Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/e2efa464-0902-4477-a433-3476f42cc325/30c7680bd8772c54cb7edf4369f96828df0902c0.roa
File: 30c7680bd8772c54cb7edf4369f96828df0902c0.roa (raw, json)
Hash identifier: Qo8OjhxCi8KMbA6IOljcjF5ZFuYniq5w3o0gthpOqRI=
Subject key identifier: 31:8B:D7:95:93:42:91:15:B8:4E:9F:48:B1:35:84:A5:E2:96:C0:3B
Certificate issuer: /CN=58c2bc7895cd7c147803e7c9790ece03a9e82fa6
Certificate serial: 212BEC
Authority key identifier: 18:DC:42:6A:C7:DA:80:CB:A2:FA:32:DB:5C:BD:9E:55:15:E2:8F:5B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/58c2bc7895cd7c147803e7c9790ece03a9e82fa6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/e2efa464-0902-4477-a433-3476f42cc325/30c7680bd8772c54cb7edf4369f96828df0902c0.roa
Signing time: Tue 09 May 2023 20:19:21 +0000
ROA not before: Mon 08 May 2023 20:19:21 +0000
ROA not after: Fri 09 May 2025 20:19:21 +0000
asID: 11014
IP address blocks: 170.150.152.0/22 maxlen: 24
190.12.119.0/24 maxlen: 24
190.12.120.0/21 maxlen: 24
143.0.76.0/22 maxlen: 24
190.104.194.0/23 maxlen: 24
190.104.196.0/22 maxlen: 24
190.104.200.0/21 maxlen: 24
190.104.208.0/20 maxlen: 24
190.104.224.0/19 maxlen: 24
190.111.237.0/24 maxlen: 24
190.111.238.0/23 maxlen: 24
190.111.240.0/20 maxlen: 24
170.83.4.0/22 maxlen: 24
200.110.216.0/21 maxlen: 24
190.12.96.0/20 maxlen: 24
190.12.112.0/22 maxlen: 24
190.12.116.0/23 maxlen: 24
190.111.192.0/19 maxlen: 24
190.111.224.0/21 maxlen: 24
190.111.232.0/23 maxlen: 24
190.111.234.0/24 maxlen: 24
2800:a10::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2173932 (0x212bec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58c2bc7895cd7c147803e7c9790ece03a9e82fa6
Validity
Not Before: May 8 20:19:21 2023 GMT
Not After : May 9 20:19:21 2025 GMT
Subject: CN=30c7680bd8772c54cb7edf4369f96828df0902c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0c:5a:ec:da:f2:bd:1b:44:fd:55:12:1a:42:
12:18:e2:b6:a1:56:39:6d:97:00:88:c6:b8:de:97:
e8:fd:76:a2:22:2b:e1:08:61:6f:2c:df:0d:f7:e1:
43:d3:30:1b:97:59:09:e5:df:91:b5:4d:dd:e5:c3:
91:b4:7a:73:2e:5f:fa:ea:2c:84:31:f0:1d:b4:41:
51:3a:83:69:bf:b1:f1:93:eb:f0:c9:19:55:d8:f9:
32:6a:f7:79:25:c3:62:4f:09:f0:32:ab:0b:2a:69:
de:32:60:7f:de:8b:13:96:5a:ea:69:b9:d2:75:b2:
a3:21:c5:ec:cd:0f:dc:a9:59:d2:75:12:16:2a:35:
65:d4:97:fc:a2:eb:26:2f:94:d2:2b:8c:e5:eb:86:
e5:14:40:08:70:ba:f7:05:0f:5b:15:7c:22:7a:46:
a3:13:ba:ea:82:00:75:9e:1c:f2:90:3a:1f:e9:05:
7c:3a:2e:70:ab:ba:f8:ef:c1:21:2f:cf:7b:20:76:
b6:33:a5:7c:0a:e2:08:d4:3e:a8:72:75:b2:18:93:
ff:f8:a7:f5:02:76:b8:a9:4e:dd:af:c6:86:b3:42:
2f:12:a8:a1:dd:01:1d:f5:33:38:a1:fc:06:e3:4c:
b6:a3:69:41:90:5c:f6:2b:3b:af:b0:a3:c6:89:c4:
cf:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8B:D7:95:93:42:91:15:B8:4E:9F:48:B1:35:84:A5:E2:96:C0:3B
X509v3 Authority Key Identifier:
keyid:18:DC:42:6A:C7:DA:80:CB:A2:FA:32:DB:5C:BD:9E:55:15:E2:8F:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/58c2bc7895cd7c147803e7c9790ece03a9e82fa6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/e2efa464-0902-4477-a433-3476f42cc325/30c7680bd8772c54cb7edf4369f96828df0902c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/e2efa464-0902-4477-a433-3476f42cc325/58c2bc7895cd7c147803e7c9790ece03a9e82fa6.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.0.76.0/22
170.83.4.0/22
170.150.152.0/22
190.12.96.0-190.12.117.255
190.12.119.0-190.12.127.255
190.104.194.0-190.104.255.255
190.111.192.0-190.111.234.255
190.111.237.0-190.111.255.255
200.110.216.0/21
IPv6:
2800:a10::/32
Signature Algorithm: sha256WithRSAEncryption
72:96:18:4d:eb:27:e7:d2:db:e0:db:34:c3:fb:cd:61:bb:c8:
9a:81:76:b5:e2:57:ba:2c:aa:ad:3b:19:a6:38:19:e4:65:37:
78:a9:b6:3f:57:ce:f9:68:b9:d8:cc:0b:99:68:f0:d5:39:b8:
98:92:0a:f9:8c:26:0c:40:d2:29:c3:ce:da:e0:ee:51:26:8f:
f9:61:3a:27:d3:f6:5e:f2:01:0f:f5:99:e1:aa:4f:5a:7a:c5:
82:0e:83:d6:78:4f:b7:96:7b:1f:d1:16:dd:c7:32:02:36:ba:
52:41:88:da:08:cc:fd:ee:05:3e:4e:a5:e5:ea:7a:7d:4e:5d:
ff:1c:68:1b:f3:4a:85:bd:14:3a:6f:c2:49:8c:e4:97:94:3c:
a1:a8:ff:0b:8a:85:45:08:34:57:87:bd:49:cf:36:e2:67:0a:
94:53:b7:5e:5b:56:49:06:02:cd:24:33:18:fa:74:98:95:de:
4c:51:eb:38:f7:2d:d4:68:69:16:bb:db:a7:57:8f:72:a5:96:
d7:d9:1c:59:69:9d:dd:f9:23:b8:10:b9:17:18:ba:c7:b1:37:
4b:b7:b2:23:e9:a0:cc:17:79:a0:f8:59:1b:8e:93:43:23:76:
b1:2b:bf:82:04:39:fc:74:15:e9:0a:b3:ba:9b:45:42:77:2b:
91:a6:7c:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:32 2024 by rpki-client on console-fra.rpki-client.org