Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/db73b70f22cf6a021cfe201a3e8c8e3e58d4743a.roa
File: db73b70f22cf6a021cfe201a3e8c8e3e58d4743a.roa (raw, json)
Hash identifier: JtC7M1EsfUVn7K5cCxkPwun+xkT9zt2pTtZYI81oEYQ=
Subject key identifier: 67:34:1E:DF:37:EE:82:A5:EF:F6:10:16:41:4C:32:AA:80:51:1C:83
Certificate issuer: /CN=ce24136a35f10502f080a99eec6f12882d2f04fa
Certificate serial: 131049
Authority key identifier: 2B:BF:EF:19:5F:7B:40:83:DF:37:7B:2F:FB:C7:7B:50:DD:10:0A:E3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ce24136a35f10502f080a99eec6f12882d2f04fa.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/db73b70f22cf6a021cfe201a3e8c8e3e58d4743a.roa
Signing time: Tue 28 Dec 2021 10:27:11 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 36352
IP address blocks: 179.61.137.0/24 maxlen: 24
179.61.232.0/24 maxlen: 24
181.214.31.0/24 maxlen: 24
181.214.83.0/24 maxlen: 24
181.214.142.0/24 maxlen: 24
181.214.156.0/24 maxlen: 24
181.215.55.0/24 maxlen: 24
191.96.133.0/24 maxlen: 24
191.96.151.0/24 maxlen: 24
191.96.165.0/24 maxlen: 24
191.96.223.0/24 maxlen: 24
191.101.33.0/24 maxlen: 24
191.101.50.0/24 maxlen: 24
191.101.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1249353 (0x131049)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce24136a35f10502f080a99eec6f12882d2f04fa
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=db73b70f22cf6a021cfe201a3e8c8e3e58d4743a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b9:76:a2:69:af:9e:33:b6:05:e6:77:34:bf:
5a:cd:5f:32:cd:4f:28:1b:25:5f:1d:0f:3d:4e:e2:
08:fd:ce:a4:80:90:67:1b:e0:87:61:88:99:fe:76:
a3:db:bb:df:27:94:c0:4b:38:c3:d8:2c:89:ac:f5:
7e:72:3f:e6:82:56:61:ce:5e:01:be:7b:a6:0a:07:
a9:1c:0a:c0:e3:d8:d1:a3:54:8a:e9:ee:b5:a6:da:
f2:44:c7:e5:6a:cf:70:49:e4:d2:f9:9c:98:40:17:
ac:14:79:94:c3:c9:d5:c1:85:96:28:57:13:8f:c6:
09:5f:36:91:9a:c6:04:41:f4:26:9a:8b:3e:46:2a:
7a:e3:bd:f0:48:70:35:c7:2c:6f:17:a8:52:00:b3:
04:4d:35:5e:ac:97:c9:2c:a8:60:6d:6b:a0:6b:96:
2b:6b:bc:91:07:cf:f7:72:59:53:4e:f0:f8:d7:7e:
69:90:0e:d9:f4:18:f7:98:48:dd:94:3f:d8:a0:11:
79:a0:2c:c6:9d:03:6f:7e:80:85:fb:47:df:66:50:
f9:bd:07:14:76:7a:96:c5:59:b2:ba:01:a3:55:a7:
5c:c8:7f:2a:f2:0e:df:00:2d:00:f7:04:7c:b8:cc:
34:01:2b:d6:a5:07:f3:b5:93:20:61:10:a7:60:37:
13:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:34:1E:DF:37:EE:82:A5:EF:F6:10:16:41:4C:32:AA:80:51:1C:83
X509v3 Authority Key Identifier:
keyid:2B:BF:EF:19:5F:7B:40:83:DF:37:7B:2F:FB:C7:7B:50:DD:10:0A:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ce24136a35f10502f080a99eec6f12882d2f04fa.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/db73b70f22cf6a021cfe201a3e8c8e3e58d4743a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/ce24136a35f10502f080a99eec6f12882d2f04fa.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.61.137.0/24
179.61.232.0/24
181.214.31.0/24
181.214.83.0/24
181.214.142.0/24
181.214.156.0/24
181.215.55.0/24
191.96.133.0/24
191.96.151.0/24
191.96.165.0/24
191.96.223.0/24
191.101.33.0/24
191.101.50.0/24
191.101.241.0/24
Signature Algorithm: sha256WithRSAEncryption
26:04:37:86:a1:76:46:a7:54:b6:35:ef:1e:77:f4:18:cf:6e:
0d:42:a0:f1:3f:3d:f8:50:5c:36:35:49:0f:1b:34:4e:dc:63:
20:fd:21:c8:d4:12:8f:b9:e1:ed:de:f3:94:de:81:7c:9f:d0:
90:d4:da:5b:4a:e9:5a:76:e6:ef:e7:10:74:ac:68:4b:26:8f:
79:8c:06:e5:a7:0d:16:cf:12:fd:dd:9b:31:28:b1:0d:4f:7a:
c4:56:86:87:e8:38:52:93:a2:bb:db:3c:1a:3c:67:fa:eb:c8:
54:87:9a:56:d1:1e:a7:83:58:07:9e:66:f5:f0:ec:bb:95:f3:
0b:d4:5b:3e:f4:78:0f:27:e7:54:5a:62:12:3a:af:b0:39:e3:
d0:a2:ec:d7:4b:b8:96:91:be:6e:57:4f:d2:4c:91:f1:d0:f1:
24:08:d1:44:3a:6b:77:16:22:f6:01:d6:99:0e:e3:fd:6f:d5:
33:aa:55:89:99:cc:38:e9:ef:51:df:39:7a:5c:19:66:30:78:
e1:c4:30:77:0e:1e:63:78:bb:83:e2:b2:88:36:1a:34:61:df:
31:09:0f:82:59:4d:53:a5:60:42:ec:57:e8:a7:e3:ef:f2:e4:
8d:65:f4:59:ce:c6:4f:70:2c:fb:54:30:01:d7:99:8b:5e:f1:
f7:15:3d:c5
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgIDExBJMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGNl
MjQxMzZhMzVmMTA1MDJmMDgwYTk5ZWVjNmYxMjg4MmQyZjA0ZmEwHhcNMjEwMzI0
MDMwMDAwWhcNMjYwMzI0MDMwMDAwWjAzMTEwLwYDVQQDEyhkYjczYjcwZjIyY2Y2
YTAyMWNmZTIwMWEzZThjOGUzZTU4ZDQ3NDNhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAjbl2ommvnjO2BeZ3NL9azV8yzU8oGyVfHQ89TuII/c6kgJBn
G+CHYYiZ/naj27vfJ5TASzjD2CyJrPV+cj/mglZhzl4BvnumCgepHArA49jRo1SK
6e61ptryRMflas9wSeTS+ZyYQBesFHmUw8nVwYWWKFcTj8YJXzaRmsYEQfQmmos+
Rip6473wSHA1xyxvF6hSALMETTVerJfJLKhgbWuga5Yra7yRB8/3cllTTvD4135p
kA7Z9Bj3mEjdlD/YoBF5oCzGnQNvfoCF+0ffZlD5vQcUdnqWxVmyugGjVadcyH8q
8g7fAC0A9wR8uMw0ASvWpQfztZMgYRCnYDcTJwIDAQABo4ICqTCCAqUwHQYDVR0O
BBYEFGc0Ht837oKl7/YQFkFMMqqAURyDMB8GA1UdIwQYMBaAFCu/7xlfe0CD3zd7
L/vHe1DdEArjMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvY2UyNDEz
NmEzNWYxMDUwMmYwODBhOTllZWM2ZjEyODgyZDJmMDRmYS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMWVmNGIwNjYtZTRkMi00ZTUzLTgzOWUtOGJkZmZi
MTdhNTJiL2RiNzNiNzBmMjJjZjZhMDIxY2ZlMjAxYTNlOGM4ZTNlNThkNDc0M2Eu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8xZWY0YjA2Ni1lNGQyLTRlNTMtODM5ZS04YmRm
ZmIxN2E1MmIvY2UyNDEzNmEzNWYxMDUwMmYwODBhOTllZWM2ZjEyODgyZDJmMDRm
YS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBtBggrBgEFBQcBBwEB/wRe
MFwwWgQCAAEwVAMEALM9iQMEALM96AMEALXWHwMEALXWUwMEALXWjgMEALXWnAME
ALXXNwMEAL9ghQMEAL9glwMEAL9gpQMEAL9g3wMEAL9lIQMEAL9lMgMEAL9l8TAN
BgkqhkiG9w0BAQsFAAOCAQEAJgQ3hqF2RqdUtjXvHnf0GM9uDUKg8T89+FBcNjVJ
Dxs0TtxjIP0hyNQSj7nh7d7zlN6BfJ/QkNTaW0rpWnbm7+cQdKxoSyaPeYwG5acN
Fs8S/d2bMSixDU96xFaGh+g4UpOiu9s8Gjxn+uvIVIeaVtEep4NYB55m9fDsu5Xz
C9RbPvR4DyfnVFpiEjqvsDnj0KLs10u4lpG+bldP0kyR8dDxJAjRRDprdxYi9gHW
mQ7j/W/VM6pViZnMOOnvUd85elwZZjB44cQwdw4eY3i7g+KyiDYaNGHfMQkPgllN
U6VgQuxX6Kfj7/LkjWX0Wc7GT3As+1QwAdeZi17x9xU9xQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:23 2024 by rpki-client on console-fra.rpki-client.org