Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6deb39b2-ee49-4619-998f-736886169694/1f4224982fa3593d9bed239b29c171fb90549a37.roa
File: 1f4224982fa3593d9bed239b29c171fb90549a37.roa (raw, json)
Hash identifier: KGTAcCFSws7fO8sIXmJX/CzuMpEEJ8WmSvv5HPtm2es=
Subject key identifier: 06:7A:96:56:30:06:D8:85:31:67:90:DF:F7:83:A6:6E:DF:C4:F3:D9
Certificate issuer: /CN=3cdb9e7a87d72c90ba758a0dc70f09b3281cb0f1
Certificate serial: 1FC8D8
Authority key identifier: AC:7D:7D:7E:A0:9E:88:51:25:89:0B:4F:D1:63:23:CE:9F:36:81:E7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3cdb9e7a87d72c90ba758a0dc70f09b3281cb0f1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6deb39b2-ee49-4619-998f-736886169694/1f4224982fa3593d9bed239b29c171fb90549a37.roa
Signing time: Tue 25 Apr 2023 22:04:20 +0000
ROA not before: Mon 24 Apr 2023 22:04:20 +0000
ROA not after: Fri 25 Apr 2025 22:04:20 +0000
asID: 32098
IP address blocks: 201.174.176.0/22 maxlen: 22
187.251.4.0/23 maxlen: 23
187.251.0.0/19 maxlen: 24
187.251.8.0/23 maxlen: 23
201.174.101.0/24 maxlen: 24
201.174.102.0/23 maxlen: 24
201.174.104.0/23 maxlen: 24
187.251.12.0/23 maxlen: 23
187.251.16.0/22 maxlen: 23
201.174.107.0/24 maxlen: 24
201.174.108.0/22 maxlen: 24
201.174.112.0/20 maxlen: 24
201.174.128.0/18 maxlen: 24
201.174.192.0/21 maxlen: 24
170.150.12.0/24 maxlen: 24
170.150.14.0/24 maxlen: 24
201.174.32.0/21 maxlen: 24
201.174.40.0/23 maxlen: 24
201.174.42.0/24 maxlen: 24
201.174.44.0/22 maxlen: 24
201.174.48.0/21 maxlen: 24
201.174.56.0/22 maxlen: 24
201.174.61.0/24 maxlen: 24
201.174.62.0/24 maxlen: 24
201.174.64.0/19 maxlen: 24
201.174.96.0/22 maxlen: 24
201.174.208.0/20 maxlen: 24
201.174.224.0/19 maxlen: 24
201.174.0.0/17 maxlen: 24
201.174.0.0/20 maxlen: 24
201.174.16.0/21 maxlen: 24
201.174.24.0/22 maxlen: 24
201.174.28.0/23 maxlen: 24
201.174.0.0/16 maxlen: 24
201.174.226.0/23 maxlen: 24
201.174.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2083032 (0x1fc8d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdb9e7a87d72c90ba758a0dc70f09b3281cb0f1
Validity
Not Before: Apr 24 22:04:20 2023 GMT
Not After : Apr 25 22:04:20 2025 GMT
Subject: CN=1f4224982fa3593d9bed239b29c171fb90549a37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:59:18:d2:55:b4:1d:ee:24:bd:54:a4:0d:50:
4a:67:ab:cf:0d:aa:f2:47:0d:66:a6:55:3e:45:85:
11:f2:a5:0c:48:1b:82:bf:70:26:10:fc:b9:44:b7:
20:55:65:62:31:e7:72:32:39:3f:5f:67:18:f7:03:
c7:5c:cf:35:68:f7:36:9a:46:85:18:d5:0b:6d:da:
37:85:ac:63:6c:32:dc:5d:fc:a0:38:02:af:12:8c:
06:1b:89:6d:3c:10:55:e3:e2:3d:ed:40:bc:f3:4b:
21:0d:9a:8b:28:32:e2:43:f9:cc:3f:46:5e:15:59:
99:27:df:7d:8d:ef:62:24:44:6e:97:21:9e:23:eb:
de:ea:a1:ee:4b:b2:3a:7e:86:28:36:dc:b1:0c:3c:
0e:29:07:2f:08:fd:e6:15:c5:e9:08:e1:d1:98:e7:
5e:76:07:4c:21:cd:e3:20:1e:60:d7:70:54:f7:01:
45:a0:e4:7a:5f:ea:a8:cc:9a:08:07:87:c6:03:4e:
0f:77:07:09:64:12:29:e2:6e:66:69:f5:59:41:24:
f9:2f:ae:8f:9c:ee:af:c6:9a:65:11:5d:7b:bf:c0:
df:06:78:7f:88:9d:2b:7d:61:2b:2b:ce:fd:16:57:
a3:0d:1b:d3:40:5f:26:4a:db:c0:f0:01:dc:de:20:
84:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:7A:96:56:30:06:D8:85:31:67:90:DF:F7:83:A6:6E:DF:C4:F3:D9
X509v3 Authority Key Identifier:
keyid:AC:7D:7D:7E:A0:9E:88:51:25:89:0B:4F:D1:63:23:CE:9F:36:81:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3cdb9e7a87d72c90ba758a0dc70f09b3281cb0f1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6deb39b2-ee49-4619-998f-736886169694/1f4224982fa3593d9bed239b29c171fb90549a37.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6deb39b2-ee49-4619-998f-736886169694/3cdb9e7a87d72c90ba758a0dc70f09b3281cb0f1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.150.12.0/24
170.150.14.0/24
187.251.0.0/19
201.174.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4b:c1:38:55:62:f7:13:12:7c:68:27:35:dc:75:7c:3f:06:7a:
f8:8a:0a:b6:f1:7a:bc:94:ae:2b:d5:82:41:83:cf:ea:5a:1f:
9c:23:f1:97:16:d9:14:20:b3:d3:f3:28:a0:bb:00:89:b4:d8:
f5:d9:aa:ae:f1:90:45:2c:c4:3f:c5:f1:c1:b3:0d:09:98:85:
55:9d:ba:4e:b7:5a:b1:cb:4c:35:fd:71:b3:8d:97:58:0e:3c:
8c:cb:8a:bb:a1:dc:94:cc:d1:7a:bf:42:71:9f:88:ba:af:b8:
e8:e7:16:f0:5c:25:29:40:e7:55:53:bf:1f:71:ad:02:8a:29:
98:93:df:32:24:9a:77:dd:5a:d1:2e:d9:f2:b7:f7:52:25:b2:
58:f2:f0:cc:98:09:c4:71:cc:91:7e:10:b7:7e:b1:44:32:90:
85:30:4c:07:f0:ff:bc:90:3e:3e:18:61:65:f9:c3:e3:83:8d:
9b:e9:13:01:a7:2e:bf:16:d7:4f:42:63:61:ff:a0:d9:39:2e:
ab:e4:6a:d4:a6:98:8e:3e:6d:f7:24:10:38:d7:fe:fa:6d:37:
b0:9a:f5:fd:f2:ad:3d:4e:f6:37:11:46:5c:a5:17:bd:6e:30:
ad:06:2c:45:86:74:2d:01:ce:54:2c:a8:cd:83:de:39:23:4f:
9a:b9:9a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:38 2024 by rpki-client on console-ams.rpki-client.org