Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/10a0c46c188f239031a7a12b6c4455e0c0757950.roa
File: 10a0c46c188f239031a7a12b6c4455e0c0757950.roa (raw, json)
Hash identifier: Ac5w7/uRu0Z+gHEBMmjG/rafQ1mL26CmguBu68rXfDs=
Subject key identifier: 2E:B9:42:8B:57:1E:BC:B6:74:AA:0B:2D:F4:B1:8E:05:41:13:15:F8
Certificate issuer: /CN=1c730cc4f1140e9c3a243768d1052ae2bf36d279
Certificate serial: 27627B
Authority key identifier: 3D:A3:67:37:DA:4A:CD:E5:E9:6B:4B:A9:47:08:77:64:8A:B3:25:19
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1c730cc4f1140e9c3a243768d1052ae2bf36d279.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/10a0c46c188f239031a7a12b6c4455e0c0757950.roa
Signing time: Tue 30 Jan 2024 04:43:53 +0000
ROA not before: Tue 30 Jan 2024 04:43:53 +0000
ROA not after: Fri 30 Jan 2026 04:43:53 +0000
asID: 6535
IP address blocks: 190.208.64.0/18 maxlen: 22
190.54.64.0/19 maxlen: 19
186.34.0.0/15 maxlen: 22
190.54.188.0/22 maxlen: 22
190.54.192.0/18 maxlen: 22
190.54.0.0/24 maxlen: 24
190.54.2.0/24 maxlen: 24
190.209.0.0/16 maxlen: 22
186.36.0.0/16 maxlen: 22
190.54.142.0/23 maxlen: 23
190.54.144.0/20 maxlen: 23
190.54.160.0/20 maxlen: 23
190.54.181.0/24 maxlen: 24
190.54.184.0/23 maxlen: 24
190.54.186.0/24 maxlen: 24
190.208.128.0/17 maxlen: 22
181.72.0.0/14 maxlen: 22
190.54.125.0/24 maxlen: 24
190.54.127.0/24 maxlen: 24
190.54.128.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2581115 (0x27627b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c730cc4f1140e9c3a243768d1052ae2bf36d279
Validity
Not Before: Jan 30 04:43:53 2024 GMT
Not After : Jan 30 04:43:53 2026 GMT
Subject: CN=10a0c46c188f239031a7a12b6c4455e0c0757950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b1:05:87:7b:35:d1:1c:29:c8:ba:88:0b:a7:
9a:02:d3:13:d4:f0:93:6d:13:82:ac:44:1e:aa:47:
9f:c7:1a:81:5d:90:bb:f1:3b:f2:86:5b:74:dc:d5:
7a:a3:f8:2d:7c:36:1d:e0:8b:bb:79:28:88:f9:7c:
46:6d:d1:2d:9c:70:77:bc:a2:e5:75:13:15:29:07:
a8:dc:bb:48:36:9b:f5:0f:0f:e5:9b:2f:86:02:3f:
eb:a4:ab:7c:a7:28:5c:0c:f1:40:7e:87:5f:82:51:
7a:ee:9b:74:ce:aa:d7:a9:40:a0:cc:25:8f:2b:5b:
4f:bf:da:53:7f:c5:35:de:c2:e3:d2:58:6f:66:bd:
28:59:fd:98:13:2c:06:b3:7b:4e:8f:2d:fb:6f:98:
69:3a:2b:b4:af:81:f4:48:f5:48:bd:0e:a6:26:d7:
ee:a9:5f:0e:0b:e4:ab:4e:77:59:e5:ec:eb:fc:fb:
3a:17:26:e2:8b:5a:38:b8:27:fe:09:eb:47:db:24:
d8:1d:e7:ad:12:13:4e:19:10:9a:01:6b:bd:91:8c:
63:28:89:34:de:9a:ec:11:fa:4c:62:26:ec:dd:56:
06:1c:ca:52:4f:8c:3c:11:c6:d0:fb:03:67:a9:31:
05:ac:79:78:04:4d:f9:71:db:e9:f5:fa:9b:cb:ee:
ca:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B9:42:8B:57:1E:BC:B6:74:AA:0B:2D:F4:B1:8E:05:41:13:15:F8
X509v3 Authority Key Identifier:
keyid:3D:A3:67:37:DA:4A:CD:E5:E9:6B:4B:A9:47:08:77:64:8A:B3:25:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1c730cc4f1140e9c3a243768d1052ae2bf36d279.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/10a0c46c188f239031a7a12b6c4455e0c0757950.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/1c730cc4f1140e9c3a243768d1052ae2bf36d279.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.72.0.0/14
186.34.0.0-186.36.255.255
190.54.0.0/24
190.54.2.0/24
190.54.64.0/19
190.54.125.0/24
190.54.127.0-190.54.135.255
190.54.142.0-190.54.175.255
190.54.181.0/24
190.54.184.0-190.54.186.255
190.54.188.0-190.54.255.255
190.208.64.0-190.209.255.255
Signature Algorithm: sha256WithRSAEncryption
15:35:78:7d:23:cd:f1:8c:1b:d8:bd:c5:ab:44:a2:3d:7c:76:
ad:0d:a8:f0:ce:06:89:da:b1:49:df:86:18:9b:1b:cb:d5:5a:
0d:12:a9:f9:cc:e9:0f:4b:6c:d0:b3:68:fe:73:28:09:1d:88:
18:ca:6c:a2:15:5e:22:84:18:2b:71:df:f6:1f:e1:4e:dc:cf:
30:9b:f0:dc:af:59:05:4f:ee:91:5a:33:70:9c:b0:fc:87:59:
17:2c:27:7e:30:24:e2:6c:10:af:fd:53:d8:16:f5:c8:4d:8b:
5d:9e:17:a1:86:50:cb:3e:b1:59:3b:7f:72:37:18:5c:6d:f3:
53:af:15:32:e7:64:e0:10:6d:85:fb:25:6c:3b:8b:96:8e:c7:
1a:11:05:a3:2a:ec:5e:23:86:a1:e8:3f:be:e3:7e:50:f8:1a:
e8:0d:32:15:58:d3:79:34:a0:14:9c:1a:db:f1:1e:e4:ec:b4:
1d:63:77:f5:fb:1e:00:23:a0:07:67:17:80:0b:16:41:4a:30:
05:01:5b:ee:c1:09:11:c7:4b:bb:96:95:e5:63:cf:bb:44:81:
f3:66:74:0c:3b:8c:4a:9e:e8:1a:c3:e9:c2:3f:03:d4:84:8f:
6f:ba:52:28:79:33:18:65:d8:5d:50:ef:b5:cc:ce:14:35:1f:
54:6d:de:06
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgIDJ2J7MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDFj
NzMwY2M0ZjExNDBlOWMzYTI0Mzc2OGQxMDUyYWUyYmYzNmQyNzkwHhcNMjQwMTMw
MDQ0MzUzWhcNMjYwMTMwMDQ0MzUzWjAzMTEwLwYDVQQDEygxMGEwYzQ2YzE4OGYy
MzkwMzFhN2ExMmI2YzQ0NTVlMGMwNzU3OTUwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAv7EFh3s10RwpyLqIC6eaAtMT1PCTbROCrEQeqkefxxqBXZC7
8Tvyhlt03NV6o/gtfDYd4Iu7eSiI+XxGbdEtnHB3vKLldRMVKQeo3LtINpv1Dw/l
my+GAj/rpKt8pyhcDPFAfodfglF67pt0zqrXqUCgzCWPK1tPv9pTf8U13sLj0lhv
Zr0oWf2YEywGs3tOjy37b5hpOiu0r4H0SPVIvQ6mJtfuqV8OC+SrTndZ5ezr/Ps6
Fybii1o4uCf+CetH2yTYHeetEhNOGRCaAWu9kYxjKIk03prsEfpMYibs3VYGHMpS
T4w8EcbQ+wNnqTEFrHl4BE35cdvp9fqby+7KQwIDAQABo4ICyTCCAsUwHQYDVR0O
BBYEFC65QotXHry2dKoLLfSxjgVBExX4MB8GA1UdIwQYMBaAFD2jZzfaSs3l6WtL
qUcId2SKsyUZMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMWM3MzBj
YzRmMTE0MGU5YzNhMjQzNzY4ZDEwNTJhZTJiZjM2ZDI3OS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvOTFjODFlZmYtYTZjZC00MzE5LWIzYzMtZGNhODNl
ODY2ZDI1LzEwYTBjNDZjMTg4ZjIzOTAzMWE3YTEyYjZjNDQ1NWUwYzA3NTc5NTAu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy85MWM4MWVmZi1hNmNkLTQzMTktYjNjMy1kY2E4
M2U4NjZkMjUvMWM3MzBjYzRmMTE0MGU5YzNhMjQzNzY4ZDEwNTJhZTJiZjM2ZDI3
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCBjAYIKwYBBQUHAQcBAf8E
fTB7MHkEAgABMHMDAwK1SDAKAwMBuiIDAwC6JAMEAL42AAMEAL42AgMEBb42QAME
AL42fTAMAwQAvjZ/AwQDvjaAMAwDBAG+No4DBAS+NqADBAC+NrUwDAMEA742uAME
AL42ujALAwQCvja8AwMAvjYwCwMEBr7QQAMDAb7QMA0GCSqGSIb3DQEBCwUAA4IB
AQAVNXh9I83xjBvYvcWrRKI9fHatDajwzgaJ2rFJ34YYmxvL1VoNEqn5zOkPS2zQ
s2j+cygJHYgYymyiFV4ihBgrcd/2H+FO3M8wm/Dcr1kFT+6RWjNwnLD8h1kXLCd+
MCTibBCv/VPYFvXITYtdnhehhlDLPrFZO39yNxhcbfNTrxUy52TgEG2F+yVsO4uW
jscaEQWjKuxeI4ah6D++435Q+BroDTIVWNN5NKAUnBrb8R7k7LQdY3f1+x4AI6AH
ZxeACxZBSjAFAVvuwQkRx0u7lpXlY8+7RIHzZnQMO4xKnugaw+nCPwPUhI9vulIo
eTMYZdhdUO+1zM4UNR9Ubd4G
-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:24 2024 by rpki-client on console-fra.rpki-client.org