Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1b7924a2-bf21-496d-a8e0-cf890812a577/e6c009e7059a7cc8ea4e1a21766315ca34190f8e.roa
File: e6c009e7059a7cc8ea4e1a21766315ca34190f8e.roa (raw, json)
Hash identifier: q1ZrC3+LPxpeglKZboqpF2013lMw1fXnOgJSkQpadO8=
Subject key identifier: 2B:86:97:50:5C:CE:8C:7A:24:BB:2E:E5:3D:A8:E7:61:55:D5:9E:E0
Certificate issuer: /CN=e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c
Certificate serial: 0D19AB
Authority key identifier: 17:73:3B:88:7C:39:A9:14:85:6A:EE:36:19:17:FC:E1:34:73:86:CD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1b7924a2-bf21-496d-a8e0-cf890812a577/e6c009e7059a7cc8ea4e1a21766315ca34190f8e.roa
Signing time: Wed 24 Mar 2021 14:39:14 +0000
ROA not before: Wed 24 Mar 2021 14:39:13 +0000
ROA not after: Tue 24 Mar 2026 14:39:13 +0000
asID: 23487
IP address blocks: 190.63.0.0/16 maxlen: 24
190.111.64.0/20 maxlen: 24
190.111.80.0/20 maxlen: 24
200.25.192.0/20 maxlen: 24
200.25.208.0/20 maxlen: 24
2800:430::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 858539 (0xd19ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c
Validity
Not Before: Mar 24 14:39:13 2021 GMT
Not After : Mar 24 14:39:13 2026 GMT
Subject: CN=e6c009e7059a7cc8ea4e1a21766315ca34190f8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:27:1c:e5:37:19:22:72:72:ae:d7:25:d3:11:
4f:6f:69:44:91:76:47:67:da:7f:95:e2:dc:d5:aa:
92:71:01:c4:1e:28:89:ab:f8:b2:26:04:24:a3:80:
c6:d0:05:70:1b:83:6e:5e:a4:f5:c9:79:47:55:89:
52:72:f8:22:2b:ef:9e:dd:30:14:90:5c:ec:b1:81:
ee:86:9c:f2:cd:a1:ba:a7:3e:da:3c:9b:0b:87:37:
77:5c:d3:63:89:59:5f:18:55:9b:f1:41:8b:6b:c0:
9e:02:2d:7e:f1:80:46:5d:b2:27:d2:42:ec:8b:21:
02:a5:78:96:33:76:52:fd:be:6d:9a:c0:ad:b3:13:
7e:7b:5f:ef:29:fb:f4:5d:a7:93:6e:03:f8:77:f9:
12:1a:c4:9f:d5:fc:79:cf:63:4f:0a:46:d9:df:16:
27:6d:65:9e:d0:81:5c:b0:a9:f5:23:ba:88:d5:1a:
1a:9a:4e:c8:b4:7a:41:3d:42:dd:c2:c7:f6:40:79:
cb:db:1a:2f:15:b1:d9:79:2c:f4:d7:73:57:32:13:
46:7f:12:e3:b7:c7:0c:a4:9f:93:50:de:d4:fb:7f:
fa:4e:df:c8:b3:f5:e3:81:14:4f:87:6e:76:08:11:
ac:6f:00:58:8f:32:ca:6d:66:7a:d6:4b:ff:08:0e:
9b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:86:97:50:5C:CE:8C:7A:24:BB:2E:E5:3D:A8:E7:61:55:D5:9E:E0
X509v3 Authority Key Identifier:
keyid:17:73:3B:88:7C:39:A9:14:85:6A:EE:36:19:17:FC:E1:34:73:86:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1b7924a2-bf21-496d-a8e0-cf890812a577/e6c009e7059a7cc8ea4e1a21766315ca34190f8e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1b7924a2-bf21-496d-a8e0-cf890812a577/e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.63.0.0/16
190.111.64.0/19
200.25.192.0/19
IPv6:
2800:430::/32
Signature Algorithm: sha256WithRSAEncryption
80:10:9c:ad:06:4f:84:37:fe:11:e3:fd:16:d5:c1:68:47:e6:
64:a0:1b:b1:b0:29:38:6e:6b:e3:f6:e4:e8:e1:10:58:45:9a:
9f:da:18:de:dc:29:9d:de:dd:73:48:59:55:d9:cd:02:71:cc:
2b:ca:24:ae:9c:fd:12:5d:1e:24:73:c6:13:33:9d:99:dc:9d:
4d:08:c9:a4:1c:ed:75:01:20:63:92:06:7a:18:ac:7d:e2:7e:
b6:c1:c5:d5:ca:2e:54:ac:c0:9d:34:a1:f2:f2:a4:c9:f3:36:
1f:84:82:d3:98:9f:c6:cf:64:40:9c:b0:d4:28:8f:06:5e:39:
9d:bb:06:a6:a8:89:66:af:6e:d5:c8:05:a6:89:f1:89:5b:45:
14:19:2e:24:7c:08:62:d5:15:82:04:ff:4b:38:e6:ca:65:c0:
b8:73:94:2f:05:5a:43:6a:85:b9:df:d1:98:28:33:07:5a:6e:
3b:b1:26:8c:02:d4:21:ce:31:f7:f7:fe:21:2c:6c:10:90:47:
a0:17:29:b5:d8:02:4b:29:70:2e:4f:e9:d6:a3:15:3a:6d:85:
3e:18:58:6d:bb:d1:5a:bc:7d:96:32:99:6f:12:b6:a1:61:ae:
f8:f4:91:d8:3b:43:f4:2d:9e:ee:b8:c0:d9:bb:ef:5f:f9:71:
8b:96:ab:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:17 2024 by rpki-client on console-ams.rpki-client.org