Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/0a28ff69baeafd228c71f77e690b4f8bd7519fd2.roa
File: 0a28ff69baeafd228c71f77e690b4f8bd7519fd2.roa (raw, json)
Hash identifier: vquvBJvB5Wi92sa5f5E9PIMOLyqDa8P+GpMxbseg9CY=
Subject key identifier: C1:39:35:B7:3D:BC:7F:B8:18:BE:8A:AB:89:2B:05:CD:7B:0A:C7:5E
Certificate issuer: /CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Certificate serial: 0E72CE
Authority key identifier: 80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/0a28ff69baeafd228c71f77e690b4f8bd7519fd2.roa
Signing time: Wed 24 Mar 2021 14:38:32 +0000
ROA not before: Wed 24 Mar 2021 14:38:31 +0000
ROA not after: Tue 24 Mar 2026 14:38:31 +0000
asID: 14420
IP address blocks: 190.152.128.0/17 maxlen: 24
190.214.0.0/17 maxlen: 24
190.214.128.0/17 maxlen: 24
200.107.0.0/19 maxlen: 24
200.107.32.0/19 maxlen: 24
200.125.192.0/19 maxlen: 24
200.125.224.0/19 maxlen: 24
200.73.200.0/21 maxlen: 24
200.77.188.0/22 maxlen: 24
200.85.80.0/24 maxlen: 24
181.112.0.0/16 maxlen: 24
181.113.0.0/16 maxlen: 24
181.196.0.0/16 maxlen: 24
181.211.0.0/16 maxlen: 24
186.178.0.0/16 maxlen: 24
186.42.0.0/17 maxlen: 24
186.42.128.0/17 maxlen: 24
186.46.0.0/17 maxlen: 24
186.46.128.0/17 maxlen: 24
186.47.0.0/16 maxlen: 24
190.11.0.0/19 maxlen: 24
190.152.0.0/17 maxlen: 24
2800:370::/32 maxlen: 48
2800:4f0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 946894 (0xe72ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Validity
Not Before: Mar 24 14:38:31 2021 GMT
Not After : Mar 24 14:38:31 2026 GMT
Subject: CN=0a28ff69baeafd228c71f77e690b4f8bd7519fd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:17:c7:70:24:9d:02:be:63:ba:e1:ad:d4:4c:
f5:c7:97:7f:c8:8e:3f:2a:fb:16:72:5a:fb:87:d0:
cf:61:13:9a:99:04:4f:14:3b:29:1e:4a:14:36:6a:
b2:27:1b:ec:89:69:00:f0:5e:b4:51:a7:f7:39:dc:
5d:32:08:de:0f:1e:fc:15:dd:c3:9c:e9:e2:22:c5:
f0:5a:2d:3a:78:05:ce:4a:0f:6d:ce:23:c5:b7:ee:
7f:14:3f:05:73:e2:af:b6:80:e0:b9:28:90:fc:f1:
49:12:a5:4e:3b:42:d9:aa:6a:df:5f:73:d9:89:9f:
79:03:1d:16:84:8b:70:73:a1:4c:4f:9b:12:a5:84:
2d:74:8d:09:3a:46:b3:a8:55:43:f7:2b:5c:80:70:
be:e7:f1:d6:9b:fd:4f:76:8f:bd:10:df:af:a1:91:
49:d8:2b:8e:56:e9:ad:fc:50:bc:e1:2d:6d:f7:5d:
c9:77:2d:0d:85:7a:ca:f7:d0:94:d6:d0:c0:fc:ee:
3b:6b:43:ab:ec:f7:08:e8:f5:d3:f2:d0:3e:ff:ba:
40:71:59:5a:24:7e:8a:fd:0c:f3:ec:15:39:f3:94:
fc:d1:ec:6b:32:66:15:19:6b:46:1f:7f:92:03:c8:
fb:fa:84:94:82:88:42:f9:6a:30:ab:3b:ea:9b:56:
49:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:39:35:B7:3D:BC:7F:B8:18:BE:8A:AB:89:2B:05:CD:7B:0A:C7:5E
X509v3 Authority Key Identifier:
keyid:80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/0a28ff69baeafd228c71f77e690b4f8bd7519fd2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/1059e1e3317704575f2c0b750ee73b166a39cd37.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.112.0.0/15
181.196.0.0/16
181.211.0.0/16
186.42.0.0/16
186.46.0.0/15
186.178.0.0/16
190.11.0.0/19
190.152.0.0/16
190.214.0.0/16
200.73.200.0/21
200.77.188.0/22
200.85.80.0/24
200.107.0.0/18
200.125.192.0/18
IPv6:
2800:370::/32
2800:4f0::/32
Signature Algorithm: sha256WithRSAEncryption
59:04:30:95:3a:b9:41:e6:50:1a:62:70:2f:79:7a:ea:fd:1f:
88:bd:83:b7:2d:e9:5c:b1:ca:58:28:6c:a6:b1:94:18:65:bd:
44:45:ee:a3:e5:5d:e0:ef:a9:e8:f7:79:f3:95:0c:4d:3a:02:
d3:8e:44:7f:c3:65:bb:a3:7f:d7:d3:10:1b:27:84:c6:9c:cc:
23:cd:34:f5:9e:20:bc:d2:80:53:8a:49:b7:e6:73:d6:53:20:
78:95:49:11:78:c3:51:d6:9a:08:40:71:1e:48:ee:a1:e7:14:
93:5c:0f:3b:22:d7:65:6e:7d:6e:7e:40:ec:5e:a0:03:52:f5:
c1:24:88:d7:55:aa:ab:3a:6c:f8:86:f8:62:fb:b1:7e:36:0f:
72:fe:73:5d:68:e0:bb:8f:e6:6e:b5:95:ea:28:dd:ae:81:5e:
83:74:f2:57:05:17:24:2f:bd:3c:4b:38:b4:15:e8:3d:cb:2d:
1e:2a:ec:75:5c:88:d2:55:09:42:6b:40:f2:59:cb:c1:15:39:
83:97:ac:53:41:c5:f5:ca:2e:6d:58:10:52:54:17:ac:95:e9:
01:39:38:64:35:7e:c9:21:99:d7:d9:ff:62:87:a1:f6:87:88:
82:22:43:0a:42:07:4a:10:69:03:0f:1c:33:96:f0:9e:a4:4e:
8c:67:68:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:45 2024 by rpki-client on console-ams.rpki-client.org