Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/c4a3f346021d483bd8bafc5fca3316512af72b42.roa
File: c4a3f346021d483bd8bafc5fca3316512af72b42.roa (raw, json)
Hash identifier: jNB3XCHSpjABKoyp4LIoQQRE4zIazYYK3OrvH6J+Bw0=
Subject key identifier: 4F:AD:86:3A:68:DF:EE:BA:A0:A0:CD:17:1F:58:8C:5E:A1:6F:A4:E0
Certificate issuer: /CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Certificate serial: 0DEB20
Authority key identifier: DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/c4a3f346021d483bd8bafc5fca3316512af72b42.roa
Signing time: Wed 24 Mar 2021 14:34:59 +0000
ROA not before: Wed 24 Mar 2021 14:34:57 +0000
ROA not after: Tue 24 Mar 2026 14:34:57 +0000
asID: 3816
IP address blocks: 179.32.0.0/15 maxlen: 24
181.234.0.0/15 maxlen: 20
181.32.0.0/15 maxlen: 20
186.102.0.0/16 maxlen: 24
186.112.0.0/14 maxlen: 29
186.116.0.0/14 maxlen: 24
186.170.0.0/15 maxlen: 24
190.13.96.0/20 maxlen: 24
190.252.0.0/14 maxlen: 29
190.52.0.0/19 maxlen: 24
190.65.0.0/16 maxlen: 24
190.66.0.0/15 maxlen: 28
190.68.0.0/15 maxlen: 29
191.104.0.0/13 maxlen: 20
200.21.0.0/16 maxlen: 29
200.30.96.0/19 maxlen: 24
201.228.0.0/17 maxlen: 24
201.228.128.0/17 maxlen: 24
2800:680::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 912160 (0xdeb20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Validity
Not Before: Mar 24 14:34:57 2021 GMT
Not After : Mar 24 14:34:57 2026 GMT
Subject: CN=c4a3f346021d483bd8bafc5fca3316512af72b42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c2:3f:f9:c2:fa:88:17:b7:8c:89:f4:8e:81:
e5:9c:35:c7:8d:10:c3:8f:c2:9a:ac:e6:e2:bf:dd:
4c:72:b7:d0:99:8c:76:55:f7:04:8c:92:9c:48:b5:
58:c8:5c:76:c7:7a:0b:37:eb:75:2d:8b:6a:22:8e:
62:ba:86:32:68:de:8c:26:fc:f9:a8:7b:05:61:c5:
79:90:57:45:d9:34:ed:da:94:a4:1d:6d:c9:ab:00:
a9:2c:c4:4c:82:68:09:b9:08:b4:83:1d:7e:46:9d:
02:20:d0:2d:da:b2:74:42:78:07:bc:c2:c1:7b:3f:
99:4a:b8:e8:d1:1d:eb:e7:e6:7c:f0:14:13:ad:70:
bb:c1:cd:f7:53:70:54:00:d7:58:77:94:88:48:5d:
68:be:70:e0:1f:e4:90:11:4b:94:60:94:d9:b8:bf:
3b:af:41:08:92:70:0e:74:6a:f6:20:89:e8:e8:65:
99:13:9a:5c:fd:72:31:86:b1:f2:63:df:7c:57:8e:
ed:fd:75:a6:6b:1f:a5:a7:5c:c6:25:75:00:b7:53:
b1:e1:a8:1a:56:d7:50:04:06:98:b6:e6:9e:fb:f2:
93:f3:a1:55:38:f7:74:57:4b:6e:14:2a:eb:c0:a4:
4f:3d:b9:08:92:54:1e:65:0b:db:64:27:1b:2e:5d:
46:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:AD:86:3A:68:DF:EE:BA:A0:A0:CD:17:1F:58:8C:5E:A1:6F:A4:E0
X509v3 Authority Key Identifier:
keyid:DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/c4a3f346021d483bd8bafc5fca3316512af72b42.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.32.0.0/15
181.32.0.0/15
181.234.0.0/15
186.102.0.0/16
186.112.0.0/13
186.170.0.0/15
190.13.96.0/20
190.52.0.0/19
190.65.0.0-190.69.255.255
190.252.0.0/14
191.104.0.0/13
200.21.0.0/16
200.30.96.0/19
201.228.0.0/16
IPv6:
2800:680::/32
Signature Algorithm: sha256WithRSAEncryption
07:c7:93:fd:b2:8d:e1:e9:bf:e1:09:0d:76:83:bf:13:4e:49:
f8:5a:49:bd:ff:1d:12:e8:db:3b:b9:74:9c:56:2f:50:31:4f:
0a:5a:d7:21:9a:eb:f6:5c:14:16:7d:02:77:1c:a9:1d:bc:b4:
f6:24:94:29:ec:7e:f7:b8:d3:d4:49:08:51:dc:87:35:f0:f4:
7c:c3:54:cf:1e:1a:71:2f:64:9e:93:54:30:eb:46:58:14:04:
33:a5:98:12:de:a3:c1:f4:59:df:ce:ed:d5:7c:d1:84:4e:bc:
ad:e5:c4:bf:32:93:a3:78:fc:31:24:12:f7:f0:34:85:c3:e1:
36:c0:89:a0:c6:24:19:ee:5e:82:03:f1:85:9c:c0:95:2c:dc:
1f:e6:84:e3:e3:db:41:aa:4b:db:0f:13:17:34:3e:31:22:04:
5b:90:5c:9a:ad:23:89:58:0f:41:b0:91:f5:07:ba:66:0a:16:
12:b8:ae:2a:43:dd:4d:42:6a:16:d0:8d:cb:19:bc:a2:9c:71:
f0:91:d0:85:8d:e0:62:29:a7:66:36:d9:5c:61:40:10:f6:17:
d7:95:db:15:ff:fa:0c:ae:d1:27:6e:aa:47:98:56:72:10:f8:
7d:cf:8d:72:43:12:f1:32:54:f3:88:85:8f:ef:0f:9c:e7:96:
b6:f1:16:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:06 2024 by rpki-client on console-fra.rpki-client.org