Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/d6309b75d6d115a821d4cdcbb39a6f204140ccee.roa
File: d6309b75d6d115a821d4cdcbb39a6f204140ccee.roa (raw, json)
Hash identifier: qHDGcMBpfUn6UtnFdpYwap5HuvyvuGxODu5AcL138cI=
Subject key identifier: 99:01:CF:A4:AA:CE:75:F0:DB:34:62:3A:09:CF:25:DB:A4:D8:99:AC
Certificate issuer: /CN=44c2caf4f7cfddcc44bc95bcacbf2d7813f606ca
Certificate serial: 2418B2
Authority key identifier: D9:E2:2D:FB:2E:DB:03:3D:7E:61:3B:B3:22:76:2A:C6:40:ED:53:30
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/44c2caf4f7cfddcc44bc95bcacbf2d7813f606ca.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/d6309b75d6d115a821d4cdcbb39a6f204140ccee.roa
Signing time: Tue 06 Jun 2023 15:23:22 +0000
ROA not before: Mon 05 Jun 2023 15:23:21 +0000
ROA not after: Tue 06 Jun 2028 15:23:21 +0000
asID: 3790
IP address blocks: 200.122.128.0/18 maxlen: 24
190.171.0.0/24 maxlen: 24
190.171.3.0/24 maxlen: 24
190.171.4.0/22 maxlen: 24
190.171.8.0/23 maxlen: 24
190.171.14.0/24 maxlen: 24
190.171.16.0/22 maxlen: 24
190.10.0.0/20 maxlen: 24
190.10.16.0/23 maxlen: 24
190.10.19.0/24 maxlen: 24
190.10.20.0/22 maxlen: 24
190.10.121.0/24 maxlen: 24
190.10.122.0/23 maxlen: 24
190.10.25.0/24 maxlen: 24
190.10.26.0/23 maxlen: 24
190.10.28.0/22 maxlen: 24
190.10.32.0/24 maxlen: 24
190.10.34.0/24 maxlen: 24
190.10.64.0/23 maxlen: 24
190.10.66.0/24 maxlen: 24
190.10.68.0/22 maxlen: 24
190.10.76.0/22 maxlen: 24
190.241.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2365618 (0x2418b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c2caf4f7cfddcc44bc95bcacbf2d7813f606ca
Validity
Not Before: Jun 5 15:23:21 2023 GMT
Not After : Jun 6 15:23:21 2028 GMT
Subject: CN=d6309b75d6d115a821d4cdcbb39a6f204140ccee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3b:9c:55:fd:2c:e8:61:b1:4a:d7:e7:25:a3:
33:c3:75:4d:b9:e2:24:28:ec:6a:53:bd:e5:4d:eb:
bd:1b:f4:75:b1:ed:a5:ea:d5:5b:fa:db:0a:cc:95:
3e:94:42:e7:ba:63:97:b4:a5:ef:49:ef:f5:29:a9:
5f:f6:8b:47:f1:b1:71:b2:e2:35:f0:a1:38:12:22:
cf:89:9b:20:61:2d:3f:b4:ba:4e:e1:cf:1b:31:d8:
4e:3f:84:e7:ee:07:ed:5c:3b:46:7b:f1:02:55:85:
4f:8a:cb:b8:a5:a3:58:d5:d5:09:4d:f0:95:9c:cc:
5c:d0:5f:b0:12:72:81:06:77:b0:d7:66:1c:87:b8:
b3:f0:05:e2:31:ab:82:9e:5f:24:a6:2b:ee:f8:65:
39:48:d9:25:b5:35:2f:a0:ee:30:bf:63:9e:d1:0a:
a1:e2:a5:04:75:8f:e6:d5:ab:44:3c:4a:80:9b:f9:
f0:a8:bf:14:5f:90:79:da:66:84:ac:da:1c:a1:86:
50:57:b6:7d:97:7e:dc:f9:a4:7c:6c:b3:cd:77:8c:
ed:93:6f:9e:0a:fe:ed:ad:a9:61:5a:6a:47:1a:0f:
02:df:a5:07:a7:4a:7d:3a:c6:fc:9d:89:1c:e3:0d:
14:7b:0a:ea:97:ce:eb:8a:db:6e:d2:55:3f:86:4e:
ea:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:01:CF:A4:AA:CE:75:F0:DB:34:62:3A:09:CF:25:DB:A4:D8:99:AC
X509v3 Authority Key Identifier:
keyid:D9:E2:2D:FB:2E:DB:03:3D:7E:61:3B:B3:22:76:2A:C6:40:ED:53:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/44c2caf4f7cfddcc44bc95bcacbf2d7813f606ca.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/d6309b75d6d115a821d4cdcbb39a6f204140ccee.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/44c2caf4f7cfddcc44bc95bcacbf2d7813f606ca.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.10.0.0-190.10.17.255
190.10.19.0-190.10.23.255
190.10.25.0-190.10.32.255
190.10.34.0/24
190.10.64.0-190.10.66.255
190.10.68.0/22
190.10.76.0/22
190.10.121.0-190.10.123.255
190.171.0.0/24
190.171.3.0-190.171.9.255
190.171.14.0/24
190.171.16.0/22
190.241.80.0/20
200.122.128.0/18
Signature Algorithm: sha256WithRSAEncryption
7d:a9:ea:ec:46:d0:e0:ee:72:66:0a:84:8b:4b:e4:49:6a:50:
5d:b9:0a:56:74:b2:30:67:9f:19:ec:7a:57:9a:9f:e4:c9:6c:
00:f8:70:82:09:74:bd:24:18:4c:ea:de:2b:96:50:cd:62:9e:
d7:fa:85:9b:c4:fc:0d:0d:f0:b4:6a:55:fe:74:ed:a2:49:ac:
25:b0:04:24:f6:0b:84:c6:59:be:c7:7b:9f:6c:08:a8:47:f2:
72:a8:fb:f8:ec:ce:03:d3:a9:b1:59:de:1e:e9:14:18:87:9b:
d2:c8:36:26:f8:6e:a9:c5:ea:d1:ed:fc:c9:7e:54:9a:10:77:
d2:cd:0a:4a:3c:8c:de:9f:01:fd:31:90:82:8e:06:75:1d:ad:
63:e1:ea:01:bd:48:4d:84:4b:4a:fc:57:57:1f:c8:b8:7a:68:
4a:fd:a1:24:f4:c7:57:92:eb:4a:ac:f7:d4:17:84:b7:4b:14:
db:39:8c:56:ab:ef:3f:34:50:95:f2:64:62:ed:d4:6f:d1:f2:
68:0b:56:e6:a8:78:13:e4:fc:60:7b:24:86:65:31:d4:09:cb:
2d:31:6f:45:41:d5:56:2c:df:d5:66:66:d3:55:fc:b4:55:f3:
3f:09:9f:c6:9d:45:13:71:cb:9c:84:4a:37:8c:f1:29:c7:40:
44:e9:d8:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:49 2024 by rpki-client on console-fra.rpki-client.org