Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/de93d7c9ec36e19268fb61c43b7bfe2ceb7f52eb.roa
File: de93d7c9ec36e19268fb61c43b7bfe2ceb7f52eb.roa (raw, json)
Hash identifier: cHAXwfX/UqghW+gMcvpS8B3vGFz0Pv97U61FjTinTU4=
Subject key identifier: E4:0F:EE:1D:D9:C4:5B:23:AB:37:E5:2A:B5:F3:40:86:9B:C7:C8:78
Certificate issuer: /CN=1866c45b21787e12af4deafc085303e786f50b2f
Certificate serial: 2D93C0
Authority key identifier: C2:D2:73:A6:7C:06:1F:63:0B:31:28:A0:40:4C:BE:EC:ED:22:31:88
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1866c45b21787e12af4deafc085303e786f50b2f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/de93d7c9ec36e19268fb61c43b7bfe2ceb7f52eb.roa
Signing time: Sun 17 Mar 2024 18:43:41 +0000
ROA not before: Sun 17 Mar 2024 18:42:19 +0000
ROA not after: Sat 17 Mar 2029 18:42:19 +0000
asID: 14080
IP address blocks: 190.158.136.0/24 maxlen: 24
190.158.137.0/24 maxlen: 24
190.158.138.0/24 maxlen: 24
190.158.139.0/24 maxlen: 24
190.158.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2986944 (0x2d93c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1866c45b21787e12af4deafc085303e786f50b2f
Validity
Not Before: Mar 17 18:42:19 2024 GMT
Not After : Mar 17 18:42:19 2029 GMT
Subject: CN=de93d7c9ec36e19268fb61c43b7bfe2ceb7f52eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:6c:2b:45:7e:03:b0:71:23:51:14:86:3c:aa:
a2:34:4c:26:03:e6:1e:4f:b6:9d:5a:25:b7:a8:2c:
ad:55:cf:94:a5:1a:2b:26:4a:d1:87:5d:56:f7:10:
3b:59:6b:4c:b1:ff:0d:81:a3:bf:18:4d:9f:94:4d:
f9:bb:d2:71:e6:f2:ba:81:df:59:03:8e:13:40:19:
72:e6:b5:93:43:27:8c:14:48:df:01:be:b5:22:21:
1b:96:45:1d:82:9d:89:f3:a6:d3:fd:c3:9a:22:2f:
a9:ed:a0:cd:c6:45:47:7a:1a:7c:44:7f:97:6f:bd:
95:57:d6:d3:0d:fb:32:18:d2:6c:d9:ba:88:b1:cd:
40:2f:bc:ff:ab:e7:bf:c1:e8:b1:c5:9e:db:a3:db:
26:e3:eb:49:8e:56:dc:b4:73:28:20:25:c3:df:82:
3d:66:20:fc:a8:e1:52:2b:09:fb:03:1d:b6:d7:7c:
de:cc:e7:0f:8b:00:d8:6b:26:d7:50:1e:04:de:95:
e3:ff:58:86:f0:ce:2e:8d:da:d0:0c:25:63:72:88:
2e:84:21:26:e2:88:ca:b6:ba:10:82:cd:61:70:38:
15:52:ff:da:36:d2:04:ba:e2:95:b3:b0:3d:25:3b:
58:19:59:4d:ec:f6:f5:77:d2:bd:b2:e3:68:97:98:
41:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:0F:EE:1D:D9:C4:5B:23:AB:37:E5:2A:B5:F3:40:86:9B:C7:C8:78
X509v3 Authority Key Identifier:
keyid:C2:D2:73:A6:7C:06:1F:63:0B:31:28:A0:40:4C:BE:EC:ED:22:31:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1866c45b21787e12af4deafc085303e786f50b2f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/de93d7c9ec36e19268fb61c43b7bfe2ceb7f52eb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/1866c45b21787e12af4deafc085303e786f50b2f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.158.136.0/22
190.158.188.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:7f:89:ec:06:eb:bf:7d:62:63:a6:2f:e2:1f:3e:1c:01:5e:
e0:d2:f3:08:8e:4a:cb:34:aa:c2:5f:ab:5b:9e:0a:dd:c7:6e:
88:75:a5:f8:2a:b2:8c:9e:a7:3d:9c:fd:59:f6:df:ed:d5:7b:
2c:2b:34:e2:6d:10:d4:e7:ed:9b:24:28:c1:ec:af:2b:af:e5:
a9:53:fa:be:e2:c4:36:c3:3b:80:f0:b3:51:fa:60:3b:ee:26:
8d:47:f7:6e:85:32:44:81:53:d4:c7:08:93:c9:3a:ec:43:29:
a0:92:54:23:1a:41:b9:8a:7f:60:de:52:8b:4a:f4:f3:b3:cb:
b3:a1:5d:93:ba:9b:27:21:3b:f7:28:30:2a:e7:c1:ea:e1:89:
3c:6e:bc:40:d6:5f:ea:fa:e3:ab:46:f6:a6:71:d6:f6:17:84:
b9:d4:92:a9:df:35:20:51:63:08:ae:85:c5:25:af:cf:2d:ac:
c8:08:15:ac:2e:84:75:3e:54:47:0b:bb:81:c1:a7:0e:0f:8f:
2c:49:ad:8d:ac:e2:08:15:65:c1:ce:c0:4d:21:2e:33:bb:01:
a6:af:07:4d:38:dd:f9:a5:2f:c0:a3:ba:a9:97:eb:36:3e:72:
5a:54:43:16:8b:d9:1f:e4:1d:07:7a:0c:1c:0f:5d:7e:74:a9:
9b:36:e7:7d
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgIDLZPAMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDE4
NjZjNDViMjE3ODdlMTJhZjRkZWFmYzA4NTMwM2U3ODZmNTBiMmYwHhcNMjQwMzE3
MTg0MjE5WhcNMjkwMzE3MTg0MjE5WjAzMTEwLwYDVQQDEyhkZTkzZDdjOWVjMzZl
MTkyNjhmYjYxYzQzYjdiZmUyY2ViN2Y1MmViMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAhWwrRX4DsHEjURSGPKqiNEwmA+YeT7adWiW3qCytVc+UpRor
JkrRh11W9xA7WWtMsf8NgaO/GE2flE35u9Jx5vK6gd9ZA44TQBly5rWTQyeMFEjf
Ab61IiEblkUdgp2J86bT/cOaIi+p7aDNxkVHehp8RH+Xb72VV9bTDfsyGNJs2bqI
sc1AL7z/q+e/weixxZ7bo9sm4+tJjlbctHMoICXD34I9ZiD8qOFSKwn7Ax2213ze
zOcPiwDYaybXUB4E3pXj/1iG8M4ujdrQDCVjcoguhCEm4ojKtroQgs1hcDgVUv/a
NtIEuuKVs7A9JTtYGVlN7Pb1d9K9suNol5hBCQIDAQABo4ICYTCCAl0wHQYDVR0O
BBYEFOQP7h3ZxFsjqzflKrXzQIabx8h4MB8GA1UdIwQYMBaAFMLSc6Z8Bh9jCzEo
oEBMvuztIjGIMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMTg2NmM0
NWIyMTc4N2UxMmFmNGRlYWZjMDg1MzAzZTc4NmY1MGIyZi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMDI0MTliOTItZmJiYS00MDRiLWEyMjktZjM4NjVk
NTdhNDZhL2RlOTNkN2M5ZWMzNmUxOTI2OGZiNjFjNDNiN2JmZTJjZWI3ZjUyZWIu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8wMjQxOWI5Mi1mYmJhLTQwNGItYTIyOS1mMzg2
NWQ1N2E0NmEvMTg2NmM0NWIyMTc4N2UxMmFmNGRlYWZjMDg1MzAzZTc4NmY1MGIy
Zi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQW
MBQwEgQCAAEwDAMEAr6eiAMEAL6evDANBgkqhkiG9w0BAQsFAAOCAQEAnX+J7Abr
v31iY6Yv4h8+HAFe4NLzCI5KyzSqwl+rW54K3cduiHWl+CqyjJ6nPZz9Wfbf7dV7
LCs04m0Q1OftmyQoweyvK6/lqVP6vuLENsM7gPCzUfpgO+4mjUf3boUyRIFT1McI
k8k67EMpoJJUIxpBuYp/YN5Si0r087PLs6Fdk7qbJyE79ygwKufB6uGJPG68QNZf
6vrjq0b2pnHW9heEudSSqd81IFFjCK6FxSWvzy2syAgVrC6EdT5URwu7gcGnDg+P
LEmtjaziCBVlwc7ATSEuM7sBpq8HTTjd+aUvwKO6qZfrNj5yWlRDFovZH+QdB3oM
HA9dfnSpmzbnfQ==
-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:00 2024 by rpki-client on console-fra.rpki-client.org