Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/18f9ef39-7199-4bf7-b2b1-6b30a01b84dc/10274c88f0fadd78e69a3c4c318f7d6bd825d0f7.roa
File: 10274c88f0fadd78e69a3c4c318f7d6bd825d0f7.roa (raw, json)
Hash identifier: lp0kQOO5fvAneqnSWRuJm5+Hw3YM324vrpr7yL3dnxM=
Subject key identifier: 5D:B5:87:FC:96:27:BA:8A:64:27:9E:F8:74:2D:AD:B4:83:B9:B2:84
Certificate issuer: /CN=e804a389c3b0880219ecf5f7a3c62d96a274b592
Certificate serial: 272BEA
Authority key identifier: 4C:B1:1C:CB:1C:D3:F1:33:59:8C:6A:7C:8B:2A:39:9E:D2:9D:E5:E6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e804a389c3b0880219ecf5f7a3c62d96a274b592.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/18f9ef39-7199-4bf7-b2b1-6b30a01b84dc/10274c88f0fadd78e69a3c4c318f7d6bd825d0f7.roa
Signing time: Mon 19 Feb 2024 13:55:13 +0000
ROA not before: Mon 19 Feb 2024 13:55:13 +0000
ROA not after: Thu 19 Feb 2026 13:55:13 +0000
asID: 8048
IP address blocks: 190.9.128.0/19 maxlen: 24
200.44.0.0/16 maxlen: 24
190.198.0.0/15 maxlen: 24
190.200.0.0/13 maxlen: 24
200.93.0.0/17 maxlen: 24
201.242.0.0/15 maxlen: 24
200.109.0.0/16 maxlen: 24
201.208.0.0/14 maxlen: 24
186.88.0.0/13 maxlen: 24
190.72.0.0/13 maxlen: 24
161.196.0.0/16 maxlen: 24
200.84.0.0/16 maxlen: 24
190.36.0.0/14 maxlen: 24
200.90.0.0/17 maxlen: 24
201.248.0.0/15 maxlen: 24
200.11.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2567146 (0x272bea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e804a389c3b0880219ecf5f7a3c62d96a274b592
Validity
Not Before: Feb 19 13:55:13 2024 GMT
Not After : Feb 19 13:55:13 2026 GMT
Subject: CN=10274c88f0fadd78e69a3c4c318f7d6bd825d0f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:45:1a:08:0b:e7:6c:ad:60:7f:2a:37:b6:d7:
2d:80:9b:24:6b:b3:d9:c6:2c:55:03:65:7b:c2:9c:
57:fc:cd:cb:48:15:b7:0c:68:eb:75:3e:8b:ef:b7:
03:db:a7:cc:f6:a2:76:ab:36:dc:fc:74:fc:f0:12:
d0:5f:8c:70:7e:82:98:80:96:15:1a:6d:d2:7a:34:
9e:64:cb:14:4f:b9:49:9f:1a:61:78:15:a1:29:c5:
00:2d:de:3e:1d:44:40:20:45:27:c6:dc:d4:95:02:
56:59:eb:06:d6:6b:2c:ba:62:bc:48:0a:34:bc:a7:
20:9b:b6:99:d2:bd:b1:b5:eb:a2:7b:1e:60:66:ea:
f0:cf:ab:9e:c9:fc:0c:86:02:9d:55:ff:d4:d5:00:
58:85:3c:0e:3a:7d:3d:17:cc:af:6e:0f:68:15:0d:
e3:16:24:38:67:80:7f:bf:af:11:4c:66:8c:c8:fe:
69:d3:4e:e9:7d:9b:e1:b3:21:28:96:94:85:e7:0a:
fe:fd:62:a9:02:0a:d0:bf:05:c9:7f:50:b2:75:a3:
2a:e2:e2:3b:ec:62:e9:99:06:cb:89:ed:56:87:1d:
6c:d3:dc:a5:8a:63:32:49:70:36:ca:3c:d4:c6:93:
d1:f3:7d:c5:39:85:01:06:41:d2:57:0a:4e:06:11:
ab:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B5:87:FC:96:27:BA:8A:64:27:9E:F8:74:2D:AD:B4:83:B9:B2:84
X509v3 Authority Key Identifier:
keyid:4C:B1:1C:CB:1C:D3:F1:33:59:8C:6A:7C:8B:2A:39:9E:D2:9D:E5:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e804a389c3b0880219ecf5f7a3c62d96a274b592.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/18f9ef39-7199-4bf7-b2b1-6b30a01b84dc/10274c88f0fadd78e69a3c4c318f7d6bd825d0f7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/18f9ef39-7199-4bf7-b2b1-6b30a01b84dc/e804a389c3b0880219ecf5f7a3c62d96a274b592.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.196.0.0/16
186.88.0.0/13
190.9.128.0/19
190.36.0.0/14
190.72.0.0/13
190.198.0.0-190.207.255.255
200.11.128.0/17
200.44.0.0/16
200.84.0.0/16
200.90.0.0/17
200.93.0.0/17
200.109.0.0/16
201.208.0.0/14
201.242.0.0/15
201.248.0.0/15
Signature Algorithm: sha256WithRSAEncryption
3d:2b:e2:94:9a:59:da:a0:7d:7f:ca:7d:84:51:b5:64:83:1c:
f6:f3:5b:a3:d2:10:d3:2c:03:49:94:6c:09:2f:8f:e3:2f:78:
d0:d1:52:52:25:45:f9:35:7a:c5:3a:89:a9:7a:8a:d2:58:e1:
c9:49:ad:56:38:bb:cf:e0:f6:33:82:22:28:ab:5c:cb:27:7d:
57:8a:18:0b:8c:b0:bc:7d:89:b8:ba:44:74:c8:f3:e0:5d:17:
7e:0f:b0:b6:26:24:2c:f6:3a:b2:9b:3b:89:ee:c9:25:92:b6:
96:2b:a8:49:7f:4f:3a:da:a6:ef:4f:ff:1c:f2:c6:fe:98:b1:
08:ca:f5:af:77:4d:80:6e:14:80:33:05:b1:bf:29:1d:90:a9:
b9:dc:9e:31:0e:86:c0:02:4c:8d:de:4d:99:76:12:9c:57:64:
ad:e5:a5:bb:b3:a5:de:7b:9d:6e:b8:c8:93:34:94:14:38:9b:
be:de:c2:0a:91:99:72:84:84:93:54:52:9d:d9:cf:a6:f1:e7:
15:42:ad:a0:5e:2f:c6:be:5a:ee:e9:1c:85:a4:60:64:0f:b2:
53:b7:b5:1c:f2:e5:31:33:97:9d:01:64:5c:90:62:71:e0:b6:
11:34:c0:af:f1:b9:3f:3d:7a:f4:b2:f2:0a:2e:9d:d9:8d:37:
00:41:22:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:17 2024 by rpki-client on console-ams.rpki-client.org