Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/532b2097-ea08-4780-b94f-03c338b5aa57/b158d5484cd8ffb749b1438ab8d801f1191c9778.roa
File: b158d5484cd8ffb749b1438ab8d801f1191c9778.roa (raw, json)
Hash identifier: tXL22yiooKFKPTG/sM1MJOkH1MzvEgo5afCs34xutbA=
Subject key identifier: 86:BD:F3:05:73:46:8F:60:26:47:47:56:5A:D2:B9:42:67:27:C1:BF
Certificate issuer: /CN=f8263f0ea1b563289205ad0264530f8e6c30e569
Certificate serial: 2D93BD
Authority key identifier: C0:F7:11:2F:D7:F6:E3:83:A9:9A:5B:5C:19:E1:4D:AB:FC:03:DC:2D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f8263f0ea1b563289205ad0264530f8e6c30e569.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/532b2097-ea08-4780-b94f-03c338b5aa57/b158d5484cd8ffb749b1438ab8d801f1191c9778.roa
Signing time: Thu 07 Dec 2023 12:42:09 +0000
ROA not before: Thu 07 Dec 2023 12:41:57 +0000
ROA not after: Thu 07 Dec 2028 12:41:57 +0000
asID: 19905
IP address blocks: 200.73.128.0/18 maxlen: 24
200.127.144.0/20 maxlen: 24
200.43.32.0/23 maxlen: 24
201.212.0.0/20 maxlen: 24
181.30.64.0/19 maxlen: 24
200.43.192.0/23 maxlen: 24
200.127.160.0/21 maxlen: 24
181.30.0.0/18 maxlen: 24
181.94.4.0/23 maxlen: 24
201.235.124.0/22 maxlen: 24
181.166.246.0/23 maxlen: 24
200.42.80.0/20 maxlen: 24
181.166.248.0/23 maxlen: 24
200.89.128.0/21 maxlen: 24
181.15.110.0/23 maxlen: 24
200.42.98.0/23 maxlen: 24
200.45.190.0/23 maxlen: 24
200.89.138.0/23 maxlen: 24
200.42.100.0/23 maxlen: 24
200.89.140.0/22 maxlen: 24
200.42.106.0/23 maxlen: 24
200.42.110.0/23 maxlen: 24
200.89.146.0/23 maxlen: 24
200.89.148.0/22 maxlen: 24
200.89.152.0/21 maxlen: 24
200.42.116.0/22 maxlen: 24
200.42.126.0/23 maxlen: 24
200.42.130.0/23 maxlen: 24
200.42.132.0/22 maxlen: 24
200.32.2.0/23 maxlen: 24
200.32.4.0/22 maxlen: 24
200.42.30.0/23 maxlen: 24
200.32.8.0/22 maxlen: 24
200.32.12.0/23 maxlen: 24
200.32.18.0/23 maxlen: 24
200.42.48.0/23 maxlen: 24
200.32.30.0/23 maxlen: 24
200.42.56.0/21 maxlen: 24
200.42.68.0/22 maxlen: 24
181.166.240.0/22 maxlen: 24
200.42.72.0/21 maxlen: 24
190.224.160.0/22 maxlen: 24
200.49.140.0/22 maxlen: 24
200.49.150.0/23 maxlen: 24
200.49.154.0/23 maxlen: 24
200.49.156.0/22 maxlen: 24
200.42.136.0/22 maxlen: 24
200.89.174.0/23 maxlen: 24
200.89.176.0/21 maxlen: 24
200.42.142.0/23 maxlen: 24
200.42.144.0/22 maxlen: 24
200.42.150.0/23 maxlen: 24
200.89.188.0/23 maxlen: 24
200.42.154.0/23 maxlen: 24
200.61.204.0/22 maxlen: 24
200.61.208.0/20 maxlen: 24
181.105.160.0/19 maxlen: 24
200.45.0.0/22 maxlen: 24
200.45.4.0/23 maxlen: 24
181.14.80.0/20 maxlen: 24
181.14.96.0/20 maxlen: 24
181.11.32.0/20 maxlen: 24
200.82.80.0/22 maxlen: 24
200.42.0.0/23 maxlen: 24
200.42.8.0/21 maxlen: 24
200.42.16.0/23 maxlen: 24
200.42.22.0/23 maxlen: 24
190.136.28.0/23 maxlen: 24
200.45.48.0/23 maxlen: 24
200.45.64.0/23 maxlen: 24
190.225.246.0/23 maxlen: 24
181.30.160.0/19 maxlen: 24
200.3.94.0/23 maxlen: 24
181.30.96.0/20 maxlen: 24
181.30.112.0/21 maxlen: 24
181.30.120.0/22 maxlen: 24
181.30.124.0/23 maxlen: 24
181.14.72.0/21 maxlen: 24
190.226.40.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2986941 (0x2d93bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8263f0ea1b563289205ad0264530f8e6c30e569
Validity
Not Before: Dec 7 12:41:57 2023 GMT
Not After : Dec 7 12:41:57 2028 GMT
Subject: CN=b158d5484cd8ffb749b1438ab8d801f1191c9778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fb:ad:30:86:40:22:5f:26:60:fc:45:54:0d:
cd:23:4f:36:c8:40:c3:46:16:87:b3:d0:37:fa:24:
43:c9:c7:25:ce:28:c7:ff:da:9b:95:c4:d3:99:c8:
22:b0:4c:9c:0e:2d:a5:c7:77:7f:b0:7d:f1:47:80:
44:f3:32:f0:a0:9f:ae:7e:70:17:14:0c:18:c4:fc:
7b:b4:8d:a4:e2:36:fd:15:e6:91:6f:34:ce:94:af:
6d:3a:4a:88:1e:18:a6:aa:bd:6d:21:79:b7:0a:b1:
3c:a4:31:3c:8e:92:d0:e1:c5:14:62:c4:4e:e4:5e:
48:1d:f2:fb:13:68:11:ec:1e:26:49:d8:cd:42:0a:
bc:1c:97:24:fd:9c:74:57:b8:14:3c:f2:74:4f:f3:
99:8a:15:89:ae:aa:d9:36:55:13:5f:6e:3b:91:e0:
2c:5c:ae:44:bf:99:88:8a:e6:3a:bb:41:a3:18:9a:
c5:59:52:b2:c4:61:03:54:67:9b:5b:23:00:76:5e:
ea:21:dc:6c:56:97:50:4e:5b:58:64:e8:b2:c9:f7:
7e:ef:88:d7:ab:0d:b6:41:21:2f:19:9c:9d:f6:cb:
f9:cd:d7:f9:cf:bd:a5:8b:f2:49:d9:42:eb:92:a7:
a7:c0:4d:f9:af:1b:6e:e4:b2:36:86:d4:c4:37:04:
3a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:BD:F3:05:73:46:8F:60:26:47:47:56:5A:D2:B9:42:67:27:C1:BF
X509v3 Authority Key Identifier:
keyid:C0:F7:11:2F:D7:F6:E3:83:A9:9A:5B:5C:19:E1:4D:AB:FC:03:DC:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f8263f0ea1b563289205ad0264530f8e6c30e569.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/532b2097-ea08-4780-b94f-03c338b5aa57/b158d5484cd8ffb749b1438ab8d801f1191c9778.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/532b2097-ea08-4780-b94f-03c338b5aa57/f8263f0ea1b563289205ad0264530f8e6c30e569.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.11.32.0/20
181.14.72.0-181.14.111.255
181.15.110.0/23
181.30.0.0-181.30.125.255
181.30.160.0/19
181.94.4.0/23
181.105.160.0/19
181.166.240.0/22
181.166.246.0-181.166.249.255
190.136.28.0/23
190.224.160.0/22
190.225.246.0/23
190.226.40.0/23
200.3.94.0/23
200.32.2.0-200.32.13.255
200.32.18.0/23
200.32.30.0/23
200.42.0.0/23
200.42.8.0-200.42.17.255
200.42.22.0/23
200.42.30.0/23
200.42.48.0/23
200.42.56.0/21
200.42.68.0-200.42.95.255
200.42.98.0-200.42.101.255
200.42.106.0/23
200.42.110.0/23
200.42.116.0/22
200.42.126.0/23
200.42.130.0-200.42.139.255
200.42.142.0-200.42.147.255
200.42.150.0/23
200.42.154.0/23
200.43.32.0/23
200.43.192.0/23
200.45.0.0-200.45.5.255
200.45.48.0/23
200.45.64.0/23
200.45.190.0/23
200.49.140.0/22
200.49.150.0/23
200.49.154.0-200.49.159.255
200.61.204.0-200.61.223.255
200.73.128.0/18
200.82.80.0/22
200.89.128.0/21
200.89.138.0-200.89.143.255
200.89.146.0-200.89.159.255
200.89.174.0-200.89.183.255
200.89.188.0/23
200.127.144.0-200.127.167.255
201.212.0.0/20
201.235.124.0/22
Signature Algorithm: sha256WithRSAEncryption
63:9a:47:47:06:47:8e:2f:67:fb:11:5d:26:5f:15:c3:06:49:
aa:8b:08:37:1a:eb:06:9a:fd:c0:be:3b:31:d3:de:bc:3f:2f:
a0:df:22:27:6a:1f:d1:81:36:71:cb:2f:4c:8f:a7:8d:29:fa:
f5:48:39:9f:e3:34:b0:50:07:8f:8c:50:72:1e:18:18:01:30:
4f:3e:cd:1c:09:2d:a4:ac:22:f3:b4:7f:38:47:d3:da:57:77:
68:4d:a2:e6:23:78:08:91:3f:e4:d6:f5:26:6f:e8:ae:78:04:
62:80:80:0c:81:24:b2:c6:de:7d:11:77:45:6b:21:85:a7:2f:
81:31:6b:02:40:22:b2:ef:ab:1a:78:aa:b3:4d:78:b8:34:13:
c3:41:62:70:cc:02:7c:05:ad:7c:75:49:5d:1c:b6:94:3f:28:
1a:ba:ce:8f:fa:08:6f:43:6b:50:81:89:ed:17:0e:08:91:a8:
42:3d:65:47:7e:98:1c:91:9e:07:1a:c6:0b:f3:4e:a0:71:df:
6c:d5:2c:c3:99:28:21:f7:aa:c7:59:48:26:7c:40:5a:f7:cd:
cb:4f:4b:7a:84:f3:d6:ab:f3:fb:2e:0f:8a:61:2e:a6:ff:a7:
83:8f:8e:e0:4b:11:b5:7b:e8:96:ac:27:31:66:a9:0d:74:3a:
55:f7:a8:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 7 13:46:15 2023 by rpki-client on console-fra.rpki-client.org