Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/15c2558a-1d51-4566-a755-b79b45a14a63/649275ee82e97b25967ce45cb6a6af9b43b0f791.roa
File: 649275ee82e97b25967ce45cb6a6af9b43b0f791.roa (raw, json)
Hash identifier: ls1vNrcPVYtBDlzqB0e1IlBM6gv96Ptg3tks7MhcmSU=
Subject key identifier: B1:38:23:D6:92:86:1A:81:91:4F:98:FA:08:61:D8:F0:82:3D:8C:A3
Certificate issuer: /CN=49acb4fa1985b3a9a0355a4a9fa5bf64d61c6145
Certificate serial: 2084B3
Authority key identifier: 86:C6:F5:E4:00:61:03:3C:95:A1:25:D0:DD:5E:0E:4F:35:83:1A:3E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/49acb4fa1985b3a9a0355a4a9fa5bf64d61c6145.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/15c2558a-1d51-4566-a755-b79b45a14a63/649275ee82e97b25967ce45cb6a6af9b43b0f791.roa
Signing time: Fri 12 May 2023 13:04:39 +0000
ROA not before: Thu 11 May 2023 13:04:38 +0000
ROA not after: Mon 12 May 2025 13:04:38 +0000
asID: 262191
IP address blocks: 168.228.124.0/24 maxlen: 24
190.131.192.0/23 maxlen: 24
190.131.194.0/24 maxlen: 24
190.131.196.0/22 maxlen: 24
190.131.200.0/21 maxlen: 24
190.131.208.0/23 maxlen: 24
138.121.12.0/22 maxlen: 24
190.131.211.0/24 maxlen: 24
190.131.212.0/22 maxlen: 24
190.131.216.0/22 maxlen: 24
190.131.220.0/23 maxlen: 24
190.131.223.0/24 maxlen: 24
190.131.224.0/19 maxlen: 24
2800:b70:e::/47 maxlen: 48
2800:b70:2::/47 maxlen: 48
2800:b70:4::/46 maxlen: 48
2800:b70:8::/47 maxlen: 48
2800:b70:a::/48 maxlen: 48
2800:b70:801::/48 maxlen: 48
2800:b70:11::/48 maxlen: 48
2800:b70:12::/48 maxlen: 48
2800:b70:102::/48 maxlen: 48
2800:b70:400::/48 maxlen: 48
2800:b70:2000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2131123 (0x2084b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49acb4fa1985b3a9a0355a4a9fa5bf64d61c6145
Validity
Not Before: May 11 13:04:38 2023 GMT
Not After : May 12 13:04:38 2025 GMT
Subject: CN=649275ee82e97b25967ce45cb6a6af9b43b0f791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:88:8c:e3:1c:7b:f4:8e:b2:55:ac:d3:8e:30:
98:65:3b:be:4b:1d:c1:97:db:e6:a4:42:05:15:89:
cd:ba:a6:d8:52:5a:19:fe:5d:0c:fb:43:45:68:88:
e1:aa:8e:ad:5d:0b:2e:a0:4a:d7:8d:e5:88:ab:16:
6f:7a:e7:74:d8:56:de:67:b7:61:e9:16:29:0f:99:
3c:e2:25:04:38:61:7b:f3:a5:fc:d3:1b:58:fa:c4:
1d:aa:62:86:4a:80:d6:04:2b:bd:4f:7b:3b:7e:a2:
aa:93:ea:eb:5e:5d:af:75:2f:b2:89:01:a2:88:63:
70:74:9b:de:19:56:d2:27:af:b6:b8:ed:7b:6e:04:
36:71:56:fb:1e:af:44:f6:83:3b:d1:ad:38:f2:a7:
ae:70:e2:be:7e:c5:a2:5d:8a:3f:33:9b:61:3a:55:
c0:b1:78:5e:d7:ab:6e:c4:75:bc:e6:06:4a:50:fa:
38:a6:e5:f4:6e:b1:8f:9a:45:8d:9f:cc:ee:d4:8f:
de:4f:56:f4:3a:db:e6:74:80:23:81:ad:7b:85:78:
f2:94:2d:74:da:4b:cc:fd:cf:75:e7:4a:df:65:a8:
14:9b:b5:f5:07:61:e1:b1:df:88:f4:7d:7f:50:ee:
98:12:55:cf:38:88:3e:2f:c0:dc:4c:58:3c:e0:8d:
f7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:38:23:D6:92:86:1A:81:91:4F:98:FA:08:61:D8:F0:82:3D:8C:A3
X509v3 Authority Key Identifier:
keyid:86:C6:F5:E4:00:61:03:3C:95:A1:25:D0:DD:5E:0E:4F:35:83:1A:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/49acb4fa1985b3a9a0355a4a9fa5bf64d61c6145.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/15c2558a-1d51-4566-a755-b79b45a14a63/649275ee82e97b25967ce45cb6a6af9b43b0f791.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/15c2558a-1d51-4566-a755-b79b45a14a63/49acb4fa1985b3a9a0355a4a9fa5bf64d61c6145.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.121.12.0/22
168.228.124.0/24
190.131.192.0-190.131.194.255
190.131.196.0-190.131.209.255
190.131.211.0-190.131.221.255
190.131.223.0-190.131.255.255
IPv6:
2800:b70:2::-2800:b70:a:ffff:ffff:ffff:ffff:ffff
2800:b70:e::/47
2800:b70:11::-2800:b70:12:ffff:ffff:ffff:ffff:ffff
2800:b70:102::/48
2800:b70:400::/48
2800:b70:801::/48
2800:b70:2000::/48
Signature Algorithm: sha256WithRSAEncryption
38:96:93:05:b7:e5:42:c9:43:a8:7e:52:9b:af:5a:a1:9a:11:
d7:85:01:ca:45:7f:c4:5f:d4:09:37:53:c0:74:9c:82:88:10:
b4:44:a1:9b:2d:c5:c7:ae:71:3d:61:f5:6c:d7:17:97:33:b4:
83:2f:0b:6b:3b:a1:ea:14:c5:12:43:00:bf:ff:d7:48:7e:de:
14:12:08:bb:7f:35:04:64:45:c7:7f:bb:4e:ab:3f:dc:ee:e0:
54:01:7f:6c:bd:9e:3b:e8:10:5b:e9:60:be:8b:64:cc:c2:59:
63:26:52:55:e3:d9:b6:8b:77:01:01:b6:39:eb:70:62:66:7c:
a2:47:e5:77:a6:74:67:a5:0f:46:85:a5:f9:0d:2d:0d:d8:28:
22:8a:f9:0d:d9:1c:60:7a:a8:b3:77:33:b1:f3:49:64:82:35:
61:f5:c8:07:2e:2c:34:4c:51:3a:4a:b8:e1:3a:5c:8f:60:ca:
b5:a5:d3:b9:f0:8d:c3:05:f8:8d:86:25:2c:90:07:cd:a9:92:
b8:5b:7b:be:0b:d7:2f:1b:08:dc:7d:66:b0:4a:82:b9:56:09:
08:ab:b0:67:ae:9c:1f:26:ac:bb:a9:86:be:62:4f:99:37:f1:
be:ba:80:16:e3:29:51:f3:51:b0:05:aa:74:35:69:2c:ac:48:
f7:b0:20:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:02 2024 by rpki-client on console-fra.rpki-client.org