Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/36dfb27453f51a996764537b6033b79991a06835.roa
File: 36dfb27453f51a996764537b6033b79991a06835.roa (raw, json)
Hash identifier: kClbOgZbjro6jIFmQNkYSeBgRQIG5cYj6NdbmnzciNk=
Subject key identifier: 3C:A6:59:B2:75:A1:85:CC:51:9E:F9:83:7A:38:51:CB:91:55:D5:49
Certificate issuer: /CN=6c3f3cbf971b31d4a0fb48a063ed86f0b594ac3e
Certificate serial: 236A6B
Authority key identifier: D8:0B:41:95:3D:80:14:E8:18:A3:CC:23:C1:4C:4F:94:D1:A8:C1:1B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6c3f3cbf971b31d4a0fb48a063ed86f0b594ac3e.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/36dfb27453f51a996764537b6033b79991a06835.roa
Signing time: Tue 06 Jun 2023 15:06:02 +0000
ROA not before: Mon 05 Jun 2023 15:06:02 +0000
ROA not after: Fri 06 Jun 2025 15:06:02 +0000
asID: 3790
IP address blocks: 190.171.20.0/24 maxlen: 24
190.171.22.0/23 maxlen: 24
190.171.32.0/19 maxlen: 24
190.241.12.0/22 maxlen: 24
190.241.17.0/24 maxlen: 24
190.241.18.0/23 maxlen: 24
190.241.20.0/22 maxlen: 24
190.241.30.0/24 maxlen: 24
190.241.32.0/19 maxlen: 24
190.241.119.0/24 maxlen: 27
190.241.77.0/24 maxlen: 24
190.241.78.0/23 maxlen: 24
190.241.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2321003 (0x236a6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c3f3cbf971b31d4a0fb48a063ed86f0b594ac3e
Validity
Not Before: Jun 5 15:06:02 2023 GMT
Not After : Jun 6 15:06:02 2025 GMT
Subject: CN=36dfb27453f51a996764537b6033b79991a06835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e0:f0:ea:f5:2a:37:ce:ba:de:f7:ad:12:01:
49:2d:69:67:d8:c3:ca:9a:04:86:b4:ce:ce:c5:12:
aa:c2:6f:f5:e3:ae:33:8b:ce:29:57:61:c2:34:72:
d9:fd:b8:15:2c:97:30:24:5a:0c:fd:7a:a8:dd:d2:
3f:c6:36:21:96:90:86:77:c8:7f:cf:4c:ca:3b:25:
50:86:bf:77:ea:6c:1b:0e:c6:ab:8d:56:aa:f4:20:
eb:1b:a1:7e:7c:e2:4a:ec:8a:ea:e8:39:df:52:9e:
ca:b7:89:f6:a7:52:68:69:f9:8b:46:cc:37:94:aa:
8b:85:92:9c:c9:96:bb:b3:c0:79:97:51:41:87:ba:
ab:df:a4:27:c1:13:b7:8f:25:a9:ce:21:e8:b7:65:
c1:98:3c:9e:f1:06:b7:73:26:02:d2:2b:ac:fe:eb:
17:b1:f4:88:ea:ab:d9:7a:e5:19:57:c8:38:e5:62:
8f:aa:0a:93:4d:c0:18:08:80:82:81:f1:84:04:0f:
27:2d:11:ef:bd:d7:e2:83:4c:70:3e:27:eb:4a:1e:
69:13:01:19:f2:99:09:83:9b:dc:a6:2d:c8:0c:cf:
f2:1f:87:f1:e2:21:f4:ad:b2:c4:19:5f:99:4c:55:
78:4b:b1:c9:05:5e:04:63:f1:ff:51:97:89:d6:95:
aa:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A6:59:B2:75:A1:85:CC:51:9E:F9:83:7A:38:51:CB:91:55:D5:49
X509v3 Authority Key Identifier:
keyid:D8:0B:41:95:3D:80:14:E8:18:A3:CC:23:C1:4C:4F:94:D1:A8:C1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6c3f3cbf971b31d4a0fb48a063ed86f0b594ac3e.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/36dfb27453f51a996764537b6033b79991a06835.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/6c3f3cbf971b31d4a0fb48a063ed86f0b594ac3e.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.171.20.0/24
190.171.22.0/23
190.171.32.0/19
190.241.12.0/22
190.241.17.0-190.241.23.255
190.241.30.0/24
190.241.32.0/19
190.241.77.0-190.241.79.255
190.241.116.0/24
190.241.119.0/24
Signature Algorithm: sha256WithRSAEncryption
79:7d:3b:c8:9c:26:a4:ec:77:0e:92:4b:8e:67:af:5a:e4:99:
b9:ab:4e:da:ed:35:8d:95:05:ce:38:fa:93:3a:05:b1:8b:54:
3d:a4:36:98:df:2e:63:9e:41:9e:1d:92:7c:e7:14:95:aa:ff:
83:92:3b:8d:b8:58:1a:63:37:e9:fa:8c:1f:4b:6d:b1:e6:bc:
ee:7d:f2:b3:a5:39:96:5a:8e:73:6b:27:b3:9f:17:c2:7b:5c:
25:da:9b:9a:38:2c:35:81:cd:94:d3:95:ee:0d:57:2e:a7:e2:
ba:b6:82:cb:9c:4b:18:55:d7:5f:69:0c:d0:92:a2:27:a5:57:
40:7b:20:ef:02:05:f9:84:9c:d3:f5:2b:1d:29:c2:b3:90:6e:
73:76:71:f9:6c:17:17:b9:33:5b:dc:ef:68:31:8f:2e:28:43:
84:e9:66:42:76:22:43:f0:f8:6f:cf:fc:95:7d:ff:53:1b:3c:
42:6b:3a:7f:38:71:81:94:e9:65:3b:93:98:08:f1:c8:c5:4f:
ef:13:2c:64:eb:e5:4e:26:88:b8:c6:83:60:02:67:a6:4f:95:
87:5f:df:1a:f5:78:98:8c:17:70:75:0c:fb:2f:ef:c6:dd:02:
db:ca:d2:19:a8:c0:b8:47:77:47:95:b7:1e:06:ed:73:10:f4:
9e:63:8d:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:49 2024 by rpki-client on console-fra.rpki-client.org