Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1dae3a98-a428-47cf-942e-c76eecde42aa/0d860d14033606c28b100ea97137acf93bae61e5.roa
File: 0d860d14033606c28b100ea97137acf93bae61e5.roa (raw, json)
Hash identifier: /DwJdjUGWzsmVRs0aTE71OfEuwhKoRDaSgIVG5TC2Qw=
Subject key identifier: 3E:A5:E3:1D:B4:4D:E2:90:10:5A:EC:84:63:AB:2F:75:37:BC:E6:A6
Certificate issuer: /CN=618d81debd8e70398acd1f9298d63fe47bdc09ff
Certificate serial: 0EA894
Authority key identifier: B6:98:DB:EB:36:C6:DC:92:DA:A3:B7:29:1A:9C:7D:65:8C:62:77:DD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/618d81debd8e70398acd1f9298d63fe47bdc09ff.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1dae3a98-a428-47cf-942e-c76eecde42aa/0d860d14033606c28b100ea97137acf93bae61e5.roa
Signing time: Fri 07 Oct 2022 19:45:07 +0000
ROA not before: Fri 07 Oct 2022 19:44:12 +0000
ROA not after: Mon 07 Oct 2024 19:44:12 +0000
asID: 4995
IP address blocks: 200.2.193.0/24 maxlen: 24
200.2.196.0/24 maxlen: 24
200.2.197.0/24 maxlen: 24
200.2.198.0/24 maxlen: 24
200.2.199.0/24 maxlen: 24
200.2.206.0/24 maxlen: 24
200.2.207.0/24 maxlen: 24
200.2.209.0/24 maxlen: 24
200.2.214.0/24 maxlen: 24
200.2.215.0/24 maxlen: 24
200.2.216.0/24 maxlen: 24
200.2.222.0/24 maxlen: 24
200.2.224.0/24 maxlen: 24
200.2.246.0/24 maxlen: 24
200.29.7.0/24 maxlen: 24
200.29.8.0/24 maxlen: 24
200.29.9.0/24 maxlen: 24
200.29.10.0/24 maxlen: 24
200.29.11.0/24 maxlen: 24
200.29.24.0/24 maxlen: 24
200.29.28.0/24 maxlen: 24
200.29.76.0/24 maxlen: 24
200.29.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960660 (0xea894)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618d81debd8e70398acd1f9298d63fe47bdc09ff
Validity
Not Before: Oct 7 19:44:12 2022 GMT
Not After : Oct 7 19:44:12 2024 GMT
Subject: CN=0d860d14033606c28b100ea97137acf93bae61e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:45:69:dd:1f:00:00:b2:89:11:fe:01:3a:b4:
0a:27:4b:d7:7a:88:a6:79:7c:37:8e:86:e8:14:73:
04:a6:4e:97:21:82:a0:38:56:e4:b2:94:76:45:39:
7a:d0:55:66:d9:d6:83:d2:96:a9:a8:07:66:8d:9d:
da:18:b7:33:21:3d:9c:ee:4f:ec:bc:6f:e3:46:38:
ba:8a:7c:28:75:81:a2:c1:7e:bd:de:d5:6b:53:d9:
2c:83:48:ce:d8:aa:fe:0a:9a:88:a5:80:4f:b2:08:
e5:47:b4:5a:93:30:77:bf:e5:87:c4:62:23:5b:97:
7b:e4:c0:71:77:34:e0:a5:6b:0a:e5:fe:0c:82:4a:
dd:d3:ae:fd:55:3d:de:18:20:fd:db:ff:56:83:8f:
dd:c7:1d:2b:cd:fe:52:d7:e1:d8:6c:74:31:ba:2d:
ab:10:3d:c5:ef:61:d2:4a:f3:b1:70:1b:fb:ea:4c:
e8:01:0b:26:e0:2e:bd:7f:f6:ad:db:74:73:8e:fd:
2c:99:3b:02:7d:68:12:7e:7f:80:17:a5:ad:19:7e:
53:d2:59:32:3f:7e:46:3b:f8:99:7a:a7:30:07:47:
0c:47:04:0d:11:8c:d8:0b:e0:cf:62:d9:32:e3:e3:
d6:8e:75:55:a9:b4:f3:4b:f7:3f:f0:dd:bd:67:4b:
ad:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A5:E3:1D:B4:4D:E2:90:10:5A:EC:84:63:AB:2F:75:37:BC:E6:A6
X509v3 Authority Key Identifier:
keyid:B6:98:DB:EB:36:C6:DC:92:DA:A3:B7:29:1A:9C:7D:65:8C:62:77:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/618d81debd8e70398acd1f9298d63fe47bdc09ff.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1dae3a98-a428-47cf-942e-c76eecde42aa/0d860d14033606c28b100ea97137acf93bae61e5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1dae3a98-a428-47cf-942e-c76eecde42aa/618d81debd8e70398acd1f9298d63fe47bdc09ff.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.2.193.0/24
200.2.196.0/22
200.2.206.0/23
200.2.209.0/24
200.2.214.0-200.2.216.255
200.2.222.0/24
200.2.224.0/24
200.2.246.0/24
200.29.7.0-200.29.11.255
200.29.24.0/24
200.29.28.0/24
200.29.76.0/24
200.29.82.0/24
Signature Algorithm: sha256WithRSAEncryption
83:9b:37:c0:0f:a4:0c:66:11:aa:9c:3f:54:ee:c3:92:6c:01:
9d:cc:3d:1f:14:bf:4d:e3:2a:f6:e7:7d:a8:3b:86:75:26:fc:
a6:ac:48:40:dc:05:97:93:1a:ef:2f:7a:bd:b5:ee:b4:3a:dd:
52:36:6f:de:8b:07:b2:ed:6a:fc:dd:01:d8:c8:fd:12:ae:05:
bc:75:17:14:a6:67:6d:6a:a6:31:f2:d5:d4:e9:4b:c9:c8:5c:
9f:3f:5e:b3:d9:40:65:ed:ad:1e:f1:8c:bb:74:e0:10:38:c4:
ef:cf:db:83:55:b1:54:97:aa:f7:3c:28:bc:8e:d6:4a:75:43:
e1:58:26:c6:5e:66:a4:e6:dd:3d:83:ab:ae:a7:e8:69:47:d7:
71:48:4c:d4:b7:c0:12:75:a4:3c:f2:79:b1:01:9e:5d:69:be:
23:eb:6e:da:19:57:7c:dc:1e:da:9f:fa:5c:76:aa:aa:e8:11:
b1:88:99:92:42:27:b3:7f:23:b4:21:52:a5:1e:54:d6:e8:b3:
ef:95:07:26:fd:e9:43:3e:d8:1f:a1:4d:58:d6:f0:36:82:c3:
88:ca:6b:c8:fd:75:86:c6:9a:71:93:d4:fc:f9:32:bf:75:3c:
98:fc:9f:6a:dd:d2:b6:18:43:ff:50:50:72:19:82:79:fc:2a:
51:2c:00:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:02 2024 by rpki-client on console-ams.rpki-client.org