Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/70822a26-f6dd-4abf-830e-6e1c3ce185c4/c049e06da79d5a6813a3d227b1a0008387f168fa.roa
File: c049e06da79d5a6813a3d227b1a0008387f168fa.roa (raw, json)
Hash identifier: C0jnQVSMlBpcpWGF8jUjbC5/2eHqa2Do/xWwyX/aChI=
Subject key identifier: 1B:7B:2E:BD:68:89:35:A0:27:9E:99:E8:9C:89:69:90:83:6D:91:58
Certificate issuer: /CN=14b60bc312dd552a8b2acb3db3e916a0251c0965
Certificate serial: 120F00
Authority key identifier: 4E:5C:51:E3:F6:77:0F:D2:E4:E6:26:5E:43:D9:03:AF:D1:BF:3F:69
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/14b60bc312dd552a8b2acb3db3e916a0251c0965.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/70822a26-f6dd-4abf-830e-6e1c3ce185c4/c049e06da79d5a6813a3d227b1a0008387f168fa.roa
Signing time: Fri 22 Dec 2023 07:30:00 +0000
ROA not before: Fri 22 Dec 2023 07:30:00 +0000
ROA not after: Sun 21 Dec 2025 07:30:00 +0000
asID: 263209
IP address blocks: 191.97.68.0/22 maxlen: 22
191.97.68.0/23 maxlen: 23
191.97.70.0/23 maxlen: 23
191.97.68.0/24 maxlen: 24
191.97.69.0/24 maxlen: 24
191.97.70.0/24 maxlen: 24
191.97.71.0/24 maxlen: 24
191.97.72.0/21 maxlen: 21
191.97.72.0/22 maxlen: 22
191.97.76.0/22 maxlen: 22
191.97.72.0/23 maxlen: 23
191.97.74.0/23 maxlen: 23
191.97.76.0/23 maxlen: 23
191.97.78.0/23 maxlen: 23
191.97.72.0/24 maxlen: 24
191.97.73.0/24 maxlen: 24
191.97.74.0/24 maxlen: 24
191.97.75.0/24 maxlen: 24
191.97.76.0/24 maxlen: 24
191.97.77.0/24 maxlen: 24
191.97.78.0/24 maxlen: 24
191.97.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1183488 (0x120f00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14b60bc312dd552a8b2acb3db3e916a0251c0965
Validity
Not Before: Dec 22 07:30:00 2023 GMT
Not After : Dec 21 07:30:00 2025 GMT
Subject: CN=c049e06da79d5a6813a3d227b1a0008387f168fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:34:b1:36:a2:cc:76:c3:af:44:5d:0f:34:3c:
18:75:57:4f:47:18:7d:f4:4b:28:9c:18:9e:f1:93:
1e:0e:5e:47:63:2e:5e:ed:17:43:8c:3a:ba:18:a3:
a9:27:a0:ac:72:f7:39:53:f8:4a:52:3e:a9:59:73:
56:ad:9e:6c:57:8d:c6:71:64:ff:65:c3:f0:bd:21:
ae:21:1e:40:7d:de:77:53:16:25:4b:14:f9:81:85:
92:e9:83:3e:e3:6b:7e:81:ab:25:e0:0c:19:47:cf:
f1:1e:c6:01:1c:e0:04:52:ea:c7:da:ac:40:78:29:
36:3c:52:e5:f9:5e:7f:b0:90:64:b9:3f:48:24:01:
01:fe:45:1f:5a:58:23:56:91:55:d1:f6:47:6e:62:
1b:92:fa:a1:2b:f5:ec:c2:e8:a2:b6:0a:4c:4d:dd:
5a:31:b7:8d:a0:96:f9:b3:a1:93:97:e2:84:d6:21:
fb:41:9a:e4:14:d1:77:a7:5f:ee:a2:3c:49:3d:d1:
0d:71:52:21:40:4e:6c:81:92:ea:50:4c:d3:44:35:
ce:fe:cb:01:98:5b:3f:5f:b4:83:0c:3b:95:68:f1:
39:dd:95:39:43:52:00:fe:9f:c8:e8:66:60:7e:36:
20:a4:3a:9c:72:fd:28:34:d1:eb:61:7b:bf:83:46:
33:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:7B:2E:BD:68:89:35:A0:27:9E:99:E8:9C:89:69:90:83:6D:91:58
X509v3 Authority Key Identifier:
keyid:4E:5C:51:E3:F6:77:0F:D2:E4:E6:26:5E:43:D9:03:AF:D1:BF:3F:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/14b60bc312dd552a8b2acb3db3e916a0251c0965.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/70822a26-f6dd-4abf-830e-6e1c3ce185c4/c049e06da79d5a6813a3d227b1a0008387f168fa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/70822a26-f6dd-4abf-830e-6e1c3ce185c4/14b60bc312dd552a8b2acb3db3e916a0251c0965.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.97.68.0-191.97.79.255
Signature Algorithm: sha256WithRSAEncryption
19:c3:71:39:c7:91:7f:5c:dc:cd:62:29:a1:24:e0:e9:1f:bc:
90:92:73:22:b4:3d:d7:71:03:d5:59:52:be:59:2a:3e:ee:bf:
e2:c7:55:b3:9c:a0:a7:8e:00:98:92:ae:1c:e9:3f:c0:1b:45:
56:85:c1:49:6b:49:82:e9:0c:cd:ef:8c:3e:87:88:de:6e:de:
ca:88:bd:e5:02:88:77:8d:00:4a:b9:db:59:8a:7a:df:c9:50:
bb:2e:8f:f7:4d:94:6f:29:2e:44:4a:10:a9:88:49:12:9c:d6:
fe:5d:fe:f2:b8:0f:7f:bc:aa:8a:d4:a9:49:47:5c:2a:40:33:
7a:6c:72:e9:f0:d6:74:32:22:ff:c2:69:a1:ce:24:65:02:35:
25:7a:54:12:2e:d7:38:c4:9a:af:1f:d2:32:fa:49:79:f5:bc:
90:ac:2d:cd:49:b6:d4:e5:14:e4:3b:d7:79:76:c6:83:e2:cd:
0b:4f:62:be:b7:83:f9:bd:e8:8c:d0:6f:fe:cf:9e:60:d4:94:
07:60:ee:41:29:21:29:0d:3d:b9:f7:49:11:d3:46:75:50:c8:
ba:23:4b:43:08:20:68:96:c1:f9:ca:6e:4b:e5:c7:b3:19:9d:
b4:1f:27:c1:99:f2:02:d4:e4:6e:ba:6a:5f:fa:ff:a1:14:5e:
e3:c9:0d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:02 2024 by rpki-client on console-ams.rpki-client.org