Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f04334a6-8e56-4903-90f0-1a897fc935c5/451fd219711bb0ed38ca3878fe70872ee0fbfab0.roa
File: 451fd219711bb0ed38ca3878fe70872ee0fbfab0.roa (raw, json)
Hash identifier: 3OF9tmO3dWu+h+DIV4ppXnsBKsnWMI1mr+di6Mq2AhM=
Subject key identifier: 71:CF:CB:51:1D:D2:30:8C:09:27:E1:B6:50:FF:79:A3:07:2B:CD:B8
Certificate issuer: /CN=c69b99fc2d2eefbdb75ba663d575a10ac84f78c1
Certificate serial: 230C9C
Authority key identifier: 26:32:3A:4B:C0:9F:4A:66:92:5C:34:E7:A0:CD:05:9E:A1:ED:05:3B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c69b99fc2d2eefbdb75ba663d575a10ac84f78c1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f04334a6-8e56-4903-90f0-1a897fc935c5/451fd219711bb0ed38ca3878fe70872ee0fbfab0.roa
Signing time: Thu 17 Aug 2023 16:01:42 +0000
ROA not before: Wed 16 Aug 2023 16:01:42 +0000
ROA not after: Sun 17 Aug 2025 16:01:42 +0000
asID: 6306
IP address blocks: 181.185.128.0/17 maxlen: 17
179.20.128.0/17 maxlen: 17
179.45.128.0/17 maxlen: 17
181.184.128.0/17 maxlen: 17
186.184.128.0/17 maxlen: 20
186.166.0.0/16 maxlen: 24
186.186.64.0/18 maxlen: 18
161.255.0.0/16 maxlen: 16
179.44.128.0/17 maxlen: 17
200.35.64.0/18 maxlen: 23
161.234.0.0/16 maxlen: 16
181.183.128.0/17 maxlen: 17
179.21.128.0/17 maxlen: 17
181.182.128.0/17 maxlen: 17
186.185.0.0/16 maxlen: 20
2800:6b0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2296988 (0x230c9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c69b99fc2d2eefbdb75ba663d575a10ac84f78c1
Validity
Not Before: Aug 16 16:01:42 2023 GMT
Not After : Aug 17 16:01:42 2025 GMT
Subject: CN=451fd219711bb0ed38ca3878fe70872ee0fbfab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:3e:72:2e:bf:69:c0:1f:d6:dd:ac:5f:e6:c3:
1b:3e:5c:61:51:c9:32:c7:fe:ee:dd:23:0d:c7:47:
9f:89:ea:4f:b1:09:15:55:32:9b:04:38:a6:99:56:
19:83:b6:92:a4:d0:31:e6:71:98:76:08:34:4e:29:
81:3a:c6:25:60:d2:d5:56:6f:a5:59:de:61:b3:0a:
45:f1:78:c9:65:20:1c:58:92:73:d1:06:2b:35:90:
2c:0d:0e:e2:53:88:22:41:6a:f7:ec:6e:09:08:9d:
14:de:b3:95:80:45:17:4c:0b:1f:62:d7:4f:01:3b:
c3:46:a8:d7:19:b0:1f:c9:c0:3a:74:d7:1c:92:da:
bb:ff:89:63:e2:b3:c9:bb:f6:07:f2:4f:90:b4:84:
a4:31:56:48:6c:30:e7:4b:4f:24:be:d0:0f:b4:cb:
cc:06:fa:65:2e:0e:c3:8d:b7:36:77:af:fd:5d:cd:
a1:2e:26:b0:8b:b3:46:ea:1b:40:78:16:4c:5d:ed:
8c:f8:d2:83:bd:be:56:73:28:70:b1:e0:78:66:a4:
ce:59:72:ef:81:a8:48:d6:c5:c8:d5:55:ca:2d:03:
73:d6:8a:37:67:ca:e8:a0:0b:03:34:ed:bd:8d:e8:
e7:56:91:d6:55:9e:45:ee:97:38:77:80:2c:25:1c:
c5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:CF:CB:51:1D:D2:30:8C:09:27:E1:B6:50:FF:79:A3:07:2B:CD:B8
X509v3 Authority Key Identifier:
keyid:26:32:3A:4B:C0:9F:4A:66:92:5C:34:E7:A0:CD:05:9E:A1:ED:05:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c69b99fc2d2eefbdb75ba663d575a10ac84f78c1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f04334a6-8e56-4903-90f0-1a897fc935c5/451fd219711bb0ed38ca3878fe70872ee0fbfab0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f04334a6-8e56-4903-90f0-1a897fc935c5/c69b99fc2d2eefbdb75ba663d575a10ac84f78c1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.234.0.0/16
161.255.0.0/16
179.20.128.0/17
179.21.128.0/17
179.44.128.0/17
179.45.128.0/17
181.182.128.0/17
181.183.128.0/17
181.184.128.0/17
181.185.128.0/17
186.166.0.0/16
186.184.128.0-186.185.255.255
186.186.64.0/18
200.35.64.0/18
IPv6:
2800:6b0::/32
Signature Algorithm: sha256WithRSAEncryption
4e:a0:65:ce:8b:12:fa:ab:9f:01:bc:eb:e1:9a:63:c5:1a:5d:
6b:f9:d3:60:ce:e8:57:0e:a8:79:e8:fa:f7:ae:7c:6c:dc:66:
aa:13:cf:be:ec:77:e4:a6:11:fb:8a:db:a0:df:2e:6a:76:8f:
3c:08:33:84:ca:2e:1b:55:06:91:48:4f:48:bd:56:76:3c:ed:
72:37:8d:62:65:7c:67:14:1c:57:07:b2:74:6b:14:8d:81:ba:
5f:13:1b:c6:aa:c1:e8:5c:dc:dd:fa:88:79:dc:a2:61:95:33:
72:4f:df:5f:c5:aa:13:73:a1:60:77:3b:d3:d2:14:c5:fd:65:
e0:7c:78:7b:74:4d:66:1a:54:a8:27:60:83:88:28:18:88:39:
86:3b:ad:15:63:71:e2:6a:9a:25:5b:da:51:e2:0d:77:c1:10:
69:5a:b3:e9:b2:fe:92:75:b3:b9:74:f0:ad:94:91:fa:50:43:
24:03:59:06:93:ff:6e:7c:52:57:b2:d1:dd:19:08:79:51:25:
56:2b:eb:75:6a:f6:61:87:f7:10:20:87:ef:63:f0:56:74:5a:
f9:52:e0:36:92:00:97:66:1c:31:4c:d0:28:bd:79:ee:f9:02:
41:0c:8c:d3:8c:d5:e4:cd:14:cd:16:e2:40:d3:1f:c9:31:68:
a2:c3:ed:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:11 2024 by rpki-client on console-fra.rpki-client.org