Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/1d78b94aa831cbd1bb5b907cbab27a41b48187af.roa
File: 1d78b94aa831cbd1bb5b907cbab27a41b48187af.roa (raw, json)
Hash identifier: Vgc2rlTLBAIY2cmK/Mim3e8THbTO5tyZyJbOLJTaTyY=
Subject key identifier: 86:B4:D8:A4:E4:4E:CC:6A:B0:51:C3:36:D4:2E:E3:96:F0:ED:20:06
Certificate issuer: /CN=9fa677563ca5bfe6068216c74122a5d7cb2db27a
Certificate serial: 1E539E
Authority key identifier: E6:D0:FB:F5:F7:54:60:F0:31:D8:08:B8:92:07:1C:B8:BE:CA:A4:39
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9fa677563ca5bfe6068216c74122a5d7cb2db27a.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/1d78b94aa831cbd1bb5b907cbab27a41b48187af.roa
Signing time: Thu 09 Feb 2023 04:44:38 +0000
ROA not before: Tue 10 Aug 2021 03:00:00 +0000
ROA not after: Sat 12 Aug 2023 03:00:00 +0000
asID: 23243
IP address blocks: 181.189.128.0/24 maxlen: 24
181.189.144.0/21 maxlen: 24
181.189.152.0/24 maxlen: 24
181.189.154.0/24 maxlen: 24
190.14.2.0/24 maxlen: 24
190.14.3.0/24 maxlen: 24
190.14.4.0/24 maxlen: 24
190.14.5.0/24 maxlen: 24
190.14.6.0/24 maxlen: 24
190.111.17.0/24 maxlen: 24
190.111.24.0/24 maxlen: 24
190.111.29.0/24 maxlen: 24
200.94.249.0/24 maxlen: 24
200.94.250.0/24 maxlen: 24
200.94.251.0/24 maxlen: 24
2803:3a00::/37 maxlen: 48
2803:3a00:1800::/37 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1987486 (0x1e539e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fa677563ca5bfe6068216c74122a5d7cb2db27a
Validity
Not Before: Aug 10 03:00:00 2021 GMT
Not After : Aug 12 03:00:00 2023 GMT
Subject: CN=1d78b94aa831cbd1bb5b907cbab27a41b48187af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:59:bc:bc:4a:c9:66:5b:fc:73:8b:63:56:08:
16:16:0e:c9:f0:aa:28:12:02:72:df:37:17:d9:32:
34:f8:6f:55:20:b4:8c:01:7c:3a:95:2d:9b:06:de:
c2:f5:37:78:e6:be:2a:68:fb:1c:27:6b:95:22:dd:
13:f7:82:5b:a5:89:b5:68:f8:d5:27:6b:20:7d:1f:
fc:a2:17:1d:3c:45:7e:b9:7d:cd:0c:b4:20:62:ee:
6c:dd:2a:9f:e8:bc:a3:70:4a:1f:7d:e4:f5:00:1a:
3f:15:98:89:d6:97:0e:33:db:13:25:82:f0:d8:2e:
a7:df:82:d5:d8:75:9e:ca:71:0e:ef:2e:f8:a7:3d:
61:32:33:96:99:1a:80:ce:84:8c:5e:8e:6f:ad:82:
b8:a8:fc:7a:0c:50:56:ee:fc:3a:95:09:a5:e0:84:
1a:66:e4:b8:d7:9c:fd:01:d6:43:7d:0f:98:8e:5e:
da:ad:a4:03:e6:f9:78:68:bd:78:7c:3d:ed:a9:a9:
32:7f:60:04:e0:0b:15:c4:fe:63:8c:dc:17:75:2d:
96:6c:ef:f3:56:c4:37:02:c9:25:cc:1b:e4:5b:fd:
6d:7e:82:71:0d:0e:6b:2a:fa:45:60:f9:9e:b0:a6:
ae:3f:67:bb:23:a1:75:c4:ce:05:32:48:40:7f:6c:
7d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B4:D8:A4:E4:4E:CC:6A:B0:51:C3:36:D4:2E:E3:96:F0:ED:20:06
X509v3 Authority Key Identifier:
keyid:E6:D0:FB:F5:F7:54:60:F0:31:D8:08:B8:92:07:1C:B8:BE:CA:A4:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9fa677563ca5bfe6068216c74122a5d7cb2db27a.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/1d78b94aa831cbd1bb5b907cbab27a41b48187af.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/9fa677563ca5bfe6068216c74122a5d7cb2db27a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.189.128.0/24
181.189.144.0-181.189.152.255
181.189.154.0/24
190.14.2.0-190.14.6.255
190.111.17.0/24
190.111.24.0/24
190.111.29.0/24
200.94.249.0-200.94.251.255
IPv6:
2803:3a00::/37
2803:3a00:1800::/37
Signature Algorithm: sha256WithRSAEncryption
a3:b5:88:8e:55:89:a6:eb:ca:90:3b:0b:29:cb:7b:cf:34:81:
09:09:d4:62:c6:55:56:32:66:a0:97:b2:dd:03:e9:47:62:db:
ca:94:d5:9b:11:7d:3f:a7:32:d0:3b:35:94:a2:df:16:9f:e1:
ac:c9:ee:e0:34:a4:15:cf:0b:ce:7d:90:77:1d:47:64:fe:98:
8c:60:39:0e:49:cc:1a:10:7f:37:5c:c5:aa:96:2a:42:13:db:
31:74:b2:e6:aa:8e:7f:7d:8c:20:d7:27:28:9e:81:d2:f2:f5:
92:dd:30:6d:d9:7a:48:01:1d:b5:01:02:34:e5:ad:d2:10:5b:
5f:c8:7c:22:d2:45:b5:18:69:91:00:05:00:4d:08:fb:c1:06:
23:cb:e3:06:5a:c9:43:f9:cd:91:11:2a:ab:eb:fe:cb:a0:66:
7f:3b:1c:30:5e:bd:fb:c7:ce:e4:a4:25:56:0e:0b:29:f0:83:
13:c6:ee:cc:79:ef:9d:87:69:64:cd:67:14:21:c9:51:d2:03:
7c:bd:ff:a3:3c:d4:f6:26:de:53:af:b7:f6:4a:6f:52:fb:22:
28:d1:21:de:21:99:9d:d1:a7:e9:33:d1:3c:31:19:3b:6f:92:
cd:b5:00:ca:99:ec:b1:d8:54:29:84:4e:b9:3a:a7:22:5a:1d:
4d:16:0d:a2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:38 2023 by rpki-client on console-fra.rpki-client.org