Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/6df1eb623e2c87c757a3fadf6d870ed409fd413c.roa
File: 6df1eb623e2c87c757a3fadf6d870ed409fd413c.roa (raw, json)
Hash identifier: oCRXjuC6cfpuK5HjmwAkdAs8p53vhupSx/ouUhTamFw=
Subject key identifier: 16:D5:D3:BE:84:67:27:CA:86:28:5A:D7:70:FD:CF:1D:6E:EB:9C:34
Certificate issuer: /CN=29bfc63c4d2e222df3a099e222567deb9e88bb27
Certificate serial: 0E12DA
Authority key identifier: A6:C1:FF:61:8D:96:22:B7:89:0F:A0:98:36:A6:5C:D2:3C:EF:C4:62
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/29bfc63c4d2e222df3a099e222567deb9e88bb27.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/6df1eb623e2c87c757a3fadf6d870ed409fd413c.roa
Signing time: Wed 24 Mar 2021 14:31:36 +0000
ROA not before: Wed 24 Mar 2021 14:31:34 +0000
ROA not after: Tue 24 Mar 2026 14:31:34 +0000
asID: 16814
IP address blocks: 190.2.0.0/19 maxlen: 24
190.2.32.0/19 maxlen: 24
190.210.0.0/18 maxlen: 24
190.210.64.0/18 maxlen: 24
190.210.128.0/18 maxlen: 24
190.210.192.0/18 maxlen: 24
200.61.160.0/19 maxlen: 24
200.68.64.0/20 maxlen: 24
200.68.80.0/20 maxlen: 24
200.68.96.0/20 maxlen: 24
200.68.112.0/20 maxlen: 24
200.69.192.0/18 maxlen: 24
200.123.128.0/20 maxlen: 24
200.123.144.0/20 maxlen: 24
200.123.160.0/20 maxlen: 24
200.123.176.0/20 maxlen: 24
201.216.192.0/19 maxlen: 24
201.216.224.0/19 maxlen: 24
2800:40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 922330 (0xe12da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29bfc63c4d2e222df3a099e222567deb9e88bb27
Validity
Not Before: Mar 24 14:31:34 2021 GMT
Not After : Mar 24 14:31:34 2026 GMT
Subject: CN=6df1eb623e2c87c757a3fadf6d870ed409fd413c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:76:20:86:dd:84:38:88:4d:10:50:c7:0b:65:
d8:d1:35:78:6b:55:be:c5:43:1c:22:0d:59:56:6a:
73:33:70:63:f1:aa:ff:93:c7:3f:c5:09:e9:e9:ed:
71:67:0d:97:b6:46:60:7e:94:6c:2d:b7:5b:7d:bb:
c5:e2:08:0b:65:72:97:33:a1:01:92:50:c8:58:fb:
ae:92:5e:f6:79:2a:15:18:29:b1:a4:45:c2:73:e7:
90:12:f5:52:45:74:d1:a4:65:16:97:73:0b:16:5a:
f8:e7:ec:91:da:a9:c0:4b:82:db:b0:aa:2d:c6:80:
3d:4e:8d:ce:a9:e4:c5:e2:13:21:03:11:57:b7:9f:
78:2b:df:0a:af:da:ab:4c:34:4e:30:2c:c5:44:b2:
4b:6f:6b:ed:a4:93:57:91:9f:a8:8e:21:fc:8c:a1:
de:3b:1a:53:93:0f:cc:5a:fb:96:d6:9f:74:43:ed:
e9:03:5e:15:00:73:14:77:b4:88:2b:30:67:61:e7:
6e:29:81:bb:c9:a6:66:a0:ed:69:87:3b:d1:d0:c6:
3c:4f:08:78:17:ea:0c:9c:e9:ae:82:2a:c7:47:1a:
ba:e5:49:cf:7c:6c:e9:66:3f:cc:ec:87:36:7b:e2:
82:58:50:f8:1b:3d:a6:72:0e:a3:7d:1d:a4:0d:b4:
ee:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D5:D3:BE:84:67:27:CA:86:28:5A:D7:70:FD:CF:1D:6E:EB:9C:34
X509v3 Authority Key Identifier:
keyid:A6:C1:FF:61:8D:96:22:B7:89:0F:A0:98:36:A6:5C:D2:3C:EF:C4:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/29bfc63c4d2e222df3a099e222567deb9e88bb27.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/6df1eb623e2c87c757a3fadf6d870ed409fd413c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/626f4f28-880c-4bb5-9442-9eef9325d7eb/29bfc63c4d2e222df3a099e222567deb9e88bb27.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.2.0.0/18
190.210.0.0/16
200.61.160.0/19
200.68.64.0/18
200.69.192.0/18
200.123.128.0/18
201.216.192.0/18
IPv6:
2800:40::/32
Signature Algorithm: sha256WithRSAEncryption
1d:ee:b4:df:8a:02:ff:cc:99:b3:bf:24:f4:89:d6:b7:21:7f:
d4:7e:dd:41:3a:8a:09:cd:37:ea:8f:c8:26:ac:5d:07:78:b6:
0b:49:9f:32:b3:da:f5:e9:07:eb:a3:22:4d:a0:00:b1:b6:32:
3f:5b:17:69:40:85:42:a1:a3:40:aa:bd:3c:ea:26:6c:79:6e:
ec:56:ed:de:71:82:b3:0b:e3:e9:a5:bb:a7:0c:c1:2c:c3:2b:
3a:bf:f8:b8:be:88:36:99:c3:d3:fa:e1:2d:8b:f9:b1:bd:3e:
03:ba:dd:3b:8b:2c:7d:d1:15:e1:e3:17:01:e3:bd:9d:b3:ec:
13:d9:0d:c6:cd:e0:a0:5b:de:96:f1:9e:a0:ab:f8:2c:3e:6e:
de:a8:21:a3:4f:7d:33:c5:34:3d:fb:f1:dd:32:9a:31:c3:a1:
01:72:69:1b:ba:81:b2:42:09:6f:9a:00:94:31:eb:69:4f:9e:
ff:6e:72:fb:a1:ba:3f:d3:a8:24:1a:e1:e2:40:5d:41:ff:9b:
71:f2:0e:32:a7:ed:65:00:dd:7c:67:ac:6d:ee:27:3a:11:63:
48:e6:f0:03:e3:64:33:e4:63:44:3b:5e:99:7c:75:ea:61:3f:
76:a9:d8:80:f7:1a:fc:aa:98:2e:f8:84:d7:75:a4:3e:57:ff:
19:83:fa:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-ams.rpki-client.org