Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/089e197f-8382-4e8e-8029-12083966c90e/c70779300dbe157318ddd824bd7e05a6bf9b9286.roa
File: c70779300dbe157318ddd824bd7e05a6bf9b9286.roa (raw, json)
Hash identifier: HHz3j1BMfJ1q+bGsL8xpUtaLJWM4esBbZlzS59Wil0w=
Subject key identifier: C2:09:A1:B5:F5:B7:5A:05:C8:88:F1:8A:85:19:09:87:F2:08:96:9F
Certificate issuer: /CN=85b3896c526901b5ef8601c8920a18798a6a04a9
Certificate serial: 0D5726
Authority key identifier: 2C:C3:5B:33:C3:16:C4:7D:4C:4D:DA:59:0C:9F:FE:84:D7:90:F0:CA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/85b3896c526901b5ef8601c8920a18798a6a04a9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/089e197f-8382-4e8e-8029-12083966c90e/c70779300dbe157318ddd824bd7e05a6bf9b9286.roa
Signing time: Wed 24 Mar 2021 14:43:04 +0000
ROA not before: Wed 24 Mar 2021 14:43:03 +0000
ROA not after: Tue 24 Mar 2026 14:43:03 +0000
asID: 28539
IP address blocks: 138.186.200.0/22 maxlen: 24
170.247.172.0/22 maxlen: 24
201.150.0.0/21 maxlen: 24
201.150.8.0/22 maxlen: 24
201.159.96.0/21 maxlen: 24
201.159.104.0/22 maxlen: 24
201.159.108.0/22 maxlen: 24
201.159.124.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 874278 (0xd5726)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b3896c526901b5ef8601c8920a18798a6a04a9
Validity
Not Before: Mar 24 14:43:03 2021 GMT
Not After : Mar 24 14:43:03 2026 GMT
Subject: CN=c70779300dbe157318ddd824bd7e05a6bf9b9286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:17:c0:58:80:ab:7f:97:f0:75:7b:ae:eb:3f:
32:e6:30:c6:b8:6e:c2:9f:de:1d:5b:82:73:10:12:
f8:b4:cd:0b:1b:71:0d:d1:f6:43:ae:bc:14:b9:0c:
51:e3:df:06:f3:99:22:5d:74:29:e8:99:a2:de:46:
a2:39:0e:75:52:61:06:a1:47:c2:e7:dd:83:55:d6:
d4:ed:18:f3:74:89:f8:43:2a:51:1f:30:63:60:36:
b1:02:c3:57:a5:3f:7e:9c:cf:f0:d2:9b:1d:5d:9e:
9b:b9:c3:db:c6:94:03:93:8f:ad:32:6d:4b:86:d1:
54:f8:20:08:34:2a:ca:79:48:85:e8:4a:ee:a8:db:
d8:60:b1:6a:2c:d6:30:9f:5b:a0:63:81:21:53:04:
a3:5f:56:17:38:d5:52:b4:66:84:8a:d9:14:01:10:
09:ea:60:64:33:35:9c:95:19:6d:0f:e3:ca:43:54:
b4:1f:9b:74:a3:c3:86:b6:50:e1:ca:b6:2c:c2:88:
ad:30:ca:4f:c3:f6:8c:2e:fd:59:8c:81:85:cc:8d:
cb:3c:ad:c3:bd:c5:62:e5:a1:33:06:ed:93:96:0d:
39:6e:8e:09:2c:e4:5b:97:88:39:e8:15:8a:6b:7c:
b7:dd:79:05:03:69:e6:77:43:06:c3:ef:ba:bc:98:
35:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:09:A1:B5:F5:B7:5A:05:C8:88:F1:8A:85:19:09:87:F2:08:96:9F
X509v3 Authority Key Identifier:
keyid:2C:C3:5B:33:C3:16:C4:7D:4C:4D:DA:59:0C:9F:FE:84:D7:90:F0:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/85b3896c526901b5ef8601c8920a18798a6a04a9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/089e197f-8382-4e8e-8029-12083966c90e/c70779300dbe157318ddd824bd7e05a6bf9b9286.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/089e197f-8382-4e8e-8029-12083966c90e/85b3896c526901b5ef8601c8920a18798a6a04a9.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.186.200.0/22
170.247.172.0/22
201.150.0.0-201.150.11.255
201.159.96.0/20
201.159.124.0/22
Signature Algorithm: sha256WithRSAEncryption
31:35:80:94:cf:f9:e9:3f:b7:b1:b6:75:b4:b3:4e:f0:23:c4:
57:cd:15:0a:83:3d:82:03:71:96:db:c0:3c:39:8e:cc:5f:83:
c4:d4:59:f5:6b:82:53:50:c3:15:bc:ce:e0:27:2b:81:6f:38:
8e:ce:62:c7:4a:65:d4:b5:b4:ac:cd:6e:f1:93:29:79:c4:86:
0c:38:06:c4:b3:63:a0:77:ff:40:2b:76:5c:08:61:56:82:db:
5f:d5:6c:c8:95:5f:cf:43:33:59:49:cd:c5:3c:1c:90:9a:28:
b5:30:3d:28:a9:91:09:98:a4:48:eb:ab:e1:c9:da:50:96:69:
9c:39:6e:68:d9:25:85:44:a6:21:25:29:0d:01:f6:b3:18:82:
04:f4:79:8c:98:46:49:f3:fd:77:80:40:c7:b5:24:52:c9:15:
6c:32:d2:47:4b:a8:06:d5:be:6f:d1:ba:86:64:ef:b0:16:ef:
2f:d9:21:7a:83:53:2e:df:23:22:80:94:a1:96:d8:fa:65:3a:
ab:04:9a:2e:15:b8:98:fe:37:3c:ea:aa:c1:83:5d:44:a3:70:
b8:d3:dd:97:6a:d5:4c:e5:2a:55:da:08:df:e3:f1:0e:51:61:
02:18:9b:7b:14:42:ba:11:70:bf:cf:cd:07:2d:66:64:7b:03:
21:4e:ab:0e
-----BEGIN CERTIFICATE-----
MIIFXzCCBEegAwIBAgIDDVcmMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDg1
YjM4OTZjNTI2OTAxYjVlZjg2MDFjODkyMGExODc5OGE2YTA0YTkwHhcNMjEwMzI0
MTQ0MzAzWhcNMjYwMzI0MTQ0MzAzWjAzMTEwLwYDVQQDEyhjNzA3NzkzMDBkYmUx
NTczMThkZGQ4MjRiZDdlMDVhNmJmOWI5Mjg2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAiBfAWICrf5fwdXuu6z8y5jDGuG7Cn94dW4JzEBL4tM0LG3EN
0fZDrrwUuQxR498G85kiXXQp6Jmi3kaiOQ51UmEGoUfC592DVdbU7RjzdIn4QypR
HzBjYDaxAsNXpT9+nM/w0psdXZ6bucPbxpQDk4+tMm1LhtFU+CAINCrKeUiF6Eru
qNvYYLFqLNYwn1ugY4EhUwSjX1YXONVStGaEitkUARAJ6mBkMzWclRltD+PKQ1S0
H5t0o8OGtlDhyrYswoitMMpPw/aMLv1ZjIGFzI3LPK3DvcVi5aEzBu2Tlg05bo4J
LORbl4g56BWKa3y33XkFA2nmd0MGw++6vJg1zQIDAQABo4ICejCCAnYwHQYDVR0O
BBYEFMIJobX1t1oFyIjxioUZCYfyCJafMB8GA1UdIwQYMBaAFCzDWzPDFsR9TE3a
WQyf/oTXkPDKMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvODViMzg5
NmM1MjY5MDFiNWVmODYwMWM4OTIwYTE4Nzk4YTZhMDRhOS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMDg5ZTE5N2YtODM4Mi00ZThlLTgwMjktMTIwODM5
NjZjOTBlL2M3MDc3OTMwMGRiZTE1NzMxOGRkZDgyNGJkN2UwNWE2YmY5YjkyODYu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8wODllMTk3Zi04MzgyLTRlOGUtODAyOS0xMjA4
Mzk2NmM5MGUvODViMzg5NmM1MjY5MDFiNWVmODYwMWM4OTIwYTE4Nzk4YTZhMDRh
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA+BggrBgEFBQcBBwEB/wQv
MC0wKwQCAAEwJQMEAoq6yAMEAqr3rDALAwMByZYDBALJlggDBATJn2ADBALJn3ww
DQYJKoZIhvcNAQELBQADggEBADE1gJTP+ek/t7G2dbSzTvAjxFfNFQqDPYIDcZbb
wDw5jsxfg8TUWfVrglNQwxW8zuAnK4FvOI7OYsdKZdS1tKzNbvGTKXnEhgw4BsSz
Y6B3/0ArdlwIYVaC21/VbMiVX89DM1lJzcU8HJCaKLUwPSipkQmYpEjrq+HJ2lCW
aZw5bmjZJYVEpiElKQ0B9rMYggT0eYyYRknz/XeAQMe1JFLJFWwy0kdLqAbVvm/R
uoZk77AW7y/ZIXqDUy7fIyKAlKGW2PplOqsEmi4VuJj+NzzqqsGDXUSjcLjT3Zdq
1UzlKlXaCN/j8Q5RYQIYm3sUQroRcL/PzQctZmR7AyFOqw4=
-----END CERTIFICATE-----
Generated at Thu Aug 10 17:23:52 2023 by rpki-client on console-ams.rpki-client.org