Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a32c4240-ceea-470e-964c-74d9bc1e380a/0ad06c9389b8d2d3081393e2fb512e8e7ab4cb20.roa
File: 0ad06c9389b8d2d3081393e2fb512e8e7ab4cb20.roa (raw, json)
Hash identifier: kK/kWOcCFUV/34MsxDIz0N316GPlvutJpIjZNEMT3Gc=
Subject key identifier: 5C:11:FB:CE:0F:BB:AB:F3:FB:92:1A:62:4C:2F:9C:B9:24:4E:B7:32
Certificate issuer: /CN=7855197f590ff298b52ab358da08a0fdbfe6a883
Certificate serial: 0D6FDE
Authority key identifier: 3C:DC:D1:E5:5B:5D:9A:16:FD:75:FF:23:10:FC:F3:D3:86:8A:5A:CA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7855197f590ff298b52ab358da08a0fdbfe6a883.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/a32c4240-ceea-470e-964c-74d9bc1e380a/0ad06c9389b8d2d3081393e2fb512e8e7ab4cb20.roa
Signing time: Wed 24 Mar 2021 14:35:12 +0000
ROA not before: Wed 24 Mar 2021 14:35:11 +0000
ROA not after: Tue 24 Mar 2026 14:35:11 +0000
asID: 19429
IP address blocks: 186.155.0.0/16 maxlen: 24
190.24.0.0/16 maxlen: 24
190.25.0.0/16 maxlen: 24
190.26.0.0/16 maxlen: 24
190.27.0.0/16 maxlen: 24
190.93.128.0/19 maxlen: 24
200.11.40.0/21 maxlen: 24
200.69.96.0/20 maxlen: 24
200.69.112.0/20 maxlen: 24
200.75.32.0/19 maxlen: 24
200.93.128.0/19 maxlen: 24
200.93.160.0/19 maxlen: 24
200.119.0.0/19 maxlen: 24
200.119.32.0/19 maxlen: 24
200.119.64.0/18 maxlen: 24
201.244.0.0/16 maxlen: 24
201.245.0.0/16 maxlen: 24
2800:260::/28 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 880606 (0xd6fde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7855197f590ff298b52ab358da08a0fdbfe6a883
Validity
Not Before: Mar 24 14:35:11 2021 GMT
Not After : Mar 24 14:35:11 2026 GMT
Subject: CN=0ad06c9389b8d2d3081393e2fb512e8e7ab4cb20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f3:83:4b:49:82:34:3b:b3:e7:e9:ea:db:9c:
d4:69:5a:29:ce:e8:b5:f9:00:f1:38:03:0b:7a:ee:
bc:21:a8:23:4d:f4:66:b1:0e:4b:83:7a:d6:49:6f:
26:37:fe:87:e5:54:26:e3:3a:66:7f:e7:e4:95:5a:
0b:04:41:5f:60:c4:48:55:df:51:00:29:01:77:0a:
76:ec:11:5b:70:9e:4e:9a:72:93:53:36:30:d5:1c:
02:7e:b2:3a:c9:ef:8f:80:5b:a9:12:7e:06:d5:2e:
61:36:31:80:c6:b8:89:97:f6:be:3c:d3:d3:af:f6:
b1:e3:91:86:a5:5d:b3:ae:ef:9f:d9:6f:1f:5c:4e:
03:5b:56:d9:42:a8:58:04:42:40:0f:63:af:66:90:
0c:ce:ef:94:97:85:ca:79:fe:13:96:22:55:53:27:
a2:5b:84:3f:e4:2c:96:7e:e7:aa:b9:99:31:1b:10:
9e:cb:9e:0f:0c:3f:84:83:f1:24:e3:83:90:76:db:
f3:93:f4:53:2f:68:5c:5f:3b:76:9e:cd:54:e2:94:
8c:87:fb:93:df:c5:1e:24:7a:f3:58:b7:69:3e:26:
08:ca:83:7f:b3:15:38:01:5a:c2:32:b6:93:c8:e1:
d8:92:09:9d:83:ea:3e:55:21:60:ee:47:76:70:ec:
c3:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:11:FB:CE:0F:BB:AB:F3:FB:92:1A:62:4C:2F:9C:B9:24:4E:B7:32
X509v3 Authority Key Identifier:
keyid:3C:DC:D1:E5:5B:5D:9A:16:FD:75:FF:23:10:FC:F3:D3:86:8A:5A:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7855197f590ff298b52ab358da08a0fdbfe6a883.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a32c4240-ceea-470e-964c-74d9bc1e380a/0ad06c9389b8d2d3081393e2fb512e8e7ab4cb20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/a32c4240-ceea-470e-964c-74d9bc1e380a/7855197f590ff298b52ab358da08a0fdbfe6a883.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.155.0.0/16
190.24.0.0/14
190.93.128.0/19
200.11.40.0/21
200.69.96.0/19
200.75.32.0/19
200.93.128.0/18
200.119.0.0/17
201.244.0.0/15
IPv6:
2800:260::/28
Signature Algorithm: sha256WithRSAEncryption
dc:3d:b3:3c:a7:d8:c9:65:ac:19:54:b9:eb:a9:ba:8f:e7:07:
74:e6:cd:bf:a9:28:20:fe:c4:30:c8:5d:2c:9b:c4:61:46:9f:
11:7a:85:94:a8:4b:73:d7:c4:1c:0b:27:51:59:70:49:c2:5c:
59:03:c8:1c:4e:45:06:cd:92:f6:2a:33:f4:8f:ee:a2:30:dd:
d1:c2:2a:82:55:f3:8c:c5:e8:0e:9b:7a:39:31:f4:da:11:d9:
42:66:c8:ce:3f:b5:dc:e6:a7:31:a7:fb:2c:26:8a:e2:d3:6c:
7c:5f:f2:dc:36:d3:b1:02:bd:90:87:a1:fd:cb:4f:c5:a2:0f:
c7:c1:be:35:cf:57:0f:09:ef:20:b7:e4:5f:22:52:c2:15:94:
6e:56:e8:ce:28:2d:3d:99:56:d4:3f:ca:8b:b3:02:68:dc:18:
ea:30:db:40:04:4c:18:76:a9:55:76:36:24:70:ee:77:03:91:
f7:00:39:05:54:30:6e:c1:cc:ec:37:a6:c8:57:15:2e:1f:b0:
8d:f7:bf:c5:ed:f1:f4:57:de:18:b9:00:d3:24:11:aa:ef:0b:
6d:d0:de:5d:89:8b:2f:e9:3e:4e:70:e8:fb:c0:92:0e:18:3b:
dd:05:ab:f1:71:4d:c7:cb:fd:f8:ca:0f:41:e6:2c:fd:2b:7d:
7b:bc:b8:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:20 2024 by rpki-client on console-ams.rpki-client.org