Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/40a7b962-d15d-41f0-97d4-a3c3f9ffb177/0c091388ac89c78a887a1fbfd81a06b667c36694.roa
File: 0c091388ac89c78a887a1fbfd81a06b667c36694.roa (raw, json)
Hash identifier: ez5ycamB73EfA4pU8DUtkyr4lo83boHxcnlednmnLFU=
Subject key identifier: 57:A9:46:2A:40:12:7A:CD:C4:6A:8C:95:22:A2:E5:6D:61:E1:4F:0E
Certificate issuer: /CN=3f0c9202d1972a5deab032862dbcc1d9d5c5e87f
Certificate serial: 219C80
Authority key identifier: D6:B8:B5:8E:04:3A:41:7E:2B:D9:31:F2:B7:7D:CC:06:F1:82:60:E1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3f0c9202d1972a5deab032862dbcc1d9d5c5e87f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/40a7b962-d15d-41f0-97d4-a3c3f9ffb177/0c091388ac89c78a887a1fbfd81a06b667c36694.roa
Signing time: Thu 07 Dec 2023 13:10:23 +0000
ROA not before: Thu 07 Dec 2023 13:10:23 +0000
ROA not after: Sun 07 Dec 2025 13:10:23 +0000
asID: 27895
IP address blocks: 181.1.152.0/22 maxlen: 24
181.85.208.0/22 maxlen: 24
181.85.212.0/22 maxlen: 24
181.91.84.0/22 maxlen: 24
181.94.197.0/24 maxlen: 24
181.94.208.0/23 maxlen: 24
181.94.210.0/24 maxlen: 24
181.94.212.0/22 maxlen: 24
181.94.216.0/21 maxlen: 24
181.94.224.0/21 maxlen: 24
181.94.232.0/22 maxlen: 24
181.94.236.0/23 maxlen: 24
181.94.238.0/24 maxlen: 24
181.94.241.0/24 maxlen: 24
181.94.242.0/23 maxlen: 24
181.94.244.0/22 maxlen: 24
181.94.248.0/23 maxlen: 24
181.94.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2202752 (0x219c80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f0c9202d1972a5deab032862dbcc1d9d5c5e87f
Validity
Not Before: Dec 7 13:10:23 2023 GMT
Not After : Dec 7 13:10:23 2025 GMT
Subject: CN=0c091388ac89c78a887a1fbfd81a06b667c36694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:4d:6f:82:ee:6d:7f:3c:4b:8c:80:68:97:f1:
c4:12:26:6a:6c:4b:d7:dd:a4:30:b2:5e:af:b4:4b:
57:9f:c3:88:a0:5c:d5:fd:b3:32:37:6c:25:d6:05:
f5:56:44:8b:de:28:5f:58:a5:a7:ce:fe:dc:b9:b0:
f6:f9:80:eb:af:20:7f:b7:21:81:64:21:f9:3a:bc:
20:0c:eb:15:57:5d:05:a7:14:41:64:32:0b:11:c5:
21:ef:1a:b4:a9:50:12:62:d3:f0:78:97:5c:7a:ab:
8f:73:d9:74:9d:7a:ef:02:ec:1d:8f:fe:87:51:9c:
35:47:0f:0a:ce:b8:14:d5:9f:5d:e2:b5:45:18:d8:
1f:6f:9f:f3:b3:44:dc:6e:85:fc:60:6e:29:79:74:
4b:46:72:8e:49:24:72:a2:58:b6:a0:24:e9:59:ce:
53:3b:c1:88:15:01:29:be:e8:d1:31:f7:eb:e5:14:
c5:7b:bc:a9:38:96:ce:0b:82:46:50:09:b7:d2:ff:
de:90:a2:37:f2:50:c3:22:1b:63:d4:61:3b:24:28:
6f:73:e6:7c:a2:07:08:b2:d0:72:86:13:9c:95:1b:
d1:c4:e1:3e:93:7d:51:9c:28:9a:78:e1:8a:73:e0:
17:86:f4:11:1f:b1:18:a9:35:7a:1e:d4:6f:60:5c:
43:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A9:46:2A:40:12:7A:CD:C4:6A:8C:95:22:A2:E5:6D:61:E1:4F:0E
X509v3 Authority Key Identifier:
keyid:D6:B8:B5:8E:04:3A:41:7E:2B:D9:31:F2:B7:7D:CC:06:F1:82:60:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3f0c9202d1972a5deab032862dbcc1d9d5c5e87f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/40a7b962-d15d-41f0-97d4-a3c3f9ffb177/0c091388ac89c78a887a1fbfd81a06b667c36694.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/40a7b962-d15d-41f0-97d4-a3c3f9ffb177/3f0c9202d1972a5deab032862dbcc1d9d5c5e87f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.1.152.0/22
181.85.208.0/21
181.91.84.0/22
181.94.197.0/24
181.94.208.0-181.94.210.255
181.94.212.0-181.94.238.255
181.94.241.0-181.94.250.255
Signature Algorithm: sha256WithRSAEncryption
85:2c:24:fc:cf:54:56:77:4e:7a:f4:15:91:6d:57:04:f4:61:
3d:fb:f7:1b:2b:33:54:7a:c5:ba:49:80:7f:af:db:be:32:74:
c0:c6:9a:68:ac:fd:bd:96:64:64:0e:45:07:dc:4b:5a:2c:6e:
00:cc:1f:86:4d:fb:b4:03:48:e6:40:20:65:04:33:37:3c:5f:
6e:4b:ab:5e:de:b5:de:31:93:3a:63:d2:57:74:fd:e8:e9:a8:
ba:37:57:0a:ee:bc:5b:c3:75:f5:ea:6c:0d:0f:75:bf:3f:df:
1a:98:fe:8d:fb:ae:d5:3a:0a:39:7e:0a:dd:a6:80:48:90:25:
29:03:7e:56:63:da:fc:4a:45:a9:f3:55:cb:e0:67:8e:91:ba:
1a:8e:0b:3e:df:75:15:ee:81:45:5b:7f:eb:50:22:a2:65:29:
41:a4:6d:47:0c:7d:4e:28:78:6f:17:4a:cc:27:c4:06:a2:ee:
0c:ff:03:a1:44:51:8a:76:30:b2:ea:c7:8d:b5:8f:ad:10:0d:
c0:fe:b9:29:4a:24:82:44:74:31:87:0b:72:e7:90:0a:83:f5:
ae:9d:7b:b7:1c:8a:ae:2e:7a:53:d0:9e:b2:64:ee:9a:11:a2:
87:0f:4a:02:8c:02:0b:ec:3e:ca:4d:77:b0:cd:06:81:8f:81:
e4:47:36:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:30 2024 by rpki-client on console-fra.rpki-client.org