Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0ef5686d-fc66-4c8e-be4f-da69fbc2bfb5/414bf404294961e6d4418e5700e3c77a18807761.roa
File: 414bf404294961e6d4418e5700e3c77a18807761.roa (raw, json)
Hash identifier: 7joFsF8uFCYpAKiV9E69MKxgjoKdNmoB1FhlNlblTZI=
Subject key identifier: 21:B6:E8:1D:C7:54:37:4C:CB:A9:6C:0A:7B:3A:4E:B0:A6:58:C0:2E
Certificate issuer: /CN=c2cfc3212455464cd8f856a348b2d5caf73dcd73
Certificate serial: 1E597A
Authority key identifier: ED:97:60:23:07:66:80:76:63:22:9F:6D:41:28:05:07:EF:9D:C2:29
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c2cfc3212455464cd8f856a348b2d5caf73dcd73.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0ef5686d-fc66-4c8e-be4f-da69fbc2bfb5/414bf404294961e6d4418e5700e3c77a18807761.roa
Signing time: Thu 23 Mar 2023 08:30:33 +0000
ROA not before: Wed 22 Mar 2023 08:30:33 +0000
ROA not after: Fri 21 Mar 2025 08:30:33 +0000
asID: 18747
IP address blocks: 181.78.32.0/24 maxlen: 24
181.78.128.0/18 maxlen: 18
181.78.128.0/19 maxlen: 19
181.78.160.0/21 maxlen: 21
181.78.192.0/18 maxlen: 18
181.78.192.0/19 maxlen: 19
181.78.224.0/21 maxlen: 21
181.78.64.0/18 maxlen: 18
181.78.64.0/19 maxlen: 19
181.78.96.0/21 maxlen: 21
181.78.160.0/19 maxlen: 24
181.78.160.0/24 maxlen: 24
181.78.161.0/24 maxlen: 24
181.78.162.0/24 maxlen: 24
181.78.163.0/24 maxlen: 24
181.78.164.0/24 maxlen: 24
181.79.64.0/21 maxlen: 21
181.79.72.0/23 maxlen: 23
181.79.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1988986 (0x1e597a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2cfc3212455464cd8f856a348b2d5caf73dcd73
Validity
Not Before: Mar 22 08:30:33 2023 GMT
Not After : Mar 21 08:30:33 2025 GMT
Subject: CN=414bf404294961e6d4418e5700e3c77a18807761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5d:c2:d1:dd:02:87:be:95:3c:79:ed:68:d6:
26:96:19:07:44:48:4c:2c:e8:47:07:86:60:0a:48:
75:4d:df:8e:de:ac:33:40:4f:dd:db:75:fc:1d:42:
12:4b:d6:67:3d:cf:ea:13:46:a0:a7:a6:b7:59:c5:
06:dd:0b:45:19:1f:ae:5d:48:de:7e:5a:1e:14:be:
af:29:44:a9:16:b3:12:37:f3:5d:8a:14:92:81:e7:
a7:d0:07:2c:5d:47:1c:ea:c8:3c:59:93:34:13:83:
3b:96:1d:49:5e:96:5b:cf:8d:a4:28:ec:1b:c5:6b:
c8:74:29:26:fc:92:eb:3f:12:da:e0:bb:e3:a0:3d:
2c:29:da:e5:ee:80:d7:c2:90:a4:e3:53:43:5d:d4:
e7:63:7f:f1:99:da:bf:e8:03:7a:cb:57:11:ce:54:
8a:57:bc:48:1f:45:84:e0:96:16:03:e2:6e:73:7d:
56:b8:a5:9a:d5:8d:bd:66:97:27:c5:bd:75:7a:80:
38:36:34:2a:44:9e:0b:88:96:c3:49:57:5d:d8:e8:
b9:65:c3:75:0b:de:5f:60:eb:0a:d3:72:22:d5:ec:
54:73:f6:1a:e0:fe:a4:56:0c:30:bd:22:9b:43:4b:
99:b0:5e:46:31:bc:9c:28:8b:82:a4:b2:87:fc:6d:
b3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:B6:E8:1D:C7:54:37:4C:CB:A9:6C:0A:7B:3A:4E:B0:A6:58:C0:2E
X509v3 Authority Key Identifier:
keyid:ED:97:60:23:07:66:80:76:63:22:9F:6D:41:28:05:07:EF:9D:C2:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c2cfc3212455464cd8f856a348b2d5caf73dcd73.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0ef5686d-fc66-4c8e-be4f-da69fbc2bfb5/414bf404294961e6d4418e5700e3c77a18807761.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0ef5686d-fc66-4c8e-be4f-da69fbc2bfb5/c2cfc3212455464cd8f856a348b2d5caf73dcd73.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.78.32.0/24
181.78.64.0-181.78.255.255
181.79.64.0-181.79.73.255
181.79.220.0/22
Signature Algorithm: sha256WithRSAEncryption
72:93:d4:c3:39:00:7a:ac:ae:f4:95:da:71:3c:25:5e:63:7a:
d5:9d:81:56:44:fd:98:1a:af:8b:65:93:9b:25:07:04:93:b0:
7f:ae:63:85:fe:77:3c:19:19:00:1d:30:4c:8b:85:c0:c3:19:
c8:99:b8:6d:56:49:ee:05:ec:db:a9:c5:65:b1:0d:d7:b6:9c:
55:10:b3:16:7e:75:90:21:63:e0:20:fe:d6:de:d5:a9:75:dd:
91:97:aa:7f:01:17:c7:ac:32:df:3a:3d:cb:77:18:ed:b3:c1:
ef:51:94:4d:56:3b:eb:a7:f5:04:45:82:e8:8d:70:f5:ca:bb:
d8:fa:6e:8b:65:a0:a6:1a:03:7d:5d:a3:d5:50:a0:bd:7b:21:
4a:82:cd:b3:15:09:0d:c6:fd:b8:14:38:60:2f:eb:28:75:68:
8b:a8:1e:96:24:c8:cf:99:b2:61:03:48:e0:c6:ce:51:f2:15:
a2:07:52:3b:92:ba:27:79:e6:17:e2:c6:7f:e8:4d:1a:a8:91:
c6:5d:4f:78:46:69:a1:70:38:6e:49:a8:5f:4a:95:9c:c4:1c:
fb:8f:10:5d:25:0e:4f:bf:a3:0e:ec:39:16:77:aa:9b:38:9b:
e4:04:d8:e9:c8:17:89:cd:02:aa:72:35:e6:c1:1c:c0:0b:39:
59:5c:21:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-ams.rpki-client.org