Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/2ff15376720949367b3ac6f0056c139c2de006fa.roa
File: 2ff15376720949367b3ac6f0056c139c2de006fa.roa (raw, json)
Hash identifier: UdGD0jeVgG7wOBS2DnTvZuOT7IE+MLCCyl1I+dAOuY8=
Subject key identifier: 99:3C:64:46:A4:A9:3B:EC:16:09:3C:C5:50:E4:48:37:46:50:F9:35
Certificate issuer: /CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Certificate serial: 1DC040
Authority key identifier: A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/2ff15376720949367b3ac6f0056c139c2de006fa.roa
Signing time: Fri 12 Aug 2022 20:26:56 +0000
ROA not before: Fri 25 Jun 2021 03:00:00 +0000
ROA not after: Fri 25 Jun 2060 03:00:00 +0000
asID: 14080
IP address blocks: 190.144.62.0/24 maxlen: 24
181.49.92.0/22 maxlen: 22
186.86.140.0/22 maxlen: 22
186.86.155.0/24 maxlen: 24
190.144.169.0/24 maxlen: 24
190.144.177.0/24 maxlen: 24
190.144.196.0/24 maxlen: 24
190.144.201.0/24 maxlen: 24
190.144.202.0/24 maxlen: 24
190.144.203.0/24 maxlen: 24
190.144.204.0/24 maxlen: 24
190.144.205.0/24 maxlen: 24
190.144.209.0/24 maxlen: 24
190.145.116.0/24 maxlen: 24
190.145.126.0/24 maxlen: 24
190.145.224.0/22 maxlen: 22
190.145.230.0/23 maxlen: 23
190.145.232.0/21 maxlen: 21
190.145.240.0/20 maxlen: 20
181.61.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1949760 (0x1dc040)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Validity
Not Before: Jun 25 03:00:00 2021 GMT
Not After : Jun 25 03:00:00 2060 GMT
Subject: CN=2ff15376720949367b3ac6f0056c139c2de006fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:50:93:02:69:13:df:a3:ee:72:ca:04:5d:c5:
e3:65:ae:09:a8:2d:38:3c:fe:76:a1:f7:32:d8:46:
c7:9a:ac:af:75:9d:71:33:5c:19:01:d3:61:c0:45:
72:92:fd:4e:00:a4:24:79:14:f6:02:7d:f3:4e:e9:
82:22:d5:be:23:56:ef:04:5a:05:35:e8:70:3e:58:
a2:6c:1b:3d:70:62:21:48:18:b2:52:4c:b4:c1:78:
15:ae:dc:e3:ea:f0:90:74:78:a6:ed:09:78:5b:97:
de:b1:f0:ab:94:0a:83:d2:e2:79:33:41:74:15:6d:
80:e0:f8:fb:21:a7:bf:21:05:a0:0d:74:c4:a1:72:
21:70:6c:8c:65:7a:67:0d:33:04:48:44:e7:45:72:
66:5f:3f:31:51:e2:ff:73:1f:07:bc:41:29:19:6e:
39:22:af:3b:25:19:30:43:60:29:fd:53:ad:33:44:
b0:1a:5f:d1:87:3b:8e:9c:ff:76:86:52:6b:22:18:
e1:eb:10:66:ab:66:c9:08:0b:28:d3:06:03:46:74:
4b:a1:5a:36:3c:c7:98:8f:d8:07:1b:21:de:a3:05:
26:38:73:93:6f:df:0c:90:55:1a:d2:8b:82:30:4f:
92:62:ef:2f:99:eb:ce:cb:28:6a:0a:59:32:c2:72:
96:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3C:64:46:A4:A9:3B:EC:16:09:3C:C5:50:E4:48:37:46:50:F9:35
X509v3 Authority Key Identifier:
keyid:A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/2ff15376720949367b3ac6f0056c139c2de006fa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/c1f68ecd3896b3288f83c29a2c3da44c821c7684.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.49.92.0/22
181.61.120.0/22
186.86.140.0/22
186.86.155.0/24
190.144.62.0/24
190.144.169.0/24
190.144.177.0/24
190.144.196.0/24
190.144.201.0-190.144.205.255
190.144.209.0/24
190.145.116.0/24
190.145.126.0/24
190.145.224.0/22
190.145.230.0-190.145.255.255
Signature Algorithm: sha256WithRSAEncryption
7c:cc:84:ef:0a:f6:39:2c:82:6e:71:e9:80:0d:44:af:2f:0f:
47:1c:dc:af:75:1f:fb:06:0d:47:b6:0d:9c:87:64:37:e8:40:
bd:0f:fa:33:33:e8:32:6b:6d:9c:6a:7d:b8:4f:ca:49:7c:6a:
ab:e1:63:6e:9e:bc:e0:c6:b1:ed:e5:7e:09:42:49:66:e9:e2:
c3:85:fb:7e:6b:78:1f:2d:64:70:d8:fb:74:08:21:84:26:bb:
9f:5f:0e:93:54:7f:a5:b6:f1:75:47:24:45:0c:b8:54:8a:b8:
8b:97:30:33:51:6d:69:36:1a:27:a5:55:32:c1:42:dd:dd:56:
0b:42:ea:1b:cd:e3:0d:8f:fe:83:32:3f:e3:89:49:5e:09:65:
a9:fc:9c:68:d2:fe:ad:c9:65:cb:a9:48:4c:19:bd:f9:20:a6:
cb:51:c9:e6:63:3e:5d:fe:d9:9e:7b:dd:60:f3:62:b1:1b:42:
50:07:c2:b4:2e:31:e7:e9:a7:b8:58:fc:b0:86:6e:d1:7c:72:
6a:6b:96:57:f0:b2:1c:4c:44:12:6d:23:b6:a3:c6:d7:63:ae:
9b:9a:05:1a:6d:38:49:ca:56:30:80:b5:81:14:98:99:9f:c8:
90:cb:e8:01:12:e5:78:db:39:26:4a:16:e0:63:05:01:f8:87:
06:61:7c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:17 2024 by rpki-client on console-fra.rpki-client.org