Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6a17cb29-660f-49bf-909a-28ce4bd7356c/8d92556e9c7b4ad931f92fbaed9ed7deef895870.roa
File: 8d92556e9c7b4ad931f92fbaed9ed7deef895870.roa (raw, json)
Hash identifier: Sj+2PBybZDb0DdtoRQOspzyCQ1xfL7qAxUEeSyhiuAo=
Subject key identifier: B3:66:00:7E:3D:C2:21:1F:00:8E:67:58:81:6C:2C:47:DF:C2:BC:41
Certificate issuer: /CN=03db7f368709412d68f18d6190ed8997e247550a
Certificate serial: 0D8A0C
Authority key identifier: C8:9F:AB:1F:EB:EE:C7:35:7C:DC:80:17:DA:98:8E:81:B6:40:65:19
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/03db7f368709412d68f18d6190ed8997e247550a.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6a17cb29-660f-49bf-909a-28ce4bd7356c/8d92556e9c7b4ad931f92fbaed9ed7deef895870.roa
Signing time: Wed 24 Mar 2021 14:46:04 +0000
ROA not before: Wed 24 Mar 2021 14:46:03 +0000
ROA not after: Tue 24 Mar 2026 14:46:03 +0000
asID: 19905
IP address blocks: 132.157.0.0/16 maxlen: 24
132.184.0.0/16 maxlen: 24
132.191.0.0/16 maxlen: 24
132.251.0.0/17 maxlen: 24
132.251.128.0/18 maxlen: 24
132.251.192.0/19 maxlen: 24
186.160.0.0/14 maxlen: 24
200.110.0.0/19 maxlen: 24
200.110.32.0/20 maxlen: 24
200.192.105.0/24 maxlen: 24
201.131.121.0/24 maxlen: 24
204.87.205.0/24 maxlen: 24
207.248.121.0/24 maxlen: 24
207.248.123.0/24 maxlen: 24
2803:7180::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 887308 (0xd8a0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03db7f368709412d68f18d6190ed8997e247550a
Validity
Not Before: Mar 24 14:46:03 2021 GMT
Not After : Mar 24 14:46:03 2026 GMT
Subject: CN=8d92556e9c7b4ad931f92fbaed9ed7deef895870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:41:a4:4e:39:f7:0a:b0:90:8d:d4:8c:b8:88:
21:14:68:bb:ca:8f:85:ee:36:08:a6:e4:07:aa:d0:
f4:a1:20:b8:41:00:87:cc:68:c2:63:d0:3a:7c:63:
db:32:ba:4b:fd:39:07:a6:b6:dc:fa:88:81:2c:f7:
dd:43:84:46:fa:21:83:00:52:0b:41:07:56:14:2a:
f9:41:91:ca:e6:ac:de:54:5e:1c:1a:11:f4:50:b0:
0c:1a:61:42:44:a6:e1:ca:51:b7:87:2d:cd:15:63:
4d:7c:21:55:38:cb:91:19:90:77:5f:e0:32:1a:2c:
3a:2a:ac:3c:37:e9:78:a3:28:20:a5:89:d2:fd:08:
60:af:6b:42:74:77:33:dc:e1:73:40:51:e8:37:86:
78:ac:d9:a2:18:34:3a:fa:7a:34:77:ad:12:c0:17:
4d:9d:9d:4f:4b:5a:f4:b3:83:05:80:0a:c8:c4:60:
25:25:72:49:11:09:3b:1a:aa:95:f6:50:5f:88:c8:
5d:ed:90:54:92:b5:86:80:31:52:f2:0d:33:49:a9:
02:3b:7f:02:f6:77:3d:52:01:a7:69:83:4c:36:4a:
25:dc:44:12:9c:be:0c:17:51:cc:bf:a0:99:5f:d9:
7e:4c:79:b8:48:86:d5:1e:f6:f6:9f:0e:46:0b:62:
cb:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:66:00:7E:3D:C2:21:1F:00:8E:67:58:81:6C:2C:47:DF:C2:BC:41
X509v3 Authority Key Identifier:
keyid:C8:9F:AB:1F:EB:EE:C7:35:7C:DC:80:17:DA:98:8E:81:B6:40:65:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/03db7f368709412d68f18d6190ed8997e247550a.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6a17cb29-660f-49bf-909a-28ce4bd7356c/8d92556e9c7b4ad931f92fbaed9ed7deef895870.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6a17cb29-660f-49bf-909a-28ce4bd7356c/03db7f368709412d68f18d6190ed8997e247550a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.157.0.0/16
132.184.0.0/16
132.191.0.0/16
132.251.0.0-132.251.223.255
186.160.0.0/14
200.110.0.0-200.110.47.255
200.192.105.0/24
201.131.121.0/24
204.87.205.0/24
207.248.121.0/24
207.248.123.0/24
IPv6:
2803:7180::/32
Signature Algorithm: sha256WithRSAEncryption
b9:cc:68:2c:24:c1:ed:2b:a1:d3:b0:21:b1:ec:aa:f5:c6:42:
a0:e6:5a:4d:c0:9d:20:ea:c7:ee:32:2c:68:10:74:f9:e1:c7:
7d:9a:16:ae:17:a7:51:af:c6:9e:9d:f2:2d:68:f9:6b:2f:7b:
fc:29:03:fa:7b:e5:d5:74:cf:75:b1:9f:11:a6:2b:0e:65:f4:
f8:bf:88:7e:69:a0:55:25:41:de:7b:ac:0c:35:79:2c:e0:21:
9b:9f:83:19:da:81:8e:e3:c1:60:30:33:20:9f:93:cd:8a:e1:
32:73:b4:e0:fa:d3:fe:b9:da:eb:02:0b:86:fa:c9:d1:6f:76:
ba:5a:2e:7f:40:69:e2:7f:98:a2:5e:9c:f4:90:08:73:e8:2a:
2f:2e:01:46:1c:2b:ab:34:77:30:27:81:78:d1:ce:09:52:dd:
38:f8:52:9c:a8:be:8b:22:55:e3:58:f5:bf:94:01:b1:e1:f3:
7c:5f:db:be:1c:0f:59:bd:39:9e:7e:f2:0f:0e:9d:0d:2e:da:
79:b4:aa:ee:38:43:0a:19:6d:93:8d:4a:5b:69:9d:46:59:56:
ae:af:7c:ee:99:36:7c:de:e9:73:59:95:c8:d0:5b:4d:8a:54:
ef:2c:54:c6:ca:e6:9a:56:07:34:07:47:68:53:48:a4:f8:f0:
02:b0:fb:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:49 2024 by rpki-client on console-fra.rpki-client.org