Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/4f6f4326de61399204f9ed991871806fb7427900.roa
File: 4f6f4326de61399204f9ed991871806fb7427900.roa (raw, json)
Hash identifier: Eeao17TgBHjUi90BclB33jygiA/gUXcc0tCAy/eIQ20=
Subject key identifier: 49:72:DD:C2:FD:EE:4E:53:A6:ED:9B:C4:16:97:F6:06:FA:72:41:9E
Certificate issuer: /CN=1866c45b21787e12af4deafc085303e786f50b2f
Certificate serial: 2D69B2
Authority key identifier: C2:D2:73:A6:7C:06:1F:63:0B:31:28:A0:40:4C:BE:EC:ED:22:31:88
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1866c45b21787e12af4deafc085303e786f50b2f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/4f6f4326de61399204f9ed991871806fb7427900.roa
Signing time: Sun 17 Mar 2024 18:43:07 +0000
ROA not before: Sun 17 Mar 2024 18:42:19 +0000
ROA not after: Sat 17 Mar 2029 18:42:19 +0000
asID: 14080
IP address blocks: 190.144.62.0/24 maxlen: 24
181.49.92.0/22 maxlen: 22
186.86.140.0/22 maxlen: 22
186.86.155.0/24 maxlen: 24
190.144.169.0/24 maxlen: 24
190.144.177.0/24 maxlen: 24
190.144.196.0/24 maxlen: 24
190.144.201.0/24 maxlen: 24
190.144.202.0/24 maxlen: 24
190.144.203.0/24 maxlen: 24
190.144.204.0/24 maxlen: 24
190.144.205.0/24 maxlen: 24
190.144.209.0/24 maxlen: 24
190.145.116.0/24 maxlen: 24
190.145.126.0/24 maxlen: 24
190.145.224.0/22 maxlen: 22
190.145.230.0/23 maxlen: 23
190.145.232.0/21 maxlen: 21
190.145.240.0/20 maxlen: 20
181.61.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2976178 (0x2d69b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1866c45b21787e12af4deafc085303e786f50b2f
Validity
Not Before: Mar 17 18:42:19 2024 GMT
Not After : Mar 17 18:42:19 2029 GMT
Subject: CN=4f6f4326de61399204f9ed991871806fb7427900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ab:7c:dd:1c:46:10:e8:61:58:c5:b0:3a:4b:
a5:ab:f9:07:17:0a:1c:c1:2c:e3:02:7b:a0:f3:73:
f1:3c:8c:ba:ef:f0:6c:19:0c:26:43:4f:37:27:b3:
54:2d:0b:b8:40:c6:89:4b:8d:11:cb:47:e3:3e:32:
e7:6f:b5:66:e1:22:7f:a6:77:ee:aa:a2:6c:19:5a:
7c:5d:b1:1f:65:e1:b7:0a:45:9a:67:04:29:79:4b:
14:ed:7b:98:34:da:5b:0f:46:2a:91:60:76:d6:a2:
31:94:f8:ed:c6:d5:95:4a:6b:a0:9d:27:8d:83:fd:
59:a9:e7:1e:ec:b3:b4:cb:4e:29:ad:22:a6:09:0e:
19:71:84:9c:52:5c:ec:a7:3b:c7:0d:f4:de:d9:ca:
66:67:bb:15:2b:d7:be:ff:25:3c:7f:31:87:33:23:
15:69:b9:8f:3b:78:f8:25:1a:09:e3:51:a9:29:3f:
f9:c0:0a:d3:48:11:57:e8:3c:bb:79:13:09:64:8c:
d7:2c:fd:e6:de:1c:25:ac:5d:71:4b:01:bf:53:8f:
9b:7f:27:fa:2e:20:4f:bb:cd:5c:b6:bd:cb:83:e3:
54:aa:32:0f:b3:24:d8:7a:2c:86:3b:49:5c:f4:40:
f6:cd:a4:e1:42:6d:93:fa:ba:7e:3e:0b:ef:d3:51:
bf:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:72:DD:C2:FD:EE:4E:53:A6:ED:9B:C4:16:97:F6:06:FA:72:41:9E
X509v3 Authority Key Identifier:
keyid:C2:D2:73:A6:7C:06:1F:63:0B:31:28:A0:40:4C:BE:EC:ED:22:31:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1866c45b21787e12af4deafc085303e786f50b2f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/4f6f4326de61399204f9ed991871806fb7427900.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/1866c45b21787e12af4deafc085303e786f50b2f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.49.92.0/22
181.61.120.0/22
186.86.140.0/22
186.86.155.0/24
190.144.62.0/24
190.144.169.0/24
190.144.177.0/24
190.144.196.0/24
190.144.201.0-190.144.205.255
190.144.209.0/24
190.145.116.0/24
190.145.126.0/24
190.145.224.0/22
190.145.230.0-190.145.255.255
Signature Algorithm: sha256WithRSAEncryption
a9:db:d4:85:6a:e1:9f:b2:d9:fc:6f:c6:d5:6b:d5:a5:37:d4:
13:b4:50:ca:49:a1:f7:ab:f1:30:a9:8c:52:1e:98:50:95:82:
03:1f:5f:6c:fd:39:3c:48:5d:fb:3c:e7:62:89:f3:3f:6d:14:
a0:ec:d0:3b:18:15:ed:70:af:af:5b:04:c2:c2:cf:5e:64:9f:
c5:a5:4b:57:f4:ee:f1:4d:a0:a4:31:de:cf:63:29:53:55:ad:
e6:32:0b:9d:a2:19:07:ef:db:2f:43:0c:20:0d:d3:83:e4:bb:
d5:f7:d4:4b:40:80:70:76:be:b0:25:b0:df:09:37:d1:c0:c8:
7b:a4:96:6e:55:1d:a6:96:ac:28:6b:d9:cc:e8:cb:39:44:a5:
60:40:95:bf:21:c4:38:cd:b2:78:31:e2:43:5c:ee:20:8b:ce:
e3:1a:79:07:37:01:c7:03:1f:39:ef:ac:5d:c4:5c:bf:3e:13:
0d:bc:7f:f4:4d:3f:54:5d:d3:16:73:82:bc:98:4c:c4:99:ec:
68:dd:dc:ee:b7:75:87:f9:60:be:a7:0e:fd:04:89:ac:db:5f:
06:a9:02:77:29:f1:c8:9e:7b:da:fd:67:e0:de:b0:ce:b0:3e:
26:de:70:e3:96:09:f8:1b:7d:a7:f6:b7:35:79:35:64:2d:19:
36:73:0a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:54 2024 by rpki-client on console-ams.rpki-client.org