
181.60.227.0/24 maxlen: 24
181.62.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2767717 (0x2a3b65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Validity
Not Before: Dec 2 07:30:04 2023 GMT
Not After : Dec 1 07:30:04 2025 GMT
Subject: CN=20f92b488f7a932fb4bf24597b82a8162252d3e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:16:f6:46:24:69:29:55:36:f6:e9:76:82:bf:
c8:06:57:90:f6:65:3e:95:56:ba:eb:d6:11:7c:52:
5a:a8:06:de:3d:0d:24:a1:4b:b7:63:52:db:b9:b1:
65:6d:c2:f1:a6:65:52:53:d7:56:94:68:d9:d3:29:
4b:ed:6d:bd:57:74:f8:d2:4e:77:b8:5e:bb:7a:b5:
d4:b1:4f:1f:4f:f1:75:bb:13:30:5e:3a:9d:b5:7d:
eb:e8:1c:e5:79:16:3e:91:8e:c4:c9:5f:bb:44:f9:
7b:a2:87:de:e3:71:57:e4:a1:ef:31:bb:16:ea:25:
52:31:11:fa:fa:38:bf:63:14:39:d3:18:05:0a:ae:
43:57:72:23:58:bb:59:df:24:c4:a6:f0:52:c8:02:
8b:eb:34:fc:5c:31:51:7c:53:c1:f3:48:5c:9a:fc:
d6:62:b3:f4:0d:84:0e:7f:bc:7b:3d:80:31:b3:f1:
51:24:2b:f1:84:8c:13:29:fe:01:27:be:34:bc:0d:
d8:bc:3b:34:0b:fb:01:00:49:7b:3d:e5:50:05:c2:
0f:26:7c:1f:42:b4:9b:97:68:9e:02:db:c7:82:b8:
eb:ed:6d:aa:b4:65:55:84:e8:c5:c7:7d:64:01:d7:
3b:ac:0d:e1:cd:27:12:73:1c:ee:fe:b2:f2:9e:bc:
3c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:47:2C:DA:BC:BA:57:42:6F:90:5D:32:2B:20:CE:52:EF:91:02:39
X509v3 Authority Key Identifier:
keyid:A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/20f92b488f7a932fb4bf24597b82a8162252d3e1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/c1f68ecd3896b3288f83c29a2c3da44c821c7684.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.48.176.0/24
181.49.106.0/24
181.60.225.0-181.60.227.255
181.62.208.0/22
186.83.29.0/24
186.83.31.0/24
186.86.124.0/23
190.144.130.0/24
190.144.174.0/24
190.145.103.0/24
190.158.204.0/22
201.221.172.0/22
Signature Algorithm: sha256WithRSAEncryption
40:b5:cc:c7:a0:dc:8b:cb:0f:02:cd:a5:fc:da:c9:60:e7:97:
5f:00:73:48:4c:55:e0:d3:bc:f6:f8:00:c1:c9:92:a9:dd:60:
bb:dd:68:2d:65:03:b0:af:6d:79:bf:39:cf:20:26:00:f2:72:
f9:4b:c2:2f:96:0c:41:cd:9d:6f:32:64:fe:36:53:c9:cb:3e:
4d:60:9f:a1:c5:92:d3:d8:b7:9a:fd:c8:09:48:cf:1f:1c:c7:
fa:e4:ca:ac:3c:c2:20:d7:57:82:bd:eb:c4:3b:0e:6a:f0:25:
ac:40:73:d2:8e:b1:f3:ac:ba:8c:08:0d:cc:d3:bf:24:a7:9e:
d4:b3:3d:5a:ec:df:95:d1:e5:03:a2:a2:ec:67:f2:fa:67:dc:
f5:cb:61:7b:cb:a0:93:60:6d:b8:dc:81:64:3c:2b:4e:ed:2e:
cf:08:b7:df:88:07:c4:31:8f:6c:4b:46:71:bf:4d:82:98:3c:
58:3a:89:c1:35:3c:c6:91:a4:e3:97:95:87:7b:ae:b9:e4:b1:
28:62:71:1b:8c:3a:5e:09:92:1a:83:49:99:31:c9:4f:1d:21:
ef:25:6b:82:f9:1c:91:43:ce:fd:98:90:27:41:48:9b:a2:7f:
49:df:e0:fe:4e:23:52:f6:c9:09:7f:52:ec:ba:94:a9:ba:e2:
df:08:64:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 17 19:15:18 2024 by rpki-client on console-fra.rpki-client.org