Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/fc76530f81cf22b8830b4aec55a84c63d295eb1e.roa
File: fc76530f81cf22b8830b4aec55a84c63d295eb1e.roa (raw, json)
Hash identifier: gA3s0WtltAuiTPMB5twuy9RagRY8sNqdDKoiA1gXalc=
Subject key identifier: 02:BA:74:9B:95:19:6D:78:5F:88:92:BA:5C:CC:B5:47:B0:4B:6E:7D
Certificate issuer: /CN=4ac5ea16ad07d29d2d29db8fbd5b3893571bb631
Certificate serial: 077760
Authority key identifier: 3A:C6:E4:AF:88:56:EC:CF:11:EB:BE:CA:5C:8E:50:5A:5C:19:11:26
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4ac5ea16ad07d29d2d29db8fbd5b3893571bb631.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/fc76530f81cf22b8830b4aec55a84c63d295eb1e.roa
Signing time: Fri 27 May 2022 00:24:41 +0000
ROA not before: Wed 09 Feb 2022 03:00:00 +0000
ROA not after: Fri 09 Feb 2024 03:00:00 +0000
asID: 26617
IP address blocks: 190.104.113.0/24 maxlen: 24
190.104.117.0/24 maxlen: 24
200.12.33.0/24 maxlen: 24
200.12.34.0/24 maxlen: 24
200.12.37.0/24 maxlen: 24
200.12.36.0/24 maxlen: 24
200.12.38.0/24 maxlen: 24
200.12.39.0/24 maxlen: 24
200.12.40.0/24 maxlen: 24
200.12.41.0/24 maxlen: 24
200.12.44.0/24 maxlen: 24
200.12.45.0/24 maxlen: 24
200.12.46.0/24 maxlen: 24
200.12.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 489312 (0x77760)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ac5ea16ad07d29d2d29db8fbd5b3893571bb631
Validity
Not Before: Feb 9 03:00:00 2022 GMT
Not After : Feb 9 03:00:00 2024 GMT
Subject: CN=fc76530f81cf22b8830b4aec55a84c63d295eb1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:60:36:7f:28:83:8c:a1:ee:eb:fa:c6:c2:51:
55:3e:a7:f9:b3:6e:f2:22:29:90:e0:c9:72:91:fd:
6b:49:43:cf:15:a5:43:72:e3:b2:a0:35:e8:1d:8e:
79:45:e3:9d:74:b9:96:57:e2:58:96:75:21:45:56:
1a:62:eb:68:9e:70:a4:82:87:79:ee:5f:2f:c0:6a:
42:c3:a1:1d:14:2c:92:25:21:05:0f:df:0d:b5:92:
05:fb:ea:c1:02:c1:65:6d:bd:79:d8:08:96:b1:7b:
0a:71:4d:44:4a:85:b0:68:48:1c:73:7b:4c:a2:67:
f4:e1:7f:21:79:4e:b2:26:18:e8:01:14:df:51:ef:
f4:e0:37:bd:04:7e:3b:6b:48:f6:58:37:bb:61:6a:
50:94:3f:26:dd:c8:7b:bf:a3:7a:00:41:00:e5:69:
02:60:a1:9f:16:f0:16:d0:ef:c3:47:f9:04:10:34:
6f:5f:87:b7:e6:ae:af:d8:1f:00:4d:42:f9:94:aa:
c6:10:ef:a9:82:51:91:ce:73:ec:51:75:d8:5c:55:
32:50:fb:61:c9:c2:ac:a4:fd:3e:3a:ed:92:77:c2:
e8:81:e1:45:f4:c5:83:e9:7a:37:38:39:5a:9a:e5:
93:53:d1:24:5d:ad:02:37:94:b1:10:5d:3b:97:2d:
90:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:BA:74:9B:95:19:6D:78:5F:88:92:BA:5C:CC:B5:47:B0:4B:6E:7D
X509v3 Authority Key Identifier:
keyid:3A:C6:E4:AF:88:56:EC:CF:11:EB:BE:CA:5C:8E:50:5A:5C:19:11:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4ac5ea16ad07d29d2d29db8fbd5b3893571bb631.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/fc76530f81cf22b8830b4aec55a84c63d295eb1e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/12c5a44c-f23f-4488-976e-f3b7d7828ebd/4ac5ea16ad07d29d2d29db8fbd5b3893571bb631.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.104.113.0/24
190.104.117.0/24
200.12.33.0-200.12.34.255
200.12.36.0-200.12.41.255
200.12.44.0-200.12.46.255
200.12.56.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:73:83:8f:6b:91:34:cb:dc:ac:14:94:a4:b0:53:04:f1:d5:
8a:a2:4a:03:96:69:00:bc:9f:0e:31:90:dc:83:72:52:3c:e1:
2c:c7:12:90:24:83:3e:05:ec:a9:48:0b:c2:bb:48:f3:ca:12:
53:93:48:cb:43:35:b4:f6:18:8b:39:64:03:67:41:9c:be:59:
29:ea:61:7f:fc:bc:50:3d:fd:1e:3d:41:db:b5:64:6b:66:b3:
5d:4d:08:e3:d2:56:67:86:2e:4a:cb:f5:2e:4d:d1:de:75:29:
18:d2:7d:a1:31:7f:de:5f:35:f4:b9:22:3e:9c:2b:2f:64:e0:
60:cd:3c:64:e4:4d:ba:70:cf:0d:b6:47:a7:78:68:c1:fe:74:
9e:45:3a:64:04:5a:81:e2:c8:b9:77:57:ec:3c:60:9c:ed:5b:
a9:79:32:bc:8c:ff:b8:03:15:06:23:31:1a:8d:4d:9b:e6:cf:
39:8b:84:2f:c0:cb:84:db:f3:5e:99:32:13:28:f8:4e:f4:13:
80:7b:90:2a:7b:57:7f:63:26:80:55:f5:81:a2:0a:8c:71:a3:
77:c6:82:cb:7a:ed:48:8c:13:bc:e3:a0:b5:66:bb:19:6e:0f:
1d:d9:23:71:c3:ef:ef:ad:11:a8:b2:52:9e:ac:6f:90:49:65:
dc:fd:58:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:00 2024 by rpki-client on console-ams.rpki-client.org