Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/7e8620165991b9d24ebff7c1213d0f4637543eb8.roa
File: 7e8620165991b9d24ebff7c1213d0f4637543eb8.roa (raw, json)
Hash identifier: 8y0QhPAQESp2oxP62e4Wjli03eHf4JpHK6mqAVOFJbA=
Subject key identifier: D7:D9:F2:7E:3B:71:09:87:C1:5E:E4:D0:B4:18:42:FC:E7:CC:A5:43
Certificate issuer: /CN=ce24136a35f10502f080a99eec6f12882d2f04fa
Certificate serial: 155837
Authority key identifier: 2B:BF:EF:19:5F:7B:40:83:DF:37:7B:2F:FB:C7:7B:50:DD:10:0A:E3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ce24136a35f10502f080a99eec6f12882d2f04fa.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/7e8620165991b9d24ebff7c1213d0f4637543eb8.roa
Signing time: Mon 31 Jan 2022 19:57:10 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 7922
IP address blocks: 181.214.198.0/24 maxlen: 24
181.214.219.0/24 maxlen: 24
191.96.118.0/24 maxlen: 24
191.101.187.0/24 maxlen: 24
181.214.78.0/23 maxlen: 24
181.214.84.0/23 maxlen: 24
181.215.252.0/23 maxlen: 24
181.214.53.0/24 maxlen: 24
181.214.143.0/24 maxlen: 24
181.214.146.0/24 maxlen: 24
181.214.216.0/24 maxlen: 24
181.214.245.0/24 maxlen: 24
181.215.31.0/24 maxlen: 24
181.215.35.0/24 maxlen: 24
181.215.214.0/24 maxlen: 24
191.101.30.0/23 maxlen: 24
191.101.202.0/23 maxlen: 24
191.96.29.0/24 maxlen: 24
191.96.34.0/24 maxlen: 24
191.96.61.0/24 maxlen: 24
191.96.67.0/24 maxlen: 24
191.96.94.0/24 maxlen: 24
191.96.108.0/24 maxlen: 24
191.96.122.0/24 maxlen: 24
191.96.134.0/24 maxlen: 24
191.96.154.0/24 maxlen: 24
191.96.167.0/24 maxlen: 24
191.96.168.0/24 maxlen: 24
191.96.206.0/24 maxlen: 24
191.101.161.0/24 maxlen: 24
191.101.167.0/24 maxlen: 24
191.101.183.0/24 maxlen: 24
191.101.254.0/24 maxlen: 24
181.215.244.0/23 maxlen: 24
191.101.194.0/23 maxlen: 24
191.96.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1398839 (0x155837)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce24136a35f10502f080a99eec6f12882d2f04fa
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=7e8620165991b9d24ebff7c1213d0f4637543eb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:63:06:c7:6c:d4:3c:12:69:c2:bb:60:91:42:
c5:25:6a:e2:10:5c:da:3b:9f:fc:49:cb:ee:bf:57:
9f:93:26:cc:71:14:19:80:b2:53:f9:06:20:5f:00:
07:1f:79:f2:60:0b:af:2c:0b:fe:ca:00:b1:35:98:
b6:e4:9f:ba:f6:7a:ec:05:f8:b4:41:ab:3d:b9:96:
7b:13:be:2b:3f:d6:11:28:3c:0b:a5:b7:4a:8b:73:
53:47:c8:d4:12:7b:4c:ea:1a:ec:a1:a9:0b:db:ac:
c6:4e:53:82:93:88:30:17:70:2c:f7:5a:e9:7d:3c:
ef:8f:13:87:ec:c4:af:85:2a:90:52:e1:04:6e:65:
0c:99:37:6f:9c:cc:40:46:c8:10:03:fd:ab:d5:0f:
27:11:a5:5f:5c:61:81:a7:14:6b:3c:9a:9e:51:a9:
b4:33:72:28:87:09:db:8d:05:0a:f2:c1:ff:ab:81:
e5:4f:92:c4:ff:cb:95:df:6a:2b:f8:4c:73:5d:f1:
06:a8:c9:13:dc:1e:e3:88:64:3b:7c:3a:d8:32:90:
75:c2:c3:c5:9e:73:94:78:88:67:90:21:33:49:ae:
9d:ab:45:0a:dc:2e:7b:45:84:39:ec:b9:c3:05:ce:
93:94:94:0f:c5:b1:4d:cc:21:7e:90:13:f2:03:f4:
95:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D9:F2:7E:3B:71:09:87:C1:5E:E4:D0:B4:18:42:FC:E7:CC:A5:43
X509v3 Authority Key Identifier:
keyid:2B:BF:EF:19:5F:7B:40:83:DF:37:7B:2F:FB:C7:7B:50:DD:10:0A:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ce24136a35f10502f080a99eec6f12882d2f04fa.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/7e8620165991b9d24ebff7c1213d0f4637543eb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/ce24136a35f10502f080a99eec6f12882d2f04fa.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.53.0/24
181.214.78.0/23
181.214.84.0/23
181.214.143.0/24
181.214.146.0/24
181.214.198.0/24
181.214.216.0/24
181.214.219.0/24
181.214.245.0/24
181.215.31.0/24
181.215.35.0/24
181.215.214.0/24
181.215.244.0/23
181.215.252.0/23
191.96.29.0/24
191.96.34.0/24
191.96.61.0/24
191.96.67.0/24
191.96.94.0/24
191.96.108.0/24
191.96.118.0/24
191.96.122.0/24
191.96.134.0/24
191.96.154.0/24
191.96.167.0-191.96.168.255
191.96.206.0/24
191.96.233.0/24
191.101.30.0/23
191.101.161.0/24
191.101.167.0/24
191.101.183.0/24
191.101.187.0/24
191.101.194.0/23
191.101.202.0/23
191.101.254.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:a4:73:bb:15:9c:58:87:a9:57:50:27:86:d0:aa:d3:cb:f2:
cf:d2:94:97:dd:7c:9f:a0:e0:3c:7e:a1:de:a5:ae:ba:49:18:
5a:cb:62:f0:3b:74:8e:ed:c6:4a:3c:18:42:87:d4:d0:47:54:
0c:9d:b4:ce:36:68:c6:09:de:bc:53:71:81:ac:2c:97:2a:57:
02:f4:bd:7c:1d:ab:e6:bb:bb:0f:82:48:f6:51:04:0e:2f:e9:
aa:95:6c:7b:ec:ee:62:7b:57:75:13:7c:f6:6c:01:1f:de:ad:
7e:01:4a:6c:e2:98:c0:c9:aa:ca:fe:83:b0:84:9e:38:d0:7d:
b7:46:fa:32:ae:92:82:64:a2:01:cd:79:1d:57:4e:6d:28:ab:
97:71:8e:28:b6:df:65:67:19:9a:8f:49:aa:c7:24:eb:f2:5c:
03:4c:32:e1:5a:1d:2a:5b:8e:9d:04:16:68:e7:a3:cc:5f:6f:
e4:0f:a6:63:85:da:34:91:04:0d:00:fc:77:9c:b1:bd:7f:b3:
47:df:a1:94:76:d9:66:82:8d:a4:89:47:81:91:48:70:a6:e6:
70:91:2a:ef:4c:2a:45:5b:67:0f:9c:e3:c9:6e:e2:63:0b:1b:
5a:d4:bc:4f:86:69:00:6f:76:5d:13:3d:fe:0a:1f:d4:9b:24:
8d:6b:b2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:11 2023 by rpki-client on console-fra.rpki-client.org