Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1dc18f07-ba20-4380-8afd-8cafade4058f/1b732667d8bb684185cf9986b756d640b23b11e4.roa
File:                     1b732667d8bb684185cf9986b756d640b23b11e4.roa (raw, json)
Hash identifier:          6UBmZ5kFPwvHcq6/5TrnI2EA1J4gU7mEOSRV5O+W4J8=
Subject key identifier:   E5:D1:7A:A5:E0:05:ED:3B:4F:6A:33:32:C8:61:89:AE:67:90:9F:3E
Certificate issuer:       /CN=e10299c1af81d7fbd554ad8da2099da215779551
Certificate serial:       160BF4
Authority key identifier: F4:DE:D6:0D:E4:4B:6E:A9:9A:05:7E:76:40:6D:04:7E:81:9D:D0:30
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e10299c1af81d7fbd554ad8da2099da215779551.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1dc18f07-ba20-4380-8afd-8cafade4058f/1b732667d8bb684185cf9986b756d640b23b11e4.roa
Signing time:             Thu 17 Feb 2022 22:18:25 +0000
ROA not before:           Thu 17 Feb 2022 03:00:00 +0000
ROA not after:            Wed 17 Feb 2027 03:00:00 +0000
asID:                     27884
IP address blocks:        45.4.136.0/22 maxlen: 24
                          131.72.208.0/22 maxlen: 24
                          138.94.120.0/22 maxlen: 24
                          143.0.236.0/22 maxlen: 24
                          143.208.16.0/22 maxlen: 24
                          190.6.192.0/20 maxlen: 24
                          190.92.0.0/19 maxlen: 24
                          190.92.32.0/19 maxlen: 24
                          190.92.64.0/19 maxlen: 24
                          190.211.136.0/22 maxlen: 24
                          201.158.48.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1444852 (0x160bf4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e10299c1af81d7fbd554ad8da2099da215779551
        Validity
            Not Before: Feb 17 03:00:00 2022 GMT
            Not After : Feb 17 03:00:00 2027 GMT
        Subject: CN=1b732667d8bb684185cf9986b756d640b23b11e4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:37:83:ea:9e:89:96:7c:f1:3d:20:e9:84:f5:
                    4e:f1:95:fd:50:81:be:7b:70:e6:d0:14:61:38:b9:
                    6c:0e:a1:47:a6:c5:b7:25:47:7a:03:a3:be:f3:d7:
                    3d:7e:96:96:5f:9b:12:76:3c:82:9a:f4:06:e6:07:
                    6b:ce:4b:a8:37:c6:63:27:64:80:02:44:07:ce:21:
                    ab:5c:1a:38:8f:e4:40:de:66:24:51:98:2e:bd:76:
                    f0:ee:48:db:ec:43:31:a8:c6:4f:ae:85:18:0f:4f:
                    45:77:47:93:9a:51:c2:e1:c4:d6:f8:b5:fb:2f:03:
                    dc:86:f7:41:57:0a:10:d4:3c:e9:2a:ca:fd:4d:b4:
                    d4:12:71:65:34:42:3c:61:1d:d1:23:1b:c8:b9:c9:
                    cc:4f:10:cd:6b:4c:a5:7f:42:a0:1b:b0:df:5d:72:
                    94:16:f0:17:33:b1:da:d9:fb:bd:0b:10:da:5d:f7:
                    76:20:26:e8:b7:b0:d6:d8:b6:75:ea:96:62:dd:37:
                    29:d2:ec:fb:74:92:a8:6c:bf:40:9b:e9:09:aa:5b:
                    e0:00:2b:62:fe:03:f8:bf:e6:8e:0a:83:bb:1b:e2:
                    36:c7:27:02:da:ca:e7:ce:7f:c3:9b:c1:64:37:8f:
                    14:a4:3e:68:e8:94:35:72:e4:5d:44:50:c9:87:20:
                    3b:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:D1:7A:A5:E0:05:ED:3B:4F:6A:33:32:C8:61:89:AE:67:90:9F:3E
            X509v3 Authority Key Identifier:
                keyid:F4:DE:D6:0D:E4:4B:6E:A9:9A:05:7E:76:40:6D:04:7E:81:9D:D0:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e10299c1af81d7fbd554ad8da2099da215779551.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1dc18f07-ba20-4380-8afd-8cafade4058f/1b732667d8bb684185cf9986b756d640b23b11e4.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1dc18f07-ba20-4380-8afd-8cafade4058f/e10299c1af81d7fbd554ad8da2099da215779551.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.4.136.0/22
                  131.72.208.0/22
                  138.94.120.0/22
                  143.0.236.0/22
                  143.208.16.0/22
                  190.6.192.0/20
                  190.92.0.0-190.92.95.255
                  190.211.136.0/22
                  201.158.48.0/22

    Signature Algorithm: sha256WithRSAEncryption
         25:f3:ab:77:40:19:49:be:0a:28:44:b3:02:ef:ae:79:10:56:
         4d:50:7b:8d:67:3d:4d:10:65:4f:83:40:8a:e5:ac:f2:0c:72:
         a0:bf:06:20:5f:47:7a:1f:91:19:0c:60:df:ae:01:0c:60:28:
         65:e4:68:04:62:19:5d:e0:d4:2d:fc:3f:77:da:fe:ef:21:ba:
         6e:3b:7e:e3:32:13:55:fc:1f:38:0b:99:d2:08:7e:5b:a5:35:
         3c:5f:11:15:6f:6b:66:6b:e9:df:b4:f4:6c:06:5c:d8:cc:bb:
         4d:23:c0:b2:f3:f8:f4:40:cc:0b:9f:44:32:e2:8c:4d:60:ad:
         f9:e6:66:ac:e8:b9:57:24:fa:8e:0e:f0:ef:ad:3b:16:21:b8:
         b6:3b:8d:fd:22:52:ce:a9:9c:47:7c:c3:f4:8d:1f:89:eb:16:
         64:5c:f0:df:4c:5f:e8:d9:67:c2:7a:12:d7:9e:d8:89:d4:1a:
         1c:20:be:e5:f2:46:21:0a:b9:58:4f:bd:59:cf:e5:43:f9:0a:
         98:3c:52:60:2d:b3:31:67:90:08:32:61:92:0e:dc:23:80:aa:
         16:d2:78:a0:08:69:ed:42:ab:7a:42:39:08:1d:38:72:ed:57:
         53:8f:f0:25:c6:23:6e:86:9b:75:de:05:41:44:67:c1:86:43:
         19:fe:3c:28
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgIDFgv0MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUx
MDI5OWMxYWY4MWQ3ZmJkNTU0YWQ4ZGEyMDk5ZGEyMTU3Nzk1NTEwHhcNMjIwMjE3
MDMwMDAwWhcNMjcwMjE3MDMwMDAwWjAzMTEwLwYDVQQDEygxYjczMjY2N2Q4YmI2
ODQxODVjZjk5ODZiNzU2ZDY0MGIyM2IxMWU0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAgzeD6p6JlnzxPSDphPVO8ZX9UIG+e3Dm0BRhOLlsDqFHpsW3
JUd6A6O+89c9fpaWX5sSdjyCmvQG5gdrzkuoN8ZjJ2SAAkQHziGrXBo4j+RA3mYk
UZguvXbw7kjb7EMxqMZProUYD09Fd0eTmlHC4cTW+LX7LwPchvdBVwoQ1DzpKsr9
TbTUEnFlNEI8YR3RIxvIucnMTxDNa0ylf0KgG7DfXXKUFvAXM7Ha2fu9CxDaXfd2
ICbot7DW2LZ16pZi3Tcp0uz7dJKobL9Am+kJqlvgACti/gP4v+aOCoO7G+I2xycC
2srnzn/Dm8FkN48UpD5o6JQ1cuRdRFDJhyA7swIDAQABo4ICkjCCAo4wHQYDVR0O
BBYEFOXReqXgBe07T2ozMshhia5nkJ8+MB8GA1UdIwQYMBaAFPTe1g3kS26pmgV+
dkBtBH6BndAwMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZTEwMjk5
YzFhZjgxZDdmYmQ1NTRhZDhkYTIwOTlkYTIxNTc3OTU1MS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMWRjMThmMDctYmEyMC00MzgwLThhZmQtOGNhZmFk
ZTQwNThmLzFiNzMyNjY3ZDhiYjY4NDE4NWNmOTk4NmI3NTZkNjQwYjIzYjExZTQu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8xZGMxOGYwNy1iYTIwLTQzODAtOGFmZC04Y2Fm
YWRlNDA1OGYvZTEwMjk5YzFhZjgxZDdmYmQ1NTRhZDhkYTIwOTlkYTIxNTc3OTU1
MS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBggrBgEFBQcBBwEB/wRH
MEUwQwQCAAEwPQMEAi0EiAMEAoNI0AMEAopeeAMEAo8A7AMEAo/QEAMEBL4GwDAL
AwMCvlwDBAW+XEADBAK+04gDBALJnjAwDQYJKoZIhvcNAQELBQADggEBACXzq3dA
GUm+CihEswLvrnkQVk1Qe41nPU0QZU+DQIrlrPIMcqC/BiBfR3ofkRkMYN+uAQxg
KGXkaARiGV3g1C38P3fa/u8hum47fuMyE1X8HzgLmdIIflulNTxfERVva2Zr6d+0
9GwGXNjMu00jwLLz+PRAzAufRDLijE1grfnmZqzouVck+o4O8O+tOxYhuLY7jf0i
Us6pnEd8w/SNH4nrFmRc8N9MX+jZZ8J6Etee2InUGhwgvuXyRiEKuVhPvVnP5UP5
Cpg8UmAtszFnkAgyYZIO3COAqhbSeKAIae1Cq3pCOQgdOHLtV1OP8CXGI26Gm3Xe
BUFEZ8GGQxn+PCg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:02 2024 by rpki-client on console-ams.rpki-client.org