Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6a17cb29-660f-49bf-909a-28ce4bd7356c/0da729b3e8ae9786763aac9c698035a9fcbff614.roa
File: 0da729b3e8ae9786763aac9c698035a9fcbff614.roa (raw, json)
Hash identifier: mPG2kbX57lxP1G9QFNuZzkZWX2tD5dF74NBjaAe2UgM=
Subject key identifier: C1:D3:F9:57:08:A6:BC:19:1B:90:FA:E9:1E:D4:13:CD:77:3E:00:B7
Certificate issuer: /CN=03db7f368709412d68f18d6190ed8997e247550a
Certificate serial: 21D3EE
Authority key identifier: C8:9F:AB:1F:EB:EE:C7:35:7C:DC:80:17:DA:98:8E:81:B6:40:65:19
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/03db7f368709412d68f18d6190ed8997e247550a.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6a17cb29-660f-49bf-909a-28ce4bd7356c/0da729b3e8ae9786763aac9c698035a9fcbff614.roa
Signing time: Wed 14 Jun 2023 02:38:45 +0000
ROA not before: Tue 13 Jun 2023 02:38:43 +0000
ROA not after: Sat 14 Jun 2025 02:38:43 +0000
asID: 21575
IP address blocks: 204.87.205.0/24 maxlen: 24
132.191.0.0/16 maxlen: 24
132.157.0.0/16 maxlen: 24
200.192.105.0/24 maxlen: 24
132.184.0.0/16 maxlen: 24
207.248.121.0/24 maxlen: 24
207.248.123.0/24 maxlen: 24
132.251.0.0/17 maxlen: 24
132.251.128.0/18 maxlen: 24
132.251.192.0/19 maxlen: 24
186.160.0.0/14 maxlen: 24
200.110.0.0/19 maxlen: 24
200.110.32.0/20 maxlen: 24
201.131.121.0/24 maxlen: 24
2803:7180::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2216942 (0x21d3ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03db7f368709412d68f18d6190ed8997e247550a
Validity
Not Before: Jun 13 02:38:43 2023 GMT
Not After : Jun 14 02:38:43 2025 GMT
Subject: CN=0da729b3e8ae9786763aac9c698035a9fcbff614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4f:72:12:86:34:48:c6:1e:82:bd:51:d2:f3:
a8:2f:6d:7d:54:b3:98:61:ca:46:df:8e:72:08:1e:
94:25:0c:d4:8f:c5:a9:c2:29:57:ff:a0:97:2c:8c:
f3:e0:4e:8f:23:ef:ef:a5:60:da:21:5f:20:67:36:
1a:35:1f:6a:58:a5:fc:1d:53:33:84:57:83:ab:8c:
6a:03:67:91:82:cf:16:44:50:ec:76:ab:b0:57:54:
df:93:1c:8f:aa:6e:2b:eb:d8:57:33:ff:c6:21:96:
10:3e:72:a4:34:7a:f3:b6:68:1a:b0:49:ca:03:fe:
23:5b:6b:a2:56:dd:77:72:73:ba:82:0f:58:f4:da:
56:6f:4c:16:7c:af:21:ce:e2:47:36:1a:b3:36:7c:
49:b1:d0:4e:d9:7a:66:18:0c:bc:27:c8:8b:94:d2:
11:0b:a2:3f:f7:08:ad:c1:58:d2:49:99:d9:4c:b5:
7f:7d:e9:c1:f1:1b:e5:6b:72:b6:21:93:2b:8d:18:
6b:df:f0:17:e2:b5:18:4d:07:80:80:04:2d:7f:a1:
ba:b6:0e:12:1d:32:0f:59:dc:59:5b:d3:1c:5b:39:
a2:c4:bc:84:96:20:cf:12:46:5a:d8:50:7f:af:6e:
71:44:ca:51:f4:50:35:55:ff:84:45:7c:66:d5:5a:
53:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:D3:F9:57:08:A6:BC:19:1B:90:FA:E9:1E:D4:13:CD:77:3E:00:B7
X509v3 Authority Key Identifier:
keyid:C8:9F:AB:1F:EB:EE:C7:35:7C:DC:80:17:DA:98:8E:81:B6:40:65:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/03db7f368709412d68f18d6190ed8997e247550a.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6a17cb29-660f-49bf-909a-28ce4bd7356c/0da729b3e8ae9786763aac9c698035a9fcbff614.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6a17cb29-660f-49bf-909a-28ce4bd7356c/03db7f368709412d68f18d6190ed8997e247550a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.157.0.0/16
132.184.0.0/16
132.191.0.0/16
132.251.0.0-132.251.223.255
186.160.0.0/14
200.110.0.0-200.110.47.255
200.192.105.0/24
201.131.121.0/24
204.87.205.0/24
207.248.121.0/24
207.248.123.0/24
IPv6:
2803:7180::/32
Signature Algorithm: sha256WithRSAEncryption
39:43:c8:96:30:fb:05:54:bc:cb:49:78:98:ac:6b:a5:16:26:
85:0d:d6:c5:76:52:19:e0:6d:79:56:d0:8f:33:eb:aa:0c:a9:
00:48:8c:44:17:d8:19:36:79:87:91:1b:91:d0:0e:53:a8:c4:
d4:5d:a8:86:7d:16:a4:ab:2b:5c:1b:09:36:e2:51:a5:a7:e1:
ed:ce:46:02:d5:37:4d:ca:83:e1:d2:a2:32:33:a2:82:6c:d7:
80:ed:c1:c8:51:cd:07:4c:5e:84:83:2f:cf:d4:88:cf:5e:55:
9d:4a:0a:c3:65:ff:ff:02:9f:4d:36:67:e7:df:d3:4d:de:00:
f0:82:05:bc:77:36:df:0a:94:83:7d:8d:c1:33:b8:d3:5c:34:
8c:8e:c1:44:e8:14:85:88:6e:be:56:17:0f:23:e1:e5:87:b9:
43:89:6a:fc:82:18:52:83:df:3f:ae:f7:f0:8f:e8:69:6b:24:
00:31:f4:fb:b1:ff:c2:9d:f3:d1:f9:86:a5:2b:f7:c5:a5:e7:
0b:60:3c:f7:a5:9a:2f:a3:6c:16:8c:7e:13:9a:06:05:40:42:
7b:2a:c4:de:52:42:c4:47:9d:46:b7:57:42:59:80:84:2f:73:
d4:a2:69:7b:ea:a8:39:ff:07:16:74:d7:8a:a5:c6:6f:7f:c7:
06:0e:a8:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:59 2024 by rpki-client on console-ams.rpki-client.org