Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f250093c-ba98-48b8-8c52-9abe57d52d4f/6be4e6a3a0e3203f6c862cb8f082b163c0641004.roa
File: 6be4e6a3a0e3203f6c862cb8f082b163c0641004.roa (raw, json)
Hash identifier: esd0SE3rF8Kr+a9MgslQbq9EPJ3kM1lOVN+d+apV/zo=
Subject key identifier: BF:44:E5:72:AB:BA:80:45:56:D7:0C:03:A8:AF:89:63:4C:3F:85:F4
Certificate issuer: /CN=0932ed7fc7587a11240901c76c1f6f64f3020149
Certificate serial: 0BA975
Authority key identifier: 63:E5:E7:0F:A2:3C:0C:80:83:7E:A1:FE:96:50:76:95:C0:CE:5E:FF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/0932ed7fc7587a11240901c76c1f6f64f3020149.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f250093c-ba98-48b8-8c52-9abe57d52d4f/6be4e6a3a0e3203f6c862cb8f082b163c0641004.roa
Signing time: Wed 24 Mar 2021 14:42:54 +0000
ROA not before: Wed 24 Mar 2021 14:42:52 +0000
ROA not after: Tue 24 Mar 2026 14:42:52 +0000
asID: 11172
IP address blocks: 143.202.156.0/22 maxlen: 24
148.244.0.0/16 maxlen: 24
189.206.0.0/16 maxlen: 24
192.190.30.0/23 maxlen: 24
192.207.204.0/23 maxlen: 24
200.52.112.0/20 maxlen: 24
200.56.112.0/20 maxlen: 24
200.76.0.0/18 maxlen: 24
200.76.128.0/18 maxlen: 24
200.94.0.0/17 maxlen: 24
200.94.128.0/19 maxlen: 24
201.151.0.0/16 maxlen: 24
201.163.0.0/16 maxlen: 24
207.248.224.0/19 maxlen: 24
2001:1248::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 764277 (0xba975)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0932ed7fc7587a11240901c76c1f6f64f3020149
Validity
Not Before: Mar 24 14:42:52 2021 GMT
Not After : Mar 24 14:42:52 2026 GMT
Subject: CN=6be4e6a3a0e3203f6c862cb8f082b163c0641004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d4:9f:2a:a0:93:b8:51:b7:af:bb:9d:dd:4e:
9b:de:e1:2e:a0:77:31:d7:34:7b:a4:59:f9:22:86:
a8:46:24:0d:cb:cd:58:d8:4b:ad:c0:de:05:56:9f:
ac:59:32:2f:18:1d:0f:e3:11:c4:73:ed:25:01:01:
e9:e2:a4:74:57:31:d2:1f:d2:e7:51:50:d8:6d:2f:
58:6b:21:3e:9b:16:83:3c:e1:34:27:ad:05:1c:c1:
03:54:63:73:d4:74:18:f3:d1:c4:5d:ef:ff:bf:2c:
02:9f:08:4e:cc:bc:3a:49:f2:a8:5d:4d:64:b8:e7:
51:77:83:a6:ea:f2:16:3a:2a:1a:2b:d5:ca:57:28:
fe:63:9b:b1:19:a0:9e:60:78:9b:4e:aa:3a:ba:62:
73:36:e9:ea:8c:08:b7:c2:9c:46:be:39:79:17:56:
de:7d:48:c1:8e:7b:59:ef:8f:d4:5e:a0:e0:31:28:
3e:67:90:87:85:c4:bd:ee:11:83:a3:3e:18:dc:5e:
3e:03:71:4c:af:5b:65:ac:39:a5:77:77:8b:e4:ff:
e0:5b:61:22:9e:0f:7c:f9:d9:8f:59:9b:da:a1:5f:
8e:33:e3:ee:ff:f7:97:fa:62:d7:19:27:25:20:2b:
f6:0c:dc:ba:38:3b:ef:c0:92:cf:26:54:5e:1c:65:
40:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:44:E5:72:AB:BA:80:45:56:D7:0C:03:A8:AF:89:63:4C:3F:85:F4
X509v3 Authority Key Identifier:
keyid:63:E5:E7:0F:A2:3C:0C:80:83:7E:A1:FE:96:50:76:95:C0:CE:5E:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/0932ed7fc7587a11240901c76c1f6f64f3020149.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f250093c-ba98-48b8-8c52-9abe57d52d4f/6be4e6a3a0e3203f6c862cb8f082b163c0641004.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f250093c-ba98-48b8-8c52-9abe57d52d4f/0932ed7fc7587a11240901c76c1f6f64f3020149.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.202.156.0/22
148.244.0.0/16
189.206.0.0/16
192.190.30.0/23
192.207.204.0/23
200.52.112.0/20
200.56.112.0/20
200.76.0.0/18
200.76.128.0/18
200.94.0.0-200.94.159.255
201.151.0.0/16
201.163.0.0/16
207.248.224.0/19
IPv6:
2001:1248::/32
Signature Algorithm: sha256WithRSAEncryption
9e:2f:1e:db:02:5a:b1:48:9b:19:9f:cb:de:da:8e:6d:ee:c3:
e8:8b:11:74:68:0e:d5:ad:3f:94:f6:ea:03:a4:6e:60:67:31:
70:30:e9:86:f3:c2:7b:f1:8d:4b:9c:cb:c4:f6:f3:4c:e7:bd:
15:79:ef:6c:a3:6f:ba:f3:a9:a1:bd:28:e9:b4:c6:c6:b8:f9:
3c:59:71:5e:ea:f4:e7:b6:d2:18:f5:fd:91:d6:91:35:37:b8:
84:b6:c1:39:96:ae:ff:08:b3:78:51:8d:b0:9c:a1:2b:7e:f6:
1c:14:93:a1:85:26:b7:c8:21:c7:f4:24:b4:c1:7a:95:69:c6:
8d:d9:84:f8:a0:c8:a0:fc:f9:d5:54:ef:1b:58:04:3b:94:6a:
05:69:3c:3c:61:5e:78:b7:4f:05:33:7a:0c:19:6e:93:3d:26:
64:bd:c2:92:b6:7d:ef:c1:3f:41:82:97:4c:a8:fc:d8:d3:df:
16:e8:78:70:60:82:2d:57:64:19:f8:f3:8b:c7:29:bf:e9:ba:
67:73:87:98:98:ac:65:8d:3f:bb:f8:8f:b7:04:18:e3:32:f3:
5c:99:0a:9a:7a:41:aa:65:d4:ca:49:bf:4e:8d:d1:6a:bc:b3:
6b:cf:cb:fe:c1:59:07:a3:9e:d1:10:ee:6f:88:c7:33:18:4c:
b8:10:cf:c7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:12 2024 by rpki-client on console-fra.rpki-client.org