Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/6fd11b5eca1c3946433f1f562fe47a09bc5ad401.roa
File: 6fd11b5eca1c3946433f1f562fe47a09bc5ad401.roa (raw, json)
Hash identifier: y2wdZdgmBkKJCmlI0BeSXMnXJpx8WOh5SQMUFvDBB3o=
Subject key identifier: 91:EB:59:3E:A6:45:FC:D4:84:5E:CA:03:B1:7B:4D:1D:8C:ED:96:19
Certificate issuer: /CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Certificate serial: 2B27D8
Authority key identifier: 80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/6fd11b5eca1c3946433f1f562fe47a09bc5ad401.roa
Signing time: Thu 04 Apr 2024 08:30:00 +0000
ROA not before: Thu 04 Apr 2024 08:30:00 +0000
ROA not after: Sat 04 Apr 2026 08:30:00 +0000
asID: 198949
IP address blocks: 186.178.32.0/24 maxlen: 24
190.152.147.0/24 maxlen: 24
190.152.157.0/24 maxlen: 24
186.178.8.0/24 maxlen: 24
190.152.152.0/24 maxlen: 24
190.214.0.0/24 maxlen: 24
190.11.20.0/24 maxlen: 24
190.152.47.0/24 maxlen: 24
190.152.46.0/24 maxlen: 24
190.152.45.0/24 maxlen: 24
190.152.44.0/24 maxlen: 24
190.152.55.0/24 maxlen: 24
190.152.54.0/24 maxlen: 24
190.152.53.0/24 maxlen: 24
200.125.208.0/24 maxlen: 24
200.125.209.0/24 maxlen: 24
190.152.52.0/24 maxlen: 24
190.152.255.0/24 maxlen: 24
200.107.34.0/24 maxlen: 24
190.152.156.0/24 maxlen: 24
190.152.155.0/24 maxlen: 24
190.152.153.0/24 maxlen: 24
181.196.4.0/24 maxlen: 24
181.112.136.0/24 maxlen: 24
181.112.138.0/24 maxlen: 24
181.112.158.0/24 maxlen: 24
181.112.220.0/24 maxlen: 24
181.113.120.0/24 maxlen: 24
181.112.137.0/24 maxlen: 24
186.47.153.0/24 maxlen: 24
186.178.5.0/24 maxlen: 24
190.214.49.0/24 maxlen: 24
181.112.155.0/24 maxlen: 24
181.112.226.0/24 maxlen: 24
181.112.35.0/24 maxlen: 24
181.112.62.0/24 maxlen: 24
181.113.20.0/24 maxlen: 24
181.113.21.0/24 maxlen: 24
181.113.25.0/24 maxlen: 24
181.113.27.0/24 maxlen: 24
181.113.57.0/24 maxlen: 24
181.113.66.0/24 maxlen: 24
190.214.23.0/24 maxlen: 24
181.196.18.0/24 maxlen: 24
181.196.26.0/24 maxlen: 24
181.196.29.0/24 maxlen: 24
181.196.49.0/24 maxlen: 24
181.196.51.0/24 maxlen: 24
181.211.115.0/24 maxlen: 24
181.211.242.0/24 maxlen: 24
181.211.36.0/24 maxlen: 24
181.211.37.0/24 maxlen: 24
186.42.188.0/24 maxlen: 24
186.46.151.0/24 maxlen: 24
186.46.31.0/24 maxlen: 24
186.46.74.0/24 maxlen: 24
186.46.86.0/24 maxlen: 24
186.47.101.0/24 maxlen: 24
186.47.16.0/24 maxlen: 24
186.47.18.0/24 maxlen: 24
186.47.213.0/24 maxlen: 24
186.47.225.0/24 maxlen: 24
186.47.40.0/24 maxlen: 24
186.47.74.0/24 maxlen: 24
186.47.86.0/24 maxlen: 24
190.11.14.0/24 maxlen: 24
190.11.31.0/24 maxlen: 24
190.152.215.0/24 maxlen: 24
186.42.213.0/24 maxlen: 24
190.152.23.0/24 maxlen: 24
190.152.245.0/24 maxlen: 24
190.214.46.0/24 maxlen: 24
200.107.15.0/24 maxlen: 24
200.107.7.0/24 maxlen: 24
190.152.154.0/24 maxlen: 24
200.107.61.0/24 maxlen: 24
190.214.216.0/24 maxlen: 24
200.125.206.0/24 maxlen: 24
200.107.10.0/24 maxlen: 24
200.125.247.0/24 maxlen: 24
186.42.193.0/24 maxlen: 24
200.107.9.0/24 maxlen: 24
190.11.18.0/24 maxlen: 24
181.211.132.0/24 maxlen: 24
181.211.13.0/24 maxlen: 24
190.152.62.0/24 maxlen: 24
201.219.1.0/24 maxlen: 24
190.152.75.0/24 maxlen: 24
200.125.193.0/24 maxlen: 24
2800:370::/48 maxlen: 48
2800:4f0:8::/48 maxlen: 48
2800:370:10::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2828248 (0x2b27d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Validity
Not Before: Apr 4 08:30:00 2024 GMT
Not After : Apr 4 08:30:00 2026 GMT
Subject: CN=6fd11b5eca1c3946433f1f562fe47a09bc5ad401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f4:2f:4c:44:fa:64:1b:c3:32:83:c7:fd:ac:
7a:02:7b:2e:02:e1:76:2a:97:db:17:8b:91:fd:ff:
fa:e5:28:46:7b:39:80:0d:08:15:35:83:6e:f9:9d:
da:54:d6:33:53:22:17:26:c7:c4:67:f0:e8:74:04:
d3:85:b1:63:85:bc:ed:53:30:d1:88:d3:a9:9c:91:
49:58:da:74:37:fe:f6:36:cd:8e:74:72:3f:a9:17:
62:d1:67:5f:29:2e:3c:e1:15:5b:16:8b:17:44:8b:
f6:6e:ed:7f:7c:8f:52:45:aa:38:6b:43:e1:b3:b2:
57:ed:26:e2:d1:2a:26:79:06:14:61:32:c5:72:08:
4a:4b:b4:d7:90:fe:d5:d7:45:51:88:d7:cf:ee:61:
bb:31:e8:2a:61:2f:dc:7b:2f:8b:e0:ea:c9:eb:3b:
40:9b:c6:c1:2f:ec:a0:5b:27:a7:04:9c:eb:d5:96:
8b:a6:68:01:a9:ed:f8:b0:bf:4d:0c:db:a8:78:e4:
b3:88:75:08:b2:07:40:0c:ad:c2:30:dc:ef:77:32:
d5:94:27:0a:7e:4f:d3:46:00:32:6e:41:a3:e1:84:
23:43:16:80:fd:8b:07:6b:dd:0c:f2:cd:c0:fa:78:
f4:0c:5d:ca:52:cb:32:28:0b:9d:5b:57:4c:9a:37:
9d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:EB:59:3E:A6:45:FC:D4:84:5E:CA:03:B1:7B:4D:1D:8C:ED:96:19
X509v3 Authority Key Identifier:
keyid:80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/6fd11b5eca1c3946433f1f562fe47a09bc5ad401.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/1059e1e3317704575f2c0b750ee73b166a39cd37.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.112.35.0/24
181.112.62.0/24
181.112.136.0-181.112.138.255
181.112.155.0/24
181.112.158.0/24
181.112.220.0/24
181.112.226.0/24
181.113.20.0/23
181.113.25.0/24
181.113.27.0/24
181.113.57.0/24
181.113.66.0/24
181.113.120.0/24
181.196.4.0/24
181.196.18.0/24
181.196.26.0/24
181.196.29.0/24
181.196.49.0/24
181.196.51.0/24
181.211.13.0/24
181.211.36.0/23
181.211.115.0/24
181.211.132.0/24
181.211.242.0/24
186.42.188.0/24
186.42.193.0/24
186.42.213.0/24
186.46.31.0/24
186.46.74.0/24
186.46.86.0/24
186.46.151.0/24
186.47.16.0/24
186.47.18.0/24
186.47.40.0/24
186.47.74.0/24
186.47.86.0/24
186.47.101.0/24
186.47.153.0/24
186.47.213.0/24
186.47.225.0/24
186.178.5.0/24
186.178.8.0/24
186.178.32.0/24
190.11.14.0/24
190.11.18.0/24
190.11.20.0/24
190.11.31.0/24
190.152.23.0/24
190.152.44.0/22
190.152.52.0/22
190.152.62.0/24
190.152.75.0/24
190.152.147.0/24
190.152.152.0-190.152.157.255
190.152.215.0/24
190.152.245.0/24
190.152.255.0/24
190.214.0.0/24
190.214.23.0/24
190.214.46.0/24
190.214.49.0/24
190.214.216.0/24
200.107.7.0/24
200.107.9.0-200.107.10.255
200.107.15.0/24
200.107.34.0/24
200.107.61.0/24
200.125.193.0/24
200.125.206.0/24
200.125.208.0/23
200.125.247.0/24
201.219.1.0/24
IPv6:
2800:370::/48
2800:370:10::/48
2800:4f0:8::/48
Signature Algorithm: sha256WithRSAEncryption
06:27:0d:dd:db:ff:6c:b2:70:17:e8:39:9f:51:8f:50:75:bd:
e7:3a:9f:5d:a2:42:f0:79:37:65:ee:2d:24:8a:13:85:33:ee:
dd:86:e7:ba:20:54:70:3d:a4:ec:48:e4:07:10:44:f7:eb:8c:
a1:cd:ec:5c:32:a5:b5:f1:9f:c8:b1:07:10:16:62:31:2a:e8:
32:6b:e1:88:6d:46:f2:bf:e4:d8:33:4e:44:23:28:4b:54:b9:
ff:ef:b1:d6:c8:08:9a:af:8b:fa:93:c9:cd:c3:1b:92:c2:3a:
b9:d6:62:5e:a0:26:39:22:3d:20:ab:9e:29:94:d8:e1:6b:0e:
d7:b1:7c:d3:8c:cb:c9:1d:51:17:ea:e4:61:16:f8:2d:d9:67:
5f:a8:5c:b7:87:81:88:16:8a:3b:2a:01:9e:1e:e5:21:3b:3f:
76:a5:ef:36:4d:73:fe:3b:9e:84:60:cd:2c:2b:14:71:c4:44:
4f:2e:16:3d:53:51:98:6a:3f:21:ea:5b:85:a9:bf:0c:63:3a:
aa:eb:e0:27:a7:30:4d:2a:c2:b4:8d:14:cc:4f:37:e3:77:20:
e1:d5:27:ce:58:4e:1e:2c:96:5b:c5:fe:fe:8b:c9:c1:3c:9c:
95:e8:64:75:47:9b:10:1c:79:e3:94:86:21:17:42:56:cb:c2:
a9:82:d2:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:29 2024 by rpki-client on console-fra.rpki-client.org