Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/f62b17b812e134b3d30af3812be8e5b2afadf3b9.roa
File: f62b17b812e134b3d30af3812be8e5b2afadf3b9.roa (raw, json)
Hash identifier: 9LvxB2tCupBb7AZYNqWb2eeIVcUmks6z9wD4nue5v3Q=
Subject key identifier: 29:BD:CC:14:27:27:88:D6:36:6E:11:47:42:AF:31:2B:07:72:C0:E7
Certificate issuer: /CN=d85da304334fb36204a370e950487689e811a2c8
Certificate serial: 224E22
Authority key identifier: 95:A8:9C:41:76:01:10:8E:0E:98:02:3D:07:26:F4:4A:7C:51:0F:4B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d85da304334fb36204a370e950487689e811a2c8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/f62b17b812e134b3d30af3812be8e5b2afadf3b9.roa
Signing time: Tue 25 Apr 2023 15:05:45 +0000
ROA not before: Mon 24 Apr 2023 15:04:37 +0000
ROA not after: Fri 25 Apr 2025 15:04:37 +0000
asID: 18809
IP address blocks: 200.46.133.0/24 maxlen: 24
200.46.136.0/24 maxlen: 24
200.124.0.0/19 maxlen: 24
200.46.142.0/23 maxlen: 24
200.46.148.0/24 maxlen: 24
190.2.224.0/20 maxlen: 24
200.46.171.0/24 maxlen: 24
200.46.173.0/24 maxlen: 24
190.5.232.0/24 maxlen: 24
200.46.82.0/24 maxlen: 24
190.5.238.0/23 maxlen: 23
190.5.248.0/23 maxlen: 24
190.5.252.0/22 maxlen: 24
200.46.104.0/24 maxlen: 24
200.46.106.0/24 maxlen: 24
200.46.111.0/24 maxlen: 24
200.46.117.0/24 maxlen: 24
201.218.64.0/18 maxlen: 24
186.188.128.0/17 maxlen: 24
190.57.32.0/20 maxlen: 24
201.218.208.0/24 maxlen: 24
201.218.218.0/24 maxlen: 24
201.218.226.0/24 maxlen: 24
201.218.230.0/24 maxlen: 24
201.218.234.0/24 maxlen: 24
201.218.238.0/24 maxlen: 24
200.90.138.0/24 maxlen: 24
200.90.141.0/24 maxlen: 24
200.90.143.0/24 maxlen: 24
200.46.202.0/24 maxlen: 24
200.46.205.0/24 maxlen: 24
200.46.215.0/24 maxlen: 24
200.46.232.0/22 maxlen: 24
190.140.0.0/15 maxlen: 24
200.46.55.0/24 maxlen: 24
200.46.62.0/24 maxlen: 24
190.218.0.0/15 maxlen: 24
200.46.66.0/23 maxlen: 24
200.46.68.0/23 maxlen: 24
200.46.70.0/24 maxlen: 24
190.5.224.0/24 maxlen: 24
200.46.72.0/24 maxlen: 24
200.46.1.0/24 maxlen: 24
200.46.3.0/24 maxlen: 24
200.46.4.0/22 maxlen: 24
200.46.15.0/24 maxlen: 24
200.46.16.0/24 maxlen: 24
200.46.20.0/24 maxlen: 24
138.186.88.0/22 maxlen: 24
200.115.159.0/24 maxlen: 24
186.179.112.0/20 maxlen: 24
200.115.143.0/24 maxlen: 24
181.197.0.0/17 maxlen: 24
181.197.128.0/18 maxlen: 24
200.75.192.0/18 maxlen: 24
190.122.162.0/24 maxlen: 24
190.122.165.0/24 maxlen: 24
190.122.167.0/24 maxlen: 24
190.122.168.0/24 maxlen: 24
190.122.172.0/23 maxlen: 24
190.122.175.0/24 maxlen: 24
200.108.32.0/19 maxlen: 24
201.218.246.0/24 maxlen: 24
201.218.248.0/24 maxlen: 24
201.218.250.0/24 maxlen: 24
201.218.253.0/24 maxlen: 24
200.3.200.0/21 maxlen: 24
2800:ce0::/32 maxlen: 56
2803:e600::/32 maxlen: 56
2803:600::/32 maxlen: 56
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2248226 (0x224e22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85da304334fb36204a370e950487689e811a2c8
Validity
Not Before: Apr 24 15:04:37 2023 GMT
Not After : Apr 25 15:04:37 2025 GMT
Subject: CN=f62b17b812e134b3d30af3812be8e5b2afadf3b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:50:44:29:94:0e:ad:19:64:d7:30:bb:79:58:
62:3b:45:96:fb:22:27:55:34:5b:fd:d4:b2:20:01:
ae:87:73:9d:c3:84:9c:62:00:7e:14:d8:10:dc:3e:
c6:bc:04:de:da:7c:2b:1d:c2:27:fc:7d:6b:4b:b9:
40:b0:8b:b5:78:2e:e4:0e:8b:ca:f6:bd:7c:43:bb:
83:4a:bf:6f:86:3e:e6:9e:c2:b8:13:8b:bd:5f:2c:
f8:d4:a0:e8:05:68:a0:db:91:95:a1:74:05:bc:8a:
a6:3a:6c:30:3e:bc:46:5d:b1:ed:20:b0:ff:fa:7f:
1c:3f:00:ed:62:39:aa:ff:21:2f:b5:86:b9:0d:77:
d6:ee:94:b0:b6:c9:0a:58:22:cd:f9:15:88:51:4a:
7d:e2:4d:9a:5a:8b:a9:94:38:26:d5:72:9f:6b:7b:
8f:59:29:4e:66:43:a6:6d:98:f6:b2:d9:b6:7c:6e:
ef:84:33:31:fb:8f:e8:6b:33:e3:58:ce:4f:cf:ae:
b0:62:92:17:04:50:a4:f4:5f:54:56:c5:7d:f7:4b:
3a:fe:6f:e4:01:2f:8e:d1:29:43:2a:26:4e:a4:d0:
9b:8a:39:83:03:f5:e2:9b:40:e4:b4:73:0d:0d:b1:
a7:44:8a:49:6e:18:e5:be:7a:94:0f:7e:9e:14:4e:
55:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:BD:CC:14:27:27:88:D6:36:6E:11:47:42:AF:31:2B:07:72:C0:E7
X509v3 Authority Key Identifier:
keyid:95:A8:9C:41:76:01:10:8E:0E:98:02:3D:07:26:F4:4A:7C:51:0F:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d85da304334fb36204a370e950487689e811a2c8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/f62b17b812e134b3d30af3812be8e5b2afadf3b9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1cc548ff-8f0c-4e75-8125-5e095fbf24c0/d85da304334fb36204a370e950487689e811a2c8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.186.88.0/22
181.197.0.0-181.197.191.255
186.179.112.0/20
186.188.128.0/17
190.2.224.0/20
190.5.224.0/24
190.5.232.0/24
190.5.238.0/23
190.5.248.0/23
190.5.252.0/22
190.57.32.0/20
190.122.162.0/24
190.122.165.0/24
190.122.167.0-190.122.168.255
190.122.172.0/23
190.122.175.0/24
190.140.0.0/15
190.218.0.0/15
200.3.200.0/21
200.46.1.0/24
200.46.3.0-200.46.7.255
200.46.15.0-200.46.16.255
200.46.20.0/24
200.46.55.0/24
200.46.62.0/24
200.46.66.0-200.46.70.255
200.46.72.0/24
200.46.82.0/24
200.46.104.0/24
200.46.106.0/24
200.46.111.0/24
200.46.117.0/24
200.46.133.0/24
200.46.136.0/24
200.46.142.0/23
200.46.148.0/24
200.46.171.0/24
200.46.173.0/24
200.46.202.0/24
200.46.205.0/24
200.46.215.0/24
200.46.232.0/22
200.75.192.0/18
200.90.138.0/24
200.90.141.0/24
200.90.143.0/24
200.108.32.0/19
200.115.143.0/24
200.115.159.0/24
200.124.0.0/19
201.218.64.0/18
201.218.208.0/24
201.218.218.0/24
201.218.226.0/24
201.218.230.0/24
201.218.234.0/24
201.218.238.0/24
201.218.246.0/24
201.218.248.0/24
201.218.250.0/24
201.218.253.0/24
IPv6:
2800:ce0::/32
2803:600::/32
2803:e600::/32
Signature Algorithm: sha256WithRSAEncryption
79:45:68:79:07:ef:ed:89:da:a9:05:5a:b2:4b:c6:11:2a:88:
7b:0a:54:ee:12:bb:e6:38:35:6c:0c:f2:0f:3d:32:24:1c:c0:
a4:20:39:7e:4c:46:f3:9f:d5:5d:60:b8:fb:98:f3:e5:23:0a:
8f:a5:1f:f6:b4:51:0e:56:03:83:cd:78:2d:61:a0:8e:ee:e7:
5d:21:86:e8:1c:c4:ab:16:e6:3f:04:38:e5:fe:b8:41:78:0b:
4e:be:70:1a:58:91:c3:82:42:7e:de:57:ca:ab:6b:0c:02:92:
82:98:4f:1e:09:63:14:da:25:13:f7:27:93:86:fc:31:ed:0e:
8b:5e:aa:37:eb:ce:68:b8:66:30:b2:8c:cc:b0:5a:c5:26:f9:
a7:84:56:62:92:b9:d7:7b:74:9d:9e:32:35:ed:69:85:b2:38:
62:bb:1e:a4:e5:93:35:27:b3:b0:82:35:7b:79:b0:67:67:66:
54:c8:54:b8:60:de:3d:10:49:56:90:06:d9:36:68:bc:a1:2d:
97:f8:62:47:75:64:30:ef:55:78:26:1a:36:85:bb:08:dd:e6:
dc:c0:b2:0e:c0:7d:fa:74:11:7e:3f:ea:37:0a:5c:db:dc:7c:
e4:f4:3a:47:fe:84:8a:a7:39:3d:0f:5e:93:70:e1:58:40:c1:
3f:b4:df:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:23 2024 by rpki-client on console-fra.rpki-client.org