Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/104c2bd8572cf8de7f255f0b9344f8c3f7be6bb5.roa
File: 104c2bd8572cf8de7f255f0b9344f8c3f7be6bb5.roa (raw, json)
Hash identifier: 6WVrREUk6NoTgVFP0EA2MmtqMOrNUala9dCB2HgF0dk=
Subject key identifier: 6C:DA:2E:A9:F6:28:B0:28:78:FF:57:6F:2A:00:21:E1:2B:84:49:09
Certificate issuer: /CN=c4935075ec435dbda09406df9fa324ff802f1d14
Certificate serial: 21A3F4
Authority key identifier: 76:83:16:F0:88:5D:BF:BD:21:FF:F5:2D:ED:2B:87:BE:D1:53:D7:ED
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c4935075ec435dbda09406df9fa324ff802f1d14.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/104c2bd8572cf8de7f255f0b9344f8c3f7be6bb5.roa
Signing time: Thu 15 Jun 2023 16:42:12 +0000
ROA not before: Wed 14 Jun 2023 16:42:09 +0000
ROA not after: Sun 15 Jun 2025 16:42:09 +0000
asID: 23243
IP address blocks: 200.94.249.0/24 maxlen: 24
200.94.250.0/23 maxlen: 24
190.111.17.0/24 maxlen: 24
190.111.24.0/24 maxlen: 24
190.111.29.0/24 maxlen: 24
181.189.128.0/24 maxlen: 24
181.189.144.0/21 maxlen: 24
181.189.152.0/24 maxlen: 24
190.14.2.0/23 maxlen: 24
190.14.4.0/23 maxlen: 24
190.14.6.0/24 maxlen: 24
181.189.154.0/24 maxlen: 24
2803:3a00::/37 maxlen: 48
2803:3a00:1800::/37 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2204660 (0x21a3f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4935075ec435dbda09406df9fa324ff802f1d14
Validity
Not Before: Jun 14 16:42:09 2023 GMT
Not After : Jun 15 16:42:09 2025 GMT
Subject: CN=104c2bd8572cf8de7f255f0b9344f8c3f7be6bb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:81:2a:56:48:5a:2d:80:e3:91:30:87:31:a4:
43:b1:6a:6d:08:21:ed:42:b3:48:84:cb:40:78:2c:
17:79:57:7e:a5:68:4d:fd:d0:74:fe:36:26:05:77:
2f:7b:2b:25:06:4e:7f:ee:50:d8:fa:7e:f0:5c:26:
cc:f8:c1:13:d6:9f:a3:38:88:b2:1d:45:bc:df:f8:
2f:83:fe:b7:a7:b3:40:01:5d:7a:1b:9a:c3:4a:ac:
8c:71:ea:46:38:00:ef:13:49:7a:64:de:ba:37:20:
bd:46:e1:75:11:98:18:75:97:2d:b8:b1:b0:f7:a6:
af:a3:19:fa:72:82:cf:56:5c:c7:dd:f2:99:ea:a0:
0b:31:48:db:4b:84:32:5b:9d:93:4c:35:e0:42:22:
99:8e:46:f6:dd:c6:3f:08:8e:58:a1:34:00:5b:96:
6f:c6:48:ca:0d:d6:2d:5a:0a:8e:1e:30:c5:e8:1d:
c7:ed:86:25:23:72:29:86:e6:a0:cf:56:c9:1b:25:
49:55:c0:96:f2:55:54:fc:3c:4d:76:cc:8d:db:b2:
48:3a:1c:78:ea:2a:b3:e3:d6:3b:8e:23:2d:ad:36:
fc:e1:38:a9:b2:a0:37:f6:3a:4b:52:16:db:db:93:
2d:a5:0c:05:91:cd:57:6d:d2:22:5b:ba:c3:bd:fc:
64:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DA:2E:A9:F6:28:B0:28:78:FF:57:6F:2A:00:21:E1:2B:84:49:09
X509v3 Authority Key Identifier:
keyid:76:83:16:F0:88:5D:BF:BD:21:FF:F5:2D:ED:2B:87:BE:D1:53:D7:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c4935075ec435dbda09406df9fa324ff802f1d14.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/104c2bd8572cf8de7f255f0b9344f8c3f7be6bb5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/c4935075ec435dbda09406df9fa324ff802f1d14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.189.128.0/24
181.189.144.0-181.189.152.255
181.189.154.0/24
190.14.2.0-190.14.6.255
190.111.17.0/24
190.111.24.0/24
190.111.29.0/24
200.94.249.0-200.94.251.255
IPv6:
2803:3a00::/37
2803:3a00:1800::/37
Signature Algorithm: sha256WithRSAEncryption
48:76:8a:88:cc:4a:41:10:ef:9a:07:b7:55:33:61:76:a4:5c:
3f:82:2a:b5:06:37:d6:44:8f:48:b6:00:3e:60:cb:83:9b:ea:
d9:76:4e:05:4e:7b:ce:2d:6c:f4:b2:02:67:01:cc:8b:53:27:
28:f0:07:75:f5:02:d4:e1:4b:ec:e4:7c:a4:c8:9f:3a:51:c4:
85:e4:6c:f6:3f:52:82:b9:53:86:cb:99:4c:ef:fc:af:17:f1:
9b:70:6f:19:9c:11:a0:94:d1:6a:0f:1e:b5:2e:e2:23:69:bd:
d4:6f:f1:d4:e7:4b:66:27:2c:fc:eb:a9:35:70:aa:d3:ec:83:
40:b9:3b:c2:50:ec:42:b5:20:1f:30:3d:f9:1a:00:57:6c:0d:
6b:96:ae:c9:68:1f:6c:7c:c4:9d:1d:c9:b6:13:e5:e2:51:49:
53:6b:72:9d:aa:ef:e9:49:c4:0f:11:a0:7f:07:12:23:27:fa:
80:c6:b2:15:59:ce:99:f2:ec:2a:62:d2:c2:5b:ab:47:aa:4c:
91:7c:6e:6c:3a:74:aa:e9:7b:75:70:d5:aa:e3:6f:30:c1:b5:
a2:14:d1:6f:9c:57:dd:22:be:08:dc:0f:e7:b3:00:75:c5:2c:
a2:01:1f:c2:d0:dd:4c:9d:85:29:bc:c4:b2:8a:10:e8:ce:08:
c9:6f:a9:fc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:26 2024 by rpki-client on console-ams.rpki-client.org