Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/896ef20885c0e1ee203473b32e0bd729b13d9606.roa
File: 896ef20885c0e1ee203473b32e0bd729b13d9606.roa (raw, json)
Hash identifier: YLV8W1j3b+IcamGL+bwJA5b+X+9m8yNB81APp5b/uio=
Subject key identifier: 30:12:02:D2:88:2A:AD:F7:14:C4:1C:AA:7C:FA:F8:AF:06:ED:E8:08
Certificate issuer: /CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Certificate serial: 21A890
Authority key identifier: 80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/896ef20885c0e1ee203473b32e0bd729b13d9606.roa
Signing time: Fri 24 Mar 2023 08:32:32 +0000
ROA not before: Thu 23 Mar 2023 08:32:32 +0000
ROA not after: Sat 22 Mar 2025 08:32:32 +0000
asID: 28006
IP address blocks: 181.196.80.0/24 maxlen: 24
181.211.132.0/22 maxlen: 24
186.178.104.0/21 maxlen: 24
186.178.112.0/24 maxlen: 24
186.178.113.0/24 maxlen: 24
186.178.118.0/24 maxlen: 24
186.178.120.0/21 maxlen: 24
186.178.80.0/21 maxlen: 24
186.42.174.0/23 maxlen: 24
186.46.92.0/22 maxlen: 24
186.47.176.0/22 maxlen: 22
186.47.206.0/24 maxlen: 24
190.152.153.0/24 maxlen: 24
190.152.214.0/24 maxlen: 24
190.214.216.0/24 maxlen: 24
190.214.3.0/24 maxlen: 24
201.219.1.0/24 maxlen: 24
201.219.10.0/24 maxlen: 24
201.219.15.0/24 maxlen: 24
201.219.18.0/24 maxlen: 24
201.219.2.0/24 maxlen: 24
201.219.22.0/24 maxlen: 24
201.219.23.0/24 maxlen: 24
201.219.24.0/24 maxlen: 24
201.219.26.0/24 maxlen: 24
201.219.27.0/24 maxlen: 24
201.219.28.0/24 maxlen: 24
201.219.29.0/24 maxlen: 24
201.219.3.0/24 maxlen: 24
201.219.30.0/24 maxlen: 24
201.219.31.0/24 maxlen: 24
201.219.33.0/24 maxlen: 24
201.219.35.0/24 maxlen: 24
201.219.36.0/24 maxlen: 24
201.219.4.0/24 maxlen: 24
201.219.40.0/24 maxlen: 24
201.219.41.0/24 maxlen: 24
201.219.44.0/24 maxlen: 24
201.219.5.0/24 maxlen: 24
201.219.55.0/24 maxlen: 24
201.219.6.0/24 maxlen: 24
201.219.62.0/24 maxlen: 24
201.219.63.0/24 maxlen: 24
201.219.7.0/24 maxlen: 24
201.219.8.0/24 maxlen: 24
190.152.0.0/17 maxlen: 24
2800:370:10:31::/64 maxlen: 64
2800:370:10::/48 maxlen: 64
2800:4f0:10:24::/64 maxlen: 64
2800:4f0:10:25::/64 maxlen: 64
2800:4f0:10::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2205840 (0x21a890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Validity
Not Before: Mar 23 08:32:32 2023 GMT
Not After : Mar 22 08:32:32 2025 GMT
Subject: CN=896ef20885c0e1ee203473b32e0bd729b13d9606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a1:04:a8:ed:43:6b:03:16:c9:bb:42:8c:c3:
2b:96:a9:c5:b8:6a:63:71:31:78:8b:68:19:82:3b:
31:0e:73:6c:50:b0:1c:03:d4:67:3d:32:f1:f4:80:
e9:e7:21:68:27:0e:45:72:00:ef:5a:8f:1a:48:d8:
c3:14:a7:99:ff:82:43:85:31:ba:b2:da:c5:35:b8:
8a:31:38:3b:49:50:7d:8c:df:69:9f:0e:ee:95:04:
74:f8:33:be:a7:2e:02:c8:56:65:1b:6b:67:34:f4:
d7:24:d7:c9:2c:4d:08:29:78:dc:c8:e6:82:04:6a:
68:86:14:90:e5:89:b3:a1:13:56:76:f9:cd:b5:fb:
6a:00:6f:85:1c:3b:a2:cb:98:78:76:c0:7a:22:4e:
43:e2:ae:58:11:a9:31:84:f5:e4:86:d7:d4:36:ba:
cf:dd:d2:aa:7e:a6:a9:e5:61:6d:5a:c3:cd:c1:d7:
76:0d:66:a1:9f:7f:7f:0a:4c:71:d2:d2:1a:14:23:
f9:0a:af:29:3e:c5:4c:62:ae:57:47:09:be:7e:dd:
91:15:d8:80:89:b4:37:91:4a:cd:23:32:73:39:36:
e5:6d:fe:17:82:e3:df:0b:0d:8a:52:a8:af:4e:6f:
d4:84:3a:b6:c4:51:b6:00:dd:74:7b:1f:09:1a:76:
db:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:12:02:D2:88:2A:AD:F7:14:C4:1C:AA:7C:FA:F8:AF:06:ED:E8:08
X509v3 Authority Key Identifier:
keyid:80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/896ef20885c0e1ee203473b32e0bd729b13d9606.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/1059e1e3317704575f2c0b750ee73b166a39cd37.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.196.80.0/24
181.211.132.0/22
186.42.174.0/23
186.46.92.0/22
186.47.176.0/22
186.47.206.0/24
186.178.80.0/21
186.178.104.0-186.178.113.255
186.178.118.0/24
186.178.120.0/21
190.152.0.0/17
190.152.153.0/24
190.152.214.0/24
190.214.3.0/24
190.214.216.0/24
201.219.1.0-201.219.8.255
201.219.10.0/24
201.219.15.0/24
201.219.18.0/24
201.219.22.0-201.219.24.255
201.219.26.0-201.219.31.255
201.219.33.0/24
201.219.35.0-201.219.36.255
201.219.40.0/23
201.219.44.0/24
201.219.55.0/24
201.219.62.0/23
IPv6:
2800:370:10::/48
2800:4f0:10::/48
Signature Algorithm: sha256WithRSAEncryption
66:39:f9:3f:57:19:13:72:d4:2f:36:75:9e:db:bf:74:96:28:
09:98:9f:6d:dc:01:4b:f4:e6:59:db:4c:67:bb:c8:e6:b1:e3:
aa:a2:e0:11:1c:6f:c7:44:fc:93:1c:aa:23:be:48:02:87:b7:
82:b9:31:bf:ae:fb:0d:90:d9:b9:f4:fc:5a:b4:ef:8d:c5:19:
3d:6a:a6:c1:bf:5c:63:21:2a:ba:98:8e:33:ee:ef:74:cd:8d:
be:08:1b:01:3d:38:6f:83:e8:82:39:f3:c0:b4:aa:67:76:fc:
8f:f1:ec:75:3b:5f:4e:79:fe:af:5b:ff:84:d6:d4:0b:24:3d:
a6:d2:37:62:ba:80:3f:eb:c7:1d:e1:33:9f:f9:14:66:52:b9:
f3:b4:f4:08:bf:8f:b6:e6:d0:60:40:e6:79:12:65:21:8c:fd:
29:64:5e:2e:41:32:52:3a:60:b2:e1:dd:20:5a:95:47:f0:00:
51:2c:b6:40:a2:31:dc:e1:68:2f:46:16:af:60:a6:bd:bc:28:
e7:4e:85:8d:e0:df:69:4d:38:9a:19:b8:48:d4:68:f4:f3:cb:
f9:73:be:23:14:58:6b:7d:9f:b5:e2:d5:a9:ce:13:ba:b0:37:
d4:6d:51:dd:4d:51:e5:bc:8b:77:66:a7:11:4f:b2:9a:c2:da:
23:6c:fa:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:01 2024 by rpki-client on console-fra.rpki-client.org