Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/e348bdf3-6c2a-4e7f-9deb-ebcd2c56f245/9cb9787d7180c543355d7c756cc50ccf34615abc.roa
File: 9cb9787d7180c543355d7c756cc50ccf34615abc.roa (raw, json)
Hash identifier: aIjZ1ghWZT2ICzzjZjUviRwgXWmJVrmxJc1oqkhhWLg=
Subject key identifier: E1:ED:7B:99:79:0E:88:F2:B9:7D:D1:9B:97:C8:DB:80:9D:70:83:3D
Certificate issuer: /CN=eb6de066f1c70b82f75b54d19209c0e03f1f0279
Certificate serial: 216F7B
Authority key identifier: 76:12:49:46:59:CF:CF:F8:19:4B:DD:87:76:20:C2:55:68:E0:EA:0C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/eb6de066f1c70b82f75b54d19209c0e03f1f0279.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/e348bdf3-6c2a-4e7f-9deb-ebcd2c56f245/9cb9787d7180c543355d7c756cc50ccf34615abc.roa
Signing time: Mon 12 Jun 2023 23:46:45 +0000
ROA not before: Sun 11 Jun 2023 23:46:39 +0000
ROA not after: Thu 12 Jun 2025 23:46:39 +0000
asID: 27773
IP address blocks: 190.150.240.0/21 maxlen: 24
190.150.248.0/22 maxlen: 24
190.150.252.0/23 maxlen: 24
190.150.254.0/24 maxlen: 24
190.53.96.0/19 maxlen: 24
190.150.192.0/21 maxlen: 24
190.150.200.0/22 maxlen: 24
190.150.205.0/24 maxlen: 24
190.150.206.0/23 maxlen: 24
190.150.208.0/20 maxlen: 24
186.32.248.0/21 maxlen: 24
190.150.224.0/20 maxlen: 24
190.53.128.0/18 maxlen: 24
186.32.64.0/23 maxlen: 24
190.150.32.0/20 maxlen: 24
186.32.66.0/24 maxlen: 24
186.32.68.0/22 maxlen: 24
186.32.72.0/21 maxlen: 24
190.150.48.0/24 maxlen: 24
190.150.50.0/23 maxlen: 24
186.32.80.0/20 maxlen: 24
190.150.52.0/22 maxlen: 24
190.150.56.0/21 maxlen: 24
190.150.64.0/22 maxlen: 24
186.32.96.0/19 maxlen: 24
190.150.68.0/23 maxlen: 24
190.150.70.0/24 maxlen: 24
190.150.72.0/21 maxlen: 24
138.186.249.0/24 maxlen: 24
138.186.250.0/23 maxlen: 24
190.150.0.0/19 maxlen: 24
190.53.0.0/19 maxlen: 24
200.106.232.0/23 maxlen: 24
200.106.234.0/24 maxlen: 24
190.150.80.0/20 maxlen: 24
190.150.96.0/19 maxlen: 24
190.150.128.0/18 maxlen: 24
190.99.38.0/23 maxlen: 24
190.99.40.0/21 maxlen: 24
190.99.48.0/20 maxlen: 24
190.99.24.0/21 maxlen: 24
190.99.32.0/22 maxlen: 24
190.99.37.0/24 maxlen: 24
200.13.174.0/24 maxlen: 24
200.13.180.0/24 maxlen: 24
200.13.184.0/23 maxlen: 24
200.13.186.0/24 maxlen: 24
200.13.189.0/24 maxlen: 24
200.13.190.0/24 maxlen: 24
200.13.161.0/24 maxlen: 24
200.13.168.0/22 maxlen: 24
200.13.172.0/23 maxlen: 24
179.51.0.0/18 maxlen: 24
2800:880::/30 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2191227 (0x216f7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb6de066f1c70b82f75b54d19209c0e03f1f0279
Validity
Not Before: Jun 11 23:46:39 2023 GMT
Not After : Jun 12 23:46:39 2025 GMT
Subject: CN=9cb9787d7180c543355d7c756cc50ccf34615abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2d:3f:04:2f:c5:64:a2:91:af:3d:af:f4:30:
50:7e:d5:46:7b:60:12:b5:c0:93:1e:0f:c9:c8:27:
23:24:ca:13:bd:d7:76:31:f4:52:0e:86:6c:73:66:
ca:16:0d:7c:65:b7:a4:cb:ec:18:69:70:82:0f:e4:
aa:c2:c4:ab:1f:cf:b1:80:d9:c3:08:e3:07:ac:0d:
36:8a:26:e2:48:21:58:46:b1:da:8d:97:74:4a:77:
31:f0:95:e1:85:70:0b:1e:da:77:0e:ea:66:1b:45:
28:75:df:5f:a6:42:29:6b:b2:31:d1:4a:1f:fe:14:
60:45:23:b3:6d:0b:c7:a2:d7:83:99:ba:41:80:19:
fd:5f:8d:ab:87:bd:6b:08:47:40:48:ee:76:ca:03:
ea:ba:37:77:d7:53:4c:2e:a7:c8:f2:af:22:c7:12:
a1:74:84:4a:4e:98:d4:63:5b:b3:f3:9d:4a:83:ed:
01:59:8c:0f:92:6a:04:4a:64:5f:ce:a8:c0:9d:fd:
f3:93:4a:24:9d:2f:76:fc:2f:84:e5:0e:51:66:cb:
0f:49:ee:f2:13:2d:c6:cd:b1:7e:34:54:21:ed:83:
8a:b6:c7:9a:6f:ad:63:a1:82:90:0d:de:86:82:3d:
a8:85:97:70:d0:de:bf:da:68:af:9c:b8:0f:d9:d2:
a2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:ED:7B:99:79:0E:88:F2:B9:7D:D1:9B:97:C8:DB:80:9D:70:83:3D
X509v3 Authority Key Identifier:
keyid:76:12:49:46:59:CF:CF:F8:19:4B:DD:87:76:20:C2:55:68:E0:EA:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/eb6de066f1c70b82f75b54d19209c0e03f1f0279.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/e348bdf3-6c2a-4e7f-9deb-ebcd2c56f245/9cb9787d7180c543355d7c756cc50ccf34615abc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/e348bdf3-6c2a-4e7f-9deb-ebcd2c56f245/eb6de066f1c70b82f75b54d19209c0e03f1f0279.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.186.249.0-138.186.251.255
179.51.0.0/18
186.32.64.0-186.32.66.255
186.32.68.0-186.32.127.255
186.32.248.0/21
190.53.0.0/19
190.53.96.0-190.53.191.255
190.99.24.0-190.99.35.255
190.99.37.0-190.99.63.255
190.150.0.0-190.150.48.255
190.150.50.0-190.150.70.255
190.150.72.0-190.150.203.255
190.150.205.0-190.150.254.255
200.13.161.0/24
200.13.168.0-200.13.174.255
200.13.180.0/24
200.13.184.0-200.13.186.255
200.13.189.0-200.13.190.255
200.106.232.0-200.106.234.255
IPv6:
2800:880::/30
Signature Algorithm: sha256WithRSAEncryption
23:93:2c:89:ee:9a:4d:f3:6e:67:41:60:72:5e:e3:9c:26:4c:
45:d3:eb:cf:00:c7:9d:fd:74:46:47:67:30:72:8b:4f:0d:39:
c3:fe:ec:c8:3b:44:c4:0a:2d:d7:9b:fa:9b:3f:12:7b:ed:15:
fa:1f:7f:32:1f:5d:96:71:96:af:6b:97:dd:80:0d:ee:e8:5e:
be:90:85:33:7e:7e:d5:5b:68:57:fb:16:dd:a2:9b:da:d6:d6:
14:6c:3b:07:38:60:ed:87:a4:16:18:85:62:15:e0:e4:eb:39:
9c:3a:ec:b3:64:7c:ee:4d:7e:17:0e:bd:be:1a:2f:cc:16:f1:
86:c0:31:b6:44:90:8f:e9:da:b1:93:29:0e:53:60:aa:04:b8:
1a:63:7b:0d:96:5e:d9:bd:0a:f3:0d:bb:45:88:44:19:c8:0f:
40:b8:3d:b5:45:e6:4b:14:5a:0e:2e:eb:3c:30:2f:ad:a2:2d:
a4:ae:32:6f:6e:43:31:58:49:c6:7e:1e:2d:82:81:3e:0b:12:
09:cf:cf:f7:c8:70:36:3e:56:df:ab:86:4d:3d:51:83:24:6f:
8d:c2:88:f6:ad:7f:18:63:71:22:b1:35:5c:fc:4b:79:ac:b8:
09:66:27:02:0b:90:ec:ea:e8:98:70:60:50:e3:87:6a:48:03:
b6:bb:bc:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:50 2024 by rpki-client on console-ams.rpki-client.org