Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/a17d048076fc77d704764376ae777e6acdb7ea3d.roa
File: a17d048076fc77d704764376ae777e6acdb7ea3d.roa (raw, json)
Hash identifier: nTIRTTJ5EaJpGqJVF3WO7piAI6P36qk88IP7Q87QbEU=
Subject key identifier: 3B:DF:26:A5:53:F5:17:D4:E4:8A:86:44:8E:5D:97:89:4C:1A:F6:8B
Certificate issuer: /CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Certificate serial: 1862A9
Authority key identifier: 80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/a17d048076fc77d704764376ae777e6acdb7ea3d.roa
Signing time: Tue 05 Apr 2022 14:30:46 +0000
ROA not before: Tue 05 Apr 2022 03:00:00 +0000
ROA not after: Fri 05 Apr 2024 03:00:00 +0000
asID: 198949
IP address blocks: 186.178.32.0/24 maxlen: 24
190.152.147.0/24 maxlen: 24
190.152.157.0/24 maxlen: 24
186.178.8.0/24 maxlen: 24
190.152.152.0/24 maxlen: 24
190.214.0.0/24 maxlen: 24
190.11.20.0/24 maxlen: 24
190.152.47.0/24 maxlen: 24
190.152.46.0/24 maxlen: 24
190.152.45.0/24 maxlen: 24
190.152.44.0/24 maxlen: 24
190.152.55.0/24 maxlen: 24
190.152.54.0/24 maxlen: 24
190.152.53.0/24 maxlen: 24
200.125.208.0/24 maxlen: 24
200.125.209.0/24 maxlen: 24
190.152.52.0/24 maxlen: 24
190.152.255.0/24 maxlen: 24
200.107.34.0/24 maxlen: 24
190.152.156.0/24 maxlen: 24
190.152.155.0/24 maxlen: 24
190.152.153.0/24 maxlen: 24
181.196.4.0/24 maxlen: 24
181.112.136.0/24 maxlen: 24
181.112.138.0/24 maxlen: 24
181.112.158.0/24 maxlen: 24
181.112.220.0/24 maxlen: 24
181.113.120.0/24 maxlen: 24
181.112.137.0/24 maxlen: 24
186.47.153.0/24 maxlen: 24
186.178.5.0/24 maxlen: 24
190.214.49.0/24 maxlen: 24
181.112.155.0/24 maxlen: 24
181.112.226.0/24 maxlen: 24
181.112.35.0/24 maxlen: 24
181.112.62.0/24 maxlen: 24
181.113.20.0/24 maxlen: 24
181.113.21.0/24 maxlen: 24
181.113.25.0/24 maxlen: 24
181.113.27.0/24 maxlen: 24
181.113.57.0/24 maxlen: 24
181.113.66.0/24 maxlen: 24
190.214.23.0/24 maxlen: 24
181.196.18.0/24 maxlen: 24
181.196.26.0/24 maxlen: 24
181.196.29.0/24 maxlen: 24
181.196.49.0/24 maxlen: 24
181.196.51.0/24 maxlen: 24
181.211.115.0/24 maxlen: 24
181.211.242.0/24 maxlen: 24
181.211.36.0/24 maxlen: 24
181.211.37.0/24 maxlen: 24
186.42.188.0/24 maxlen: 24
186.46.151.0/24 maxlen: 24
186.46.31.0/24 maxlen: 24
186.46.74.0/24 maxlen: 24
186.46.86.0/24 maxlen: 24
186.47.101.0/24 maxlen: 24
186.47.16.0/24 maxlen: 24
186.47.18.0/24 maxlen: 24
186.47.213.0/24 maxlen: 24
186.47.225.0/24 maxlen: 24
186.47.40.0/24 maxlen: 24
186.47.74.0/24 maxlen: 24
186.47.86.0/24 maxlen: 24
190.11.14.0/24 maxlen: 24
190.11.31.0/24 maxlen: 24
190.152.215.0/24 maxlen: 24
186.42.213.0/24 maxlen: 24
190.152.23.0/24 maxlen: 24
190.152.245.0/24 maxlen: 24
190.214.46.0/24 maxlen: 24
200.107.15.0/24 maxlen: 24
200.107.7.0/24 maxlen: 24
190.152.154.0/24 maxlen: 24
200.107.61.0/24 maxlen: 24
190.214.216.0/24 maxlen: 24
200.125.206.0/24 maxlen: 24
200.107.10.0/24 maxlen: 24
200.125.247.0/24 maxlen: 24
186.42.193.0/24 maxlen: 24
200.107.9.0/24 maxlen: 24
190.11.18.0/24 maxlen: 24
181.211.132.0/24 maxlen: 24
181.211.13.0/24 maxlen: 24
190.152.62.0/24 maxlen: 24
201.219.1.0/24 maxlen: 24
190.152.75.0/24 maxlen: 24
200.125.193.0/24 maxlen: 24
2800:370::/48 maxlen: 48
2800:4f0:8::/48 maxlen: 48
2800:370:10::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1598121 (0x1862a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Validity
Not Before: Apr 5 03:00:00 2022 GMT
Not After : Apr 5 03:00:00 2024 GMT
Subject: CN=a17d048076fc77d704764376ae777e6acdb7ea3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:90:2d:97:05:1a:ca:ab:5e:17:52:bd:84:82:
7d:f5:b9:98:41:24:da:5e:85:90:72:92:69:8a:b3:
4c:e5:dc:80:84:4a:e7:3d:fa:53:9e:cb:78:56:8b:
e1:4b:19:1e:07:cf:d5:11:14:aa:c5:50:b4:1b:34:
46:07:db:6e:96:26:7c:3a:eb:e4:2f:90:fa:f5:17:
8f:c6:e5:d1:b7:4a:53:5b:e8:ce:02:6a:39:19:21:
fd:9b:18:74:29:c8:5b:d6:7b:f7:87:6a:3c:7a:7a:
f7:48:75:99:e5:5e:b6:9c:56:33:49:f3:f5:bf:a9:
4e:56:a8:8f:06:23:8b:22:a2:ec:04:a5:d1:ee:b7:
b1:82:96:56:89:aa:8b:69:5f:3a:c0:1e:82:7d:a8:
f5:68:b4:e2:68:bb:15:0e:92:80:e5:d1:7f:2f:25:
09:f9:d2:bf:1a:60:29:ea:e8:7d:6a:b0:75:cd:66:
41:71:8a:21:ac:d7:cb:60:27:9c:be:56:69:ec:74:
b3:ab:de:a2:a8:fb:be:c4:fa:5e:6f:55:68:f3:e7:
2e:22:f7:24:e5:f4:bb:4c:fb:30:54:1c:d3:78:52:
14:8c:77:f6:ee:0f:60:f4:b2:c0:6c:94:08:6b:ca:
57:0b:ef:d1:68:55:7b:eb:92:8e:16:a6:d7:0c:f1:
31:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:DF:26:A5:53:F5:17:D4:E4:8A:86:44:8E:5D:97:89:4C:1A:F6:8B
X509v3 Authority Key Identifier:
keyid:80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/a17d048076fc77d704764376ae777e6acdb7ea3d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/1059e1e3317704575f2c0b750ee73b166a39cd37.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.112.35.0/24
181.112.62.0/24
181.112.136.0-181.112.138.255
181.112.155.0/24
181.112.158.0/24
181.112.220.0/24
181.112.226.0/24
181.113.20.0/23
181.113.25.0/24
181.113.27.0/24
181.113.57.0/24
181.113.66.0/24
181.113.120.0/24
181.196.4.0/24
181.196.18.0/24
181.196.26.0/24
181.196.29.0/24
181.196.49.0/24
181.196.51.0/24
181.211.13.0/24
181.211.36.0/23
181.211.115.0/24
181.211.132.0/24
181.211.242.0/24
186.42.188.0/24
186.42.193.0/24
186.42.213.0/24
186.46.31.0/24
186.46.74.0/24
186.46.86.0/24
186.46.151.0/24
186.47.16.0/24
186.47.18.0/24
186.47.40.0/24
186.47.74.0/24
186.47.86.0/24
186.47.101.0/24
186.47.153.0/24
186.47.213.0/24
186.47.225.0/24
186.178.5.0/24
186.178.8.0/24
186.178.32.0/24
190.11.14.0/24
190.11.18.0/24
190.11.20.0/24
190.11.31.0/24
190.152.23.0/24
190.152.44.0/22
190.152.52.0/22
190.152.62.0/24
190.152.75.0/24
190.152.147.0/24
190.152.152.0-190.152.157.255
190.152.215.0/24
190.152.245.0/24
190.152.255.0/24
190.214.0.0/24
190.214.23.0/24
190.214.46.0/24
190.214.49.0/24
190.214.216.0/24
200.107.7.0/24
200.107.9.0-200.107.10.255
200.107.15.0/24
200.107.34.0/24
200.107.61.0/24
200.125.193.0/24
200.125.206.0/24
200.125.208.0/23
200.125.247.0/24
201.219.1.0/24
IPv6:
2800:370::/48
2800:370:10::/48
2800:4f0:8::/48
Signature Algorithm: sha256WithRSAEncryption
6c:ec:cb:44:22:18:48:53:83:f0:43:4f:d9:cc:ca:1e:df:32:
91:ae:0c:f6:fb:7b:e8:2d:d8:1e:2b:09:fd:01:1d:ec:b9:6e:
a4:8a:58:b1:84:c4:96:4a:95:c8:94:5d:6f:05:b8:ea:66:56:
4b:dc:53:b5:b9:13:26:df:4c:0f:a6:28:2e:37:f9:6b:c8:a7:
4a:57:77:11:ef:87:f8:a5:54:ad:04:fe:49:aa:18:9e:79:b3:
e2:e4:60:47:c7:81:9d:a4:fe:19:8f:e8:f9:3a:79:84:23:74:
70:2a:32:50:34:bc:a1:64:4c:68:74:9d:68:73:18:e7:1f:d4:
70:38:3b:1d:78:c6:df:46:41:f5:f9:ec:e0:73:20:d5:eb:91:
04:7c:9e:dd:9c:5d:dd:af:ca:4f:7e:a7:ed:87:80:12:ab:ed:
9e:a2:03:a0:1c:f1:9a:e9:91:29:91:01:08:0c:9a:1d:2d:13:
59:28:3d:d4:c0:a4:31:f6:f1:41:9e:0f:e8:14:49:af:fd:b0:
65:49:4e:49:59:a1:a6:4f:55:72:c8:f7:27:24:8f:45:1d:7e:
ac:e3:f2:0a:6f:7e:29:57:91:1c:fe:27:ca:4b:c1:2c:89:83:
27:de:44:c3:cd:82:39:9a:15:74:08:f5:b0:c3:2d:1a:f5:8c:
61:2f:58:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:01 2024 by rpki-client on console-fra.rpki-client.org