Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/295a55e8-fb31-4987-ac8d-343df97ff387/11471672ef0c159d757f66ee6c5f6f5ab9d497df.roa
File: 11471672ef0c159d757f66ee6c5f6f5ab9d497df.roa (raw, json)
Hash identifier: Ki6FvXRTUWLtzClB9JNFYHpf3Hhmk4wuwqPEcDgQ0V8=
Subject key identifier: 0C:E4:D8:05:B2:DF:6E:65:D3:65:76:58:F0:96:6F:58:79:1C:2A:26
Certificate issuer: /CN=6ff75e9cde86b5c490d171a8993267e23270787a
Certificate serial: 13B6C1
Authority key identifier: 95:A6:67:0F:79:8D:EC:6E:34:2F:A0:19:BF:9B:D8:87:BA:A0:E2:23
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6ff75e9cde86b5c490d171a8993267e23270787a.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/295a55e8-fb31-4987-ac8d-343df97ff387/11471672ef0c159d757f66ee6c5f6f5ab9d497df.roa
Signing time: Wed 07 Jun 2023 15:49:46 +0000
ROA not before: Tue 06 Jun 2023 15:49:46 +0000
ROA not after: Sat 07 Jun 2025 15:49:46 +0000
asID: 14593
IP address blocks: 149.19.161.0/24 maxlen: 24
149.19.164.0/22 maxlen: 24
149.19.168.0/21 maxlen: 24
138.84.32.0/19 maxlen: 24
2803:9810::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1291969 (0x13b6c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ff75e9cde86b5c490d171a8993267e23270787a
Validity
Not Before: Jun 6 15:49:46 2023 GMT
Not After : Jun 7 15:49:46 2025 GMT
Subject: CN=11471672ef0c159d757f66ee6c5f6f5ab9d497df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5d:92:af:b4:9b:02:43:5b:ee:2d:0d:8d:9e:
73:7a:db:07:18:dc:ee:9e:d7:d5:de:b4:4d:24:af:
9f:6a:6e:4b:a6:07:8f:eb:56:d9:9b:57:34:84:40:
47:46:20:85:e5:34:56:17:7b:6e:29:16:87:ca:b0:
bf:02:ac:5a:c8:62:d9:4e:f8:93:2f:84:46:13:d7:
fc:da:43:df:f3:ff:7e:05:89:81:bb:d7:8a:7b:bf:
8f:bd:73:cf:4a:4a:26:0f:e1:10:46:e4:26:b2:14:
c4:06:c6:28:24:7f:c5:fc:b0:f7:20:0b:e6:d0:5b:
38:61:cc:5a:1c:3e:71:87:fa:f9:1b:0c:b7:fa:90:
5f:6d:12:3e:4c:61:53:fb:00:81:13:68:fc:93:ae:
75:3d:f3:f6:5a:47:0b:15:a7:c8:f2:f2:8f:27:41:
28:fb:5a:67:c4:7b:70:42:cd:d7:ac:dc:5e:2f:4f:
a5:74:13:49:69:6c:cd:90:06:45:61:e5:8a:a5:d7:
e9:89:2e:9d:d9:9e:55:84:16:80:f1:f8:b3:11:ac:
87:17:56:0f:ab:62:c1:47:00:42:2a:c6:02:76:f8:
b0:b5:da:f7:45:0e:5a:39:d6:c1:5c:1b:d0:42:18:
33:b2:b2:6d:23:f7:38:7a:04:5e:88:06:56:57:8a:
f1:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:E4:D8:05:B2:DF:6E:65:D3:65:76:58:F0:96:6F:58:79:1C:2A:26
X509v3 Authority Key Identifier:
keyid:95:A6:67:0F:79:8D:EC:6E:34:2F:A0:19:BF:9B:D8:87:BA:A0:E2:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6ff75e9cde86b5c490d171a8993267e23270787a.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/295a55e8-fb31-4987-ac8d-343df97ff387/11471672ef0c159d757f66ee6c5f6f5ab9d497df.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/295a55e8-fb31-4987-ac8d-343df97ff387/6ff75e9cde86b5c490d171a8993267e23270787a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.84.32.0/19
149.19.161.0/24
149.19.164.0-149.19.175.255
IPv6:
2803:9810::/32
Signature Algorithm: sha256WithRSAEncryption
2a:57:b3:0e:98:f2:04:76:6c:85:d7:e5:4e:f2:b4:7a:c0:8b:
10:02:5d:b8:d9:ac:0c:09:4f:25:fd:03:98:d6:05:07:c4:59:
0f:97:95:a4:8b:c7:3a:c0:96:7b:da:29:0e:2d:b4:05:cc:31:
cf:38:6f:9c:9d:24:34:5c:33:14:b9:2e:95:3f:d9:bc:2e:6e:
c7:5b:6a:d4:68:c6:30:40:3f:3c:00:45:96:1e:f7:7c:0b:7d:
42:4e:8d:5c:f2:ee:d6:8d:0c:b8:ac:42:f3:22:7d:32:4f:ad:
22:5b:36:47:e0:f9:4e:08:38:cc:1b:64:1f:7b:04:91:a6:49:
4c:4e:e1:23:40:89:4c:f4:34:dd:11:37:d8:67:8b:13:a3:2d:
d8:35:cd:ff:69:56:9e:85:e2:74:6b:fb:a8:56:cc:48:86:91:
96:26:32:73:34:e7:c4:99:7a:63:2c:3e:8a:c6:fd:db:f1:fd:
48:c9:0e:a2:7d:99:82:0f:cd:8b:4c:7f:e1:f0:49:8a:46:81:
c4:21:70:aa:c1:37:21:01:90:70:73:70:d6:7c:f2:0a:de:58:
a7:c9:d8:fe:24:db:75:6c:6e:10:44:70:1e:86:99:00:43:a5:
68:d9:fc:7c:38:34:8a:4d:54:ca:54:66:22:07:54:9b:c0:1b:
5f:87:f6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:18 2024 by rpki-client on console-ams.rpki-client.org