Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/040ada4800b0a5e8bad89fcbd7bc4bd73fefdd49.roa
File: 040ada4800b0a5e8bad89fcbd7bc4bd73fefdd49.roa (raw, json)
Hash identifier: 58C57WCOG17b8NLw350R+iEorHahhmCXD2IETtO/GT4=
Subject key identifier: 3B:90:EF:02:F3:A7:F6:AA:7B:13:00:03:EB:1E:E1:86:C1:B3:8E:F8
Certificate issuer: /CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Certificate serial: 0DCFDA
Authority key identifier: A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/040ada4800b0a5e8bad89fcbd7bc4bd73fefdd49.roa
Signing time: Wed 24 Mar 2021 14:34:36 +0000
ROA not before: Wed 24 Mar 2021 14:34:35 +0000
ROA not after: Tue 24 Mar 2026 14:34:35 +0000
asID: 14080
IP address blocks: 186.86.28.0/22 maxlen: 24
186.144.124.0/22 maxlen: 24
190.147.138.0/23 maxlen: 24
186.144.32.0/22 maxlen: 24
190.156.206.0/23 maxlen: 24
181.51.20.0/22 maxlen: 24
186.87.108.0/22 maxlen: 24
186.145.0.0/16 maxlen: 24
186.81.102.0/23 maxlen: 24
186.81.196.0/22 maxlen: 22
190.84.28.0/22 maxlen: 22
190.156.48.0/22 maxlen: 22
190.159.136.0/22 maxlen: 22
200.118.236.0/22 maxlen: 22
190.144.224.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 905178 (0xdcfda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Validity
Not Before: Mar 24 14:34:35 2021 GMT
Not After : Mar 24 14:34:35 2026 GMT
Subject: CN=040ada4800b0a5e8bad89fcbd7bc4bd73fefdd49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1b:b7:8e:29:86:d3:03:cb:a0:c7:24:e7:27:
ff:57:66:42:31:c7:0b:35:40:bf:6e:fd:17:52:4b:
80:40:31:64:18:8f:71:08:f7:61:81:b4:56:57:4f:
33:ea:aa:24:29:88:13:7d:52:de:04:db:31:73:67:
6d:31:1b:2d:81:cf:51:8e:3e:f4:61:1c:ca:ba:0e:
65:a9:65:4b:b0:4e:01:da:4b:75:fa:91:b9:43:b9:
3f:a3:3b:c4:9c:4e:8a:7e:ad:0c:89:5e:66:c0:98:
39:d0:07:99:c1:44:7d:d0:e4:7d:bb:c1:64:5b:72:
72:37:8b:3c:66:3c:bd:c9:a0:37:83:6c:92:5f:88:
79:d1:12:e7:42:a9:20:7b:01:16:1e:8d:43:2c:79:
55:ca:c5:5d:1b:1b:01:4c:4b:4a:e4:07:4d:5b:69:
b1:33:fb:58:78:d0:45:3a:db:ce:04:b9:e3:8b:64:
f3:a2:21:ac:4a:20:27:34:15:f7:e8:19:0e:5e:6e:
c7:30:76:eb:46:45:31:54:00:eb:31:82:c8:c8:ac:
16:95:92:b7:c1:8b:07:f7:c6:d5:d5:b7:d1:4b:29:
91:d3:ff:1d:24:86:2b:cf:e7:fa:8b:ac:de:f0:0e:
c0:6e:89:bb:dc:0b:c3:2d:b8:7d:27:ed:80:99:d3:
36:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:90:EF:02:F3:A7:F6:AA:7B:13:00:03:EB:1E:E1:86:C1:B3:8E:F8
X509v3 Authority Key Identifier:
keyid:A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/040ada4800b0a5e8bad89fcbd7bc4bd73fefdd49.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/c1f68ecd3896b3288f83c29a2c3da44c821c7684.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.51.20.0/22
186.81.102.0/23
186.81.196.0/22
186.86.28.0/22
186.87.108.0/22
186.144.32.0/22
186.144.124.0/22
186.145.0.0/16
190.84.28.0/22
190.144.224.0/19
190.147.138.0/23
190.156.48.0/22
190.156.206.0/23
190.159.136.0/22
200.118.236.0/22
Signature Algorithm: sha256WithRSAEncryption
82:78:52:97:3b:32:ad:77:94:dd:92:a6:a0:50:5a:de:0d:d7:
d7:25:6c:28:08:fc:be:6c:38:37:b8:d2:6e:c3:a2:ea:cf:b4:
5a:cc:e3:67:de:86:82:d2:b1:7c:bb:41:f7:f1:fc:9a:9c:b5:
ca:f6:1e:9e:5f:4e:d2:76:49:0e:e9:1b:5b:c7:9b:43:f4:75:
b1:b3:45:32:02:23:82:29:8c:bd:b5:b3:55:ea:7c:ce:f9:91:
81:ee:fe:21:65:d0:32:a4:f3:ac:60:00:8c:03:38:e3:35:d5:
06:27:e0:6b:45:82:ee:09:bf:e1:23:a0:37:68:07:4d:de:17:
46:20:a2:fa:b4:1a:42:e0:b4:45:7e:2a:4a:a3:02:2f:4f:df:
7a:a7:ce:8d:d0:a3:be:d1:14:c1:16:1e:4f:11:15:29:54:65:
4f:62:75:10:de:1d:af:27:48:f3:59:88:36:73:da:e2:94:1d:
10:16:93:76:a2:88:67:eb:9e:f3:45:1f:ff:ea:2c:5a:ad:b0:
61:ea:2e:48:ca:b7:23:8b:51:fd:04:9d:59:b8:a3:a3:c1:8e:
18:85:5f:7f:83:f2:7f:cc:1a:21:b2:83:e8:97:cc:67:cc:14:
5f:7f:f3:f7:ca:44:f0:76:ae:45:71:de:9b:a7:e8:5f:0d:8b:
d0:05:0a:eb
-----BEGIN CERTIFICATE-----
MIIFkzCCBHugAwIBAgIDDc/aMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGMx
ZjY4ZWNkMzg5NmIzMjg4ZjgzYzI5YTJjM2RhNDRjODIxYzc2ODQwHhcNMjEwMzI0
MTQzNDM1WhcNMjYwMzI0MTQzNDM1WjAzMTEwLwYDVQQDEygwNDBhZGE0ODAwYjBh
NWU4YmFkODlmY2JkN2JjNGJkNzNmZWZkZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArRu3jimG0wPLoMck5yf/V2ZCMccLNUC/bv0XUkuAQDFkGI9x
CPdhgbRWV08z6qokKYgTfVLeBNsxc2dtMRstgc9Rjj70YRzKug5lqWVLsE4B2kt1
+pG5Q7k/ozvEnE6Kfq0MiV5mwJg50AeZwUR90OR9u8FkW3JyN4s8Zjy9yaA3g2yS
X4h50RLnQqkgewEWHo1DLHlVysVdGxsBTEtK5AdNW2mxM/tYeNBFOtvOBLnji2Tz
oiGsSiAnNBX36BkOXm7HMHbrRkUxVADrMYLIyKwWlZK3wYsH98bV1bfRSymR0/8d
JIYrz+f6i6ze8A7Abom73AvDLbh9J+2AmdM2CwIDAQABo4ICrjCCAqowHQYDVR0O
BBYEFDuQ7wLzp/aqexMAA+se4YbBs474MB8GA1UdIwQYMBaAFKhzgywDCRS4/QD1
P69G5JXZcRs8MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYzFmNjhl
Y2QzODk2YjMyODhmODNjMjlhMmMzZGE0NGM4MjFjNzY4NC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMDI0MTliOTItZmJiYS00MDRiLWEyMjktZjM4NjVk
NTdhNDZhLzA0MGFkYTQ4MDBiMGE1ZThiYWQ4OWZjYmQ3YmM0YmQ3M2ZlZmRkNDku
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8wMjQxOWI5Mi1mYmJhLTQwNGItYTIyOS1mMzg2
NWQ1N2E0NmEvYzFmNjhlY2QzODk2YjMyODhmODNjMjlhMmMzZGE0NGM4MjFjNzY4
NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjByBggrBgEFBQcBBwEB/wRj
MGEwXwQCAAEwWQMEArUzFAMEAbpRZgMEArpRxAMEArpWHAMEArpXbAMEArqQIAME
ArqQfAMDALqRAwQCvlQcAwQFvpDgAwQBvpOKAwQCvpwwAwQBvpzOAwQCvp+IAwQC
yHbsMA0GCSqGSIb3DQEBCwUAA4IBAQCCeFKXOzKtd5TdkqagUFreDdfXJWwoCPy+
bDg3uNJuw6Lqz7RazONn3oaC0rF8u0H38fyanLXK9h6eX07SdkkO6Rtbx5tD9HWx
s0UyAiOCKYy9tbNV6nzO+ZGB7v4hZdAypPOsYACMAzjjNdUGJ+BrRYLuCb/hI6A3
aAdN3hdGIKL6tBpC4LRFfipKowIvT996p86N0KO+0RTBFh5PERUpVGVPYnUQ3h2v
J0jzWYg2c9rilB0QFpN2oohn657zRR//6ixarbBh6i5Iyrcji1H9BJ1ZuKOjwY4Y
hV9/g/J/zBohsoPol8xnzBRff/P3ykTwdq5Fcd6bp+hfDYvQBQrr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:53 2024 by rpki-client on console-ams.rpki-client.org