Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/ba4c90678e033ed16730bb5433177a747448e0e3.roa
File: ba4c90678e033ed16730bb5433177a747448e0e3.roa (raw, json)
Hash identifier: pGrk9RcbnsIIqRdeai+2N0YKUFq66GP+tsxwruFsZ7Q=
Subject key identifier: B8:81:57:A8:AE:56:2C:1A:DA:B6:D7:23:40:7F:FE:6E:E1:27:E8:F7
Certificate issuer: /CN=1866c45b21787e12af4deafc085303e786f50b2f
Certificate serial: 2D7DCD
Authority key identifier: C2:D2:73:A6:7C:06:1F:63:0B:31:28:A0:40:4C:BE:EC:ED:22:31:88
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1866c45b21787e12af4deafc085303e786f50b2f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/ba4c90678e033ed16730bb5433177a747448e0e3.roa
Signing time: Sun 17 Mar 2024 18:43:21 +0000
ROA not before: Sun 17 Mar 2024 18:42:19 +0000
ROA not after: Sat 17 Mar 2029 18:42:19 +0000
asID: 10620
IP address blocks: 190.143.0.0/18 maxlen: 24
200.71.32.0/19 maxlen: 24
201.216.0.0/19 maxlen: 24
200.118.0.0/16 maxlen: 24
201.221.160.0/20 maxlen: 24
200.89.224.0/20 maxlen: 24
201.216.32.0/19 maxlen: 24
190.8.224.0/19 maxlen: 24
190.8.192.0/19 maxlen: 24
190.84.0.0/16 maxlen: 24
190.156.0.0/16 maxlen: 24
190.157.0.0/16 maxlen: 24
190.158.0.0/16 maxlen: 24
190.159.0.0/16 maxlen: 24
186.80.0.0/16 maxlen: 24
186.81.0.0/16 maxlen: 24
186.82.0.0/16 maxlen: 24
186.83.0.0/16 maxlen: 24
186.84.0.0/16 maxlen: 24
186.85.0.0/16 maxlen: 24
186.86.0.0/16 maxlen: 24
186.87.0.0/16 maxlen: 24
186.144.0.0/16 maxlen: 24
186.145.0.0/16 maxlen: 24
186.146.0.0/16 maxlen: 24
186.147.0.0/16 maxlen: 24
190.146.0.0/16 maxlen: 24
190.147.0.0/16 maxlen: 24
181.49.72.0/22 maxlen: 22
181.61.245.0/24 maxlen: 24
181.61.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2981325 (0x2d7dcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1866c45b21787e12af4deafc085303e786f50b2f
Validity
Not Before: Mar 17 18:42:19 2024 GMT
Not After : Mar 17 18:42:19 2029 GMT
Subject: CN=ba4c90678e033ed16730bb5433177a747448e0e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:63:aa:fd:0d:83:41:f8:de:89:88:22:41:86:
13:77:7d:40:99:06:4e:22:47:b2:41:cd:ce:28:e7:
a5:19:70:ab:0c:51:62:4c:6c:3d:d6:81:f6:34:ee:
ed:41:b3:32:4d:7f:e1:0e:fb:74:cd:7e:81:a8:1f:
74:08:7e:55:96:34:21:78:06:82:c5:ef:a3:34:5b:
47:04:84:b7:43:12:5a:a6:63:41:f6:c1:e1:c6:8b:
66:c2:bb:d3:93:8b:69:c4:21:91:7e:f6:3c:f6:2b:
c0:2f:75:5f:61:ac:d7:59:eb:d8:3a:fb:a2:dd:78:
dd:86:c7:1d:75:4f:29:5f:cc:74:fe:dc:8b:0b:0e:
50:de:57:2f:e0:af:20:6f:58:98:68:25:fb:1a:65:
95:c5:45:35:c0:91:09:b0:fb:d0:f7:ee:ac:96:b9:
6f:62:80:7c:43:c3:71:75:c9:2c:07:c5:9e:f7:b0:
be:c9:8b:72:00:82:2a:d7:a8:8f:79:9c:c3:18:af:
d5:dd:a4:db:3f:2b:1e:78:90:53:19:9a:05:28:46:
1c:bf:39:30:64:ad:6f:ab:9b:16:55:0d:6f:0a:5d:
32:71:81:42:17:57:c2:74:7d:3a:3e:c5:12:01:a4:
e2:45:b9:22:02:d6:90:a9:d7:e0:4b:b7:fd:0c:bd:
e4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:81:57:A8:AE:56:2C:1A:DA:B6:D7:23:40:7F:FE:6E:E1:27:E8:F7
X509v3 Authority Key Identifier:
keyid:C2:D2:73:A6:7C:06:1F:63:0B:31:28:A0:40:4C:BE:EC:ED:22:31:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1866c45b21787e12af4deafc085303e786f50b2f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/ba4c90678e033ed16730bb5433177a747448e0e3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/1866c45b21787e12af4deafc085303e786f50b2f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.49.72.0/22
181.61.245.0-181.61.246.255
186.80.0.0/13
186.144.0.0/14
190.8.192.0/18
190.84.0.0/16
190.143.0.0/18
190.146.0.0/15
190.156.0.0/14
200.71.32.0/19
200.89.224.0/20
200.118.0.0/16
201.216.0.0/18
201.221.160.0/20
Signature Algorithm: sha256WithRSAEncryption
04:7e:e9:4f:83:f5:a7:16:88:07:28:82:51:c3:9c:d4:78:b2:
fc:54:b9:98:8f:db:36:87:43:ee:3a:0e:84:a1:33:86:ed:aa:
b2:bc:00:5c:68:71:11:99:b6:92:45:cb:86:0e:ba:08:90:51:
ff:fb:51:ea:1d:4a:47:a2:8f:2a:2f:c1:ff:3d:0f:f7:e2:43:
88:78:ae:f8:0c:e9:8b:7b:ff:74:0e:df:b9:40:b4:21:06:dc:
81:c0:91:d3:20:b9:12:e9:b8:61:f6:e0:fb:cb:39:be:ec:90:
9b:df:4b:2d:e4:a8:10:76:6e:58:ad:37:2b:50:21:e6:b9:fc:
3e:f5:6e:94:25:c6:1c:21:0b:e9:79:fd:8a:2c:88:c1:c6:fe:
dc:0b:0e:be:38:92:64:c1:c9:3d:ea:20:6a:d6:2f:5c:c9:1a:
d4:31:92:44:6d:9b:df:e3:2f:e8:00:54:1c:bb:6d:dd:10:f5:
53:5f:ca:0b:6f:37:7e:18:06:4d:3e:88:6d:38:51:f4:a6:9f:
0b:f2:ec:89:3a:20:7f:e7:c0:26:bc:e1:08:b1:ce:22:36:ec:
5a:77:5b:0a:11:b3:0a:df:26:10:8a:0c:b5:53:98:0a:3c:53:
b0:77:77:87:73:f5:a3:b7:05:a9:7a:9d:ae:15:c9:d3:b4:d9:
1e:3d:93:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:14 2024 by rpki-client on console-ams.rpki-client.org