Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/58026e9f454779eecde246ece6c861a346877b28.roa
File: 58026e9f454779eecde246ece6c861a346877b28.roa (raw, json)
Hash identifier: o8w7MGZLRzFMD2pSFGQ6NOE6OmOihIgW85PW64Q0t1E=
Subject key identifier: F6:78:97:77:62:2C:F4:2C:61:AF:5A:15:B1:62:43:2A:F6:D2:DB:D3
Certificate issuer: /CN=88d3b38fb9bfced57c6ad5eb160c130acf32641c
Certificate serial: 0DFDDC
Authority key identifier: FB:1B:2A:C1:49:DD:65:34:44:95:86:34:F9:B3:B7:A7:B7:69:E9:F8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/88d3b38fb9bfced57c6ad5eb160c130acf32641c.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/58026e9f454779eecde246ece6c861a346877b28.roa
Signing time: Wed 24 Mar 2021 14:29:00 +0000
ROA not before: Wed 24 Mar 2021 14:28:59 +0000
ROA not after: Tue 24 Mar 2026 14:28:59 +0000
asID: 28075
IP address blocks: 168.194.207.0/24 maxlen: 24
168.194.204.0/24 maxlen: 24
181.118.80.0/22 maxlen: 22
131.72.2.0/24 maxlen: 24
168.90.8.0/24 maxlen: 24
168.194.206.0/24 maxlen: 24
181.118.124.0/22 maxlen: 22
190.113.128.0/20 maxlen: 20
190.113.144.0/20 maxlen: 20
190.113.162.0/23 maxlen: 23
190.113.164.0/24 maxlen: 24
190.113.166.0/24 maxlen: 24
190.113.168.0/23 maxlen: 23
190.113.172.0/22 maxlen: 22
190.113.176.0/23 maxlen: 23
190.113.178.0/23 maxlen: 23
201.190.128.0/21 maxlen: 21
201.190.136.0/21 maxlen: 21
201.190.144.0/21 maxlen: 21
201.190.152.0/21 maxlen: 21
201.190.160.0/21 maxlen: 21
201.190.168.0/22 maxlen: 22
201.190.175.0/24 maxlen: 24
201.190.180.0/22 maxlen: 22
201.190.188.0/22 maxlen: 22
201.190.192.0/22 maxlen: 22
201.190.196.0/22 maxlen: 22
201.190.200.0/22 maxlen: 22
201.190.204.0/22 maxlen: 22
201.190.208.0/22 maxlen: 22
201.190.212.0/22 maxlen: 22
201.190.216.0/22 maxlen: 22
201.190.228.0/24 maxlen: 24
201.190.246.0/24 maxlen: 24
201.190.248.0/24 maxlen: 24
201.190.252.0/23 maxlen: 23
2803:6600:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916956 (0xdfddc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88d3b38fb9bfced57c6ad5eb160c130acf32641c
Validity
Not Before: Mar 24 14:28:59 2021 GMT
Not After : Mar 24 14:28:59 2026 GMT
Subject: CN=58026e9f454779eecde246ece6c861a346877b28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ee:53:eb:f4:72:1f:a9:b2:bc:ed:5e:b8:42:
63:33:e3:96:c7:43:b3:8c:f8:b1:4c:29:65:39:ad:
71:15:41:0e:58:7c:5f:40:45:9a:94:52:31:96:b9:
68:3c:a6:b9:20:22:3b:12:74:68:1f:84:5e:48:26:
bb:69:16:93:66:23:16:7d:07:a0:d7:bb:9d:d3:ee:
33:ae:cc:71:14:3e:48:23:bc:02:8c:a6:eb:94:ad:
10:f9:db:2f:21:82:21:e5:2e:a3:88:29:72:58:e4:
22:1f:0e:31:88:e5:6f:28:2a:df:c5:aa:85:a8:c9:
61:6f:3e:6f:cf:e4:38:3f:89:ff:de:7a:ad:42:51:
d5:e0:61:d6:04:08:72:0f:6d:fe:5a:de:5d:ee:ac:
17:91:4a:0e:79:aa:97:8f:5c:6b:79:7e:93:ea:f0:
71:50:90:62:f3:c8:95:fd:ee:03:97:fb:d9:45:f1:
a3:98:3d:09:1d:81:a5:05:b8:f5:dc:f7:24:45:98:
e2:ba:93:fa:f3:7b:3b:eb:b9:de:bd:f1:fa:84:87:
a5:92:5c:79:7d:e0:d1:9c:20:0c:7c:82:0f:0b:4a:
3a:88:4e:29:ec:07:94:3a:fc:61:6a:f7:94:d1:dd:
c2:c5:16:39:c8:b5:be:e2:f7:97:c1:31:4c:8a:e5:
84:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:78:97:77:62:2C:F4:2C:61:AF:5A:15:B1:62:43:2A:F6:D2:DB:D3
X509v3 Authority Key Identifier:
keyid:FB:1B:2A:C1:49:DD:65:34:44:95:86:34:F9:B3:B7:A7:B7:69:E9:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/88d3b38fb9bfced57c6ad5eb160c130acf32641c.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/58026e9f454779eecde246ece6c861a346877b28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/88d3b38fb9bfced57c6ad5eb160c130acf32641c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.72.2.0/24
168.90.8.0/24
168.194.204.0/24
168.194.206.0/23
181.118.80.0/22
181.118.124.0/22
190.113.128.0/19
190.113.162.0-190.113.164.255
190.113.166.0/24
190.113.168.0/23
190.113.172.0-190.113.179.255
201.190.128.0-201.190.171.255
201.190.175.0/24
201.190.180.0/22
201.190.188.0-201.190.219.255
201.190.228.0/24
201.190.246.0/24
201.190.248.0/24
201.190.252.0/23
IPv6:
2803:6600:1::/48
Signature Algorithm: sha256WithRSAEncryption
33:9c:33:54:ec:e8:8b:e3:0e:4e:ed:d4:45:02:e6:b4:d8:32:
04:0a:1f:77:ac:46:31:b8:f7:76:d6:f9:2e:91:75:ef:56:8d:
6a:a9:a9:45:fa:43:46:dc:bf:27:98:e8:9a:e3:cb:64:61:c0:
db:97:b2:ce:59:49:a3:48:47:36:cb:dd:f8:ae:82:fa:be:fa:
b5:a3:42:a0:9f:01:15:e6:81:f5:2c:85:ea:b9:55:3a:e3:b3:
fc:1f:c0:be:bf:bf:13:cf:0c:a0:cd:99:37:e9:f8:97:3b:a1:
e8:db:c2:a8:fc:83:57:1d:64:a1:4f:87:2d:db:6f:a0:09:3f:
9f:1e:60:48:1a:4e:96:ac:25:19:bd:17:a2:b7:5d:ec:84:7a:
6b:04:d6:e1:b1:55:34:f1:83:77:3b:7f:87:62:b3:a6:0a:dc:
2f:b4:00:e3:ce:42:eb:ca:90:4e:cc:e3:85:7c:de:86:de:ff:
63:2b:21:74:5a:f4:50:c5:7e:08:7f:78:86:9a:c5:c9:dc:36:
f7:c6:90:a8:af:ad:cf:12:9a:02:72:45:8d:5b:33:8f:43:9f:
23:15:1f:c8:e2:f4:49:82:54:7e:7e:35:e0:f8:be:5a:04:b9:
2d:72:43:f8:5a:85:c0:f5:fc:78:39:fe:2c:3f:ea:59:77:19:
44:71:98:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:11 2024 by rpki-client on console-fra.rpki-client.org