Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/2e8ae9122a752244d207e23c0fff9209cea64228.roa
File: 2e8ae9122a752244d207e23c0fff9209cea64228.roa (raw, json)
Hash identifier: 3QdJrlu7wgcRZNNY/9RtU8fErpjYtXE15kfcl5jGNVE=
Subject key identifier: 59:57:4B:B3:C0:5B:F8:F4:44:B2:91:BC:42:CE:EE:DF:0C:96:F5:F1
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 22B581
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/2e8ae9122a752244d207e23c0fff9209cea64228.roa
Signing time: Thu 23 Mar 2023 08:30:34 +0000
ROA not before: Wed 22 Mar 2023 08:30:34 +0000
ROA not after: Fri 21 Mar 2025 08:30:34 +0000
asID: 18678
IP address blocks: 190.90.82.0/24 maxlen: 24
190.90.93.0/24 maxlen: 24
190.90.94.0/24 maxlen: 24
190.90.115.0/24 maxlen: 24
190.90.116.0/24 maxlen: 24
190.90.121.0/24 maxlen: 24
190.90.130.0/24 maxlen: 24
190.90.151.0/24 maxlen: 24
190.90.152.0/24 maxlen: 24
190.90.190.0/24 maxlen: 24
190.90.193.0/24 maxlen: 24
190.90.212.0/24 maxlen: 24
190.90.213.0/24 maxlen: 24
190.90.215.0/24 maxlen: 24
190.90.216.0/21 maxlen: 24
190.90.234.0/24 maxlen: 24
190.90.243.0/24 maxlen: 24
190.90.249.0/24 maxlen: 24
179.1.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2274689 (0x22b581)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Mar 22 08:30:34 2023 GMT
Not After : Mar 21 08:30:34 2025 GMT
Subject: CN=2e8ae9122a752244d207e23c0fff9209cea64228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:30:9b:b6:53:11:6b:7f:da:cf:64:e9:12:5b:
2e:b9:d6:87:5e:26:89:ed:42:de:fb:89:3d:88:89:
94:bc:94:62:5b:9a:93:8b:05:f9:d3:bf:c5:26:c5:
37:9f:ea:6e:42:13:fa:30:28:1c:4b:c0:cf:96:1b:
81:1d:0c:3f:9f:70:93:b3:64:d1:49:e5:9f:ba:46:
99:53:92:fc:ab:9e:3d:39:52:3e:47:cc:60:14:7b:
f1:45:ce:4f:28:00:ce:cc:2a:f2:a0:e2:1b:1c:5f:
b9:3d:74:28:75:58:ed:47:c8:68:2b:4f:75:f0:93:
a5:8b:25:54:78:de:41:3c:41:08:42:36:0a:3c:12:
5a:e0:ec:09:79:cf:73:71:79:85:0c:1c:07:3e:89:
c8:1d:f8:23:5b:bd:44:d1:d6:ab:20:a0:1f:8f:6d:
36:4b:92:87:82:8d:30:09:b9:a5:92:43:ec:a5:a9:
0b:5f:48:1e:a5:33:6a:cf:5e:d8:16:ab:0d:ca:e9:
4a:2f:f7:1d:a9:16:20:84:56:c7:ca:3a:08:70:d7:
d3:2c:18:6b:ec:57:a3:c3:82:aa:39:ae:aa:a0:28:
a2:eb:36:b7:13:3b:a4:3d:e2:db:ad:a9:60:62:23:
47:6d:38:ec:7c:9b:91:c9:4f:72:77:45:ab:d2:b0:
d8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:57:4B:B3:C0:5B:F8:F4:44:B2:91:BC:42:CE:EE:DF:0C:96:F5:F1
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/2e8ae9122a752244d207e23c0fff9209cea64228.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.1.72.0/24
190.90.82.0/24
190.90.93.0-190.90.94.255
190.90.115.0-190.90.116.255
190.90.121.0/24
190.90.130.0/24
190.90.151.0-190.90.152.255
190.90.190.0/24
190.90.193.0/24
190.90.212.0/23
190.90.215.0-190.90.223.255
190.90.234.0/24
190.90.243.0/24
190.90.249.0/24
Signature Algorithm: sha256WithRSAEncryption
07:5f:db:f4:89:11:2d:3c:14:95:6c:69:a7:0f:cf:a3:7a:73:
ad:a3:63:9c:88:21:4d:7a:ef:b4:c1:dc:3d:4d:6f:1b:a1:9d:
a6:fc:6e:08:fd:44:6c:70:03:c1:4a:70:6d:6d:e2:e2:39:1e:
12:54:2c:6b:63:99:4a:53:f7:c5:93:c7:a6:00:58:a3:f3:99:
25:41:6f:bd:a3:f4:80:3e:df:16:be:c1:09:ba:fd:7b:19:e1:
b5:e1:04:60:c8:61:d5:98:ee:1d:3e:b5:2a:46:35:3e:99:9c:
65:72:15:4d:fa:a8:0f:c6:b0:42:82:00:4f:32:7c:9d:e2:0c:
b8:0d:1b:f6:9c:dd:b2:ef:26:a0:a4:fe:7b:a4:87:e3:a8:f5:
50:ea:9b:9c:1a:41:72:38:aa:10:58:1e:a4:b7:dc:ec:c7:3f:
5f:3b:76:41:34:1f:d0:5d:5f:0b:cc:60:58:3a:64:8c:a1:3a:
ba:7b:f9:54:6c:01:fc:6f:42:fa:39:dc:e0:ba:b1:d3:56:cc:
ad:39:51:66:6c:26:eb:db:3e:46:da:2d:b9:82:dc:33:f5:cf:
ee:d7:a2:33:3c:6d:7a:c2:5a:69:d1:d5:dc:7b:11:0c:c0:66:
e7:02:a1:d0:bb:52:2e:22:d2:8d:17:2e:0b:f0:51:40:d4:0f:
87:0e:c6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:00 2024 by rpki-client on console-fra.rpki-client.org