Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/91c0d20010354b267618b83bad269f504eaf785c.roa
File: 91c0d20010354b267618b83bad269f504eaf785c.roa (raw, json)
Hash identifier: r0ykGMMcgAc4RjtbkI/X83/pDUn7yhB2/SM59tkQJac=
Subject key identifier: 56:D1:0A:9B:BA:33:8E:91:AE:20:BB:05:E2:70:98:CC:37:76:B2:05
Certificate issuer: /CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Certificate serial: 0D2FF0
Authority key identifier: 8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/91c0d20010354b267618b83bad269f504eaf785c.roa
Signing time: Wed 11 Oct 2023 18:28:15 +0000
ROA not before: Tue 10 Oct 2023 18:28:15 +0000
ROA not after: Sat 11 Oct 2025 18:28:15 +0000
asID: 22884
IP address blocks: 189.203.245.0/24 maxlen: 24
189.203.239.0/24 maxlen: 24
189.203.189.0/24 maxlen: 24
189.203.152.0/24 maxlen: 24
189.203.134.0/24 maxlen: 24
189.203.26.0/24 maxlen: 24
189.203.8.0/24 maxlen: 24
187.251.235.0/24 maxlen: 24
187.251.225.0/24 maxlen: 24
187.251.204.0/24 maxlen: 24
187.251.202.0/24 maxlen: 24
187.251.119.0/24 maxlen: 24
187.251.118.0/24 maxlen: 24
187.251.117.0/24 maxlen: 24
187.251.116.0/24 maxlen: 24
187.191.63.0/24 maxlen: 24
187.191.54.0/24 maxlen: 24
187.191.24.0/24 maxlen: 24
187.191.22.0/24 maxlen: 24
187.191.0.0/24 maxlen: 24
187.190.220.0/24 maxlen: 24
187.190.212.0/24 maxlen: 24
187.190.129.0/24 maxlen: 24
187.190.111.0/24 maxlen: 24
187.190.96.0/24 maxlen: 24
187.190.66.0/24 maxlen: 24
187.190.34.0/24 maxlen: 24
187.190.12.0/24 maxlen: 24
187.190.10.0/24 maxlen: 24
187.190.6.0/24 maxlen: 24
187.189.250.0/24 maxlen: 24
187.189.243.0/24 maxlen: 24
187.189.189.0/24 maxlen: 24
187.189.176.0/24 maxlen: 24
187.189.175.0/24 maxlen: 24
187.189.138.0/24 maxlen: 24
187.189.126.0/24 maxlen: 24
187.189.125.0/24 maxlen: 24
187.189.115.0/24 maxlen: 24
187.189.18.0/24 maxlen: 24
187.188.241.0/24 maxlen: 24
187.188.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 864240 (0xd2ff0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Validity
Not Before: Oct 10 18:28:15 2023 GMT
Not After : Oct 11 18:28:15 2025 GMT
Subject: CN=91c0d20010354b267618b83bad269f504eaf785c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:dd:22:6e:44:20:32:76:30:ac:ac:64:87:cc:
5b:98:41:86:bb:1d:22:41:81:cc:17:21:6b:f7:02:
67:45:c0:b4:75:35:38:0e:f4:54:97:8d:64:2c:57:
73:8f:9d:65:68:bd:bd:b8:f9:7f:99:b4:13:52:f2:
5c:53:c2:7b:57:d0:c0:60:64:c0:7b:20:ce:db:b4:
80:f0:c4:fb:21:59:ec:2e:e2:57:70:19:0f:b0:5a:
4d:04:5d:fa:b3:ac:76:bd:f6:91:fa:a1:54:a3:25:
28:93:00:9d:e5:89:0f:71:5c:c0:28:b4:76:b2:83:
33:79:1e:f9:c4:e7:10:90:ab:4e:ef:01:68:08:a3:
f3:54:89:a8:23:2c:c0:7f:01:4d:4b:8d:5d:ef:10:
52:f3:12:d0:6e:1b:71:cc:90:2c:fc:35:7a:3d:7c:
5d:16:d1:7c:9e:e8:4f:79:b0:c8:11:f3:18:e5:a7:
c1:58:ae:f0:31:75:76:a1:27:2e:d4:da:1b:3f:0f:
d1:b1:5a:73:dc:d5:c6:99:cf:06:f7:ff:f2:0e:3c:
eb:19:c5:b2:3b:52:ff:2c:00:d4:92:bd:a6:07:0f:
3d:28:bf:f3:1d:dc:6b:ad:38:ac:fb:75:b4:34:dc:
41:34:79:21:46:84:82:25:e1:eb:df:71:34:12:fd:
24:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D1:0A:9B:BA:33:8E:91:AE:20:BB:05:E2:70:98:CC:37:76:B2:05
X509v3 Authority Key Identifier:
keyid:8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/91c0d20010354b267618b83bad269f504eaf785c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.188.240.0/23
187.189.18.0/24
187.189.115.0/24
187.189.125.0-187.189.126.255
187.189.138.0/24
187.189.175.0-187.189.176.255
187.189.189.0/24
187.189.243.0/24
187.189.250.0/24
187.190.6.0/24
187.190.10.0/24
187.190.12.0/24
187.190.34.0/24
187.190.66.0/24
187.190.96.0/24
187.190.111.0/24
187.190.129.0/24
187.190.212.0/24
187.190.220.0/24
187.191.0.0/24
187.191.22.0/24
187.191.24.0/24
187.191.54.0/24
187.191.63.0/24
187.251.116.0/22
187.251.202.0/24
187.251.204.0/24
187.251.225.0/24
187.251.235.0/24
189.203.8.0/24
189.203.26.0/24
189.203.134.0/24
189.203.152.0/24
189.203.189.0/24
189.203.239.0/24
189.203.245.0/24
Signature Algorithm: sha256WithRSAEncryption
45:be:f5:b5:37:ed:7d:ad:38:99:63:6d:05:25:41:80:ea:4e:
9c:08:a4:14:ec:5e:8d:07:e1:1b:2e:5d:3a:99:55:2c:2b:2a:
fc:92:0f:4d:51:e6:8f:1f:5f:bf:ca:45:2b:26:3d:ce:e1:b3:
81:d4:8b:ab:72:7c:d2:b1:80:64:f4:2b:92:c3:21:42:3f:6d:
0b:94:da:e3:44:e6:2c:2c:91:1b:c0:c2:7c:33:ff:53:81:46:
b8:55:b4:70:ea:b5:39:0f:4e:83:06:5a:36:83:cd:58:b4:30:
51:1c:88:d8:ba:4e:a6:16:a4:5e:b8:a3:21:f8:da:30:31:6f:
00:e0:f0:a1:13:7b:d3:a9:d4:b6:20:ea:9e:71:0b:e6:03:15:
a8:d4:f7:40:50:8a:1c:23:66:f8:a7:b1:c1:80:1e:c3:24:10:
66:5d:b7:f8:8c:f7:4b:b7:89:d4:e9:a6:a7:f6:50:38:9a:77:
70:4b:e5:95:cb:79:0c:4b:57:1a:09:35:1f:bc:5b:48:1f:43:
cc:06:b0:56:51:79:ad:26:0f:22:12:f9:e2:fb:78:d0:47:cc:
ae:b7:29:b4:c8:7d:c7:30:22:c2:37:93:b7:6b:af:8d:73:7a:
0d:09:63:9d:c3:22:cb:ce:bb:3e:3a:32:8d:4f:30:43:f8:2a:
e3:3e:77:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:07 2024 by rpki-client on console-fra.rpki-client.org