Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/c48e3adb4a01dbcc7e178b8fa7730d177fcd7b6f.roa
File: c48e3adb4a01dbcc7e178b8fa7730d177fcd7b6f.roa (raw, json)
Hash identifier: 1apn/ALGLu26aBTv1pTJjBjgXKbuVphWuW+yxM5txEI=
Subject key identifier: 8A:BF:E1:34:67:B0:99:73:06:FF:9E:27:90:13:B7:B1:96:99:52:44
Certificate issuer: /CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Certificate serial: 0D48FF
Authority key identifier: 8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/c48e3adb4a01dbcc7e178b8fa7730d177fcd7b6f.roa
Signing time: Wed 11 Oct 2023 20:25:00 +0000
ROA not before: Tue 10 Oct 2023 20:25:00 +0000
ROA not after: Sat 11 Oct 2025 20:25:00 +0000
asID: 22884
IP address blocks: 189.203.255.0/24 maxlen: 24
189.203.253.0/24 maxlen: 24
189.203.250.0/24 maxlen: 24
189.203.247.0/24 maxlen: 24
189.203.246.0/24 maxlen: 24
189.203.244.0/24 maxlen: 24
189.203.243.0/24 maxlen: 24
189.203.242.0/24 maxlen: 24
189.203.233.0/24 maxlen: 24
189.203.230.0/24 maxlen: 24
189.203.225.0/24 maxlen: 24
189.203.224.0/24 maxlen: 24
189.203.213.0/24 maxlen: 24
189.203.212.0/24 maxlen: 24
189.203.208.0/24 maxlen: 24
189.203.202.0/24 maxlen: 24
189.203.201.0/24 maxlen: 24
189.203.196.0/24 maxlen: 24
189.203.191.0/24 maxlen: 24
189.203.190.0/24 maxlen: 24
189.203.183.0/24 maxlen: 24
189.203.180.0/24 maxlen: 24
189.203.178.0/24 maxlen: 24
189.203.176.0/24 maxlen: 24
189.203.175.0/24 maxlen: 24
189.203.172.0/24 maxlen: 24
189.203.163.0/24 maxlen: 24
189.203.162.0/24 maxlen: 24
189.203.161.0/24 maxlen: 24
189.203.159.0/24 maxlen: 24
189.203.157.0/24 maxlen: 24
189.203.153.0/24 maxlen: 24
189.203.144.0/24 maxlen: 24
189.203.143.0/24 maxlen: 24
189.203.142.0/24 maxlen: 24
189.203.141.0/24 maxlen: 24
189.203.78.0/24 maxlen: 24
189.203.77.0/24 maxlen: 24
189.203.76.0/24 maxlen: 24
189.203.73.0/24 maxlen: 24
189.203.33.0/24 maxlen: 24
189.203.23.0/24 maxlen: 24
189.203.14.0/24 maxlen: 24
189.203.10.0/24 maxlen: 24
189.203.9.0/24 maxlen: 24
187.251.240.0/24 maxlen: 24
187.251.232.0/24 maxlen: 24
187.251.230.0/24 maxlen: 24
187.251.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870655 (0xd48ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Validity
Not Before: Oct 10 20:25:00 2023 GMT
Not After : Oct 11 20:25:00 2025 GMT
Subject: CN=c48e3adb4a01dbcc7e178b8fa7730d177fcd7b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:74:c9:81:a4:c3:10:cb:fe:66:a5:74:53:cd:
ef:9c:5d:56:6d:51:cc:79:79:a3:df:07:cf:10:b9:
26:ba:cd:77:9c:14:6b:fc:a4:35:cf:b5:29:b7:f7:
bf:59:aa:0b:66:64:a5:94:f6:31:a0:c3:5f:0e:5d:
2d:45:ab:6e:99:0c:be:47:5b:80:6a:5e:95:80:88:
36:0d:69:ea:6e:83:f6:e2:39:1c:48:71:7b:11:66:
a9:87:46:ad:ce:54:f2:c1:c8:9a:13:36:2a:fc:7d:
55:fc:11:e4:77:fd:25:83:6e:a0:a5:c2:8a:11:0f:
91:e5:dc:d3:d7:36:50:f8:0c:58:ee:92:35:78:cb:
3a:69:3f:6b:85:ce:73:ec:8d:7a:09:9a:f2:e7:b9:
16:74:3f:f9:fe:e5:33:3d:a3:cd:9c:ec:a2:51:af:
97:48:44:8d:f7:e4:f7:fb:d9:5c:c9:67:b9:29:54:
3b:3e:3f:e1:36:2b:73:9c:8c:32:06:4b:1f:99:a2:
ee:0f:52:26:56:c3:c6:63:29:9e:59:39:04:d8:4c:
17:fd:c9:a2:32:b3:af:d9:97:35:e6:00:b9:e2:ee:
b1:c0:1b:75:c1:a7:8d:a6:7a:2f:8b:93:ac:69:f6:
31:97:ba:5d:7a:0b:0d:21:ee:be:3e:29:4c:d8:8e:
57:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BF:E1:34:67:B0:99:73:06:FF:9E:27:90:13:B7:B1:96:99:52:44
X509v3 Authority Key Identifier:
keyid:8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/c48e3adb4a01dbcc7e178b8fa7730d177fcd7b6f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.251.227.0/24
187.251.230.0/24
187.251.232.0/24
187.251.240.0/24
189.203.9.0-189.203.10.255
189.203.14.0/24
189.203.23.0/24
189.203.33.0/24
189.203.73.0/24
189.203.76.0-189.203.78.255
189.203.141.0-189.203.144.255
189.203.153.0/24
189.203.157.0/24
189.203.159.0/24
189.203.161.0-189.203.163.255
189.203.172.0/24
189.203.175.0-189.203.176.255
189.203.178.0/24
189.203.180.0/24
189.203.183.0/24
189.203.190.0/23
189.203.196.0/24
189.203.201.0-189.203.202.255
189.203.208.0/24
189.203.212.0/23
189.203.224.0/23
189.203.230.0/24
189.203.233.0/24
189.203.242.0-189.203.244.255
189.203.246.0/23
189.203.250.0/24
189.203.253.0/24
189.203.255.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:c1:6d:e7:31:ee:2d:4a:ca:2b:17:87:ed:00:ee:9f:ae:9c:
c8:15:8e:66:ba:7e:f0:6f:94:02:c9:3f:db:3c:51:cc:50:ba:
19:39:76:93:88:e7:53:0f:b9:52:bc:bd:18:16:e3:6f:81:8f:
ea:c0:af:58:f3:4c:b6:cf:0d:89:ef:e9:b7:c2:32:ce:ea:66:
7f:a0:6d:30:4e:ab:96:57:5c:61:ec:1a:39:ca:1b:82:04:a6:
0c:63:7b:e9:3a:48:d5:b3:7e:1d:ea:26:79:ec:53:c9:4a:7e:
d4:a3:d2:ac:e3:67:78:30:b9:68:79:af:9f:a9:16:f7:00:e5:
34:e3:b6:d2:ed:a3:43:40:23:e5:28:b4:ac:8a:12:77:e0:e2:
f3:86:e2:2c:ed:74:b3:9d:15:1a:ea:c1:28:87:56:2a:21:39:
d5:be:0c:bf:d1:26:2a:eb:89:ef:9c:9b:d0:45:d9:42:7b:1c:
d7:b3:bb:b2:da:e9:ba:6d:94:de:9c:70:6d:f4:8a:61:11:f5:
9e:07:84:bd:b5:44:a0:a6:49:d0:a5:01:60:13:4f:3c:f9:4f:
6e:59:8c:91:98:6b:1d:b9:ff:28:c8:ae:c9:1d:fe:fb:37:be:
56:ec:a1:84:2f:bc:91:5d:a8:56:77:e8:71:07:a2:6f:25:5d:
8a:e6:2f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:48 2024 by rpki-client on console-ams.rpki-client.org