Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/e210f55b9d5c6ce5474ceece91f0b3e76609ee44.roa
File: e210f55b9d5c6ce5474ceece91f0b3e76609ee44.roa (raw, json)
Hash identifier: o+XjOUn34GgBgnWdzaIySNznJumbIPd9mSjRet+YdsA=
Subject key identifier: 65:D6:F9:B2:77:2A:AA:5C:A1:F5:DE:ED:1B:DD:40:53:14:3D:24:2E
Certificate issuer: /CN=4ac5ea16ad07d29d2d29db8fbd5b3893571bb631
Certificate serial: 12999A
Authority key identifier: 3A:C6:E4:AF:88:56:EC:CF:11:EB:BE:CA:5C:8E:50:5A:5C:19:11:26
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4ac5ea16ad07d29d2d29db8fbd5b3893571bb631.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/e210f55b9d5c6ce5474ceece91f0b3e76609ee44.roa
Signing time: Wed 16 Aug 2023 08:30:02 +0000
ROA not before: Tue 15 Aug 2023 08:30:02 +0000
ROA not after: Thu 14 Aug 2025 08:30:02 +0000
asID: 52362
IP address blocks: 190.14.128.0/24 maxlen: 24
190.14.129.0/24 maxlen: 24
190.14.130.0/24 maxlen: 24
190.14.131.0/24 maxlen: 24
190.14.135.0/24 maxlen: 24
190.14.136.0/24 maxlen: 24
190.14.137.0/24 maxlen: 24
190.14.138.0/24 maxlen: 24
190.14.139.0/24 maxlen: 24
190.14.140.0/24 maxlen: 24
190.14.141.0/24 maxlen: 24
190.14.143.0/24 maxlen: 24
190.104.112.0/24 maxlen: 24
190.104.114.0/24 maxlen: 24
190.104.116.0/24 maxlen: 24
190.104.119.0/24 maxlen: 24
190.104.120.0/24 maxlen: 24
190.104.121.0/24 maxlen: 24
190.104.124.0/24 maxlen: 24
190.104.125.0/24 maxlen: 24
190.104.126.0/24 maxlen: 24
190.104.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1218970 (0x12999a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ac5ea16ad07d29d2d29db8fbd5b3893571bb631
Validity
Not Before: Aug 15 08:30:02 2023 GMT
Not After : Aug 14 08:30:02 2025 GMT
Subject: CN=e210f55b9d5c6ce5474ceece91f0b3e76609ee44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:09:d1:f5:c5:84:0c:70:35:d3:c6:46:01:1f:
2f:4d:23:db:fc:03:6d:98:a1:41:a2:d6:e2:21:1e:
d5:b7:a2:3c:89:71:fb:b0:25:ee:e5:68:53:04:8c:
35:18:98:8c:ba:72:2c:8c:fc:cb:be:a2:bb:4f:e3:
87:99:ce:4b:dc:81:ec:5e:d6:38:31:b7:24:7b:59:
9a:bf:70:61:b3:4b:e6:ad:27:a2:86:7c:ab:99:37:
d0:fc:1b:7a:f0:cd:33:10:16:c5:fe:6f:16:45:09:
65:dd:45:df:96:85:0b:75:8b:e3:51:d4:cd:d7:2e:
89:04:7b:8d:6e:9a:17:87:27:60:9b:13:9a:3b:35:
e4:e9:cd:c0:a5:72:8e:c5:69:33:6a:50:ad:ac:d2:
82:72:a1:c3:4c:f9:d5:9a:f9:c7:4a:d6:bf:a4:42:
91:9e:93:b0:ab:aa:0b:7b:05:c5:cf:25:dc:d0:0f:
7a:03:3c:7f:8e:77:34:c2:ea:94:f4:80:e3:1d:e5:
32:e2:a5:8a:fa:22:27:94:cc:45:9e:e9:d4:ff:5a:
83:37:d2:47:ee:7a:10:ba:43:93:8d:f5:48:b2:af:
46:26:f4:9e:48:49:18:c9:9a:3a:ec:ba:1f:5f:22:
e9:74:a2:d1:0f:87:08:c1:f3:cb:d9:48:60:ba:db:
ab:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D6:F9:B2:77:2A:AA:5C:A1:F5:DE:ED:1B:DD:40:53:14:3D:24:2E
X509v3 Authority Key Identifier:
keyid:3A:C6:E4:AF:88:56:EC:CF:11:EB:BE:CA:5C:8E:50:5A:5C:19:11:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4ac5ea16ad07d29d2d29db8fbd5b3893571bb631.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/e210f55b9d5c6ce5474ceece91f0b3e76609ee44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/4ac5ea16ad07d29d2d29db8fbd5b3893571bb631.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.14.128.0/22
190.14.135.0-190.14.141.255
190.14.143.0/24
190.104.112.0/24
190.104.114.0/24
190.104.116.0/24
190.104.119.0-190.104.121.255
190.104.124.0/22
Signature Algorithm: sha256WithRSAEncryption
23:73:66:ba:a1:3f:16:57:9f:3c:23:a5:32:8e:33:b3:ac:09:
89:5b:65:72:0a:c6:f4:73:c0:5f:4f:f5:f0:c4:b8:69:3b:ed:
49:91:28:d6:c5:b2:c6:de:ed:fe:d1:b9:65:4a:1a:76:ce:c4:
07:6d:65:1e:b6:74:72:9b:0e:11:41:d2:40:de:77:57:7f:6d:
77:ea:0f:35:64:17:48:8d:4a:f0:c7:a8:c6:b9:5b:52:e4:47:
08:28:5a:51:96:07:e7:30:0e:55:1e:95:2c:86:d8:34:2f:d5:
0c:c2:78:a6:ac:d7:27:e1:57:60:1d:b3:57:f6:ef:b5:1c:49:
62:31:c2:52:bd:d4:bd:05:97:35:32:7d:44:f4:97:06:19:19:
3a:b4:e1:77:a0:0b:37:3f:15:6d:80:4d:44:18:e0:0c:9c:2f:
fd:0d:08:07:a7:03:ee:c3:a8:7f:b6:53:c8:b0:9b:71:02:b3:
1a:0f:8d:1e:53:19:0b:a9:22:02:d8:c3:80:47:52:d7:39:17:
df:1f:02:95:d3:f3:73:af:58:eb:55:cb:b7:66:2f:62:ca:a6:
ea:d8:05:6b:c3:ad:36:a6:c4:b3:d3:0b:f2:71:b1:9a:c8:36:
52:04:8b:07:e6:64:f0:b0:e0:62:65:36:a1:04:26:9e:ed:dc:
06:a9:66:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:22 2024 by rpki-client on console-fra.rpki-client.org