Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/fd02e86e76cfe7fc8ff3f674d3ab108dc0b08bba.roa
File: fd02e86e76cfe7fc8ff3f674d3ab108dc0b08bba.roa (raw, json)
Hash identifier: W2Le+cQngpVXw27bqVR/2Vpo1FDH4xa7nF5MSbCkkSE=
Subject key identifier: A9:B1:4E:05:41:12:80:09:37:36:26:34:32:7C:3D:FF:81:DC:CF:FC
Certificate issuer: /CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Certificate serial: 0DD00B
Authority key identifier: A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/fd02e86e76cfe7fc8ff3f674d3ab108dc0b08bba.roa
Signing time: Wed 24 Mar 2021 14:34:36 +0000
ROA not before: Wed 24 Mar 2021 14:34:35 +0000
ROA not after: Tue 24 Mar 2026 14:34:35 +0000
asID: 10620
IP address blocks: 190.143.0.0/18 maxlen: 24
200.71.32.0/19 maxlen: 24
201.216.0.0/19 maxlen: 24
200.118.0.0/16 maxlen: 24
201.221.160.0/20 maxlen: 24
200.89.224.0/20 maxlen: 24
201.216.32.0/19 maxlen: 24
190.8.224.0/19 maxlen: 24
190.8.192.0/19 maxlen: 24
190.84.0.0/16 maxlen: 24
190.156.0.0/16 maxlen: 24
190.157.0.0/16 maxlen: 24
190.158.0.0/16 maxlen: 24
190.159.0.0/16 maxlen: 24
186.80.0.0/16 maxlen: 24
186.81.0.0/16 maxlen: 24
186.82.0.0/16 maxlen: 24
186.83.0.0/16 maxlen: 24
186.84.0.0/16 maxlen: 24
186.85.0.0/16 maxlen: 24
186.86.0.0/16 maxlen: 24
186.87.0.0/16 maxlen: 24
186.144.0.0/16 maxlen: 24
186.145.0.0/16 maxlen: 24
186.146.0.0/16 maxlen: 24
186.147.0.0/16 maxlen: 24
190.146.0.0/16 maxlen: 24
190.147.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 905227 (0xdd00b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Validity
Not Before: Mar 24 14:34:35 2021 GMT
Not After : Mar 24 14:34:35 2026 GMT
Subject: CN=fd02e86e76cfe7fc8ff3f674d3ab108dc0b08bba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4e:da:13:2d:84:05:df:7b:a2:fb:2e:ef:ce:
44:04:d3:7a:d6:3c:51:1a:f0:a6:54:f4:51:5a:49:
f8:a8:55:6f:58:43:65:a9:dd:cc:1a:e4:c6:32:e0:
2f:1d:22:e7:3f:f5:4e:e7:95:7a:6e:a0:23:fd:08:
50:45:48:0a:a1:5a:ea:34:23:a4:04:e1:b1:9c:e6:
e3:5c:e4:8a:43:49:92:bc:b6:94:2e:73:30:ff:53:
8f:e0:8d:50:00:d1:88:a2:1a:de:29:76:49:69:bc:
a8:9f:9a:da:e0:f6:93:2d:64:52:fb:f2:ef:d3:f1:
73:eb:2f:15:f7:60:57:39:ef:31:3b:0c:b0:d6:3e:
ce:d7:22:b9:1a:bd:b2:3b:40:f2:a8:3c:71:15:64:
8c:06:da:7c:5a:4e:2f:48:66:30:fc:67:9d:b2:2b:
17:79:2a:b8:ad:71:42:79:14:94:09:72:2c:10:d8:
b9:33:6f:38:67:a3:77:03:a5:c9:e2:86:1e:c2:c9:
0d:54:5e:fd:8f:c5:80:9d:5e:7c:47:68:1d:1b:15:
01:6f:58:98:57:50:11:04:ec:8c:5b:0a:76:43:0a:
cf:99:2a:19:f1:05:b5:8e:36:1c:57:e3:97:6a:8b:
38:bf:05:1e:4d:b2:ad:b7:b7:02:5f:9a:bd:91:1d:
d5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:B1:4E:05:41:12:80:09:37:36:26:34:32:7C:3D:FF:81:DC:CF:FC
X509v3 Authority Key Identifier:
keyid:A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/fd02e86e76cfe7fc8ff3f674d3ab108dc0b08bba.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/c1f68ecd3896b3288f83c29a2c3da44c821c7684.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.80.0.0/13
186.144.0.0/14
190.8.192.0/18
190.84.0.0/16
190.143.0.0/18
190.146.0.0/15
190.156.0.0/14
200.71.32.0/19
200.89.224.0/20
200.118.0.0/16
201.216.0.0/18
201.221.160.0/20
Signature Algorithm: sha256WithRSAEncryption
7f:34:b7:29:ff:3c:48:a5:3f:a7:3e:46:86:53:88:28:33:f1:
88:e8:67:6f:9b:b7:1a:9c:fd:5f:1d:29:94:10:b7:0b:15:71:
23:da:85:5c:d6:1a:10:c4:38:c6:1a:2a:d6:d1:1b:5a:63:64:
6a:4d:75:6a:12:b8:dd:bd:f0:7a:a8:cc:59:c2:69:a6:ae:2d:
b2:ea:41:e6:c1:ae:68:d8:41:bd:81:0d:43:93:27:26:dd:9d:
a4:54:7d:a4:ea:3a:11:5a:0e:c7:17:d0:e2:17:0c:2b:66:d4:
cb:ee:c4:62:b0:7f:c0:ed:b9:09:b7:ca:74:9e:dc:18:64:2c:
cc:cb:32:61:e7:68:9f:10:dc:21:2c:81:37:fb:74:1f:d4:07:
4d:04:9f:7b:d5:3a:da:b8:22:4a:d9:9b:3d:d3:3b:ee:dc:38:
05:c5:b2:7b:aa:e2:53:18:c9:02:92:77:b5:4c:d4:0c:c6:89:
cc:96:08:b1:02:10:36:7f:c4:60:00:14:35:94:e1:6b:d9:2c:
9f:a0:79:6c:02:9a:5e:88:ab:94:a0:6c:f0:13:c2:91:31:b6:
58:cd:21:cf:40:f6:da:73:3c:11:3f:57:9a:97:2c:6f:96:c5:
07:38:3f:a8:a3:c2:0e:7b:e1:00:06:85:ae:4d:d1:3d:05:fd:
62:ff:4e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:55 2024 by rpki-client on console-ams.rpki-client.org