Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/91f0feda-4e2a-41b7-bf51-e657a5264035/aed127e90965a27d1110b8d05f5ebb2b1d4274ee.roa
File: aed127e90965a27d1110b8d05f5ebb2b1d4274ee.roa (raw, json)
Hash identifier: DVXMoaj5qitkZAwJWur2PXgxmr6JAJFW2uaPU++rhMI=
Subject key identifier: 6B:86:B0:D1:7B:0B:7C:A2:39:2E:87:90:A6:9F:BD:13:9C:52:55:9F
Certificate issuer: /CN=d22cc49db918d10383d16f3a1f83aa1e2a5567b7
Certificate serial: 232738
Authority key identifier: CA:B2:DD:CB:EA:02:99:21:D9:53:0C:A6:A2:68:5C:12:F4:57:57:1A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d22cc49db918d10383d16f3a1f83aa1e2a5567b7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/91f0feda-4e2a-41b7-bf51-e657a5264035/aed127e90965a27d1110b8d05f5ebb2b1d4274ee.roa
Signing time: Mon 04 Sep 2023 19:56:22 +0000
ROA not before: Sun 03 Sep 2023 19:56:22 +0000
ROA not after: Thu 04 Sep 2025 19:56:22 +0000
asID: 27882
IP address blocks: 177.222.96.0/19 maxlen: 24
200.73.96.0/21 maxlen: 24
143.137.228.0/22 maxlen: 24
177.222.32.0/19 maxlen: 24
181.114.96.0/19 maxlen: 24
181.188.128.0/18 maxlen: 24
131.0.196.0/22 maxlen: 24
190.104.0.0/19 maxlen: 24
2800:320:402::/48 maxlen: 48
2800:320:822::/48 maxlen: 48
2800:320:8412::/48 maxlen: 48
2800:320:8003::/48 maxlen: 48
2800:320:8403::/48 maxlen: 48
2800:320:8404::/48 maxlen: 48
2800:320:8406::/48 maxlen: 48
2800:320:8401::/48 maxlen: 48
2800:320:404::/46 maxlen: 48
2800:320:408::/46 maxlen: 48
2800:320:40c::/48 maxlen: 48
2800:320:9800::/48 maxlen: 48
2800:320:140b::/48 maxlen: 48
2800:320:8408::/46 maxlen: 48
2800:320:840c::/48 maxlen: 48
2800:320:840e::/47 maxlen: 48
2800:320:8414::/47 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2303800 (0x232738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d22cc49db918d10383d16f3a1f83aa1e2a5567b7
Validity
Not Before: Sep 3 19:56:22 2023 GMT
Not After : Sep 4 19:56:22 2025 GMT
Subject: CN=aed127e90965a27d1110b8d05f5ebb2b1d4274ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9a:af:26:d8:35:5e:70:7e:48:41:5d:ea:ef:
7e:3e:85:26:c6:e1:84:16:37:a9:9a:75:db:43:e1:
8e:79:4b:ed:37:7e:60:52:58:7c:27:c0:31:0d:7e:
62:fa:47:8e:fd:b9:47:a7:78:c2:2f:52:28:16:64:
e4:71:8d:c3:50:36:fa:36:c4:ef:b7:04:ec:c0:03:
2a:8a:26:a5:2d:26:c9:8f:1b:62:ba:72:1b:0d:ec:
17:13:d4:e7:75:6b:80:d8:93:d2:7e:a9:1f:42:46:
85:5b:36:aa:8d:86:a8:69:94:48:fc:2d:52:09:59:
fb:25:f1:89:70:1c:a8:5e:a1:6f:03:96:7f:e5:19:
de:57:5d:a8:5c:89:ca:31:da:c3:52:7d:49:90:75:
37:47:72:76:71:1b:32:6c:a4:bc:0d:8b:d3:a5:73:
b5:0d:7f:61:69:a4:e0:5d:25:38:84:5b:c9:8d:1d:
7f:3d:d2:ec:56:a2:02:b0:8d:e3:f1:15:0b:47:f4:
db:03:3a:c2:7e:76:66:a2:a1:43:91:e2:74:09:9a:
cd:0b:74:0d:04:bd:2b:db:51:88:e2:1c:a8:22:89:
4c:bb:18:b0:5b:79:66:ec:d3:3d:6b:eb:22:0a:72:
ed:09:cd:b8:ea:36:bb:1e:d5:14:bb:44:26:04:77:
f1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:86:B0:D1:7B:0B:7C:A2:39:2E:87:90:A6:9F:BD:13:9C:52:55:9F
X509v3 Authority Key Identifier:
keyid:CA:B2:DD:CB:EA:02:99:21:D9:53:0C:A6:A2:68:5C:12:F4:57:57:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d22cc49db918d10383d16f3a1f83aa1e2a5567b7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/91f0feda-4e2a-41b7-bf51-e657a5264035/aed127e90965a27d1110b8d05f5ebb2b1d4274ee.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/91f0feda-4e2a-41b7-bf51-e657a5264035/d22cc49db918d10383d16f3a1f83aa1e2a5567b7.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.0.196.0/22
143.137.228.0/22
177.222.32.0/19
177.222.96.0/19
181.114.96.0/19
181.188.128.0/18
190.104.0.0/19
200.73.96.0/21
IPv6:
2800:320:402::/48
2800:320:404::-2800:320:40c:ffff:ffff:ffff:ffff:ffff
2800:320:822::/48
2800:320:140b::/48
2800:320:8003::/48
2800:320:8401::/48
2800:320:8403::-2800:320:8404:ffff:ffff:ffff:ffff:ffff
2800:320:8406::/48
2800:320:8408::-2800:320:840c:ffff:ffff:ffff:ffff:ffff
2800:320:840e::/47
2800:320:8412::/48
2800:320:8414::/47
2800:320:9800::/48
Signature Algorithm: sha256WithRSAEncryption
54:f3:6d:ad:f4:f5:eb:22:24:3f:44:56:18:a8:e4:24:aa:c4:
28:dd:5a:e8:f7:2f:21:0f:97:0f:81:e9:03:31:f3:3d:79:b6:
7f:2d:6b:12:dc:3b:f3:7f:b4:d5:ca:19:0b:83:75:50:a1:d1:
0f:47:57:54:5a:cf:b8:8f:32:69:ad:c1:cf:1f:ae:6b:63:04:
03:4e:4a:6e:23:f0:e6:43:40:f1:7a:9a:3c:6b:c5:54:ac:7c:
e2:05:a7:1f:d0:06:a1:99:1a:f7:f1:91:d0:1f:dc:55:bc:91:
1e:1d:38:00:5a:cc:2f:fc:8d:2a:25:ab:9d:27:74:2c:98:fe:
a6:b4:8d:45:6e:0e:e9:cd:ab:33:53:94:17:35:72:d9:00:cb:
84:aa:a9:c2:f7:c8:5f:b8:77:b3:c5:cb:ac:99:3f:d0:95:d8:
26:e8:d5:25:13:8e:7e:91:81:72:1d:be:e1:52:53:99:a3:a7:
17:61:cf:75:9f:0c:f6:d3:0d:61:a2:1b:ae:da:f9:07:c8:9d:
9e:56:5c:9f:20:f9:d9:91:f3:70:96:8a:3a:91:2f:39:e1:75:
86:c6:b0:7c:3a:66:34:0b:e8:c8:33:a8:2b:35:92:30:ac:46:
38:c5:51:24:31:d9:55:3d:fd:7a:1f:cc:85:69:7c:63:ab:cd:
b0:91:46:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:08 2024 by rpki-client on console-ams.rpki-client.org