Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/7de73a754f3609b9432310dd2d48bcc937d75141.roa
File: 7de73a754f3609b9432310dd2d48bcc937d75141.roa (raw, json)
Hash identifier: 5gY9/Wwj8oB84QiuVXjJIvg64aXyBdYlKGEOnNT+maM=
Subject key identifier: AA:C6:AE:C3:54:0C:A4:CF:BC:A0:AB:89:A0:3A:4C:3F:41:A4:3D:DF
Certificate issuer: /CN=a7237d32fd35bbf0fdba7734a8368fd9626eca5a
Certificate serial: 27E8EB
Authority key identifier: BE:02:D2:36:F8:B0:06:BA:87:81:2A:20:2E:F5:B7:66:DC:8E:30:3F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/7de73a754f3609b9432310dd2d48bcc937d75141.roa
Signing time: Mon 12 Feb 2024 15:10:06 +0000
ROA not before: Mon 12 Feb 2024 15:09:57 +0000
ROA not after: Mon 12 Feb 2029 15:09:57 +0000
asID: 262191
IP address blocks: 190.242.98.0/24 maxlen: 24
190.242.103.0/24 maxlen: 24
190.242.104.0/23 maxlen: 24
190.242.109.0/24 maxlen: 24
190.242.112.0/23 maxlen: 24
190.242.115.0/24 maxlen: 24
190.242.117.0/24 maxlen: 24
190.242.125.0/24 maxlen: 24
190.242.22.0/23 maxlen: 24
190.242.129.0/24 maxlen: 24
190.242.130.0/24 maxlen: 24
190.242.36.0/22 maxlen: 24
190.242.40.0/21 maxlen: 24
190.242.54.0/23 maxlen: 24
190.242.60.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2615531 (0x27e8eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7237d32fd35bbf0fdba7734a8368fd9626eca5a
Validity
Not Before: Feb 12 15:09:57 2024 GMT
Not After : Feb 12 15:09:57 2029 GMT
Subject: CN=7de73a754f3609b9432310dd2d48bcc937d75141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b3:ca:0b:1e:bf:0c:79:d0:3d:85:67:50:f7:
aa:5d:09:d6:40:1c:f0:3d:97:4b:88:80:70:b1:08:
e8:55:f6:77:93:53:05:f5:b3:22:b5:ff:88:80:80:
8b:58:8b:4f:dd:ea:6e:68:ea:4c:98:92:40:f4:cf:
9b:af:1b:b1:29:06:e5:77:2d:e2:5d:96:fe:2f:98:
b0:1c:68:0f:f7:6d:57:c3:a3:ba:20:70:2c:1b:8c:
73:48:31:10:bf:9a:6e:ef:10:36:56:17:5a:9f:9e:
de:ec:e2:fc:91:60:39:16:8c:73:fb:92:f1:cf:58:
12:5c:d3:d6:70:bd:51:44:c4:3a:df:1c:6d:f1:63:
1f:ca:59:f7:00:50:b1:7d:bf:67:16:a3:c6:0f:89:
ab:50:72:88:ce:f3:50:d8:a0:d1:c8:0e:a4:bc:c6:
ce:2a:53:59:b9:ed:62:27:42:bc:cc:1c:f1:38:6d:
b6:be:8e:e3:c0:bf:d2:86:02:1c:69:2e:75:7e:5d:
a9:7d:a8:17:c7:7a:42:f9:02:ad:e3:6e:c9:67:63:
02:1f:30:1b:17:88:53:1e:ba:c8:4e:0b:15:02:cd:
37:fd:0e:ec:24:93:2b:3e:eb:17:27:14:d8:0e:97:
4a:5e:26:49:02:e4:2e:65:5e:82:f1:aa:cd:50:42:
0f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C6:AE:C3:54:0C:A4:CF:BC:A0:AB:89:A0:3A:4C:3F:41:A4:3D:DF
X509v3 Authority Key Identifier:
keyid:BE:02:D2:36:F8:B0:06:BA:87:81:2A:20:2E:F5:B7:66:DC:8E:30:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/7de73a754f3609b9432310dd2d48bcc937d75141.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.242.22.0/23
190.242.36.0-190.242.47.255
190.242.54.0/23
190.242.60.0/22
190.242.98.0/24
190.242.103.0-190.242.105.255
190.242.109.0/24
190.242.112.0/23
190.242.115.0/24
190.242.117.0/24
190.242.125.0/24
190.242.129.0-190.242.130.255
Signature Algorithm: sha256WithRSAEncryption
86:fc:01:09:6e:d5:ff:33:3d:dc:80:2c:8f:b2:57:c8:c1:67:
71:64:9c:d7:1d:33:33:4b:17:9b:e4:a8:45:7e:e5:b1:9e:6b:
2b:8e:87:bb:f9:49:13:5a:0a:75:0e:9a:f5:0d:33:a6:bf:20:
ca:3f:d2:75:8b:e8:10:82:58:21:a7:a7:05:39:34:46:c6:e6:
36:5d:a8:eb:47:89:74:e1:b6:62:d1:b3:64:99:1c:8a:7f:6b:
12:c9:5f:19:04:69:17:a4:c9:f7:49:dd:4e:76:34:bc:56:c8:
51:a2:e6:4a:3a:3c:8d:31:93:9d:1c:7e:fe:9a:4b:49:00:b6:
49:bf:7d:b7:da:45:9e:78:93:ca:38:8a:a0:7e:ed:19:5e:51:
8f:3d:38:74:ba:1a:20:5a:95:d2:fc:66:e5:de:ed:29:73:03:
42:84:0c:36:7d:17:12:49:88:d6:19:b8:cd:62:2e:e9:35:fc:
5e:34:8a:22:31:5c:dc:7a:48:54:47:c2:5e:65:a8:af:35:19:
ea:7c:e9:97:20:39:dc:b3:67:03:82:a3:7c:74:e4:ec:6d:f6:
bd:ff:50:39:0e:87:e4:24:88:46:79:0a:b0:62:98:1e:12:9f:
f7:a1:b8:2b:9d:f9:af:27:b0:28:ad:24:14:0c:48:52:3b:ae:
aa:e5:ac:dc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:21 2024 by rpki-client on console-fra.rpki-client.org