Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/aff9325c3d3b59811e85e90ba84c219f480f9339.roa
File: aff9325c3d3b59811e85e90ba84c219f480f9339.roa (raw, json)
Hash identifier: iNcbAhJzRwcbKwsETu7k4PJcglz2SuQzo6CNrdjce4w=
Subject key identifier: 43:68:6D:AF:06:9C:D0:F5:32:4E:FD:28:6C:CD:7E:68:70:3D:08:CF
Certificate issuer: /CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Certificate serial: 1FDD25
Authority key identifier: DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/aff9325c3d3b59811e85e90ba84c219f480f9339.roa
Signing time: Wed 04 Jan 2023 14:14:46 +0000
ROA not before: Sun 25 Sep 2022 14:11:28 +0000
ROA not after: Fri 27 Sep 2024 14:11:28 +0000
asID: 3816
IP address blocks: 186.170.0.0/22 maxlen: 22
186.170.4.0/22 maxlen: 22
186.170.8.0/22 maxlen: 22
186.170.12.0/22 maxlen: 22
186.170.16.0/22 maxlen: 22
186.170.20.0/22 maxlen: 22
186.170.24.0/22 maxlen: 22
186.170.28.0/24 maxlen: 24
186.170.29.0/24 maxlen: 24
186.170.30.0/24 maxlen: 24
186.170.31.0/24 maxlen: 24
186.170.32.0/19 maxlen: 19
186.170.64.0/21 maxlen: 21
186.170.72.0/21 maxlen: 21
186.170.80.0/22 maxlen: 22
186.170.84.0/22 maxlen: 22
186.170.88.0/24 maxlen: 24
186.170.89.0/24 maxlen: 24
186.170.90.0/24 maxlen: 24
186.170.91.0/24 maxlen: 24
186.170.92.0/24 maxlen: 24
186.170.93.0/24 maxlen: 24
186.170.94.0/24 maxlen: 24
186.170.96.0/19 maxlen: 19
186.170.128.0/19 maxlen: 19
186.170.160.0/19 maxlen: 19
186.170.192.0/20 maxlen: 20
186.170.208.0/20 maxlen: 20
186.170.224.0/19 maxlen: 19
186.171.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2088229 (0x1fdd25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Validity
Not Before: Sep 25 14:11:28 2022 GMT
Not After : Sep 27 14:11:28 2024 GMT
Subject: CN=aff9325c3d3b59811e85e90ba84c219f480f9339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:65:fc:80:5e:f0:f3:d1:f3:df:5f:46:e9:38:
02:59:f8:55:1e:68:18:d1:c1:83:17:33:d5:11:8a:
4d:20:48:2c:e6:7a:9e:8d:9a:9a:a5:9f:55:4c:02:
f3:f2:04:ac:e3:ba:84:d6:09:f4:99:30:45:a7:b4:
21:b7:3f:89:36:96:03:61:17:41:10:8d:b6:04:e9:
42:86:71:e0:8f:7f:80:94:9b:d0:e7:f9:75:82:eb:
69:59:55:0e:b9:f6:b9:07:24:9d:10:c7:e8:c4:a4:
bb:a4:50:61:69:73:da:f1:8d:ce:c3:b0:00:de:a3:
d7:cb:7b:78:c8:18:53:12:2d:85:03:6b:ba:b0:d8:
b7:e1:4c:5f:60:21:b3:9b:9c:5c:a3:b2:0e:0b:eb:
d5:18:cb:2c:6e:56:50:ee:72:29:fc:20:c6:b4:ff:
8c:76:be:83:0d:cc:9f:ea:40:1b:53:8d:fd:1a:c8:
3f:ec:c6:79:6b:dd:25:55:bf:9b:21:b7:90:64:f2:
67:d5:7c:8d:e0:ce:44:66:d1:f6:49:1a:c5:88:77:
76:8a:46:0d:f0:e4:6a:c9:b8:b1:00:33:9f:e5:ee:
0f:1a:db:11:76:36:12:f5:ce:a8:64:41:40:17:5b:
79:50:dc:12:4c:e3:cd:84:f3:e5:67:f0:86:4e:99:
8e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:68:6D:AF:06:9C:D0:F5:32:4E:FD:28:6C:CD:7E:68:70:3D:08:CF
X509v3 Authority Key Identifier:
keyid:DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/aff9325c3d3b59811e85e90ba84c219f480f9339.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.170.0.0-186.170.94.255
186.170.96.0-186.171.127.255
Signature Algorithm: sha256WithRSAEncryption
03:d6:f0:2f:df:ef:c7:db:4c:2d:09:47:00:87:06:02:ea:1c:
73:2a:8f:83:73:35:de:d3:59:9d:ca:c7:e2:64:3c:6c:da:3d:
35:ba:53:c7:3f:5b:eb:b0:ea:a0:dc:dc:a0:89:96:79:77:a2:
df:e2:c1:0b:1f:2d:24:ad:54:ab:0f:29:fc:8f:e4:21:43:92:
a1:9f:2e:d5:e0:a3:0f:3f:e4:2f:4c:35:a9:4b:eb:ff:b1:9d:
c1:38:3c:cb:67:f6:ed:eb:0d:1f:9a:8b:d2:fb:32:91:33:1c:
ae:1d:d8:b5:00:b4:ef:0c:93:cb:a1:f0:26:3d:1e:b8:fe:c9:
51:55:2c:04:40:95:1d:95:e1:4c:67:0e:21:a4:e0:7b:ce:af:
4a:48:83:05:b0:57:34:26:76:38:e4:29:bc:54:e3:2d:10:0a:
e4:f0:7d:81:ba:6c:ca:57:9d:41:28:ea:85:4d:5a:3b:b9:dc:
dc:56:57:81:56:a4:9c:6e:7c:02:b2:f3:c6:97:95:bc:06:ef:
93:cf:24:0c:11:c5:30:e1:c8:23:55:15:a8:21:0f:fe:76:a7:
83:c5:ae:70:24:4a:e9:8e:df:e4:81:5a:3f:8f:ec:92:58:9f:
30:9a:ea:8c:6c:46:d5:ab:11:40:d7:ba:84:fd:bc:e7:3f:3d:
33:6d:a3:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:06 2024 by rpki-client on console-fra.rpki-client.org