Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/71a706ab-d3ce-4bac-8b51-26963947590e/f6b6d0d1ebc5767f93517d505fba34c7bb8823ad.roa
File: f6b6d0d1ebc5767f93517d505fba34c7bb8823ad.roa (raw, json)
Hash identifier: RXw03pI22oSTYjwh7eoEMCY13uXIS3/W66KaXl4tplg=
Subject key identifier: 51:5E:94:3F:06:DA:5A:E8:F7:50:E7:9E:1C:4E:A2:96:AB:10:4A:3F
Certificate issuer: /CN=09a0ff6e67bd13945bbb2c559d52176f5801f883
Certificate serial: 22ED24
Authority key identifier: D4:AF:B0:6F:81:C0:C2:79:06:89:39:35:E2:90:46:BD:82:20:18:94
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/09a0ff6e67bd13945bbb2c559d52176f5801f883.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/71a706ab-d3ce-4bac-8b51-26963947590e/f6b6d0d1ebc5767f93517d505fba34c7bb8823ad.roa
Signing time: Wed 02 Aug 2023 19:46:07 +0000
ROA not before: Tue 01 Aug 2023 19:46:07 +0000
ROA not after: Sat 02 Aug 2025 19:46:07 +0000
asID: 52423
IP address blocks: 190.112.220.0/22 maxlen: 24
138.59.16.0/22 maxlen: 24
179.48.248.0/22 maxlen: 24
143.202.160.0/22 maxlen: 24
2803:6900:534::/48 maxlen: 48
2803:6900:574::/48 maxlen: 48
2803:6900:1514::/48 maxlen: 48
2803:6900:506a::/48 maxlen: 48
2803:6900:543::/48 maxlen: 48
2803:6900:1503::/48 maxlen: 48
2803:6900:559::/48 maxlen: 48
2803:6900:1519::/48 maxlen: 48
2803:6900:507::/48 maxlen: 48
2803:6900:602::/48 maxlen: 48
2803:6900:200::/48 maxlen: 48
2803:6900:520::/48 maxlen: 48
2803:6900:1400::/48 maxlen: 48
2803:6900:1500::/47 maxlen: 48
2803:6900:616::/47 maxlen: 48
2803:6900:1531::/48 maxlen: 48
2803:6900:524::/48 maxlen: 48
2803:6900:578::/48 maxlen: 48
2803:6900:598::/48 maxlen: 48
2803:6900:533::/48 maxlen: 48
2803:6900:553::/48 maxlen: 48
2803:6900:593::/48 maxlen: 48
2803:6900:609::/48 maxlen: 48
2803:6900:597::/48 maxlen: 48
2803:6900:1510::/48 maxlen: 48
2803:6900:546::/47 maxlen: 48
2803:6900:1::/48 maxlen: 48
2803:6900:561::/48 maxlen: 48
2803:6900:581::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2288932 (0x22ed24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a0ff6e67bd13945bbb2c559d52176f5801f883
Validity
Not Before: Aug 1 19:46:07 2023 GMT
Not After : Aug 2 19:46:07 2025 GMT
Subject: CN=f6b6d0d1ebc5767f93517d505fba34c7bb8823ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c1:d8:64:9b:88:32:e5:70:6e:1e:29:43:00:
2e:b1:d2:24:ef:41:42:03:88:db:5a:f5:ba:f3:16:
bc:c8:34:c7:d9:6e:e2:a2:61:bd:6a:c4:00:bc:83:
9f:92:80:74:a0:e9:c3:a2:92:be:d2:04:a5:75:77:
db:31:fe:d7:33:f2:a4:47:45:b2:ad:d8:70:68:75:
ea:64:ac:43:81:9d:ca:c6:ea:4f:c0:da:08:ef:11:
55:e2:b4:02:8f:98:a2:48:a0:02:f6:50:c3:46:aa:
e4:96:f6:b2:bd:ed:4d:5a:32:63:e9:55:2e:df:c0:
b7:69:b5:64:4a:9c:d3:e5:89:7a:21:31:e2:98:76:
9d:87:9d:c9:20:a0:06:1b:f0:76:c8:a0:29:82:b7:
54:a1:71:76:2b:07:96:94:0e:4f:06:9f:52:30:15:
38:aa:60:05:e7:24:cf:4c:10:4a:d3:3e:b0:fb:3a:
1b:f9:a6:f1:7b:e8:1d:3c:ce:c3:a2:fe:b4:0c:40:
8a:58:fe:b8:ee:1b:1d:d1:68:f3:7b:95:ab:1d:88:
fa:bd:eb:bc:dd:d9:1d:69:15:d8:47:8f:be:4d:35:
fe:24:a7:f2:a7:92:b2:5d:47:77:c9:ff:d4:3c:00:
fa:95:3b:bd:7a:6c:3b:f5:8a:5c:a8:8f:8e:a7:55:
af:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5E:94:3F:06:DA:5A:E8:F7:50:E7:9E:1C:4E:A2:96:AB:10:4A:3F
X509v3 Authority Key Identifier:
keyid:D4:AF:B0:6F:81:C0:C2:79:06:89:39:35:E2:90:46:BD:82:20:18:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/09a0ff6e67bd13945bbb2c559d52176f5801f883.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/71a706ab-d3ce-4bac-8b51-26963947590e/f6b6d0d1ebc5767f93517d505fba34c7bb8823ad.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/71a706ab-d3ce-4bac-8b51-26963947590e/09a0ff6e67bd13945bbb2c559d52176f5801f883.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.59.16.0/22
143.202.160.0/22
179.48.248.0/22
190.112.220.0/22
IPv6:
2803:6900:1::/48
2803:6900:200::/48
2803:6900:507::/48
2803:6900:520::/48
2803:6900:524::/48
2803:6900:533::-2803:6900:534:ffff:ffff:ffff:ffff:ffff
2803:6900:543::/48
2803:6900:546::/47
2803:6900:553::/48
2803:6900:559::/48
2803:6900:561::/48
2803:6900:574::/48
2803:6900:578::/48
2803:6900:581::/48
2803:6900:593::/48
2803:6900:597::-2803:6900:598:ffff:ffff:ffff:ffff:ffff
2803:6900:602::/48
2803:6900:609::/48
2803:6900:616::/47
2803:6900:1400::/48
2803:6900:1500::/47
2803:6900:1503::/48
2803:6900:1510::/48
2803:6900:1514::/48
2803:6900:1519::/48
2803:6900:1531::/48
2803:6900:506a::/48
Signature Algorithm: sha256WithRSAEncryption
5e:9d:e4:d6:af:4e:29:cc:2e:67:e0:b6:6a:08:0b:e3:f4:6a:
ef:58:bf:6e:03:dd:29:a0:8c:12:28:89:30:31:6c:30:2a:8c:
56:67:52:78:09:4d:0a:1f:6c:53:a9:03:a0:8c:e6:c8:88:42:
11:45:b3:61:70:09:e8:25:97:f8:4b:0d:28:8b:50:fb:13:76:
c0:bc:e1:c5:93:7d:99:d0:02:ca:46:b5:2f:17:8d:df:6a:ef:
8b:c6:99:46:de:cb:b4:e3:18:44:07:09:f7:dc:7a:a6:cf:9f:
e5:56:88:69:d7:48:36:a2:ef:65:28:80:44:f8:7f:4e:13:53:
d7:ea:26:9d:23:51:0f:ee:b9:19:7b:95:df:a5:e6:7c:59:74:
8f:f8:ae:69:7f:d7:41:5f:d7:f2:16:ec:61:4a:b2:e2:3f:1f:
a4:c8:b8:ac:c6:00:6f:b7:c8:5b:6c:a2:7b:dd:d1:60:2c:3c:
7b:02:cc:57:cb:d9:57:6c:fa:5e:71:e1:18:b0:14:f9:03:1d:
7a:0b:3b:2a:19:23:f6:f4:5b:9a:5a:48:fe:35:11:2b:c3:c5:
aa:5e:c0:e4:6a:76:f1:78:36:95:2d:c6:e4:e3:f7:82:ef:b9:
1e:bf:6f:37:16:6e:a2:79:fd:eb:ae:3f:e0:35:bb:b5:6b:ba:
d7:0f:10:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:02 2024 by rpki-client on console-ams.rpki-client.org