Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/1a117fd8a6098ce024f59907bae85fde47d9b2ed.roa
File: 1a117fd8a6098ce024f59907bae85fde47d9b2ed.roa (raw, json)
Hash identifier: ZqO87qPxm4aLIFJqQTK3omhcKdkSQK+5gR+rlUyeAB4=
Subject key identifier: E8:EA:AE:94:48:27:91:2A:7B:DD:9D:29:45:42:45:3A:30:EC:B6:BF
Certificate issuer: /CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Certificate serial: 22C3F3
Authority key identifier: A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/1a117fd8a6098ce024f59907bae85fde47d9b2ed.roa
Signing time: Tue 14 Feb 2023 02:16:39 +0000
ROA not before: Wed 21 Apr 2021 03:00:00 +0000
ROA not after: Thu 27 Apr 2023 03:00:00 +0000
asID: 14080
IP address blocks: 190.144.192.0/19 maxlen: 19
181.49.224.0/19 maxlen: 29
186.85.72.0/22 maxlen: 24
200.118.0.0/16 maxlen: 24
186.145.4.0/22 maxlen: 24
190.84.213.0/24 maxlen: 24
190.84.214.0/24 maxlen: 24
190.158.6.0/24 maxlen: 24
190.158.7.0/24 maxlen: 24
190.158.10.0/24 maxlen: 24
190.158.11.0/24 maxlen: 24
190.159.0.0/16 maxlen: 24
190.157.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2278387 (0x22c3f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1f68ecd3896b3288f83c29a2c3da44c821c7684
Validity
Not Before: Apr 21 03:00:00 2021 GMT
Not After : Apr 27 03:00:00 2023 GMT
Subject: CN=1a117fd8a6098ce024f59907bae85fde47d9b2ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:31:63:75:39:fa:b0:55:23:55:30:3b:9a:13:
f1:88:60:b4:51:5c:71:53:52:34:5c:57:96:2a:22:
d7:e7:46:27:2c:b2:17:44:87:bc:53:7f:72:74:67:
fe:8b:cb:36:34:b0:b3:34:64:07:a2:29:20:77:4a:
ee:f4:26:c3:5e:14:e4:fc:68:e0:37:ac:94:b3:14:
35:8f:e6:fb:df:b6:08:e5:24:25:9a:53:53:80:96:
b2:67:6e:17:f9:f3:b0:e7:b1:d1:d5:df:f8:98:9e:
db:62:3d:50:55:5d:ca:1a:68:9f:fe:23:67:1f:28:
b4:a1:35:89:c3:aa:a9:4e:b5:b3:e0:aa:ac:ef:4e:
95:9d:4e:77:9e:ca:99:30:59:6c:d3:71:df:5a:51:
52:7e:59:f8:e2:9f:f8:3f:84:0a:a6:c4:dd:e4:c5:
5b:98:c1:a0:dc:2c:a8:45:82:80:03:1f:ad:5e:38:
30:2d:d3:45:1e:b7:91:27:bd:f6:23:9a:66:6a:6b:
82:d3:9e:9c:7e:30:58:f1:2f:c4:7d:cc:24:de:44:
b6:de:72:b4:67:f7:ca:3c:54:ab:2a:ab:80:08:25:
ae:18:bb:15:78:9b:98:37:b0:4e:a6:07:50:b9:dd:
59:d2:60:df:4b:47:84:d5:ba:1f:79:1b:6e:16:0a:
da:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:EA:AE:94:48:27:91:2A:7B:DD:9D:29:45:42:45:3A:30:EC:B6:BF
X509v3 Authority Key Identifier:
keyid:A8:73:83:2C:03:09:14:B8:FD:00:F5:3F:AF:46:E4:95:D9:71:1B:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1f68ecd3896b3288f83c29a2c3da44c821c7684.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/1a117fd8a6098ce024f59907bae85fde47d9b2ed.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/02419b92-fbba-404b-a229-f3865d57a46a/c1f68ecd3896b3288f83c29a2c3da44c821c7684.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.49.224.0/19
186.85.72.0/22
186.145.4.0/22
190.84.213.0-190.84.214.255
190.144.192.0/19
190.157.216.0/22
190.158.6.0/23
190.158.10.0/23
190.159.0.0/16
200.118.0.0/16
Signature Algorithm: sha256WithRSAEncryption
28:56:0d:90:0f:35:53:b3:d0:8a:90:9b:2b:b8:40:79:93:27:
9d:5a:ff:bd:c4:90:dc:4a:1d:69:40:3b:49:9b:3b:b7:52:bd:
92:12:46:21:7a:e8:37:dc:80:32:96:01:46:15:8a:24:2c:c8:
79:11:1e:4e:af:82:66:b9:42:84:1c:b0:d8:f2:69:56:97:3c:
ab:8f:d2:a9:8a:8d:f9:5d:1e:cd:fc:ad:28:46:24:de:30:56:
9b:53:89:95:8d:c4:c6:17:5f:06:fe:12:2d:b5:aa:43:a7:b6:
05:a8:50:e3:16:c1:85:df:52:66:0b:42:ab:16:4e:94:7b:1a:
bf:34:ee:bb:7a:ba:fa:2c:b9:16:c4:42:be:fa:5b:2e:85:47:
c8:de:cc:b9:e2:ac:2c:29:37:34:99:89:54:be:e1:3a:e8:05:
ed:8d:77:b3:3a:10:c1:0d:1d:43:05:97:09:c8:05:39:44:64:
c4:0a:52:10:87:4b:a4:75:d5:8e:d1:66:4b:9e:40:76:16:08:
4f:41:bf:15:08:76:88:c4:70:bd:15:68:23:00:b2:1b:9a:b3:
16:8f:31:3c:1b:c6:33:de:8b:d8:c3:7e:3d:f9:4c:5a:fa:ef:
e3:64:15:d5:25:9b:ed:e2:43:d4:d3:03:f4:20:97:a4:61:71:
30:61:0e:b8
-----BEGIN CERTIFICATE-----
MIIFfDCCBGSgAwIBAgIDIsPzMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGMx
ZjY4ZWNkMzg5NmIzMjg4ZjgzYzI5YTJjM2RhNDRjODIxYzc2ODQwHhcNMjEwNDIx
MDMwMDAwWhcNMjMwNDI3MDMwMDAwWjAzMTEwLwYDVQQDEygxYTExN2ZkOGE2MDk4
Y2UwMjRmNTk5MDdiYWU4NWZkZTQ3ZDliMmVkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtjFjdTn6sFUjVTA7mhPxiGC0UVxxU1I0XFeWKiLX50YnLLIX
RIe8U39ydGf+i8s2NLCzNGQHoikgd0ru9CbDXhTk/GjgN6yUsxQ1j+b737YI5SQl
mlNTgJayZ24X+fOw57HR1d/4mJ7bYj1QVV3KGmif/iNnHyi0oTWJw6qpTrWz4Kqs
706VnU53nsqZMFls03HfWlFSfln44p/4P4QKpsTd5MVbmMGg3CyoRYKAAx+tXjgw
LdNFHreRJ732I5pmamuC056cfjBY8S/Efcwk3kS23nK0Z/fKPFSrKquACCWuGLsV
eJuYN7BOpgdQud1Z0mDfS0eE1bofeRtuFgrapQIDAQABo4IClzCCApMwHQYDVR0O
BBYEFOjqrpRIJ5Eqe92dKUVCRTow7La/MB8GA1UdIwQYMBaAFKhzgywDCRS4/QD1
P69G5JXZcRs8MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYzFmNjhl
Y2QzODk2YjMyODhmODNjMjlhMmMzZGE0NGM4MjFjNzY4NC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMDI0MTliOTItZmJiYS00MDRiLWEyMjktZjM4NjVk
NTdhNDZhLzFhMTE3ZmQ4YTYwOThjZTAyNGY1OTkwN2JhZTg1ZmRlNDdkOWIyZWQu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8wMjQxOWI5Mi1mYmJhLTQwNGItYTIyOS1mMzg2
NWQ1N2E0NmEvYzFmNjhlY2QzODk2YjMyODhmODNjMjlhMmMzZGE0NGM4MjFjNzY4
NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBggrBgEFBQcBBwEB/wRM
MEowSAQCAAEwQgMEBbUx4AMEArpVSAMEArqRBDAMAwQAvlTVAwQAvlTWAwQFvpDA
AwQCvp3YAwQBvp4GAwQBvp4KAwMAvp8DAwDIdjANBgkqhkiG9w0BAQsFAAOCAQEA
KFYNkA81U7PQipCbK7hAeZMnnVr/vcSQ3EodaUA7SZs7t1K9khJGIXroN9yAMpYB
RhWKJCzIeREeTq+CZrlChByw2PJpVpc8q4/SqYqN+V0ezfytKEYk3jBWm1OJlY3E
xhdfBv4SLbWqQ6e2BahQ4xbBhd9SZgtCqxZOlHsavzTuu3q6+iy5FsRCvvpbLoVH
yN7MueKsLCk3NJmJVL7hOugF7Y13szoQwQ0dQwWXCcgFOURkxApSEIdLpHXVjtFm
S55AdhYIT0G/FQh2iMRwvRVoIwCyG5qzFo8xPBvGM96L2MN+PflMWvrv42QV1SWb
7eJD1NMD9CCXpGFxMGEOuA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:54 2024 by rpki-client on console-ams.rpki-client.org