Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/d531313c6fb7aa789f25d526df81196847b98411.roa
File: d531313c6fb7aa789f25d526df81196847b98411.roa (raw, json)
Hash identifier: PmynQjqoMgY9U28EazyWMlXsk/gjQOoqlDblf3jKbik=
Subject key identifier: 02:E8:D2:94:EE:C7:7E:B0:9A:7D:4F:C6:2C:E6:F1:14:3B:0B:61:77
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 258D3D
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/d531313c6fb7aa789f25d526df81196847b98411.roa
Signing time: Wed 28 Jun 2023 22:29:55 +0000
ROA not before: Tue 27 Jun 2023 22:29:52 +0000
ROA not after: Sat 28 Jun 2025 22:29:52 +0000
asID: 262589
IP address blocks: 190.90.188.0/22 maxlen: 24
190.90.192.0/20 maxlen: 24
190.90.208.0/21 maxlen: 24
190.90.0.0/17 maxlen: 24
190.90.128.0/20 maxlen: 24
190.90.144.0/21 maxlen: 24
190.90.152.0/22 maxlen: 24
190.90.219.0/24 maxlen: 24
190.90.224.0/19 maxlen: 24
179.1.176.0/20 maxlen: 24
179.1.192.0/18 maxlen: 24
190.90.172.0/22 maxlen: 24
190.90.176.0/23 maxlen: 24
179.1.0.0/17 maxlen: 24
179.1.128.0/20 maxlen: 24
2800:310::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2460989 (0x258d3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Jun 27 22:29:52 2023 GMT
Not After : Jun 28 22:29:52 2025 GMT
Subject: CN=d531313c6fb7aa789f25d526df81196847b98411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:77:12:ea:b7:fb:4e:88:62:42:58:b4:d5:49:
c4:b3:99:a9:a5:d3:2d:04:20:88:ba:3c:30:f4:1b:
b9:04:d3:36:7d:70:59:5c:c9:0f:28:09:ed:66:d0:
b4:83:3c:07:ec:fd:b8:67:d5:19:82:8f:e3:da:85:
25:bf:ad:f6:66:e7:1c:25:ce:3f:42:2c:35:d7:62:
e7:4f:3a:59:6d:8f:3f:a1:6a:bc:5a:95:c3:e2:40:
38:47:77:30:06:3f:d7:1f:ef:5a:08:50:5b:0d:e8:
9b:c0:30:e4:1b:57:57:3c:e4:db:c3:c2:96:c4:a4:
4c:84:4f:53:0a:28:b1:93:61:ad:14:40:59:70:8a:
9c:62:54:b7:84:c0:6c:6b:cc:0a:dd:31:9f:21:a6:
ef:72:e4:9a:3c:3d:c5:da:78:6e:65:0c:e3:14:a7:
94:4f:a1:af:bc:05:d1:b4:3c:ee:55:07:15:0b:65:
9b:97:ea:b7:18:80:1c:59:0a:0b:f6:c0:7f:03:38:
ff:d2:14:3b:7d:90:7f:32:85:5f:4c:dc:37:d4:b5:
9f:20:7d:8b:05:3f:3f:e4:45:d2:28:01:73:a7:cf:
51:24:9b:2c:75:b8:bd:c2:cd:97:38:b0:64:35:bf:
35:27:fd:16:71:e7:12:19:5e:d1:b4:a1:1a:bf:b6:
5a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E8:D2:94:EE:C7:7E:B0:9A:7D:4F:C6:2C:E6:F1:14:3B:0B:61:77
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/d531313c6fb7aa789f25d526df81196847b98411.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.1.0.0-179.1.143.255
179.1.176.0-179.1.255.255
190.90.0.0-190.90.155.255
190.90.172.0-190.90.177.255
190.90.188.0-190.90.215.255
190.90.219.0/24
190.90.224.0/19
IPv6:
2800:310::/32
Signature Algorithm: sha256WithRSAEncryption
75:e4:62:8a:e0:0a:05:79:ae:3c:4b:cf:8f:7e:1c:8b:a7:93:
a2:9a:0b:64:78:89:a4:f1:32:d3:a9:ec:72:a9:3e:0a:c6:30:
22:3a:32:e6:a0:1c:f5:eb:0b:57:e3:8a:af:e8:be:c6:7b:ec:
71:f6:66:d1:fb:e2:10:35:97:41:44:1f:e7:30:9c:0f:1b:55:
6b:ad:ff:83:59:b2:25:d3:0d:a9:06:47:22:05:3b:fb:79:2e:
5d:2f:9c:6b:93:98:9c:7d:1f:0b:b4:20:52:e4:ca:4e:84:1f:
4a:51:e1:2e:fd:0b:b2:b2:75:ce:55:70:5a:0d:b9:cd:f1:b2:
6d:86:9c:56:13:fd:e1:f4:33:c2:94:c8:c3:5e:a8:34:e9:0e:
ea:12:f4:11:63:fc:ad:99:c0:19:27:3e:1a:69:2f:7b:d5:e4:
d8:ec:9a:e0:27:9a:87:6d:0c:3d:82:03:08:c4:a2:83:7f:3d:
ab:45:aa:b8:cc:e1:04:bb:72:2c:99:30:66:54:bd:6e:e6:88:
53:d6:ac:a7:46:e1:a3:54:88:e6:cb:9c:cf:92:a5:10:2d:83:
9a:a6:2b:7f:4f:25:92:d1:0e:7c:55:c0:10:d0:4f:65:15:3b:
2e:69:e2:6d:14:e2:4b:57:7a:ec:8e:9d:40:99:25:76:76:bc:
18:3d:15:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:22 2024 by rpki-client on console-ams.rpki-client.org