Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ef96c69d-d455-40a0-a9e3-14dd69c14564/2d931f91855ea88172bff5079ab5be68eeadaa77.roa
File: 2d931f91855ea88172bff5079ab5be68eeadaa77.roa (raw, json)
Hash identifier: kEzAMStkEdewpR1VrYMIUA/WdXhZHpVY5ypYd9SwyII=
Subject key identifier: BD:D6:AA:E2:65:A6:FC:4E:E2:07:49:3F:1C:16:1B:BD:A0:93:19:F1
Certificate issuer: /CN=513d4f24351d23b0d1286ff946b24bfd08afdc12
Certificate serial: 24F062
Authority key identifier: B2:5F:EE:E0:58:9A:94:87:AE:CE:2B:11:01:69:98:5F:A2:1B:5B:F2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/513d4f24351d23b0d1286ff946b24bfd08afdc12.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ef96c69d-d455-40a0-a9e3-14dd69c14564/2d931f91855ea88172bff5079ab5be68eeadaa77.roa
Signing time: Tue 26 Sep 2023 17:12:59 +0000
ROA not before: Mon 25 Sep 2023 17:12:48 +0000
ROA not after: Fri 26 Sep 2025 17:12:48 +0000
asID: 27947
IP address blocks: 168.197.188.0/22 maxlen: 24
181.39.0.0/16 maxlen: 24
200.93.192.0/19 maxlen: 24
200.93.224.0/20 maxlen: 24
201.218.0.0/18 maxlen: 24
186.4.128.0/17 maxlen: 24
186.5.0.0/17 maxlen: 24
190.95.128.0/17 maxlen: 24
200.110.64.0/19 maxlen: 24
186.101.0.0/16 maxlen: 24
186.3.0.0/16 maxlen: 24
181.198.0.0/16 maxlen: 24
181.199.0.0/17 maxlen: 24
2800:2a0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2420834 (0x24f062)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=513d4f24351d23b0d1286ff946b24bfd08afdc12
Validity
Not Before: Sep 25 17:12:48 2023 GMT
Not After : Sep 26 17:12:48 2025 GMT
Subject: CN=2d931f91855ea88172bff5079ab5be68eeadaa77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d0:7a:50:54:49:6e:10:3c:8d:5d:d5:13:a6:
82:f9:d6:50:4f:db:c8:c3:ee:64:c0:5e:43:57:e4:
c4:e0:56:b3:0f:70:ed:68:08:38:c7:70:a8:67:bc:
14:5e:aa:f3:a9:49:55:67:18:fc:39:de:4b:cc:cb:
38:61:1a:cb:06:e1:8c:1d:4d:1e:bd:9f:b1:7d:d5:
35:0c:0a:39:d1:52:c5:7e:6e:a4:45:41:56:e6:f3:
58:2f:d6:2b:b8:96:63:a0:f6:5a:67:1b:7e:77:3d:
55:ad:de:53:0e:87:08:86:de:ac:ef:04:0f:d1:d0:
2b:87:fb:da:d3:f2:b0:12:96:db:46:1d:50:b6:8f:
ae:b5:5e:34:64:16:44:fd:d7:96:e7:8f:1b:48:b2:
68:cb:12:66:b9:14:86:f1:25:ff:64:af:46:88:df:
83:dd:40:cd:4e:dd:15:be:86:2b:2b:2c:83:de:ee:
82:a8:73:4c:84:4b:3a:36:f5:f1:85:d0:8a:fe:e4:
91:79:22:0c:65:8f:49:f5:6f:2d:27:a1:7c:75:48:
d7:f5:be:19:f8:11:e7:90:ea:2f:81:fb:66:43:e2:
33:9d:3f:e5:4e:aa:6c:71:99:08:d2:0a:be:db:73:
c2:ca:72:b4:2a:46:9a:db:11:af:8b:32:9a:e3:e1:
5b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D6:AA:E2:65:A6:FC:4E:E2:07:49:3F:1C:16:1B:BD:A0:93:19:F1
X509v3 Authority Key Identifier:
keyid:B2:5F:EE:E0:58:9A:94:87:AE:CE:2B:11:01:69:98:5F:A2:1B:5B:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/513d4f24351d23b0d1286ff946b24bfd08afdc12.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ef96c69d-d455-40a0-a9e3-14dd69c14564/2d931f91855ea88172bff5079ab5be68eeadaa77.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/ef96c69d-d455-40a0-a9e3-14dd69c14564/513d4f24351d23b0d1286ff946b24bfd08afdc12.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.197.188.0/22
181.39.0.0/16
181.198.0.0-181.199.127.255
186.3.0.0/16
186.4.128.0-186.5.127.255
186.101.0.0/16
190.95.128.0/17
200.93.192.0-200.93.239.255
200.110.64.0/19
201.218.0.0/18
IPv6:
2800:2a0::/32
Signature Algorithm: sha256WithRSAEncryption
6f:05:3e:00:d4:24:66:d2:42:41:9b:dd:98:74:1d:65:f9:c1:
71:4a:8e:8f:ca:3b:42:f5:2d:ea:a3:da:fb:11:4f:bc:32:83:
7c:39:ae:d1:88:35:36:c0:04:18:0c:70:e3:95:71:bd:d3:bd:
52:7e:28:45:75:74:39:89:9b:04:dc:dd:35:d8:a5:0e:4d:19:
3a:3b:c5:a0:5d:b1:82:f9:6c:fa:1f:f8:a3:b5:78:a8:d4:3b:
d2:a2:cd:bb:5a:12:24:a0:71:ab:d7:e5:81:c7:2d:c8:0e:92:
8f:ba:96:dc:0a:cc:f8:45:da:da:0d:bd:9d:3c:d2:2d:be:2a:
e6:f6:ee:bd:b5:d8:bd:81:3b:cb:3e:10:92:84:21:8c:70:d2:
f4:c5:f4:22:d2:bd:da:a5:fe:9f:d1:a4:64:f7:fa:26:0a:a2:
49:04:02:6e:0b:73:53:f1:40:5e:65:89:16:d9:87:ab:cd:23:
bd:a5:44:18:b3:b3:10:34:e4:e8:f6:56:79:ac:d3:1a:36:9d:
af:b6:65:54:09:82:59:4b:39:74:0f:ea:52:81:c3:22:02:31:
0f:a7:3e:ec:dc:ee:9d:d2:f3:52:8c:18:5d:eb:45:7b:85:09:
84:19:46:0a:4d:92:7b:18:b6:63:a5:83:0a:92:41:8f:c0:da:
b4:d5:25:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:11 2024 by rpki-client on console-fra.rpki-client.org