Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/36afaaa0cbc1313e04b1b5c127f9bd1769842823.roa
File: 36afaaa0cbc1313e04b1b5c127f9bd1769842823.roa (raw, json)
Hash identifier: SKMmAh8ySDqo8dt6hA+D3q17JGKllS0NTQIOk0HmeFY=
Subject key identifier: D1:B0:B0:02:78:80:C4:09:AD:E8:BD:B7:D6:DE:BA:40:06:12:47:C6
Certificate issuer: /CN=337d330947d264c81b4503df3b1ef67d45cc2dc4
Certificate serial: 25579D
Authority key identifier: 61:B6:8D:FD:87:EB:CE:D6:CA:2B:24:E2:AA:8F:F7:07:DA:63:5E:19
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/337d330947d264c81b4503df3b1ef67d45cc2dc4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/36afaaa0cbc1313e04b1b5c127f9bd1769842823.roa
Signing time: Wed 30 Aug 2023 17:24:17 +0000
ROA not before: Tue 29 Aug 2023 17:24:17 +0000
ROA not after: Sat 30 Aug 2025 17:24:17 +0000
asID: 22368
IP address blocks: 190.13.0.0/20 maxlen: 23
170.80.8.0/22 maxlen: 23
201.221.128.0/23 maxlen: 24
201.221.131.0/24 maxlen: 24
201.221.132.0/22 maxlen: 24
201.221.136.0/22 maxlen: 24
190.184.128.0/18 maxlen: 24
201.221.140.0/23 maxlen: 24
201.221.143.0/24 maxlen: 24
201.221.144.0/22 maxlen: 24
201.221.148.0/23 maxlen: 24
201.221.151.0/24 maxlen: 24
201.221.152.0/21 maxlen: 24
186.183.128.0/18 maxlen: 24
190.13.24.0/21 maxlen: 21
190.13.32.0/20 maxlen: 21
190.124.96.0/19 maxlen: 24
186.183.224.0/21 maxlen: 24
186.183.234.0/23 maxlen: 23
186.183.236.0/22 maxlen: 23
186.183.246.0/23 maxlen: 24
186.183.248.0/22 maxlen: 24
186.183.252.0/23 maxlen: 24
186.183.192.0/19 maxlen: 24
190.96.160.0/19 maxlen: 24
181.174.32.0/23 maxlen: 24
181.174.34.0/24 maxlen: 24
181.174.36.0/22 maxlen: 24
181.174.40.0/21 maxlen: 24
181.174.48.0/20 maxlen: 24
190.96.192.0/21 maxlen: 24
190.96.208.0/20 maxlen: 24
190.96.128.0/21 maxlen: 21
181.174.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2447261 (0x25579d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=337d330947d264c81b4503df3b1ef67d45cc2dc4
Validity
Not Before: Aug 29 17:24:17 2023 GMT
Not After : Aug 30 17:24:17 2025 GMT
Subject: CN=36afaaa0cbc1313e04b1b5c127f9bd1769842823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c7:1d:a3:ef:39:bb:b9:ca:46:e1:c9:ca:53:
32:55:c9:67:a9:6d:85:21:7a:a1:aa:a6:8c:e7:cb:
e0:70:2c:6b:cc:aa:11:25:70:53:20:61:7d:6f:f0:
4d:25:2b:7b:95:ed:39:88:f8:ca:12:0f:0e:af:37:
61:f3:3d:34:42:21:3b:22:11:86:d3:90:90:37:64:
49:58:7d:85:97:a0:b2:9e:60:c9:a4:61:a7:6b:e4:
98:c2:32:69:2c:27:cc:97:14:29:16:f8:86:e0:3e:
c2:40:5a:75:89:bf:72:00:0b:f5:f3:d8:96:6c:e6:
23:0e:c8:6d:3c:0f:a4:fc:e5:11:38:1d:94:c1:01:
6f:08:ef:72:8f:3b:16:c1:a1:cc:a3:68:17:7f:d6:
92:c0:d4:cb:88:9a:24:9f:a2:ce:1b:4c:a5:9c:60:
9d:46:ef:42:c9:f4:14:57:0f:a1:d8:1f:e3:03:f0:
03:35:b7:31:43:e1:a9:68:53:e7:99:26:0e:91:68:
ce:82:b1:60:61:a8:1c:12:cc:3e:17:98:54:81:ae:
4f:24:08:e3:c5:18:34:9d:d9:de:6c:88:fd:8f:e3:
73:0c:aa:ea:0f:ab:7e:57:07:17:65:ac:10:b1:4f:
a4:5f:8e:56:98:b9:11:23:f5:4b:15:6d:b7:7d:68:
bf:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:B0:B0:02:78:80:C4:09:AD:E8:BD:B7:D6:DE:BA:40:06:12:47:C6
X509v3 Authority Key Identifier:
keyid:61:B6:8D:FD:87:EB:CE:D6:CA:2B:24:E2:AA:8F:F7:07:DA:63:5E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/337d330947d264c81b4503df3b1ef67d45cc2dc4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/36afaaa0cbc1313e04b1b5c127f9bd1769842823.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/b3e5dd9e-bbca-4c49-92f5-8c6751165e92/337d330947d264c81b4503df3b1ef67d45cc2dc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.80.8.0/22
181.174.0.0-181.174.34.255
181.174.36.0-181.174.63.255
186.183.128.0-186.183.231.255
186.183.234.0-186.183.239.255
186.183.246.0-186.183.253.255
190.13.0.0/20
190.13.24.0-190.13.47.255
190.96.128.0/21
190.96.160.0-190.96.199.255
190.96.208.0/20
190.124.96.0/19
190.184.128.0/18
201.221.128.0/23
201.221.131.0-201.221.141.255
201.221.143.0-201.221.149.255
201.221.151.0-201.221.159.255
Signature Algorithm: sha256WithRSAEncryption
9f:ba:d1:13:bf:8c:61:a3:ab:89:85:42:75:76:eb:78:c5:42:
3f:6f:94:8a:4c:ba:2e:e9:0c:fe:50:da:c3:d0:4b:be:30:eb:
d3:e2:27:d6:3f:2a:2c:77:01:08:c1:93:52:ec:b1:20:9c:95:
cf:c1:2b:2b:31:7a:c8:f8:c8:b7:a3:3d:9e:f8:d9:19:78:0f:
e6:b0:7a:11:14:b2:b5:dc:8d:a9:cf:d4:88:d1:ae:00:c7:5d:
27:2b:b8:80:79:89:03:d9:77:71:7e:da:14:82:1f:c8:26:5a:
7a:9f:1b:a9:75:34:db:70:62:f0:3f:6a:e4:d2:51:cd:85:3c:
c5:a7:2d:5a:29:50:87:8d:99:9b:d8:8c:59:dc:7a:70:2b:b1:
a2:0a:eb:23:2e:9a:fb:7d:19:f4:3a:cf:4b:a6:ba:aa:0c:b1:
13:3d:0d:39:fe:52:ac:6d:41:0f:27:4f:b4:a6:5d:ea:6c:8a:
e9:96:0b:89:ae:a6:eb:d2:5d:6c:fe:6b:01:64:50:40:fe:ad:
e6:64:aa:c8:94:bf:c6:5b:0c:a7:4e:2b:0d:0b:75:3d:18:06:
c7:77:41:b8:40:3e:2e:fc:d8:f8:80:0d:48:4e:4b:bc:36:0a:
08:2b:34:e1:15:c8:b4:d9:52:e6:a2:ce:a6:9e:f0:cc:4c:ed:
3e:34:60:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:29 2024 by rpki-client on console-fra.rpki-client.org