Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/fb70cad936aca43ba56d80072b8a5ac779aa128f.roa
File: fb70cad936aca43ba56d80072b8a5ac779aa128f.roa (raw, json)
Hash identifier: YCmnwSZJTOleOp8MMKkro+6OdYfhFcT0owAOJXkrQiE=
Subject key identifier: AB:E1:71:B5:2B:31:11:24:62:FB:52:46:17:F7:1D:5A:21:A4:1C:CD
Certificate issuer: /CN=1866c45b21787e12af4deafc085303e786f50b2f
Certificate serial: 2DF3E7
Authority key identifier: C2:D2:73:A6:7C:06:1F:63:0B:31:28:A0:40:4C:BE:EC:ED:22:31:88
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1866c45b21787e12af4deafc085303e786f50b2f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/fb70cad936aca43ba56d80072b8a5ac779aa128f.roa
Signing time: Sun 17 Mar 2024 18:45:32 +0000
ROA not before: Sun 17 Mar 2024 18:42:19 +0000
ROA not after: Sat 17 Mar 2029 18:42:19 +0000
asID: 14080
IP address blocks: 186.83.29.0/24 maxlen: 24
186.83.31.0/24 maxlen: 30
186.86.125.0/24 maxlen: 29
186.86.124.0/24 maxlen: 29
190.158.204.0/22 maxlen: 24
201.221.172.0/22 maxlen: 24
181.48.176.0/24 maxlen: 24
181.49.106.0/24 maxlen: 24
190.144.130.0/24 maxlen: 24
190.144.174.0/24 maxlen: 24
190.145.103.0/24 maxlen: 24
181.60.225.0/24 maxlen: 24
181.60.226.0/24 maxlen: 24
181.60.227.0/24 maxlen: 24
181.62.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3011559 (0x2df3e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1866c45b21787e12af4deafc085303e786f50b2f
Validity
Not Before: Mar 17 18:42:19 2024 GMT
Not After : Mar 17 18:42:19 2029 GMT
Subject: CN=fb70cad936aca43ba56d80072b8a5ac779aa128f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:92:f1:00:52:7f:b4:84:c5:c1:9d:b8:f3:93:
9d:2d:e0:a2:d6:c8:77:e5:c5:9f:4e:ea:03:1d:87:
85:89:3e:fd:e6:70:8c:93:87:60:10:6d:fd:29:e5:
f9:68:a4:08:25:ce:4a:dd:31:7d:43:8a:ba:e3:e7:
65:82:9e:ca:a7:2a:73:d8:58:7e:e0:c0:f3:8b:a2:
74:4e:db:f2:d8:20:bd:c2:e2:c9:65:c2:4d:14:01:
f5:2c:35:de:e4:f3:5e:bb:85:95:94:cb:a6:9a:12:
0c:59:2d:cb:41:a9:9c:b3:e7:89:42:59:39:f7:ad:
d7:3e:d4:e8:8f:e9:df:3c:ff:69:89:e8:e3:4c:e5:
7c:3b:66:8c:10:3e:60:49:05:6d:eb:4f:4d:6b:56:
c1:d7:e5:82:0a:13:0b:39:a0:79:9f:49:08:4a:5c:
39:92:8c:e0:2d:03:19:ff:27:7c:eb:f8:00:01:80:
02:8b:8f:04:30:c1:0d:90:00:70:c3:8b:c8:12:69:
c5:1f:5f:d4:a6:28:18:ef:c4:fe:ef:de:44:37:43:
ac:a5:3d:50:8b:ca:3e:a5:62:c1:49:14:3d:1c:c2:
ba:b5:a9:cd:b6:7d:13:1f:93:fe:f4:2f:3e:cb:8f:
58:87:7d:53:56:fd:59:5c:96:ef:da:1d:91:fb:bc:
0b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E1:71:B5:2B:31:11:24:62:FB:52:46:17:F7:1D:5A:21:A4:1C:CD
X509v3 Authority Key Identifier:
keyid:C2:D2:73:A6:7C:06:1F:63:0B:31:28:A0:40:4C:BE:EC:ED:22:31:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1866c45b21787e12af4deafc085303e786f50b2f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/fb70cad936aca43ba56d80072b8a5ac779aa128f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/1866c45b21787e12af4deafc085303e786f50b2f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.48.176.0/24
181.49.106.0/24
181.60.225.0-181.60.227.255
181.62.208.0/22
186.83.29.0/24
186.83.31.0/24
186.86.124.0/23
190.144.130.0/24
190.144.174.0/24
190.145.103.0/24
190.158.204.0/22
201.221.172.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:61:d0:13:1b:a4:cd:70:a1:68:6e:20:f3:ef:3f:84:24:6e:
9b:8c:72:2f:06:36:b4:41:dc:50:8c:06:43:cf:5a:17:0e:df:
af:de:91:f9:ea:e5:64:10:10:45:50:0b:17:22:10:e2:96:e4:
9c:3a:16:bd:db:a0:cd:91:39:26:0c:7b:28:47:57:9b:71:cb:
d8:17:0e:1f:6f:68:68:70:26:6e:3e:23:73:c9:15:e2:58:f9:
73:03:6c:47:8e:cd:05:c1:3d:d6:9b:1b:f2:c5:32:36:8f:8b:
73:ba:81:58:88:66:b9:2e:6f:78:cb:36:9a:d1:d2:45:e7:d9:
28:0d:33:a8:00:67:e4:bd:7a:c6:0e:95:3b:1c:c8:bb:a4:e5:
cc:cb:83:7f:26:ea:03:a6:f5:47:98:3e:46:f7:8c:ff:f5:1e:
2e:21:3c:61:cd:c7:42:5f:0d:77:e0:b8:8b:42:be:b1:bb:16:
65:95:29:76:85:7e:20:f4:9a:5d:20:1e:37:c0:19:d1:5c:7a:
cb:85:bb:89:4c:e2:d1:35:d7:f8:fc:11:a8:6d:62:c7:df:46:
c5:9d:7a:7b:29:a6:b6:5a:58:bf:13:89:60:01:a2:12:9e:69:
58:fb:98:8e:92:af:16:df:68:c9:01:61:66:9c:58:15:fa:3b:
b4:65:ba:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:55 2024 by rpki-client on console-ams.rpki-client.org