Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/4fb4f3f6aa097c5951a81b5937b35979a8adb4e9.roa
File: 4fb4f3f6aa097c5951a81b5937b35979a8adb4e9.roa (raw, json)
Hash identifier: piA3DtfYBm8Hqy0mIzRZfZUGNCrWM8wRpxWwmId8esw=
Subject key identifier: B9:19:54:9E:93:B2:21:65:E0:A0:78:74:DA:D3:C9:4D:0F:DE:5E:D7
Certificate issuer: /CN=5494bd71484d106b75c5bedf4263f48281a4e409
Certificate serial: 0D523F
Authority key identifier: 4C:B6:BE:C7:78:41:99:EC:CA:F0:31:13:8A:C9:9A:2E:66:AB:83:DD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5494bd71484d106b75c5bedf4263f48281a4e409.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/4fb4f3f6aa097c5951a81b5937b35979a8adb4e9.roa
Signing time: Wed 24 Mar 2021 14:46:11 +0000
ROA not before: Wed 24 Mar 2021 14:46:11 +0000
ROA not after: Tue 24 Mar 2026 14:46:11 +0000
asID: 6147
IP address blocks: 181.64.0.0/15 maxlen: 24
181.66.0.0/15 maxlen: 24
190.40.0.0/14 maxlen: 24
190.232.0.0/13 maxlen: 24
200.4.192.0/18 maxlen: 24
200.10.64.0/19 maxlen: 24
200.37.0.0/16 maxlen: 24
200.48.0.0/16 maxlen: 24
200.60.0.0/17 maxlen: 24
200.60.128.0/18 maxlen: 24
200.60.192.0/19 maxlen: 24
200.60.224.0/19 maxlen: 24
200.106.0.0/18 maxlen: 24
200.106.64.0/18 maxlen: 24
200.107.128.0/18 maxlen: 24
200.121.0.0/17 maxlen: 24
200.121.128.0/17 maxlen: 24
201.230.0.0/17 maxlen: 24
201.230.128.0/17 maxlen: 24
201.240.0.0/17 maxlen: 24
201.240.128.0/17 maxlen: 24
2001:1388::/32 maxlen: 47
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 873023 (0xd523f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5494bd71484d106b75c5bedf4263f48281a4e409
Validity
Not Before: Mar 24 14:46:11 2021 GMT
Not After : Mar 24 14:46:11 2026 GMT
Subject: CN=4fb4f3f6aa097c5951a81b5937b35979a8adb4e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:20:c3:c5:87:5c:b9:a7:65:b0:03:fc:79:ce:
16:90:a9:28:4e:c8:46:f5:2e:7e:34:1a:bd:96:29:
e9:8d:b8:1c:51:b5:71:ba:c4:c7:3e:b4:87:db:cb:
1f:68:51:1f:d7:1c:d2:28:d7:d9:43:e2:f2:23:3d:
ef:9e:b2:c2:62:d4:01:40:b4:b8:bb:68:e5:c4:b9:
99:11:cc:9f:64:af:e0:64:85:d3:a1:2a:40:71:ed:
c2:41:43:b3:bc:f8:e4:ed:f7:6b:af:f3:99:3f:dc:
ca:12:60:3f:10:ab:d7:33:f8:36:0b:94:4b:7b:fe:
13:e8:9b:10:45:a2:f8:29:79:57:dd:e3:bb:45:3e:
41:38:b1:14:15:02:e0:7a:27:29:9c:dd:28:41:9f:
78:ff:cb:32:6d:c8:c1:11:83:07:25:4d:a1:91:7f:
f3:05:2c:c2:46:bf:ee:f9:18:b8:b7:cd:7f:22:86:
55:9f:64:5a:fe:79:c5:b5:4e:91:3c:04:51:ad:39:
43:6e:cb:a2:3b:d0:77:d2:5e:0f:f1:63:bc:3b:97:
2b:f3:96:2a:bb:ab:87:12:71:ac:3b:90:c2:68:dd:
c3:26:c0:2d:b6:0b:db:91:6b:74:bb:4b:d5:97:89:
34:66:e6:f0:e0:ed:f9:e9:36:df:ea:6f:79:0e:2d:
a7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:19:54:9E:93:B2:21:65:E0:A0:78:74:DA:D3:C9:4D:0F:DE:5E:D7
X509v3 Authority Key Identifier:
keyid:4C:B6:BE:C7:78:41:99:EC:CA:F0:31:13:8A:C9:9A:2E:66:AB:83:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5494bd71484d106b75c5bedf4263f48281a4e409.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/4fb4f3f6aa097c5951a81b5937b35979a8adb4e9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/5494bd71484d106b75c5bedf4263f48281a4e409.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.64.0.0/14
190.40.0.0/14
190.232.0.0/13
200.4.192.0/18
200.10.64.0/19
200.37.0.0/16
200.48.0.0/16
200.60.0.0/16
200.106.0.0/17
200.107.128.0/18
200.121.0.0/16
201.230.0.0/16
201.240.0.0/16
IPv6:
2001:1388::/32
Signature Algorithm: sha256WithRSAEncryption
29:fe:05:b0:9b:75:92:78:94:92:0c:d0:d1:e9:a1:75:53:de:
ca:94:a4:30:2b:b1:c7:aa:7e:58:46:75:e8:4c:e6:62:d7:6d:
d0:19:84:c2:68:99:c5:f3:76:e8:90:98:fa:ff:4c:0c:38:93:
01:10:56:48:d9:cd:85:25:36:14:54:91:3b:f9:5f:98:71:8d:
48:ab:5e:61:17:54:f9:e2:81:eb:73:2c:e7:ca:e5:92:b6:01:
bd:31:18:70:3c:66:1e:a7:66:33:19:37:ae:46:f7:7e:3d:bf:
16:aa:cf:f9:ce:dd:b2:9a:4a:13:92:05:1e:08:a9:0b:cf:bf:
c1:87:98:b8:bf:3e:b8:7c:1b:18:53:9a:7b:b5:79:06:d2:2c:
15:45:2e:a4:08:08:84:cc:ff:14:53:04:2f:b1:50:07:ff:d5:
83:d9:d1:e0:be:10:f6:95:2a:2a:c1:8d:c3:b0:0d:cb:16:6d:
63:d6:0c:1c:80:a8:7a:1c:ab:df:07:a7:82:6e:1d:71:d8:45:
98:76:7a:66:9e:4a:2b:79:a0:94:ee:01:f1:59:21:bb:9f:2a:
36:c2:4d:25:92:df:2f:07:58:42:1b:1a:b1:66:a6:e9:67:a9:
23:d3:10:82:94:c6:d3:6d:2e:3d:b8:be:53:d5:fd:02:11:50:
81:82:55:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:25 2024 by rpki-client on console-fra.rpki-client.org