Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/48a13d310e7a5690384cb31d520fa76c807e21ec.roa
File: 48a13d310e7a5690384cb31d520fa76c807e21ec.roa (raw, json)
Hash identifier: XTkE9reJChsd+KMVjK3l55faZxT8cMZfNZAn96gu+QU=
Subject key identifier: 70:07:EB:CE:EC:E1:53:89:24:C9:BE:FF:54:75:21:AD:FB:DF:34:DF
Certificate issuer: /CN=ce24136a35f10502f080a99eec6f12882d2f04fa
Certificate serial: 155F41
Authority key identifier: 2B:BF:EF:19:5F:7B:40:83:DF:37:7B:2F:FB:C7:7B:50:DD:10:0A:E3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ce24136a35f10502f080a99eec6f12882d2f04fa.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/48a13d310e7a5690384cb31d520fa76c807e21ec.roa
Signing time: Mon 31 Jan 2022 20:02:23 +0000
ROA not before: Sun 02 May 2021 03:00:00 +0000
ROA not after: Tue 02 May 2023 03:00:00 +0000
asID: 1239
IP address blocks: 191.96.122.0/24 maxlen: 24
191.96.129.0/24 maxlen: 24
191.96.134.0/24 maxlen: 24
191.96.62.0/24 maxlen: 24
191.96.167.0/24 maxlen: 24
191.96.31.0/24 maxlen: 24
191.96.38.0/24 maxlen: 24
191.96.154.0/24 maxlen: 24
191.96.193.0/24 maxlen: 24
181.215.21.0/24 maxlen: 24
181.214.146.0/24 maxlen: 24
181.214.245.0/24 maxlen: 24
181.215.31.0/24 maxlen: 24
181.215.35.0/24 maxlen: 24
191.96.29.0/24 maxlen: 24
191.96.34.0/24 maxlen: 24
191.96.61.0/24 maxlen: 24
191.96.94.0/24 maxlen: 24
181.214.78.0/23 maxlen: 24
181.215.252.0/23 maxlen: 24
181.214.84.0/23 maxlen: 24
191.101.202.0/23 maxlen: 24
181.214.197.0/24 maxlen: 24
181.214.198.0/24 maxlen: 24
191.101.187.0/24 maxlen: 24
181.214.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1400641 (0x155f41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce24136a35f10502f080a99eec6f12882d2f04fa
Validity
Not Before: May 2 03:00:00 2021 GMT
Not After : May 2 03:00:00 2023 GMT
Subject: CN=48a13d310e7a5690384cb31d520fa76c807e21ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3f:ab:10:41:f2:cd:8f:e6:c7:5c:ea:73:5e:
35:53:f6:d8:38:ef:75:e7:0d:15:bd:6d:8b:1c:8f:
5f:40:aa:22:b7:9c:93:79:9b:e1:3b:f7:31:20:3f:
7f:c8:2d:3a:9a:dd:d7:ea:20:e6:b6:67:43:d1:2c:
88:dd:cb:a9:a8:bb:82:4c:52:f6:30:b4:4d:84:c0:
59:b5:fc:9a:9a:1a:e7:2d:12:06:cf:68:7e:b7:eb:
e7:1f:80:ca:e4:9d:87:99:4c:a8:ed:b3:fa:67:47:
1d:c3:32:f6:b9:d9:88:28:1a:a8:14:77:11:05:5e:
6c:cf:fb:e0:fb:26:5d:ff:0d:cb:e4:17:42:4a:a1:
d2:ef:60:5d:2e:05:ec:74:65:fe:ca:ab:c3:7a:55:
68:90:1a:47:c2:1e:1e:1c:8e:7e:47:15:3f:cb:b4:
9b:3d:ab:0d:4f:f9:cc:cf:68:f0:1c:08:a3:43:fe:
46:cc:a2:c0:ed:9d:36:75:17:a1:7d:32:28:85:15:
64:da:25:04:81:5f:39:87:80:44:f1:27:43:4e:ef:
0f:af:ab:c3:cb:11:d1:22:f9:f3:50:58:4e:a6:e3:
e4:3c:10:25:f6:0a:d7:d5:ba:fb:a4:cd:2c:5f:4f:
98:7b:61:96:63:e7:1a:7e:73:26:52:21:7f:42:36:
5e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:07:EB:CE:EC:E1:53:89:24:C9:BE:FF:54:75:21:AD:FB:DF:34:DF
X509v3 Authority Key Identifier:
keyid:2B:BF:EF:19:5F:7B:40:83:DF:37:7B:2F:FB:C7:7B:50:DD:10:0A:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ce24136a35f10502f080a99eec6f12882d2f04fa.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/48a13d310e7a5690384cb31d520fa76c807e21ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1ef4b066-e4d2-4e53-839e-8bdffb17a52b/ce24136a35f10502f080a99eec6f12882d2f04fa.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.214.78.0/23
181.214.84.0/23
181.214.146.0/24
181.214.197.0-181.214.198.255
181.214.219.0/24
181.214.245.0/24
181.215.21.0/24
181.215.31.0/24
181.215.35.0/24
181.215.252.0/23
191.96.29.0/24
191.96.31.0/24
191.96.34.0/24
191.96.38.0/24
191.96.61.0-191.96.62.255
191.96.94.0/24
191.96.122.0/24
191.96.129.0/24
191.96.134.0/24
191.96.154.0/24
191.96.167.0/24
191.96.193.0/24
191.101.187.0/24
191.101.202.0/23
Signature Algorithm: sha256WithRSAEncryption
20:44:d3:4f:78:74:53:a9:ca:f8:9a:09:5c:e3:7b:5e:c0:c0:
7b:74:5c:fa:d6:64:e2:d5:c6:60:01:6a:7c:6c:64:75:f6:ea:
de:33:a1:4b:5c:e2:ff:a2:ab:8a:97:83:ca:5b:ce:9f:ed:e5:
cf:91:bd:95:f3:25:bf:55:fc:9d:b5:ed:cc:93:62:4e:db:0b:
8c:a8:1e:46:67:3c:63:0e:91:b3:54:21:8b:61:7d:cf:49:34:
c5:2b:1e:ec:63:7d:dc:54:31:6e:c0:fb:f0:dd:0c:7e:b0:1c:
30:b5:ef:c8:e2:e8:09:04:77:43:40:4f:00:8b:4e:b4:a7:98:
a2:3a:93:56:30:f1:a8:1a:1d:68:dc:ac:d6:33:2e:31:57:9d:
c9:46:bc:f6:d7:4b:3b:fe:68:f4:ad:e8:a2:bd:42:7a:fb:f6:
63:59:1b:c5:a3:a5:53:09:dc:81:a6:fb:c0:a8:a0:fe:bd:96:
c5:e0:e3:f5:8e:1f:3c:a7:7d:78:87:6f:ce:11:32:6b:7b:4c:
bb:17:4f:b2:86:36:a8:a7:67:bb:39:fd:32:51:f1:4e:ba:d0:
d4:d7:8d:da:cf:41:9d:e1:b5:67:d0:a6:49:0f:62:fc:ea:ab:
f1:56:45:c1:8b:da:c5:5e:94:4e:3d:f4:51:eb:3b:81:fc:10:
4a:34:fb:45
-----BEGIN CERTIFICATE-----
MIIF3zCCBMegAwIBAgIDFV9BMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGNl
MjQxMzZhMzVmMTA1MDJmMDgwYTk5ZWVjNmYxMjg4MmQyZjA0ZmEwHhcNMjEwNTAy
MDMwMDAwWhcNMjMwNTAyMDMwMDAwWjAzMTEwLwYDVQQDEyg0OGExM2QzMTBlN2E1
NjkwMzg0Y2IzMWQ1MjBmYTc2YzgwN2UyMWVjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAlj+rEEHyzY/mx1zqc141U/bYOO915w0VvW2LHI9fQKoit5yT
eZvhO/cxID9/yC06mt3X6iDmtmdD0SyI3cupqLuCTFL2MLRNhMBZtfyamhrnLRIG
z2h+t+vnH4DK5J2HmUyo7bP6Z0cdwzL2udmIKBqoFHcRBV5sz/vg+yZd/w3L5BdC
SqHS72BdLgXsdGX+yqvDelVokBpHwh4eHI5+RxU/y7SbPasNT/nMz2jwHAijQ/5G
zKLA7Z02dRehfTIohRVk2iUEgV85h4BE8SdDTu8Pr6vDyxHRIvnzUFhOpuPkPBAl
9grX1br7pM0sX0+Ye2GWY+cafnMmUiF/QjZe9QIDAQABo4IC+jCCAvYwHQYDVR0O
BBYEFHAH687s4VOJJMm+/1R1Ia373zTfMB8GA1UdIwQYMBaAFCu/7xlfe0CD3zd7
L/vHe1DdEArjMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvY2UyNDEz
NmEzNWYxMDUwMmYwODBhOTllZWM2ZjEyODgyZDJmMDRmYS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMWVmNGIwNjYtZTRkMi00ZTUzLTgzOWUtOGJkZmZi
MTdhNTJiLzQ4YTEzZDMxMGU3YTU2OTAzODRjYjMxZDUyMGZhNzZjODA3ZTIxZWMu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8xZWY0YjA2Ni1lNGQyLTRlNTMtODM5ZS04YmRm
ZmIxN2E1MmIvY2UyNDEzNmEzNWYxMDUwMmYwODBhOTllZWM2ZjEyODgyZDJmMDRm
YS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCBvQYIKwYBBQUHAQcBAf8E
ga0wgaowgacEAgABMIGgAwQBtdZOAwQBtdZUAwQAtdaSMAwDBAC11sUDBAC11sYD
BAC11tsDBAC11vUDBAC11xUDBAC11x8DBAC11yMDBAG11/wDBAC/YB0DBAC/YB8D
BAC/YCIDBAC/YCYwDAMEAL9gPQMEAL9gPgMEAL9gXgMEAL9gegMEAL9ggQMEAL9g
hgMEAL9gmgMEAL9gpwMEAL9gwQMEAL9luwMEAb9lyjANBgkqhkiG9w0BAQsFAAOC
AQEAIETTT3h0U6nK+JoJXON7XsDAe3Rc+tZk4tXGYAFqfGxkdfbq3jOhS1zi/6Kr
ipeDylvOn+3lz5G9lfMlv1X8nbXtzJNiTtsLjKgeRmc8Yw6Rs1Qhi2F9z0k0xSse
7GN93FQxbsD78N0MfrAcMLXvyOLoCQR3Q0BPAItOtKeYojqTVjDxqBodaNys1jMu
MVedyUa89tdLO/5o9K3oor1Cevv2Y1kbxaOlUwncgab7wKig/r2WxeDj9Y4fPKd9
eIdvzhEya3tMuxdPsoY2qKdnuzn9MlHxTrrQ1NeN2s9BneG1Z9CmSQ9i/Oqr8VZF
wYvaxV6UTj30Ues7gfwQSjT7RQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:11 2023 by rpki-client on console-fra.rpki-client.org