Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/5ebc7fda9b73a7104eb3262f280e873859ca2775.roa
File: 5ebc7fda9b73a7104eb3262f280e873859ca2775.roa (raw, json)
Hash identifier: H5KzeUPGtd2tLZ0PqHyk/4z+M+J7iBD0qgjreDD6s9k=
Subject key identifier: 9C:7D:36:C9:CF:B9:92:00:82:9E:82:DA:7F:F5:54:41:AD:FA:69:E6
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 20080E
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/5ebc7fda9b73a7104eb3262f280e873859ca2775.roa
Signing time: Fri 20 Jan 2023 01:32:21 +0000
ROA not before: Sat 20 Mar 2021 03:00:00 +0000
ROA not after: Fri 24 Mar 2023 03:00:00 +0000
asID: 262589
IP address blocks: 190.90.136.0/24 maxlen: 24
190.90.140.0/24 maxlen: 24
190.90.141.0/24 maxlen: 24
190.90.142.0/24 maxlen: 24
190.90.147.0/24 maxlen: 24
190.90.154.0/24 maxlen: 24
190.90.209.0/24 maxlen: 24
190.90.225.0/24 maxlen: 24
190.90.233.0/24 maxlen: 24
190.90.242.0/24 maxlen: 24
190.90.250.0/24 maxlen: 24
190.90.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2099214 (0x20080e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Mar 20 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2023 GMT
Subject: CN=5ebc7fda9b73a7104eb3262f280e873859ca2775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ce:09:8a:c4:f1:2e:c1:fb:fd:65:ab:65:1e:
60:74:73:c5:8d:1d:3f:88:08:8f:9e:3c:6d:78:15:
8b:97:45:47:cc:b5:80:1d:5b:36:da:2e:26:05:6c:
48:2b:fb:8d:9c:54:70:a0:11:55:aa:11:f3:d2:16:
a1:1c:be:d5:57:61:b8:f3:07:dd:50:81:d0:db:32:
a2:7f:2b:c8:f0:f8:e1:11:60:20:8d:15:a9:ef:96:
ab:f0:ec:ac:83:a6:4e:af:cc:c9:6c:87:2d:b0:77:
17:78:6e:b2:16:80:cc:ef:23:bf:ee:13:dd:fd:5f:
81:fe:3a:ab:18:ee:9d:7c:3b:27:08:dd:0e:90:c7:
53:53:1e:dc:22:51:d8:c9:5c:64:76:a8:dc:45:4e:
9d:a4:0c:46:66:13:2b:d7:dc:cf:03:9e:12:e6:d3:
5d:b4:56:d2:de:05:70:39:37:da:c1:11:b3:47:e7:
0a:a4:34:f3:3f:af:0f:e8:37:1b:a4:fa:f2:ad:bf:
46:8e:1b:60:1c:18:c6:74:86:98:72:c8:af:b3:1c:
b6:18:c2:02:aa:a1:9d:1b:78:01:29:6e:fe:15:76:
09:ba:40:2c:a5:c4:1e:b4:56:9e:6b:b2:f7:bc:86:
da:d7:51:7c:cb:56:18:8d:b1:c1:b2:66:06:4f:8d:
35:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:7D:36:C9:CF:B9:92:00:82:9E:82:DA:7F:F5:54:41:AD:FA:69:E6
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/5ebc7fda9b73a7104eb3262f280e873859ca2775.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.136.0/24
190.90.140.0-190.90.142.255
190.90.147.0/24
190.90.154.0/24
190.90.209.0/24
190.90.225.0/24
190.90.233.0/24
190.90.242.0/24
190.90.250.0/23
Signature Algorithm: sha256WithRSAEncryption
69:2b:c7:88:b4:c6:c9:b3:1f:c6:46:8d:8e:19:fd:01:e2:d7:
55:9f:60:65:db:62:93:e0:0a:4d:20:5b:65:79:05:9f:da:e3:
8d:43:6c:9d:cf:18:df:42:98:6b:d9:f4:00:85:ef:03:8e:5b:
0e:14:79:cd:4c:74:cc:7a:a1:a2:93:d1:92:7f:1c:f7:9f:67:
46:42:58:65:18:f0:3d:f1:2e:0c:da:25:54:69:19:26:c2:71:
ce:9d:9b:ce:3e:a1:a0:32:88:f9:66:4f:8b:26:cb:bb:ae:0f:
ea:15:85:1a:2d:23:56:fd:8c:6d:8e:1c:ba:96:54:c0:d0:4c:
7d:e1:03:e4:6e:63:bd:f4:ee:d9:ad:57:7a:3b:88:c7:fc:b0:
51:23:da:f6:4c:09:62:1f:51:95:9b:20:d0:5d:e0:24:1c:1c:
c4:9c:75:5a:d0:24:ca:4c:4f:e4:d3:45:94:1f:c3:02:d8:65:
ef:16:29:6a:f9:84:6f:33:d2:c8:cb:ee:a9:05:d4:c3:3e:95:
2b:00:50:26:5e:48:32:ec:55:8c:b4:96:d2:1f:34:ba:44:80:
10:d0:de:a4:a7:c0:2f:18:dd:f5:06:12:55:85:16:4f:37:42:
a6:ea:63:58:30:d6:01:22:e0:29:6f:ed:42:99:04:d0:d3:75:
1c:62:80:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:22 2024 by rpki-client on console-ams.rpki-client.org