Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/48dbf77e-a7fc-4433-b8bd-3c44f37d9487/dffccac153e7c4a524c909459227c0e5213b740d.roa
File: dffccac153e7c4a524c909459227c0e5213b740d.roa (raw, json)
Hash identifier: b1BDv0u6moq0d5+u0hVuhK8cbn+peUWZHww0Pzj1MRA=
Subject key identifier: 0A:3C:C4:EB:34:10:9E:7D:A6:B8:C6:C6:04:B9:74:F9:7F:2E:70:48
Certificate issuer: /CN=d8af0d6b31af86a23cbbb933871a53ef9af28045
Certificate serial: 0D8BB8
Authority key identifier: 35:85:69:4C:2B:44:01:DF:77:9A:7A:37:96:4D:25:B4:F7:35:0C:77
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d8af0d6b31af86a23cbbb933871a53ef9af28045.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/48dbf77e-a7fc-4433-b8bd-3c44f37d9487/dffccac153e7c4a524c909459227c0e5213b740d.roa
Signing time: Wed 24 Mar 2021 14:38:18 +0000
ROA not before: Wed 24 Mar 2021 14:38:18 +0000
ROA not after: Tue 24 Mar 2026 14:38:18 +0000
asID: 28118
IP address blocks: 152.166.0.0/15 maxlen: 24
181.36.0.0/15 maxlen: 24
190.124.64.0/19 maxlen: 24
148.103.0.0/16 maxlen: 24
186.150.0.0/16 maxlen: 24
186.120.0.0/17 maxlen: 24
186.120.128.0/17 maxlen: 24
186.149.0.0/16 maxlen: 24
190.6.128.0/20 maxlen: 24
190.6.144.0/20 maxlen: 24
190.94.0.0/19 maxlen: 24
190.94.32.0/19 maxlen: 24
190.94.64.0/18 maxlen: 24
200.42.192.0/19 maxlen: 24
200.42.224.0/20 maxlen: 24
200.42.240.0/20 maxlen: 23
2803:a180::/32 maxlen: 32
2001:13f0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 887736 (0xd8bb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8af0d6b31af86a23cbbb933871a53ef9af28045
Validity
Not Before: Mar 24 14:38:18 2021 GMT
Not After : Mar 24 14:38:18 2026 GMT
Subject: CN=dffccac153e7c4a524c909459227c0e5213b740d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:bb:48:ba:4b:97:8a:15:f7:62:f9:bf:6f:c4:
c4:7d:d6:2f:b0:c6:fe:e6:41:03:f3:40:68:00:6f:
01:50:bb:de:0c:0d:fc:90:9f:69:5d:b9:fd:bc:96:
11:12:96:04:1b:08:f4:46:9e:cb:63:27:e5:e9:5d:
4f:2e:8e:61:21:ea:05:ea:e0:02:2c:fd:38:a5:72:
02:05:4e:48:34:73:bc:7a:93:40:d1:08:92:38:44:
be:d2:7c:9e:aa:12:9d:60:5b:ca:8a:a4:fb:d6:ea:
a3:9d:7f:07:d0:ae:46:0d:7e:bd:38:da:a3:21:8f:
18:50:67:06:22:98:f2:e8:df:6f:2d:df:47:37:bb:
1f:09:d0:74:fa:12:d1:95:c1:e4:ab:9a:e1:d6:df:
99:57:89:dd:b0:41:e7:79:77:3b:3b:99:53:1d:4d:
ec:5e:53:01:40:2e:4a:62:0a:5a:63:c7:2b:d3:9d:
e9:0a:e4:96:b4:fc:a7:56:5c:58:1b:2c:b5:e4:c8:
32:78:f9:c5:39:52:71:2d:39:54:c2:fd:3d:bc:94:
c0:7a:4f:4e:91:41:de:fd:49:f3:69:7b:e0:35:89:
da:74:a3:7a:11:42:94:57:ec:d3:a4:fe:cf:b3:7f:
66:f6:6b:17:31:1f:7e:c8:1f:e8:ac:d6:60:c6:b0:
9d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:3C:C4:EB:34:10:9E:7D:A6:B8:C6:C6:04:B9:74:F9:7F:2E:70:48
X509v3 Authority Key Identifier:
keyid:35:85:69:4C:2B:44:01:DF:77:9A:7A:37:96:4D:25:B4:F7:35:0C:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d8af0d6b31af86a23cbbb933871a53ef9af28045.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/48dbf77e-a7fc-4433-b8bd-3c44f37d9487/dffccac153e7c4a524c909459227c0e5213b740d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/48dbf77e-a7fc-4433-b8bd-3c44f37d9487/d8af0d6b31af86a23cbbb933871a53ef9af28045.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.103.0.0/16
152.166.0.0/15
181.36.0.0/15
186.120.0.0/16
186.149.0.0-186.150.255.255
190.6.128.0/19
190.94.0.0/17
190.124.64.0/19
200.42.192.0/18
IPv6:
2001:13f0::/32
2803:a180::/32
Signature Algorithm: sha256WithRSAEncryption
06:07:c7:3b:8c:42:a7:be:a3:0c:65:91:4b:82:99:ed:01:90:
68:01:80:76:32:2c:28:0a:75:84:f4:66:bc:55:8e:37:1f:83:
78:84:ae:49:94:b3:7a:6b:4d:bc:ab:30:b7:9f:76:ba:a9:4b:
2c:96:ce:f8:48:cb:97:53:17:04:55:c1:14:11:c4:2d:4a:38:
0e:b8:d2:8a:11:e8:62:27:c6:fa:cf:37:3a:e0:a0:a9:a7:81:
b7:e8:71:7b:67:67:e1:6a:5b:81:6f:0c:50:75:9a:30:57:7a:
d4:0c:2c:62:bf:d0:bd:2d:da:da:db:6a:4b:d8:9e:92:8d:8a:
0d:ce:7e:8e:19:be:a6:a5:11:6f:c0:21:62:1a:0c:50:b5:5d:
c7:56:2f:a3:15:53:26:b0:69:67:d1:69:bc:30:b6:03:b0:70:
7c:28:53:fc:a1:f0:f0:46:af:fd:4f:a2:cb:c9:6c:d7:4e:cb:
e5:a6:32:a3:9d:16:12:5a:54:38:3f:88:5a:4a:a2:b4:a6:e5:
cf:58:d4:04:a1:83:a6:4e:95:a8:1b:6f:b4:39:b2:cc:f1:c7:
ca:4c:a3:e4:ae:63:0a:c1:2a:62:cb:d2:39:64:d8:04:d2:c6:
29:6b:8e:6a:c3:6c:c7:84:c2:0e:01:12:5a:66:eb:06:29:da:
60:df:ea:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:05 2024 by rpki-client on console-fra.rpki-client.org