Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9921c959-d03a-4a53-bd7a-f46e914dddf6/1fffcd01ea671565c2df16238851c366b88d73a6.roa
File: 1fffcd01ea671565c2df16238851c366b88d73a6.roa (raw, json)
Hash identifier: YIQEnFcP8iPlXMyPhAZfujLR6dCs1zOc7sJDyYAmy1c=
Subject key identifier: F9:C3:FE:B4:65:E1:52:19:C9:73:ED:68:4C:D1:32:FF:99:81:19:56
Certificate issuer: /CN=7e02bc3ca022a8018c29af8772e06cbe046b81de
Certificate serial: 21BF4B
Authority key identifier: 3B:C2:AA:A6:50:CD:02:92:37:43:C7:A0:27:A5:87:8C:61:BB:CF:3B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7e02bc3ca022a8018c29af8772e06cbe046b81de.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9921c959-d03a-4a53-bd7a-f46e914dddf6/1fffcd01ea671565c2df16238851c366b88d73a6.roa
Signing time: Thu 15 Jun 2023 18:36:08 +0000
ROA not before: Wed 14 Jun 2023 18:36:07 +0000
ROA not after: Sun 15 Jun 2025 18:36:07 +0000
asID: 22047
IP address blocks: 186.156.0.0/16 maxlen: 24
190.44.0.0/14 maxlen: 24
190.160.0.0/22 maxlen: 22
190.160.0.0/14 maxlen: 24
190.164.0.0/16 maxlen: 24
200.86.0.0/16 maxlen: 24
201.214.0.0/15 maxlen: 24
201.241.0.0/16 maxlen: 24
200.73.224.0/19 maxlen: 24
200.74.0.0/17 maxlen: 24
190.100.0.0/15 maxlen: 24
201.239.0.0/16 maxlen: 24
200.30.192.0/18 maxlen: 24
200.104.0.0/16 maxlen: 24
200.120.0.0/16 maxlen: 24
200.83.0.0/23 maxlen: 24
200.83.0.0/16 maxlen: 24
2800:150::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2211659 (0x21bf4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e02bc3ca022a8018c29af8772e06cbe046b81de
Validity
Not Before: Jun 14 18:36:07 2023 GMT
Not After : Jun 15 18:36:07 2025 GMT
Subject: CN=1fffcd01ea671565c2df16238851c366b88d73a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:51:55:ea:63:d2:8c:71:69:55:ad:6d:5c:55:
96:6f:a5:3b:f7:53:0d:86:e4:85:c6:ad:19:86:25:
9c:35:72:77:e8:bd:0f:9b:a4:7e:62:f4:59:f0:16:
ad:89:2c:ec:3b:d3:91:d8:c2:bd:d3:a3:ba:aa:b2:
63:e0:2f:22:99:56:1b:cf:de:5f:6d:ba:7e:b9:11:
6f:0d:63:15:a2:db:37:44:a6:94:a7:d3:e4:e0:35:
c9:b6:02:61:da:41:f5:56:5d:d8:31:23:1f:28:ae:
77:9f:67:e5:d4:de:95:c1:19:a6:ff:3d:d7:25:11:
6a:49:12:f7:17:21:f3:a6:81:c9:ff:f0:30:50:e6:
17:f0:5f:d1:eb:98:2a:24:cc:ff:a8:0d:3a:29:07:
f8:45:b1:b5:99:6f:43:42:9c:8e:f9:f7:6e:d8:87:
7c:24:77:ce:97:45:43:79:96:1e:70:1f:0c:6f:01:
02:6f:fe:15:85:31:e9:d6:24:e9:e6:66:f7:b3:3c:
e3:8c:d9:f0:48:09:b0:5f:b7:63:f9:40:a9:e4:68:
59:f5:40:d1:9d:2d:b2:3d:87:1d:5b:98:a5:35:ab:
86:01:c1:1a:16:bd:74:c3:dd:bd:a6:81:7a:48:4b:
24:cf:00:00:30:87:fc:45:33:07:67:f0:ae:33:a0:
f7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C3:FE:B4:65:E1:52:19:C9:73:ED:68:4C:D1:32:FF:99:81:19:56
X509v3 Authority Key Identifier:
keyid:3B:C2:AA:A6:50:CD:02:92:37:43:C7:A0:27:A5:87:8C:61:BB:CF:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7e02bc3ca022a8018c29af8772e06cbe046b81de.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9921c959-d03a-4a53-bd7a-f46e914dddf6/1fffcd01ea671565c2df16238851c366b88d73a6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9921c959-d03a-4a53-bd7a-f46e914dddf6/7e02bc3ca022a8018c29af8772e06cbe046b81de.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.156.0.0/16
190.44.0.0/14
190.100.0.0/15
190.160.0.0-190.164.255.255
200.30.192.0/18
200.73.224.0-200.74.127.255
200.83.0.0/16
200.86.0.0/16
200.104.0.0/16
200.120.0.0/16
201.214.0.0/15
201.239.0.0/16
201.241.0.0/16
IPv6:
2800:150::/32
Signature Algorithm: sha256WithRSAEncryption
8d:a1:72:13:31:5b:3e:cf:4d:f4:f2:b3:61:e7:16:49:42:8c:
f5:65:ff:23:e0:47:94:df:1b:6f:f8:c9:89:88:c9:e7:10:fc:
bc:79:ae:5b:3c:6f:27:37:7c:bc:37:41:b3:cb:bc:36:30:ff:
6c:de:11:6b:b0:5f:ca:c9:e6:70:97:77:a1:e3:3a:b9:6e:80:
3e:57:49:b9:58:1a:7b:e6:2c:38:40:70:5f:84:d0:2d:29:3a:
a1:d4:2a:94:24:d1:b9:a9:10:e4:e8:90:6a:2a:a0:7a:e4:6a:
02:ef:ed:4f:03:91:b1:2f:6b:28:9f:b1:37:9d:03:48:1a:1e:
51:f7:56:22:ee:2a:7e:53:eb:7f:ae:82:10:02:91:39:c1:20:
2f:5a:30:0f:ab:cb:99:87:38:f4:d4:db:26:da:b6:d4:6b:ca:
58:d7:9a:6f:3a:5e:81:30:c1:76:2d:ff:59:57:e2:d5:53:c8:
76:c7:e7:19:6f:a3:69:b5:a9:80:52:aa:2f:7d:9f:9a:4d:14:
99:54:f6:dd:38:43:b3:21:8d:de:16:e8:4d:65:4b:c2:33:7b:
66:db:67:a7:9e:39:93:af:a4:db:9f:5d:f3:10:7a:a3:17:83:
2b:72:19:9d:35:6c:eb:b0:05:e6:77:7a:98:95:2e:59:b5:6f:
31:2e:e7:d0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:41 2024 by rpki-client on console-ams.rpki-client.org