Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/37014f58-a454-467f-9887-90d8b47e5ee0/d4cff81819204e9c2d7caa36bd9fa153f909658b.roa
File: d4cff81819204e9c2d7caa36bd9fa153f909658b.roa (raw, json)
Hash identifier: N69Gvq66AfFyXxEHYiNYeiENzKhcnfRWPgRoyJ/fQHs=
Subject key identifier: 3A:2D:3C:C8:92:FC:D3:8D:BD:A4:5E:F5:81:5A:C1:91:A4:01:66:11
Certificate issuer: /CN=5af0c364da44e8d56630ca9491db8bba68bafdeb
Certificate serial: 232D0A
Authority key identifier: 3A:CD:EC:EC:0C:96:F1:25:C2:1A:2C:6B:E1:E0:D2:E7:78:1F:8A:A6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5af0c364da44e8d56630ca9491db8bba68bafdeb.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/37014f58-a454-467f-9887-90d8b47e5ee0/d4cff81819204e9c2d7caa36bd9fa153f909658b.roa
Signing time: Sun 31 Mar 2024 03:24:01 +0000
ROA not before: Sun 31 Mar 2024 03:24:01 +0000
ROA not after: Tue 31 Mar 2026 03:24:01 +0000
asID: 52369
IP address blocks: 179.42.176.0/20 maxlen: 20
179.42.176.0/24 maxlen: 24
179.42.177.0/24 maxlen: 24
179.42.178.0/24 maxlen: 24
179.42.179.0/24 maxlen: 24
179.42.180.0/23 maxlen: 23
179.42.182.0/24 maxlen: 24
179.42.183.0/24 maxlen: 24
179.42.184.0/22 maxlen: 22
179.42.184.0/23 maxlen: 23
179.42.184.0/24 maxlen: 24
179.42.185.0/24 maxlen: 24
179.42.186.0/24 maxlen: 24
179.42.187.0/24 maxlen: 24
179.42.188.0/24 maxlen: 24
179.42.189.0/24 maxlen: 24
179.42.190.0/23 maxlen: 23
190.110.112.0/21 maxlen: 21
190.110.112.0/24 maxlen: 24
190.110.113.0/24 maxlen: 24
190.110.114.0/24 maxlen: 24
190.110.115.0/24 maxlen: 24
190.110.116.0/24 maxlen: 24
190.110.117.0/24 maxlen: 24
190.110.118.0/24 maxlen: 24
190.110.119.0/24 maxlen: 24
190.184.224.0/20 maxlen: 20
190.184.224.0/24 maxlen: 24
190.184.225.0/24 maxlen: 24
190.184.226.0/24 maxlen: 24
190.184.227.0/24 maxlen: 24
190.184.228.0/22 maxlen: 22
190.184.230.0/24 maxlen: 24
190.184.231.0/24 maxlen: 24
190.184.233.0/24 maxlen: 24
190.184.234.0/24 maxlen: 24
190.184.235.0/24 maxlen: 24
190.184.236.0/24 maxlen: 24
190.184.237.0/24 maxlen: 24
190.184.238.0/24 maxlen: 24
190.184.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2305290 (0x232d0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5af0c364da44e8d56630ca9491db8bba68bafdeb
Validity
Not Before: Mar 31 03:24:01 2024 GMT
Not After : Mar 31 03:24:01 2026 GMT
Subject: CN=d4cff81819204e9c2d7caa36bd9fa153f909658b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:46:1d:5c:8d:17:5c:56:f1:8c:25:89:36:46:
48:97:d9:8d:66:5b:a3:c6:85:0a:f2:7b:83:db:72:
0f:f5:66:6a:5d:54:50:e3:02:d7:f2:3b:1b:c9:5d:
47:1f:fe:27:bc:30:ab:a4:e0:89:cc:bb:50:f8:ef:
18:7a:37:a0:68:3a:17:03:67:1d:82:00:b2:85:38:
c6:7d:8a:8b:86:b6:f5:8b:26:18:75:ec:57:f2:90:
c1:55:1d:a8:93:46:69:4d:f2:31:d7:84:16:26:0d:
74:32:a0:2c:f7:d6:b4:aa:3c:2b:be:2e:76:be:ca:
b0:6a:aa:3c:35:6c:be:6c:c6:34:e7:69:98:66:03:
cc:47:33:f5:1e:7b:af:c0:5f:2e:2c:00:ee:e0:99:
6c:6f:07:4b:2a:c6:a8:25:5d:5a:9e:17:cb:73:7c:
18:6d:f9:6d:2c:e0:b6:9d:7d:b4:ed:a8:d6:66:4c:
3c:58:29:82:de:14:ab:a7:ba:ef:07:5c:be:6d:0c:
3b:da:39:66:ac:5b:d2:2f:d1:02:68:78:34:74:b7:
a7:ef:d0:6b:38:ff:28:13:6e:0e:da:76:d4:54:53:
4e:df:27:b6:d0:5b:68:cf:c7:4a:f2:4d:d3:3e:23:
a2:de:91:c0:ab:8e:8d:da:2a:1a:ae:e9:5e:81:ff:
06:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:2D:3C:C8:92:FC:D3:8D:BD:A4:5E:F5:81:5A:C1:91:A4:01:66:11
X509v3 Authority Key Identifier:
keyid:3A:CD:EC:EC:0C:96:F1:25:C2:1A:2C:6B:E1:E0:D2:E7:78:1F:8A:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5af0c364da44e8d56630ca9491db8bba68bafdeb.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/37014f58-a454-467f-9887-90d8b47e5ee0/d4cff81819204e9c2d7caa36bd9fa153f909658b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/37014f58-a454-467f-9887-90d8b47e5ee0/5af0c364da44e8d56630ca9491db8bba68bafdeb.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.42.176.0/20
190.110.112.0/21
190.184.224.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:f6:b0:86:f8:5f:d6:94:aa:c5:9d:3e:95:ef:c9:08:4c:4f:
0c:66:3c:30:bf:86:75:84:24:c0:80:70:23:7c:01:74:4d:12:
63:9d:18:a5:ba:cc:cf:18:ed:b3:09:ca:09:83:f3:54:62:9f:
a0:e9:e3:2c:1e:65:45:d1:28:b1:ce:0b:40:14:df:3b:c1:7f:
5f:4d:76:d3:75:3b:48:a3:28:5a:11:89:a8:79:3a:67:c2:b8:
1c:ec:ee:79:f5:43:c1:32:9d:f4:7a:84:d6:a5:e4:b9:be:b5:
96:a0:51:13:15:b7:f0:92:ea:53:b9:f6:0f:69:7b:bf:79:6d:
1c:9f:6f:49:99:25:ab:51:1e:57:15:f3:ec:e6:2c:5c:a0:4d:
a0:2a:d2:b6:76:db:ea:aa:33:a8:6f:4a:76:d4:05:d1:31:09:
7c:85:cc:72:8c:11:7e:7f:3c:60:10:cc:ac:96:cf:68:e9:7d:
94:7b:31:38:99:6b:a9:21:2f:28:68:43:95:7f:18:fa:c6:65:
8e:6c:22:48:1f:0e:f9:ab:c8:f8:e4:42:74:07:1d:ea:44:c7:
43:17:51:67:6a:6c:5f:cf:f5:24:10:ff:09:e5:02:4b:00:ad:
14:f9:f3:26:26:fb:3a:9f:92:1d:6b:1e:ad:b5:03:43:77:e0:
50:2c:e9:71
-----BEGIN CERTIFICATE-----
MIIFTDCCBDSgAwIBAgIDIy0KMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDVh
ZjBjMzY0ZGE0NGU4ZDU2NjMwY2E5NDkxZGI4YmJhNjhiYWZkZWIwHhcNMjQwMzMx
MDMyNDAxWhcNMjYwMzMxMDMyNDAxWjAzMTEwLwYDVQQDEyhkNGNmZjgxODE5MjA0
ZTljMmQ3Y2FhMzZiZDlmYTE1M2Y5MDk2NThiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAh0YdXI0XXFbxjCWJNkZIl9mNZlujxoUK8nuD23IP9WZqXVRQ
4wLX8jsbyV1HH/4nvDCrpOCJzLtQ+O8YejegaDoXA2cdggCyhTjGfYqLhrb1iyYY
dexX8pDBVR2ok0ZpTfIx14QWJg10MqAs99a0qjwrvi52vsqwaqo8NWy+bMY052mY
ZgPMRzP1HnuvwF8uLADu4JlsbwdLKsaoJV1anhfLc3wYbfltLOC2nX207ajWZkw8
WCmC3hSrp7rvB1y+bQw72jlmrFvSL9ECaHg0dLen79BrOP8oE24O2nbUVFNO3ye2
0Ftoz8dK8k3TPiOi3pHAq46N2ioarulegf8GjwIDAQABo4ICZzCCAmMwHQYDVR0O
BBYEFDotPMiS/NONvaRe9YFawZGkAWYRMB8GA1UdIwQYMBaAFDrN7OwMlvElwhos
a+Hg0ud4H4qmMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNWFmMGMz
NjRkYTQ0ZThkNTY2MzBjYTk0OTFkYjhiYmE2OGJhZmRlYi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMzcwMTRmNTgtYTQ1NC00NjdmLTk4ODctOTBkOGI0
N2U1ZWUwL2Q0Y2ZmODE4MTkyMDRlOWMyZDdjYWEzNmJkOWZhMTUzZjkwOTY1OGIu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8zNzAxNGY1OC1hNDU0LTQ2N2YtOTg4Ny05MGQ4
YjQ3ZTVlZTAvNWFmMGMzNjRkYTQ0ZThkNTY2MzBjYTk0OTFkYjhiYmE2OGJhZmRl
Yi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQc
MBowGAQCAAEwEgMEBLMqsAMEA75ucAMEBL644DANBgkqhkiG9w0BAQsFAAOCAQEA
ivawhvhf1pSqxZ0+le/JCExPDGY8ML+GdYQkwIBwI3wBdE0SY50YpbrMzxjtswnK
CYPzVGKfoOnjLB5lRdEosc4LQBTfO8F/X01203U7SKMoWhGJqHk6Z8K4HOzuefVD
wTKd9HqE1qXkub61lqBRExW38JLqU7n2D2l7v3ltHJ9vSZklq1EeVxXz7OYsXKBN
oCrStnbb6qozqG9KdtQF0TEJfIXMcowRfn88YBDMrJbPaOl9lHsxOJlrqSEvKGhD
lX8Y+sZljmwiSB8O+avI+ORCdAcd6kTHQxdRZ2psX8/1JBD/CeUCSwCtFPnzJib7
Op+SHWserbUDQ3fgUCzpcQ==
-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:04 2024 by rpki-client on console-fra.rpki-client.org