Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/7afde75d216095354da30dd6d3a1c11af3f650ee.roa
File: 7afde75d216095354da30dd6d3a1c11af3f650ee.roa (raw, json)
Hash identifier: QfsmbmwrDwj54JmDPlIhZTimn2LPM2q7HtreQ+7Bg6E=
Subject key identifier: 38:92:84:67:23:81:7B:FB:79:57:91:44:BA:DD:EE:71:2C:67:84:4D
Certificate issuer: /CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Certificate serial: 0CB606
Authority key identifier: 8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/7afde75d216095354da30dd6d3a1c11af3f650ee.roa
Signing time: Wed 27 Sep 2023 18:15:40 +0000
ROA not before: Tue 26 Sep 2023 18:15:39 +0000
ROA not after: Sat 27 Sep 2025 18:15:39 +0000
asID: 17072
IP address blocks: 187.189.40.0/24 maxlen: 24
187.189.41.0/24 maxlen: 24
187.190.18.0/24 maxlen: 24
187.190.19.0/24 maxlen: 24
187.190.30.0/24 maxlen: 24
187.190.31.0/24 maxlen: 24
187.190.78.0/24 maxlen: 24
187.190.79.0/24 maxlen: 24
187.190.132.0/24 maxlen: 24
187.190.133.0/24 maxlen: 24
187.190.172.0/24 maxlen: 24
187.190.173.0/24 maxlen: 24
187.190.176.0/24 maxlen: 24
187.190.177.0/24 maxlen: 24
187.190.178.0/24 maxlen: 24
187.190.179.0/24 maxlen: 24
187.190.180.0/24 maxlen: 24
187.190.181.0/24 maxlen: 24
189.203.148.0/24 maxlen: 24
189.203.158.0/24 maxlen: 24
189.203.182.0/24 maxlen: 24
189.203.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 833030 (0xcb606)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Validity
Not Before: Sep 26 18:15:39 2023 GMT
Not After : Sep 27 18:15:39 2025 GMT
Subject: CN=7afde75d216095354da30dd6d3a1c11af3f650ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:74:83:f5:97:e4:11:3d:3f:e4:4b:d7:9b:17:
d6:2a:fe:aa:8c:c4:d8:b5:bf:07:4f:8b:40:36:cc:
48:dc:86:11:bf:82:c2:45:eb:95:62:a1:2b:77:0c:
ce:8d:a2:04:7e:f8:43:73:f6:cd:ff:6c:10:9d:1d:
41:bc:da:76:fb:87:ca:18:55:a4:1c:49:6f:53:68:
e5:6e:12:2c:f5:48:ff:38:f4:57:ae:79:59:e0:1e:
4a:35:68:ca:8b:8c:43:00:4e:b2:b7:40:c5:3b:50:
aa:bb:91:0a:9b:d3:a2:cc:f4:dd:11:c0:d2:e8:46:
c8:4c:bd:de:aa:b6:18:d1:f1:3e:d2:d0:15:67:0a:
2b:b3:f9:6b:03:a4:fe:91:63:e7:3b:21:87:97:b5:
57:09:84:4f:dd:ba:6a:2d:fd:94:ec:4f:76:14:ab:
0f:15:c9:66:ae:46:6a:81:63:11:de:f2:d7:fa:5b:
a3:48:48:a1:07:ba:92:5b:84:0b:50:8c:00:a0:40:
67:fb:d0:68:d5:18:83:f4:17:c0:b5:cf:1b:8a:c9:
52:0a:d2:21:1e:7f:70:b0:56:10:71:92:ab:15:e6:
f2:2e:ca:12:b0:9d:c9:d9:d0:20:6f:2b:6b:4b:d8:
4b:ec:75:48:5e:0a:7e:2d:c1:ee:5e:ae:20:58:4e:
7c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:92:84:67:23:81:7B:FB:79:57:91:44:BA:DD:EE:71:2C:67:84:4D
X509v3 Authority Key Identifier:
keyid:8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/7afde75d216095354da30dd6d3a1c11af3f650ee.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.189.40.0/23
187.190.18.0/23
187.190.30.0/23
187.190.78.0/23
187.190.132.0/23
187.190.172.0/23
187.190.176.0-187.190.181.255
189.203.148.0/24
189.203.158.0/24
189.203.182.0/24
189.203.185.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:08:0a:2d:17:33:67:70:06:39:ca:a0:86:cd:7c:83:e6:a4:
ff:ba:b5:2b:d6:73:fe:f9:a9:fe:db:89:d2:d1:41:3e:b8:48:
41:08:16:7b:f9:66:15:a9:25:ad:37:00:2f:22:0c:d6:d3:bb:
4d:84:0f:7c:46:61:74:79:3a:0f:0f:4e:7c:83:c1:c6:ff:95:
44:e7:e7:7f:7e:98:e3:e9:67:97:a7:3a:15:cd:08:6c:78:d3:
2f:00:8c:61:12:b7:df:6b:fa:42:fe:57:d2:1d:57:18:60:aa:
54:8a:80:85:c8:f4:52:c0:a7:a7:b5:a6:62:3f:71:43:35:3e:
ec:b8:65:a4:ba:16:a6:e0:73:5b:8e:08:03:a4:52:e8:35:57:
0c:a1:ca:33:e6:c8:58:37:be:a4:d3:48:ab:a3:1a:d7:53:03:
53:33:54:e8:10:44:2a:ce:3b:6e:95:95:12:d2:9b:08:d7:33:
8c:59:66:6f:b9:c5:34:cc:1f:b8:2a:47:ab:d5:29:e4:55:c9:
ef:a7:f6:f6:70:b8:d2:51:08:22:b1:92:3a:9f:56:4c:59:c3:
40:34:b8:69:fc:09:0c:cc:92:7a:0e:d3:8c:bc:57:41:c4:36:
d7:b7:35:18:d4:31:5d:3e:39:a9:fb:85:be:e1:a1:d2:95:3a:
f4:b8:45:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:33 2024 by rpki-client on console-ams.rpki-client.org