Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/e2baff187fda6a59f756d05ad244d2114099c680.roa
File: e2baff187fda6a59f756d05ad244d2114099c680.roa (raw, json)
Hash identifier: 038gnz4bfO94xVJsnIJzuJQ50FGdna8CUQCBWvICptI=
Subject key identifier: 1E:D9:7A:82:65:44:5A:E7:AA:B9:54:44:94:5D:98:67:2B:12:4B:60
Certificate issuer: /CN=88d3b38fb9bfced57c6ad5eb160c130acf32641c
Certificate serial: 239F02
Authority key identifier: FB:1B:2A:C1:49:DD:65:34:44:95:86:34:F9:B3:B7:A7:B7:69:E9:F8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/88d3b38fb9bfced57c6ad5eb160c130acf32641c.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/e2baff187fda6a59f756d05ad244d2114099c680.roa
Signing time: Mon 03 Jul 2023 18:48:26 +0000
ROA not before: Sun 02 Jul 2023 18:48:26 +0000
ROA not after: Thu 03 Jul 2025 18:48:26 +0000
asID: 28075
IP address blocks: 138.204.0.0/22 maxlen: 22
168.194.204.0/22 maxlen: 24
181.118.64.0/18 maxlen: 26
198.12.40.0/22 maxlen: 24
198.12.46.0/23 maxlen: 24
198.12.50.0/24 maxlen: 24
201.190.128.0/18 maxlen: 24
143.202.192.0/22 maxlen: 22
186.189.68.0/24 maxlen: 24
190.113.128.0/18 maxlen: 24
168.90.8.0/22 maxlen: 24
131.72.0.0/22 maxlen: 24
198.12.52.0/24 maxlen: 24
198.12.54.0/23 maxlen: 24
198.12.56.0/21 maxlen: 24
201.190.192.0/20 maxlen: 24
201.190.208.0/21 maxlen: 24
201.190.216.0/22 maxlen: 24
201.190.220.0/24 maxlen: 24
201.190.222.0/23 maxlen: 24
201.190.224.0/19 maxlen: 24
186.189.64.0/22 maxlen: 24
2803:6604::/32 maxlen: 64
2803:6600::/30 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2334466 (0x239f02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88d3b38fb9bfced57c6ad5eb160c130acf32641c
Validity
Not Before: Jul 2 18:48:26 2023 GMT
Not After : Jul 3 18:48:26 2025 GMT
Subject: CN=e2baff187fda6a59f756d05ad244d2114099c680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c4:49:83:5a:f3:c4:65:fa:f0:c0:9a:a4:da:
7f:6a:22:c0:21:82:c1:0e:0b:65:89:01:71:3c:93:
eb:0c:62:ac:14:e6:bd:1a:fd:6a:95:83:1a:8e:b8:
fd:1b:eb:9e:6f:3b:55:8d:db:2f:74:c1:de:ec:84:
32:47:8e:2a:dc:ad:66:cb:ca:9b:e7:64:50:ed:31:
c5:ee:c9:cc:18:e3:8b:b9:94:39:fe:14:28:5d:a2:
66:00:42:4c:5d:5c:1a:c9:7e:42:d2:38:98:a4:72:
01:7c:8b:12:02:54:4d:e7:20:5c:43:40:2b:08:53:
f5:88:23:af:7a:9f:2f:f9:1b:20:f3:c0:96:d5:87:
3d:eb:76:fd:b6:51:53:66:55:2f:a4:a8:d0:75:98:
41:1a:ce:c5:9f:2f:9f:a2:81:2a:63:43:e0:08:48:
fc:29:af:a4:f6:01:e1:11:8e:32:68:ad:f9:53:b5:
3b:6d:6c:8e:b4:37:66:86:ad:0f:62:8e:49:2b:fd:
21:0f:84:97:1a:3a:51:92:e0:5f:1b:d0:60:f6:94:
0c:44:1f:3d:ef:f0:52:11:9f:c0:12:9b:99:6f:d0:
29:a8:89:cc:ce:7f:d4:a7:19:3f:e2:9a:63:51:f9:
48:92:26:ff:3c:14:f0:08:d2:f6:05:2f:5b:22:47:
ba:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D9:7A:82:65:44:5A:E7:AA:B9:54:44:94:5D:98:67:2B:12:4B:60
X509v3 Authority Key Identifier:
keyid:FB:1B:2A:C1:49:DD:65:34:44:95:86:34:F9:B3:B7:A7:B7:69:E9:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/88d3b38fb9bfced57c6ad5eb160c130acf32641c.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/e2baff187fda6a59f756d05ad244d2114099c680.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f015c46b-1540-49eb-b969-0f3c40e00140/88d3b38fb9bfced57c6ad5eb160c130acf32641c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.72.0.0/22
138.204.0.0/22
143.202.192.0/22
168.90.8.0/22
168.194.204.0/22
181.118.64.0/18
186.189.64.0-186.189.68.255
190.113.128.0/18
198.12.40.0/22
198.12.46.0/23
198.12.50.0/24
198.12.52.0/24
198.12.54.0-198.12.63.255
201.190.128.0-201.190.220.255
201.190.222.0-201.190.255.255
IPv6:
2803:6600::-2803:6604:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
1b:ee:57:68:30:e4:54:13:d3:59:76:03:f9:20:f0:3d:36:85:
52:7a:9f:57:f6:6f:55:9d:79:32:fb:dd:0f:5c:6f:d9:d4:bd:
ba:7a:e4:2f:da:a6:f3:9f:65:dd:aa:29:1d:40:02:b8:11:56:
73:c7:10:40:46:72:6c:8f:1c:2a:e3:4a:da:6e:ef:cf:c7:f7:
2e:c8:f2:52:ee:3b:64:c0:e2:90:cc:a3:ca:30:ef:81:a0:70:
56:4f:85:19:75:dd:30:67:e4:8f:60:6f:16:ac:03:63:4a:60:
5f:52:39:0d:d3:d5:01:70:df:18:f9:d8:3b:ea:71:91:fb:69:
8a:bc:6a:88:7d:e4:9a:1d:09:7d:bd:bd:52:ff:9e:ca:b8:d3:
32:54:46:28:e0:35:31:3e:31:81:fb:b2:b1:7c:59:58:8e:b9:
b9:28:6c:b1:a6:ac:e1:61:c1:05:61:8a:61:14:14:2e:4d:17:
ff:40:c9:3c:0a:9a:b6:3b:46:e6:f2:11:48:69:20:e0:6f:b4:
92:84:90:34:1d:80:82:8f:4d:4e:e9:b7:d5:94:f6:70:99:34:
f9:05:84:cc:39:7e:13:99:36:c1:9f:76:68:31:00:ad:29:dd:
84:a5:cc:4a:12:3c:74:80:c7:6f:55:04:22:da:d4:0a:0a:3a:
84:27:df:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:36 2024 by rpki-client on console-fra.rpki-client.org