Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/df81cc00dfbb10427346d20ea6beb807a9bc520d.roa
File: df81cc00dfbb10427346d20ea6beb807a9bc520d.roa (raw, json)
Hash identifier: 8gds3BOonKWP/+GE5rB0B0X8vHYBlQeIiikJHdynklk=
Subject key identifier: A0:0A:33:4E:29:0C:F3:A4:AB:F8:DD:8D:EF:7C:E1:B3:5D:66:4E:22
Certificate issuer: /CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Certificate serial: 08BA45
Authority key identifier: 8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/df81cc00dfbb10427346d20ea6beb807a9bc520d.roa
Signing time: Fri 05 May 2023 19:02:39 +0000
ROA not before: Thu 04 May 2023 19:02:39 +0000
ROA not after: Mon 05 May 2025 19:02:39 +0000
asID: 17072
IP address blocks: 187.189.29.0/24 maxlen: 24
187.189.34.0/24 maxlen: 24
187.189.217.0/24 maxlen: 24
187.191.49.0/24 maxlen: 24
189.203.34.0/24 maxlen: 24
189.203.69.0/24 maxlen: 24
187.188.39.0/24 maxlen: 24
187.188.51.0/24 maxlen: 24
187.188.59.0/24 maxlen: 24
187.188.242.0/24 maxlen: 24
187.190.138.0/24 maxlen: 24
187.190.242.0/24 maxlen: 24
187.190.136.0/24 maxlen: 24
187.190.140.0/24 maxlen: 24
187.190.211.0/24 maxlen: 24
187.190.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 571973 (0x8ba45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Validity
Not Before: May 4 19:02:39 2023 GMT
Not After : May 5 19:02:39 2025 GMT
Subject: CN=df81cc00dfbb10427346d20ea6beb807a9bc520d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ff:7c:a9:b4:0e:2f:ef:6a:9f:87:08:70:04:
ab:b9:44:04:11:51:a9:12:a3:2a:4f:10:dd:66:5b:
6f:3f:4e:32:7f:fc:a5:e3:8b:f8:00:74:45:64:3f:
8e:df:2f:17:bc:c4:6f:7f:8b:cb:6b:b8:4a:fa:29:
62:47:78:86:6c:ad:4e:98:61:b3:8d:b0:e9:7c:43:
9d:58:24:ca:7f:6f:ae:3d:ff:b1:e7:b1:51:d1:2d:
92:16:25:4b:07:3b:1a:c4:9b:00:d0:d8:94:0b:90:
1d:77:c1:7d:36:a9:1c:81:92:e6:44:5d:9d:c9:8f:
68:6f:c8:06:9d:66:2e:32:5b:b7:60:d3:6a:d5:33:
3d:1b:77:8c:53:c2:50:16:6a:2f:92:54:af:4c:9b:
ae:00:37:17:dc:16:9c:61:da:79:50:0a:4d:89:9a:
eb:8f:2d:42:79:25:0e:a8:84:0f:16:5b:12:a8:3c:
7b:4f:a0:7e:5e:3f:6e:12:41:73:3d:14:39:f8:af:
d6:03:a2:e9:c6:f5:23:fc:77:09:74:ed:79:37:58:
95:b8:be:cb:50:96:0a:19:f2:41:6b:c5:18:ea:f2:
8e:d2:e6:5f:a8:b8:fa:3e:4c:32:70:07:6c:44:42:
86:ff:b5:2a:31:1c:65:29:3d:6d:b4:64:ef:ce:5c:
47:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:0A:33:4E:29:0C:F3:A4:AB:F8:DD:8D:EF:7C:E1:B3:5D:66:4E:22
X509v3 Authority Key Identifier:
keyid:8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/df81cc00dfbb10427346d20ea6beb807a9bc520d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.188.39.0/24
187.188.51.0/24
187.188.59.0/24
187.188.242.0/24
187.189.29.0/24
187.189.34.0/24
187.189.217.0/24
187.190.136.0/24
187.190.138.0/24
187.190.140.0/24
187.190.211.0/24
187.190.213.0/24
187.190.242.0/24
187.191.49.0/24
189.203.34.0/24
189.203.69.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ef:dc:91:d2:52:14:be:74:f3:fa:97:3f:34:1c:33:09:fb:
79:02:e8:fb:63:b7:2a:88:09:8f:55:8a:d3:74:bf:79:55:df:
9c:23:ec:de:a0:ed:2a:f4:e8:48:5b:59:b2:cf:1d:a0:9f:a3:
55:e0:36:44:c2:44:13:17:b1:08:10:06:ce:3f:91:5d:23:e8:
b8:3f:df:7f:0b:65:f5:fd:1c:0a:0f:df:6f:22:7b:34:a7:8f:
75:92:c1:f3:88:94:a3:6a:85:fc:1c:40:4d:89:90:59:72:39:
b7:c9:40:51:3b:a9:16:90:90:2a:73:65:4d:e1:c5:c8:ff:80:
93:65:3e:e4:92:60:6d:f7:4f:9f:ab:fc:b9:93:ec:8b:21:a8:
8f:45:fc:6d:6f:85:41:73:ab:ab:ac:14:f2:41:d2:3b:bd:c6:
18:79:bb:d6:38:d0:7e:ee:12:3e:9e:5e:dc:8f:82:65:a6:29:
54:cb:9f:b5:1c:f5:df:11:67:41:66:82:28:26:10:68:8f:98:
6a:65:77:50:95:26:c4:14:b1:a6:4c:d4:9f:9a:bf:49:b5:9e:
4f:9f:aa:5d:f4:0b:9a:da:d4:05:40:51:12:a9:13:e8:87:20:
28:a9:e2:1b:b9:e9:47:20:61:4c:76:01:30:51:20:8d:8a:53:
4c:f0:4f:93
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgIDCLpFMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDkx
M2Q1Y2RiMTYwNzI2ZGM5MmUwNGVkNDZhNjU4ZWM2YmZjYmJkZDEwHhcNMjMwNTA0
MTkwMjM5WhcNMjUwNTA1MTkwMjM5WjAzMTEwLwYDVQQDEyhkZjgxY2MwMGRmYmIx
MDQyNzM0NmQyMGVhNmJlYjgwN2E5YmM1MjBkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvv98qbQOL+9qn4cIcASruUQEEVGpEqMqTxDdZltvP04yf/yl
44v4AHRFZD+O3y8XvMRvf4vLa7hK+iliR3iGbK1OmGGzjbDpfEOdWCTKf2+uPf+x
57FR0S2SFiVLBzsaxJsA0NiUC5Add8F9NqkcgZLmRF2dyY9ob8gGnWYuMlu3YNNq
1TM9G3eMU8JQFmovklSvTJuuADcX3BacYdp5UApNiZrrjy1CeSUOqIQPFlsSqDx7
T6B+Xj9uEkFzPRQ5+K/WA6LpxvUj/HcJdO15N1iVuL7LUJYKGfJBa8UY6vKO0uZf
qLj6PkwycAdsREKG/7UqMRxlKT1ttGTvzlxH8wIDAQABo4ICtTCCArEwHQYDVR0O
BBYEFKAKM04pDPOkq/jdje984bNdZk4iMB8GA1UdIwQYMBaAFI9xTwL31bpGSCLp
2dR7u2DVk6EyMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvOTEzZDVj
ZGIxNjA3MjZkYzkyZTA0ZWQ0NmE2NThlYzZiZmNiYmRkMS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvY2Q1YWQ2YzAtNDk5Yi00MzgwLTk4NGYtODc0Yzlm
NTFkMmZmL2RmODFjYzAwZGZiYjEwNDI3MzQ2ZDIwZWE2YmViODA3YTliYzUyMGQu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9jZDVhZDZjMC00OTliLTQzODAtOTg0Zi04NzRj
OWY1MWQyZmYvOTEzZDVjZGIxNjA3MjZkYzkyZTA0ZWQ0NmE2NThlYzZiZmNiYmRk
MS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB5BggrBgEFBQcBBwEB/wRq
MGgwZgQCAAEwYAMEALu8JwMEALu8MwMEALu8OwMEALu88gMEALu9HQMEALu9IgME
ALu92QMEALu+iAMEALu+igMEALu+jAMEALu+0wMEALu+1QMEALu+8gMEALu/MQME
AL3LIgMEAL3LRTANBgkqhkiG9w0BAQsFAAOCAQEAZe/ckdJSFL508/qXPzQcMwn7
eQLo+2O3KogJj1WK03S/eVXfnCPs3qDtKvToSFtZss8doJ+jVeA2RMJEExexCBAG
zj+RXSPouD/ffwtl9f0cCg/fbyJ7NKePdZLB84iUo2qF/BxATYmQWXI5t8lAUTup
FpCQKnNlTeHFyP+Ak2U+5JJgbfdPn6v8uZPsiyGoj0X8bW+FQXOrq6wU8kHSO73G
GHm71jjQfu4SPp5e3I+CZaYpVMuftRz13xFnQWaCKCYQaI+YamV3UJUmxBSxpkzU
n5q/SbWeT5+qXfQLmtrUBUBREqkT6IcgKKniG7npRyBhTHYBMFEgjYpTTPBPkw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:07 2024 by rpki-client on console-fra.rpki-client.org