Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c102fa88-a0c3-438b-b62f-6c4ad3d7ae5e/925d61452dc6c9b912758447e70f168a3a5500a2.roa
File: 925d61452dc6c9b912758447e70f168a3a5500a2.roa (raw, json)
Hash identifier: Pgsi73sWxLVUPdv97TMqEddOuj5zv6f0cbjamizv2Fw=
Subject key identifier: 46:B7:07:82:1F:63:76:D1:E2:99:BB:F6:C8:55:41:9D:E8:D6:EA:05
Certificate issuer: /CN=af916a8098c48f9f0fefd791512ee124a99ce09d
Certificate serial: 120AEA
Authority key identifier: 72:51:EE:4E:B7:2D:E8:EB:21:05:10:5C:13:54:28:D2:1B:65:6E:20
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/af916a8098c48f9f0fefd791512ee124a99ce09d.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c102fa88-a0c3-438b-b62f-6c4ad3d7ae5e/925d61452dc6c9b912758447e70f168a3a5500a2.roa
Signing time: Wed 09 Aug 2023 08:30:01 +0000
ROA not before: Tue 08 Aug 2023 08:30:01 +0000
ROA not after: Thu 07 Aug 2025 08:30:01 +0000
asID: 20191
IP address blocks: 146.155.0.0/16 maxlen: 24
146.155.1.0/24 maxlen: 24
146.155.2.0/24 maxlen: 24
146.155.25.0/24 maxlen: 24
146.155.39.0/24 maxlen: 24
146.155.49.0/24 maxlen: 24
146.155.60.0/24 maxlen: 24
146.155.73.0/24 maxlen: 24
146.155.75.0/24 maxlen: 24
146.155.77.0/24 maxlen: 24
146.155.89.0/24 maxlen: 24
146.155.92.0/24 maxlen: 24
146.155.94.0/24 maxlen: 24
146.155.95.0/24 maxlen: 24
146.155.96.0/24 maxlen: 24
146.155.97.0/24 maxlen: 24
146.155.99.0/24 maxlen: 24
146.155.100.0/24 maxlen: 24
146.155.109.0/24 maxlen: 24
146.155.117.0/24 maxlen: 24
146.155.118.0/24 maxlen: 24
146.155.119.0/24 maxlen: 24
146.155.122.0/24 maxlen: 24
146.155.123.0/24 maxlen: 24
146.155.127.0/24 maxlen: 24
146.155.157.0/24 maxlen: 24
146.155.158.0/24 maxlen: 24
146.155.160.0/23 maxlen: 23
2800:1b0::/32 maxlen: 48
2800:1b0:5000::/36 maxlen: 36
2800:1b0:6000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1182442 (0x120aea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af916a8098c48f9f0fefd791512ee124a99ce09d
Validity
Not Before: Aug 8 08:30:01 2023 GMT
Not After : Aug 7 08:30:01 2025 GMT
Subject: CN=925d61452dc6c9b912758447e70f168a3a5500a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:90:0b:c6:a2:b2:98:77:a1:0c:41:6a:6d:a2:
e2:4e:c2:74:4a:12:d8:13:91:ee:7a:e8:80:28:86:
8c:e4:1d:1e:d5:92:a0:13:5b:58:9b:e9:5a:fc:da:
f3:3c:06:57:0d:72:00:89:ec:19:ba:28:8a:d7:a3:
80:c7:24:0c:74:4b:e0:d0:a4:9d:9e:08:23:b5:83:
2a:32:be:4d:eb:e8:2b:0a:c8:2f:3e:1a:36:12:b8:
c5:be:a9:78:b6:d4:f4:64:da:6c:62:08:0a:e0:fd:
85:b3:cc:cc:9a:2b:b7:14:a1:ad:81:f4:5b:b6:c1:
64:7e:02:bc:5f:6a:8d:78:18:99:2e:67:3f:7a:0a:
60:56:a8:84:44:7e:a6:48:c7:a2:42:3f:4b:48:97:
41:26:c0:7a:57:f2:71:9a:57:d7:7f:9a:0a:8a:a2:
09:81:66:ea:37:ca:1b:22:29:c7:89:77:5b:52:e8:
94:8b:0d:da:7d:ac:a9:c0:ae:7e:f4:ba:e1:de:3a:
08:54:c1:4c:63:06:68:cc:ea:c4:9f:99:ad:08:66:
95:d6:0a:2d:91:1e:2e:10:1f:94:5e:e8:8d:5f:ed:
26:c6:4f:27:9e:8b:ff:1c:86:3e:15:1f:f5:ee:31:
28:af:2d:f1:e6:11:4e:0a:a3:a0:85:66:e0:6d:11:
6c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:B7:07:82:1F:63:76:D1:E2:99:BB:F6:C8:55:41:9D:E8:D6:EA:05
X509v3 Authority Key Identifier:
keyid:72:51:EE:4E:B7:2D:E8:EB:21:05:10:5C:13:54:28:D2:1B:65:6E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/af916a8098c48f9f0fefd791512ee124a99ce09d.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c102fa88-a0c3-438b-b62f-6c4ad3d7ae5e/925d61452dc6c9b912758447e70f168a3a5500a2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c102fa88-a0c3-438b-b62f-6c4ad3d7ae5e/af916a8098c48f9f0fefd791512ee124a99ce09d.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.155.0.0/16
IPv6:
2800:1b0::/32
Signature Algorithm: sha256WithRSAEncryption
6b:9f:34:6c:e6:ac:09:2f:42:a8:29:b5:07:2e:9d:90:d6:6d:
c3:49:1a:73:b9:dd:b1:48:7c:b3:6e:2d:fc:6f:c4:fa:20:62:
86:e9:7f:05:46:d1:f6:89:64:96:5a:fb:0f:76:0a:0c:62:6f:
8c:1a:c5:5e:73:93:a5:e5:00:c8:fe:7e:20:6c:c5:84:d7:12:
14:81:86:9a:f8:aa:f5:b2:c0:48:8c:05:6d:4f:8e:ec:2e:42:
49:6c:84:ea:00:4d:45:46:49:7f:94:7a:70:eb:11:77:90:6e:
72:d2:8a:b0:ec:6b:66:5e:5e:94:d8:b9:ed:e0:53:37:7b:26:
fd:12:5a:55:97:8b:1c:e7:ce:d8:aa:d5:a9:98:71:d1:12:b8:
c5:b1:9c:26:44:9f:70:ca:13:d5:68:5d:bf:b3:af:3b:25:9a:
3f:19:c6:57:d7:ff:dd:1b:c3:c3:9f:a7:c0:d8:d8:90:ba:bd:
3d:d4:c5:39:36:cb:80:65:f7:fa:00:a3:e5:0f:4d:61:84:6e:
7c:96:f6:61:31:3b:d4:6e:b0:ee:3f:ee:31:35:27:2d:71:3a:
02:8d:b3:d3:b9:a2:61:e0:46:09:ca:b7:c6:c3:24:9c:4f:f8:
8c:9f:17:bb:72:45:49:1b:5e:af:fa:23:09:dc:46:00:8c:74:
22:fc:b6:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:47 2024 by rpki-client on console-ams.rpki-client.org