Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/07a48ff31f1697c75342b9b7651331c941bbd12b.roa
File: 07a48ff31f1697c75342b9b7651331c941bbd12b.roa (raw, json)
Hash identifier: NczMfXRFXAJXVVdHUwLvCOjkfwsc8c4F1x8n20/ak8Q=
Subject key identifier: 6A:59:1E:F1:24:43:8B:24:D3:F5:7A:02:30:22:A2:3F:1F:10:8A:57
Certificate issuer: /CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Certificate serial: 0B4B60
Authority key identifier: 8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/07a48ff31f1697c75342b9b7651331c941bbd12b.roa
Signing time: Thu 10 Aug 2023 06:57:29 +0000
ROA not before: Wed 09 Aug 2023 06:57:28 +0000
ROA not after: Sun 10 Aug 2025 06:57:28 +0000
asID: 22884
IP address blocks: 186.96.3.0/24 maxlen: 24
186.96.6.0/23 maxlen: 24
186.96.12.0/24 maxlen: 24
186.96.20.0/23 maxlen: 24
186.96.33.0/24 maxlen: 24
186.96.35.0/24 maxlen: 24
186.96.36.0/23 maxlen: 24
186.96.43.0/24 maxlen: 24
186.96.60.0/24 maxlen: 24
186.96.130.0/24 maxlen: 24
186.96.154.0/24 maxlen: 24
186.96.160.0/23 maxlen: 24
186.96.170.0/24 maxlen: 24
186.96.181.0/24 maxlen: 24
186.96.183.0/24 maxlen: 24
186.96.187.0/24 maxlen: 24
187.188.15.0/24 maxlen: 24
187.188.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 740192 (0xb4b60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Validity
Not Before: Aug 9 06:57:28 2023 GMT
Not After : Aug 10 06:57:28 2025 GMT
Subject: CN=07a48ff31f1697c75342b9b7651331c941bbd12b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a6:ea:63:4c:d8:52:b0:b0:6c:88:4d:60:b2:
33:8a:5d:f3:25:2f:61:e9:3a:d0:59:5a:33:be:95:
7b:c0:22:fe:93:f1:cb:57:a2:58:81:3a:c1:a7:6f:
9a:12:98:a7:c2:12:37:ef:52:84:95:58:79:c3:5a:
75:2c:76:81:00:17:de:3f:cd:4e:a2:2e:b9:d7:2d:
f4:d5:e1:25:14:59:7b:1b:3b:71:3f:66:09:30:89:
36:46:dd:c3:23:b2:ef:29:e3:5a:2c:b8:3d:8f:e7:
6a:de:9c:76:01:39:55:40:25:71:93:a4:f6:98:d5:
1f:6b:dd:5d:53:3d:5e:81:3d:99:97:db:f0:1f:b0:
af:0e:b5:ef:d2:b4:0d:6f:10:96:af:ee:48:a9:b2:
fd:ef:6d:7e:0b:32:e0:15:b7:74:04:0b:d9:09:53:
c2:34:43:f1:4b:73:9c:17:d6:cf:cd:c2:11:90:68:
10:c6:d0:f7:20:a2:83:40:5e:bc:17:7d:37:38:be:
c2:4b:d7:44:54:80:1b:a7:57:a8:df:4a:1f:80:f1:
76:ea:59:9f:4b:9f:dc:06:30:60:82:68:32:78:43:
95:60:65:a9:87:bf:db:c9:28:8d:a7:9b:62:20:ab:
32:5c:6b:a5:41:b3:1a:e1:2d:d0:4d:74:87:4f:1f:
30:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:59:1E:F1:24:43:8B:24:D3:F5:7A:02:30:22:A2:3F:1F:10:8A:57
X509v3 Authority Key Identifier:
keyid:8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/07a48ff31f1697c75342b9b7651331c941bbd12b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.96.3.0/24
186.96.6.0/23
186.96.12.0/24
186.96.20.0/23
186.96.33.0/24
186.96.35.0-186.96.37.255
186.96.43.0/24
186.96.60.0/24
186.96.130.0/24
186.96.154.0/24
186.96.160.0/23
186.96.170.0/24
186.96.181.0/24
186.96.183.0/24
186.96.187.0/24
187.188.15.0-187.188.16.255
Signature Algorithm: sha256WithRSAEncryption
86:1c:5e:05:32:ad:d7:d7:bd:45:43:4b:d9:a9:95:17:49:31:
20:10:2e:4c:f9:bb:f4:a0:8d:e8:f3:a0:4c:73:d1:67:56:65:
cd:a9:00:a2:82:6b:06:01:c4:d7:a7:ae:10:37:42:a4:8e:d0:
44:6c:5e:56:76:c0:30:d0:bb:ed:b6:0a:e7:62:26:48:b6:75:
e7:31:88:be:86:86:a2:42:a8:f0:65:a3:2d:c5:e2:36:d7:7d:
70:bf:c5:2e:53:1d:d3:d1:6c:16:9d:76:ed:fc:e7:e8:14:2e:
dd:e7:36:d7:53:f2:53:cf:bc:a1:51:b4:d0:80:0b:2d:f7:7d:
59:21:c8:97:ed:4e:f7:64:e8:77:e6:1f:d2:d8:15:d6:72:d0:
f1:69:40:3c:59:0a:e8:23:01:7e:e3:ec:87:d1:5e:27:5b:f6:
e2:af:21:7c:3b:46:99:1c:a7:e3:04:88:8a:2e:01:f6:19:43:
31:8b:8e:2a:be:32:ba:75:95:35:5f:fb:cb:1c:84:59:0b:ec:
c9:d0:c0:c0:b2:31:6d:25:90:9d:ed:2f:2e:48:09:0c:fb:ee:
2a:58:04:da:87:2b:0f:3b:97:b6:44:7f:84:8c:62:a0:9f:53:
1e:10:1a:ca:e8:8f:92:28:56:e7:86:96:d8:fd:de:1f:83:ed:
77:74:e7:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:33 2024 by rpki-client on console-ams.rpki-client.org