Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/15c2558a-1d51-4566-a755-b79b45a14a63/f0fe67b1ebf889380fc1698533eca2a51fc7e687.roa
File: f0fe67b1ebf889380fc1698533eca2a51fc7e687.roa (raw, json)
Hash identifier: Rc5Dl9Rl0y0j71LxpCV6WDZTHx+oETahbLYXAbSYCNA=
Subject key identifier: CB:93:72:04:B6:FF:A0:45:2E:98:DE:4E:B2:10:EA:CD:D8:F3:1E:45
Certificate issuer: /CN=49acb4fa1985b3a9a0355a4a9fa5bf64d61c6145
Certificate serial: 0ECAF0
Authority key identifier: 86:C6:F5:E4:00:61:03:3C:95:A1:25:D0:DD:5E:0E:4F:35:83:1A:3E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/49acb4fa1985b3a9a0355a4a9fa5bf64d61c6145.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/15c2558a-1d51-4566-a755-b79b45a14a63/f0fe67b1ebf889380fc1698533eca2a51fc7e687.roa
Signing time: Fri 28 May 2021 23:17:20 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 262191
IP address blocks: 138.121.12.0/22 maxlen: 24
168.228.124.0/24 maxlen: 24
190.131.192.0/23 maxlen: 24
190.131.194.0/24 maxlen: 24
190.131.196.0/22 maxlen: 24
190.131.200.0/21 maxlen: 24
190.131.208.0/24 maxlen: 24
190.131.209.0/24 maxlen: 24
190.131.211.0/24 maxlen: 24
190.131.212.0/22 maxlen: 24
190.131.216.0/24 maxlen: 24
190.131.217.0/24 maxlen: 24
190.131.218.0/23 maxlen: 24
190.131.220.0/23 maxlen: 24
190.131.223.0/24 maxlen: 24
190.131.224.0/19 maxlen: 24
2800:b70:2::/47 maxlen: 48
2800:b70:4::/46 maxlen: 48
2800:b70:8::/47 maxlen: 48
2800:b70:a::/48 maxlen: 48
2800:b70:e::/47 maxlen: 48
2800:b70:11::/48 maxlen: 48
2800:b70:102::/48 maxlen: 48
2800:b70:400::/48 maxlen: 48
2800:b70:801::/48 maxlen: 48
2800:b70:12::/48 maxlen: 48
2800:b70:2000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 969456 (0xecaf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49acb4fa1985b3a9a0355a4a9fa5bf64d61c6145
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=f0fe67b1ebf889380fc1698533eca2a51fc7e687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cf:ab:87:67:45:19:31:2d:28:f0:53:2f:b4:
f6:2c:05:20:8b:0c:3d:91:2d:31:ee:f1:35:0e:a8:
3c:74:f1:38:5e:df:10:fb:f8:68:3b:22:6f:eb:5b:
ea:02:c9:b5:ba:6d:8e:e8:f5:b9:9e:a5:4b:a8:fb:
98:2a:61:cc:fd:e4:09:6a:65:53:a5:96:39:21:67:
23:3f:fc:61:be:ab:8a:4e:d1:35:38:19:17:f9:4f:
e2:59:ed:18:5f:0b:06:81:c3:cf:1e:ba:af:24:d5:
e2:18:3e:a6:e9:ab:5b:cc:51:58:ed:0d:c7:96:99:
a3:56:14:d8:2f:da:c8:ca:ea:54:f3:12:54:a5:bd:
94:9e:ce:be:93:f4:e7:f7:d7:8c:c5:18:57:56:54:
db:f7:e3:cb:08:b4:03:b1:00:03:ee:1a:98:79:b8:
c7:24:df:8a:e0:f9:6a:a4:d7:9b:fe:4f:24:77:c8:
75:08:91:de:59:fc:b6:af:ce:0e:9b:93:4f:f5:b1:
44:30:d5:84:fd:52:d7:70:bb:7f:30:e3:6b:7f:d6:
cb:40:5e:a3:44:a0:df:41:67:73:9b:51:60:3a:a4:
c1:62:57:5a:07:18:3a:6b:fb:00:3f:8c:a4:4d:09:
88:10:fe:e7:c8:0f:61:76:7c:af:e8:0b:a4:a5:cc:
9c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:93:72:04:B6:FF:A0:45:2E:98:DE:4E:B2:10:EA:CD:D8:F3:1E:45
X509v3 Authority Key Identifier:
keyid:86:C6:F5:E4:00:61:03:3C:95:A1:25:D0:DD:5E:0E:4F:35:83:1A:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/49acb4fa1985b3a9a0355a4a9fa5bf64d61c6145.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/15c2558a-1d51-4566-a755-b79b45a14a63/f0fe67b1ebf889380fc1698533eca2a51fc7e687.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/15c2558a-1d51-4566-a755-b79b45a14a63/49acb4fa1985b3a9a0355a4a9fa5bf64d61c6145.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.121.12.0/22
168.228.124.0/24
190.131.192.0-190.131.194.255
190.131.196.0-190.131.209.255
190.131.211.0-190.131.221.255
190.131.223.0-190.131.255.255
IPv6:
2800:b70:2::-2800:b70:a:ffff:ffff:ffff:ffff:ffff
2800:b70:e::/47
2800:b70:11::-2800:b70:12:ffff:ffff:ffff:ffff:ffff
2800:b70:102::/48
2800:b70:400::/48
2800:b70:801::/48
2800:b70:2000::/48
Signature Algorithm: sha256WithRSAEncryption
80:3e:a5:a9:76:bd:3f:6b:53:93:d2:64:34:a4:d5:ae:66:2f:
35:9c:36:55:b2:02:fb:eb:5b:2d:4e:7e:85:01:1a:06:42:8b:
68:18:b1:6b:1c:85:34:1c:02:fa:72:e3:42:4d:b7:b4:ad:d1:
b2:0d:f6:23:58:68:1a:52:df:b8:62:e0:f8:4b:fd:45:5b:18:
29:b3:d1:b1:5f:5d:ad:93:87:b6:4a:4c:1d:f5:35:9e:f6:5f:
ba:6e:9b:35:f7:20:ee:5a:32:0b:21:b0:c7:d3:34:8d:3c:63:
c8:9d:74:07:3d:10:2d:5d:84:f7:13:50:6c:db:3e:8d:86:8a:
be:77:a8:b0:59:f5:46:ed:7e:08:f7:7d:49:f1:6b:ba:34:25:
e7:99:72:bd:21:a3:d8:b3:5b:d6:e4:90:75:67:69:a4:27:dd:
e8:31:fc:e4:9e:60:8c:a4:b0:70:b2:28:de:e8:5e:70:b1:36:
fe:6d:2a:d4:d7:1b:2c:68:f9:7e:46:d6:cd:00:88:8a:2a:9d:
63:f2:0e:5a:fd:bb:05:e6:b3:9f:15:87:7c:43:00:86:26:82:
bb:f8:16:af:14:d1:36:c8:d0:69:5e:96:e6:69:3e:83:85:44:
6b:89:a3:0a:bb:77:a8:6c:27:ef:07:1b:23:5f:ca:fc:26:12:
5b:bf:70:22
-----BEGIN CERTIFICATE-----
MIIF3TCCBMWgAwIBAgIDDsrwMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDQ5
YWNiNGZhMTk4NWIzYTlhMDM1NWE0YTlmYTViZjY0ZDYxYzYxNDUwHhcNMjEwMzI0
MDMwMDAwWhcNMjYwMzI0MDMwMDAwWjAzMTEwLwYDVQQDEyhmMGZlNjdiMWViZjg4
OTM4MGZjMTY5ODUzM2VjYTJhNTFmYzdlNjg3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAos+rh2dFGTEtKPBTL7T2LAUgiww9kS0x7vE1Dqg8dPE4Xt8Q
+/hoOyJv61vqAsm1um2O6PW5nqVLqPuYKmHM/eQJamVTpZY5IWcjP/xhvquKTtE1
OBkX+U/iWe0YXwsGgcPPHrqvJNXiGD6m6atbzFFY7Q3HlpmjVhTYL9rIyupU8xJU
pb2Uns6+k/Tn99eMxRhXVlTb9+PLCLQDsQAD7hqYebjHJN+K4PlqpNeb/k8kd8h1
CJHeWfy2r84Om5NP9bFEMNWE/VLXcLt/MONrf9bLQF6jRKDfQWdzm1FgOqTBYlda
Bxg6a/sAP4ykTQmIEP7nyA9hdnyv6AukpcycUQIDAQABo4IC+DCCAvQwHQYDVR0O
BBYEFMuTcgS2/6BFLpjeTrIQ6s3Y8x5FMB8GA1UdIwQYMBaAFIbG9eQAYQM8laEl
0N1eDk81gxo+MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNDlhY2I0
ZmExOTg1YjNhOWEwMzU1YTRhOWZhNWJmNjRkNjFjNjE0NS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMTVjMjU1OGEtMWQ1MS00NTY2LWE3NTUtYjc5YjQ1
YTE0YTYzL2YwZmU2N2IxZWJmODg5MzgwZmMxNjk4NTMzZWNhMmE1MWZjN2U2ODcu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8xNWMyNTU4YS0xZDUxLTQ1NjYtYTc1NS1iNzli
NDVhMTRhNjMvNDlhY2I0ZmExOTg1YjNhOWEwMzU1YTRhOWZhNWJmNjRkNjFjNjE0
NS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCBuwYIKwYBBQUHAQcBAf8E
gaswgagwSQQCAAEwQwMEAop5DAMEAKjkfDAMAwQGvoPAAwQAvoPCMAwDBAK+g8QD
BAG+g9AwDAMEAL6D0wMEAb6D3DALAwQAvoPfAwMCvoAwWwQCAAIwVTASAwcBKAAL
cAACAwcAKAALcAAKAwcBKAALcAAOMBIDBwAoAAtwABEDBwAoAAtwABIDBwAoAAtw
AQIDBwAoAAtwBAADBwAoAAtwCAEDBwAoAAtwIAAwDQYJKoZIhvcNAQELBQADggEB
AIA+pal2vT9rU5PSZDSk1a5mLzWcNlWyAvvrWy1OfoUBGgZCi2gYsWschTQcAvpy
40JNt7St0bIN9iNYaBpS37hi4PhL/UVbGCmz0bFfXa2Th7ZKTB31NZ72X7pumzX3
IO5aMgshsMfTNI08Y8iddAc9EC1dhPcTUGzbPo2Gir53qLBZ9Ubtfgj3fUnxa7o0
JeeZcr0ho9izW9bkkHVnaaQn3egx/OSeYIyksHCyKN7oXnCxNv5tKtTXGyxo+X5G
1s0AiIoqnWPyDlr9uwXms58Vh3xDAIYmgrv4Fq8U0TbI0GleluZpPoOFRGuJowq7
d6hsJ+8HGyNfyvwmElu/cCI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-ams.rpki-client.org