Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/f2818dfb9b9cd22eb5e93437ea0d04ffaad50cfe.roa
File: f2818dfb9b9cd22eb5e93437ea0d04ffaad50cfe.roa (raw, json)
Hash identifier: SEQguDzpLLolc1AMVsBEIdPG8Q5bSGZIGNQpCjXKeww=
Subject key identifier: 09:1E:DC:6E:86:38:DA:93:AC:80:A3:EE:9E:D2:AD:31:ED:B2:32:EC
Certificate issuer: /CN=529d28a5769af1e1987aada52d4d9ac3bec39b68
Certificate serial: 2A1289
Authority key identifier: 43:76:7A:C8:B9:C4:46:E4:13:DD:A2:B5:C9:85:3A:17:68:A4:E1:C5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/529d28a5769af1e1987aada52d4d9ac3bec39b68.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/f2818dfb9b9cd22eb5e93437ea0d04ffaad50cfe.roa
Signing time: Tue 30 Jan 2024 15:01:13 +0000
ROA not before: Tue 30 Jan 2024 15:00:49 +0000
ROA not after: Tue 30 Jan 2029 15:00:49 +0000
asID: 52399
IP address blocks: 200.50.191.0/24 maxlen: 24
190.110.250.0/23 maxlen: 24
190.114.102.0/24 maxlen: 24
190.110.224.0/24 maxlen: 24
190.110.232.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2757257 (0x2a1289)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529d28a5769af1e1987aada52d4d9ac3bec39b68
Validity
Not Before: Jan 30 15:00:49 2024 GMT
Not After : Jan 30 15:00:49 2029 GMT
Subject: CN=f2818dfb9b9cd22eb5e93437ea0d04ffaad50cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ea:0d:df:40:14:7d:b9:1d:37:9a:95:f3:39:
9a:68:20:7c:f9:95:d2:80:b5:63:60:12:bd:b6:81:
e6:bc:6d:df:53:95:e3:7a:7e:8b:e0:32:26:12:fd:
2c:7f:c7:72:99:46:1c:65:2c:79:8b:32:c7:09:c0:
49:61:f8:5c:70:5c:53:d6:c3:74:a5:dc:38:53:ad:
ba:ac:32:aa:5e:30:16:45:4a:35:9f:46:7d:a2:14:
c1:7c:78:1e:f0:af:2f:e0:0a:13:21:f8:e8:e6:43:
e2:75:94:6a:e9:4a:3f:b6:2e:82:0b:ea:0e:88:9d:
25:7b:5e:1e:b9:13:e3:66:7d:bc:c8:64:c7:a6:8d:
28:2c:93:9f:bd:34:1b:6b:f6:53:20:d0:8f:5c:2a:
78:62:dd:fa:31:d8:75:5e:16:5e:e5:d3:1f:17:bb:
91:7d:84:c7:45:1c:4e:b7:23:fb:fb:f2:ea:77:08:
12:37:cb:36:4a:a9:26:e3:84:41:a1:58:22:d9:92:
70:4c:f9:a2:2c:23:50:59:39:81:98:14:0c:54:6e:
f1:78:71:0b:4c:46:f8:1d:39:cf:79:7f:f2:d5:12:
7d:b1:c6:c3:b9:07:b0:48:e2:08:76:03:60:1a:d4:
6d:e9:03:9d:6d:ac:1c:95:e7:03:61:4b:ad:3a:cc:
a1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1E:DC:6E:86:38:DA:93:AC:80:A3:EE:9E:D2:AD:31:ED:B2:32:EC
X509v3 Authority Key Identifier:
keyid:43:76:7A:C8:B9:C4:46:E4:13:DD:A2:B5:C9:85:3A:17:68:A4:E1:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/529d28a5769af1e1987aada52d4d9ac3bec39b68.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/f2818dfb9b9cd22eb5e93437ea0d04ffaad50cfe.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/529d28a5769af1e1987aada52d4d9ac3bec39b68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.110.224.0/24
190.110.232.0/22
190.110.250.0/23
190.114.102.0/24
200.50.191.0/24
Signature Algorithm: sha256WithRSAEncryption
16:e9:5b:6f:2c:22:9a:93:45:1b:5a:1c:9e:cd:2b:79:26:68:
d1:93:69:d8:76:69:de:e0:96:73:a9:05:70:e4:48:4b:68:04:
86:a8:ca:6f:2f:19:f7:27:a1:fd:88:a5:1b:f7:bf:0c:4c:ac:
0a:10:33:11:31:a2:bc:b3:98:38:ac:d1:b0:6a:ef:74:1c:11:
c8:c6:6d:c9:45:f8:f4:c4:65:bb:75:80:f8:81:e6:9d:51:6f:
32:62:73:ad:98:c8:b1:85:60:ee:bb:1b:81:ab:4e:3f:47:c5:
9a:7d:b5:0b:60:15:0e:0d:7c:82:61:e9:c6:9b:a6:6c:17:90:
87:ff:89:17:15:33:76:01:ed:73:68:9a:14:84:96:ef:43:43:
66:90:59:c6:45:47:65:55:5c:e1:9d:5a:a2:fe:c9:60:f9:8c:
97:ca:97:bb:0f:7d:58:19:20:8a:b5:52:9f:a8:e9:c4:a7:1c:
21:56:12:2c:91:da:8c:dd:3d:ef:3c:d6:85:87:74:8e:7b:1d:
68:6e:35:96:34:c5:bc:97:16:fc:bf:6a:e4:09:f6:fc:4a:1b:
30:43:61:32:39:d6:11:ce:27:37:b5:d6:df:31:4b:21:f7:62:
61:65:ea:f4:55:80:27:43:55:a8:91:00:67:0a:81:d6:ad:7a:
2a:eb:be:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-ams.rpki-client.org