Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/d37891fe-eea3-48a1-a501-257aaa18d4bc/d9c81606098adc3b6d80ae067906694c42e51279.roa
File: d9c81606098adc3b6d80ae067906694c42e51279.roa (raw, json)
Hash identifier: VHIcU9vutLMDUbohQdt4GGdVYoifdkClG6PzyT5nGvE=
Subject key identifier: 90:71:05:3E:01:54:F1:23:A8:68:D3:ED:98:AE:54:00:7C:4A:17:B7
Certificate issuer: /CN=82de3982dc3fe10698e2213ddec20b8ab75df7bf
Certificate serial: 23412B
Authority key identifier: AD:2C:98:FD:25:51:E2:8A:30:65:C7:48:5B:5F:46:44:46:B9:7F:7E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/82de3982dc3fe10698e2213ddec20b8ab75df7bf.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/d37891fe-eea3-48a1-a501-257aaa18d4bc/d9c81606098adc3b6d80ae067906694c42e51279.roa
Signing time: Fri 25 Aug 2023 21:55:19 +0000
ROA not before: Thu 24 Aug 2023 21:55:19 +0000
ROA not after: Mon 25 Aug 2025 21:55:19 +0000
asID: 14522
IP address blocks: 200.25.128.0/18 maxlen: 24
186.66.0.0/16 maxlen: 24
190.10.128.0/17 maxlen: 24
201.217.64.0/18 maxlen: 24
186.70.0.0/15 maxlen: 24
181.175.0.0/16 maxlen: 24
186.68.0.0/14 maxlen: 24
190.154.0.0/15 maxlen: 24
186.66.128.0/17 maxlen: 24
200.69.160.0/19 maxlen: 24
200.63.192.0/18 maxlen: 24
2800:9a3::/38 maxlen: 40
2800:9a3:400::/40 maxlen: 40
2800:9a3:1000::/39 maxlen: 40
2800:9a3:2000::/40 maxlen: 40
2800:9a3:3000::/40 maxlen: 40
2800:9a3:4000::/40 maxlen: 40
2800:9a3:5000::/40 maxlen: 40
2800:9a3:6000::/40 maxlen: 40
2800:9a7::/36 maxlen: 40
2800:9a7:3000::/36 maxlen: 44
2800:9a0::/29 maxlen: 48
2800:9a1::/36 maxlen: 40
2800:9a4::/36 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2310443 (0x23412b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82de3982dc3fe10698e2213ddec20b8ab75df7bf
Validity
Not Before: Aug 24 21:55:19 2023 GMT
Not After : Aug 25 21:55:19 2025 GMT
Subject: CN=d9c81606098adc3b6d80ae067906694c42e51279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:98:fc:3b:99:44:bc:a7:76:b3:bf:cb:ce:04:
8f:bf:63:fe:b5:c1:24:8a:65:b1:3b:d8:6f:04:db:
22:ec:c7:10:fc:df:36:f9:c2:4a:d5:f6:0c:23:89:
6a:7c:c1:4c:a6:c7:87:0f:69:ba:20:7e:98:fa:87:
b9:38:b4:bd:09:e4:ba:aa:c7:92:b2:7f:54:c9:96:
55:2a:50:85:ad:bb:ff:84:d5:83:f3:44:e8:e9:82:
fc:f9:ab:e1:c4:8e:2a:48:4b:d4:80:ec:5f:8e:28:
7e:e4:02:8b:ac:b7:6a:6c:b8:53:c4:33:7f:82:6e:
36:4c:58:fa:4f:49:bc:19:4d:db:f5:33:34:15:0c:
bb:d7:7a:67:e1:d5:86:92:f9:da:c9:ce:35:e1:40:
7a:12:1f:a7:49:3a:67:7d:39:ff:bd:69:20:4f:0e:
bb:dd:df:df:b1:db:80:93:82:63:51:58:b0:d3:08:
a0:d6:3b:6b:c3:4a:ac:70:2e:f9:45:0c:43:02:fd:
0e:10:b6:98:cb:db:ba:5c:19:60:1f:49:9c:8f:71:
e4:72:f5:ac:c5:4d:e7:85:84:5b:3e:f4:ee:b2:7d:
ef:a1:b8:02:fa:60:d5:8b:d9:fb:bb:cc:18:8c:1e:
06:89:dd:cc:a3:d7:df:21:a5:3d:8f:65:bc:c7:df:
19:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:71:05:3E:01:54:F1:23:A8:68:D3:ED:98:AE:54:00:7C:4A:17:B7
X509v3 Authority Key Identifier:
keyid:AD:2C:98:FD:25:51:E2:8A:30:65:C7:48:5B:5F:46:44:46:B9:7F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/82de3982dc3fe10698e2213ddec20b8ab75df7bf.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/d37891fe-eea3-48a1-a501-257aaa18d4bc/d9c81606098adc3b6d80ae067906694c42e51279.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/d37891fe-eea3-48a1-a501-257aaa18d4bc/82de3982dc3fe10698e2213ddec20b8ab75df7bf.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.175.0.0/16
186.66.0.0/16
186.68.0.0/14
190.10.128.0/17
190.154.0.0/15
200.25.128.0/18
200.63.192.0/18
200.69.160.0/19
201.217.64.0/18
IPv6:
2800:9a0::/29
Signature Algorithm: sha256WithRSAEncryption
2a:bc:0d:85:71:ea:b9:d7:4b:89:1a:41:fd:09:e3:29:39:7f:
0d:98:1d:d6:4a:31:85:af:68:db:2e:45:27:83:a2:90:5a:cd:
ce:0a:ef:3e:76:c2:f3:57:3c:2a:a6:85:5b:fe:35:c4:b1:00:
cb:4a:f6:9a:d2:f6:d9:5a:95:d6:24:49:a4:40:15:34:ed:83:
9c:ed:48:90:7f:87:16:ab:be:1c:6d:80:cc:cb:f7:a9:44:a3:
0d:60:66:9c:c9:3e:b8:4f:c0:af:ce:56:35:98:8f:f9:eb:f4:
24:aa:58:c3:f2:d8:f7:ba:3f:30:a3:43:a7:22:cf:fe:24:8a:
94:e4:3a:95:3b:07:12:6a:a4:69:8e:42:eb:66:30:7e:93:eb:
28:0d:df:de:05:4f:72:3b:84:6d:b4:1a:4a:9b:c0:de:44:9b:
7a:5a:1a:ca:77:7f:50:f3:c2:27:f3:e9:e6:a0:db:f1:16:88:
50:a1:e5:58:d5:68:03:54:c8:79:68:78:7f:66:a0:0b:10:44:
99:d7:6c:91:66:e4:ad:c5:6a:dd:fd:14:4a:0a:b0:5d:0c:75:
03:82:15:d0:4b:e4:04:37:13:f9:ec:2b:3a:73:c8:fd:b3:cf:
d5:bd:1a:07:60:dd:0d:da:45:f5:3c:37:d8:f7:0f:0e:69:2d:
c0:af:7e:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:31 2024 by rpki-client on console-fra.rpki-client.org