Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/18f9ef39-7199-4bf7-b2b1-6b30a01b84dc/ed221f0766afcc9bcabaf295307ed66ea13dfd4a.roa
File: ed221f0766afcc9bcabaf295307ed66ea13dfd4a.roa (raw, json)
Hash identifier: 4z6VnFKUtFD8Pc638jZ/2ze2CFCEUXzcwyOEaA0ifiQ=
Subject key identifier: 89:2A:6C:01:79:0F:99:E1:97:34:DC:B8:E7:9D:24:26:55:E7:8E:C4
Certificate issuer: /CN=e804a389c3b0880219ecf5f7a3c62d96a274b592
Certificate serial: 0D44D0
Authority key identifier: 4C:B1:1C:CB:1C:D3:F1:33:59:8C:6A:7C:8B:2A:39:9E:D2:9D:E5:E6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e804a389c3b0880219ecf5f7a3c62d96a274b592.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/18f9ef39-7199-4bf7-b2b1-6b30a01b84dc/ed221f0766afcc9bcabaf295307ed66ea13dfd4a.roa
Signing time: Wed 24 Mar 2021 14:47:25 +0000
ROA not before: Wed 24 Mar 2021 14:47:25 +0000
ROA not after: Tue 24 Mar 2026 14:47:25 +0000
asID: 8048
IP address blocks: 186.88.0.0/13 maxlen: 24
190.198.0.0/15 maxlen: 24
190.200.0.0/13 maxlen: 24
190.36.0.0/14 maxlen: 24
190.72.0.0/14 maxlen: 24
190.76.0.0/16 maxlen: 24
190.77.0.0/16 maxlen: 24
190.78.0.0/15 maxlen: 24
190.9.128.0/19 maxlen: 24
200.109.0.0/17 maxlen: 24
200.109.128.0/17 maxlen: 24
200.11.128.0/17 maxlen: 24
200.44.0.0/16 maxlen: 24
200.84.0.0/17 maxlen: 24
200.84.128.0/19 maxlen: 24
200.84.192.0/18 maxlen: 24
200.93.0.0/18 maxlen: 24
200.93.64.0/19 maxlen: 24
200.93.96.0/19 maxlen: 24
201.208.0.0/14 maxlen: 24
201.242.0.0/16 maxlen: 24
201.243.0.0/16 maxlen: 24
201.248.0.0/16 maxlen: 24
201.249.0.0/18 maxlen: 24
201.249.128.0/17 maxlen: 24
201.249.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 869584 (0xd44d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e804a389c3b0880219ecf5f7a3c62d96a274b592
Validity
Not Before: Mar 24 14:47:25 2021 GMT
Not After : Mar 24 14:47:25 2026 GMT
Subject: CN=ed221f0766afcc9bcabaf295307ed66ea13dfd4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a8:d8:50:89:39:48:07:68:d0:88:6e:0a:81:
86:44:ba:02:3b:77:91:e0:0e:86:d4:b1:00:36:9a:
45:4a:f7:6e:13:9f:99:7c:05:a7:72:79:20:73:2c:
4b:c8:40:26:ae:ee:9f:31:21:b1:59:a3:11:e7:1c:
77:20:34:38:8c:f6:7f:67:c9:6f:eb:1d:8b:cd:d0:
b6:89:4e:d1:9a:a7:ab:7e:7e:7a:32:ef:32:61:a1:
d0:18:11:e8:f8:a1:13:e3:86:38:cc:81:72:fb:6e:
2a:24:1b:67:89:99:52:97:96:5e:b9:4c:c4:ee:a0:
ac:07:92:15:eb:18:0d:44:77:76:1d:d0:ad:45:d5:
70:d0:0c:e9:ac:73:de:b0:6e:d3:0c:8c:c4:3c:08:
a0:f8:aa:6a:6a:1b:dc:d1:2e:27:8d:a3:05:6c:6e:
9f:dc:08:23:ab:29:26:94:e7:27:81:89:69:6b:db:
d4:4b:a5:7f:f0:7a:9b:e7:a8:c6:1d:f3:40:82:8c:
59:58:8e:62:9b:d6:d2:64:17:83:f2:3a:20:10:bc:
e4:37:e5:7b:c5:ed:1d:d2:15:5f:eb:01:4a:82:10:
b9:01:45:d1:cc:29:69:a7:b9:9b:dd:12:34:c1:6c:
32:09:04:37:ff:cb:fe:73:4a:13:db:55:07:42:8a:
47:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:2A:6C:01:79:0F:99:E1:97:34:DC:B8:E7:9D:24:26:55:E7:8E:C4
X509v3 Authority Key Identifier:
keyid:4C:B1:1C:CB:1C:D3:F1:33:59:8C:6A:7C:8B:2A:39:9E:D2:9D:E5:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e804a389c3b0880219ecf5f7a3c62d96a274b592.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/18f9ef39-7199-4bf7-b2b1-6b30a01b84dc/ed221f0766afcc9bcabaf295307ed66ea13dfd4a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/18f9ef39-7199-4bf7-b2b1-6b30a01b84dc/e804a389c3b0880219ecf5f7a3c62d96a274b592.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.88.0.0/13
190.9.128.0/19
190.36.0.0/14
190.72.0.0/13
190.198.0.0-190.207.255.255
200.11.128.0/17
200.44.0.0/16
200.84.0.0-200.84.159.255
200.84.192.0/18
200.93.0.0/17
200.109.0.0/16
201.208.0.0/14
201.242.0.0/15
201.248.0.0/15
Signature Algorithm: sha256WithRSAEncryption
0f:e8:92:71:bc:a3:db:53:f1:35:11:da:13:9c:bc:3a:a9:b3:
2d:3f:19:ec:5e:c8:ae:a6:e1:3b:f4:d2:55:bf:30:e8:57:cf:
20:83:9b:05:bb:4d:42:ed:f2:6f:35:5a:ae:e9:8b:f4:d8:d9:
2a:4b:08:bf:dc:14:56:c1:d6:65:38:a4:ac:aa:8c:2c:ef:dc:
d8:5f:63:75:27:d9:39:d5:54:62:44:33:e6:cd:7e:81:c9:56:
1a:a6:b6:7f:b6:e1:6e:90:0d:14:7a:16:3e:31:40:9a:e2:d1:
ff:55:97:6e:f6:6a:d7:b6:fa:15:20:e5:ad:78:75:23:a5:e8:
56:3e:6b:b4:44:3c:60:f9:ab:c9:c4:90:51:f8:9e:75:5a:c1:
42:c1:35:3b:3c:4d:81:dd:44:15:39:f2:19:6a:a5:00:b9:95:
fa:aa:7d:5b:51:a8:58:7f:7b:67:36:3b:ed:10:a9:19:36:26:
41:04:e9:a4:31:87:ed:9c:50:63:b8:3a:60:97:d3:00:ac:5a:
0e:a4:59:f4:49:18:e4:f4:96:b5:c0:0b:6b:b5:f3:1d:bc:57:
b2:ab:a2:06:c0:af:46:cb:5b:55:9c:9c:e8:c8:da:b7:2b:6f:
a5:52:47:9d:98:c9:74:c5:15:80:8d:a9:75:28:98:0d:b4:35:
1b:18:ba:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-ams.rpki-client.org