Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/5fc9aaca24364594cca858e7103fc906d83c5be8.roa
File: 5fc9aaca24364594cca858e7103fc906d83c5be8.roa (raw, json)
Hash identifier: SrXkmdvPRtCsLCtII3+m8I5pMGTz8l2IuwmLHU5xeZg=
Subject key identifier: E7:AB:1D:20:FC:3C:6F:42:60:21:00:86:28:D0:CB:F6:C8:8F:82:A0
Certificate issuer: /CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Certificate serial: 247589
Authority key identifier: A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/5fc9aaca24364594cca858e7103fc906d83c5be8.roa
Signing time: Wed 26 Apr 2023 08:30:02 +0000
ROA not before: Tue 25 Apr 2023 08:30:02 +0000
ROA not after: Thu 24 Apr 2025 08:30:02 +0000
asID: 14080
IP address blocks: 190.144.192.0/19 maxlen: 19
181.49.224.0/19 maxlen: 29
186.85.72.0/22 maxlen: 24
200.118.0.0/16 maxlen: 24
186.145.4.0/22 maxlen: 24
190.84.213.0/24 maxlen: 24
190.84.214.0/24 maxlen: 24
190.158.6.0/24 maxlen: 24
190.158.7.0/24 maxlen: 24
190.158.10.0/24 maxlen: 24
190.158.11.0/24 maxlen: 24
190.159.0.0/16 maxlen: 24
190.157.216.0/22 maxlen: 24
186.84.72.0/22 maxlen: 24
181.61.232.0/22 maxlen: 24
186.84.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2389385 (0x247589)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Validity
Not Before: Apr 25 08:30:02 2023 GMT
Not After : Apr 24 08:30:02 2025 GMT
Subject: CN=5fc9aaca24364594cca858e7103fc906d83c5be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:24:3c:9b:6c:6d:68:7a:2c:2b:00:af:b8:fc:
16:8f:0a:3c:ed:df:eb:96:86:35:75:2c:93:ee:4c:
4e:3e:0d:9c:ad:b5:23:b9:00:c0:f3:04:70:9f:05:
f9:1d:89:25:dc:6f:68:c5:c6:57:a8:f4:16:31:b4:
2d:ca:e6:ef:c1:7d:83:10:d4:25:f3:62:33:e3:fe:
b4:b7:a6:8a:80:e4:e6:4f:66:44:eb:40:93:1b:2b:
11:20:b6:1b:92:d2:07:c0:9f:7b:46:66:78:6f:52:
2a:72:61:c0:91:34:7c:47:b3:11:29:b1:d7:29:0d:
bb:24:ec:cc:fe:64:6e:26:6e:50:a4:f6:fd:55:0b:
42:32:25:22:3e:0d:49:4e:3f:c9:e4:bf:6e:5f:de:
9f:fc:f6:4d:90:99:eb:2e:dd:a7:f8:5a:fa:61:8b:
09:fb:e9:c0:7d:99:bb:21:a8:e0:23:b3:47:b1:2c:
0b:4a:23:c0:e9:b4:74:2c:7d:9a:cf:28:51:24:e6:
6a:0f:81:bc:f7:7b:90:e1:e7:dd:03:08:00:04:a6:
d5:0b:93:a5:84:27:2f:bf:45:23:01:db:ef:32:1c:
59:4e:4e:fc:66:2e:92:62:5f:33:c9:66:1f:59:d2:
1b:48:a2:81:eb:0f:77:29:6f:a9:15:65:72:c8:13:
ab:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:AB:1D:20:FC:3C:6F:42:60:21:00:86:28:D0:CB:F6:C8:8F:82:A0
X509v3 Authority Key Identifier:
keyid:A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/5fc9aaca24364594cca858e7103fc906d83c5be8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/c1f68ecd3896b3288f83c29a2c3da44c821c7684.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.49.224.0/19
181.61.232.0/22
186.84.72.0/22
186.84.152.0/22
186.85.72.0/22
186.145.4.0/22
190.84.213.0-190.84.214.255
190.144.192.0/19
190.157.216.0/22
190.158.6.0/23
190.158.10.0/23
190.159.0.0/16
200.118.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5a:d4:b8:61:20:d5:d6:58:57:fd:b3:2f:a8:2f:06:f4:d0:2e:
88:b3:5e:f0:ab:83:c1:cc:45:d3:2f:bd:db:0d:27:93:ff:24:
77:fb:fb:bf:3a:e6:cf:f0:3d:2b:78:84:0b:41:15:9c:1e:33:
09:09:fb:19:b3:bd:11:95:f9:b9:b8:41:4a:93:4f:14:80:3f:
10:8f:a7:67:74:67:e5:9c:59:89:a2:f4:d6:0c:fa:ac:03:f3:
68:64:07:ae:e7:4e:4b:43:c9:15:68:b6:07:21:08:ee:3c:88:
34:b5:ec:70:11:1d:48:ce:22:ef:45:59:16:b9:57:6d:e2:19:
db:70:0b:c6:85:3e:ae:c5:bf:9d:94:de:4d:e6:60:82:da:73:
a1:ab:bf:c3:47:f7:e2:50:15:7d:e0:f0:63:a1:2c:69:e9:63:
6e:34:f4:87:4d:7c:00:21:32:1e:e4:44:f1:5f:2c:d1:49:49:
98:15:e7:ae:8f:83:75:2d:86:ef:d6:70:c0:b1:5f:d0:b4:cd:
3c:28:3f:19:ca:a6:27:0c:a0:39:52:b9:f7:b3:89:65:b7:7e:
f6:e4:3e:90:c6:1d:67:8c:3a:6a:2f:6b:41:dd:c8:63:82:f9:
73:57:e4:83:5a:5f:a6:e6:9f:2f:b5:4a:32:cc:52:1b:23:42:
f2:3a:23:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:54 2024 by rpki-client on console-ams.rpki-client.org