Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/593664453b945b3ee59eecde8015c572fb477fd6.roa
File: 593664453b945b3ee59eecde8015c572fb477fd6.roa (raw, json)
Hash identifier: 8u37MLbZQITJs+v+OD7/dNQuPqhHWhl8xrTl1Sixs6c=
Subject key identifier: F5:64:D4:02:FA:9D:39:37:B2:AA:DB:9C:16:11:E1:85:43:F4:82:DD
Certificate issuer: /CN=5494bd71484d106b75c5bedf4263f48281a4e409
Certificate serial: 1B9F89
Authority key identifier: 4C:B6:BE:C7:78:41:99:EC:CA:F0:31:13:8A:C9:9A:2E:66:AB:83:DD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5494bd71484d106b75c5bedf4263f48281a4e409.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/593664453b945b3ee59eecde8015c572fb477fd6.roa
Signing time: Tue 25 Oct 2022 17:47:56 +0000
ROA not before: Mon 22 Mar 2021 14:46:11 +0000
ROA not after: Tue 24 Mar 2026 14:46:11 +0000
asID: 6147
IP address blocks: 181.64.0.0/15 maxlen: 24
181.66.0.0/15 maxlen: 24
190.40.0.0/14 maxlen: 24
190.232.0.0/13 maxlen: 24
200.4.192.0/18 maxlen: 24
200.4.192.0/19 maxlen: 24
200.4.224.0/19 maxlen: 24
200.10.64.0/19 maxlen: 24
200.37.0.0/16 maxlen: 24
200.48.0.0/16 maxlen: 24
200.60.0.0/16 maxlen: 24
200.106.0.0/18 maxlen: 24
200.106.64.0/18 maxlen: 24
200.107.128.0/18 maxlen: 24
200.121.0.0/17 maxlen: 24
200.121.128.0/17 maxlen: 24
201.230.0.0/17 maxlen: 24
201.230.128.0/17 maxlen: 24
201.240.0.0/17 maxlen: 24
201.240.128.0/17 maxlen: 24
170.79.36.0/22 maxlen: 24
201.131.220.0/22 maxlen: 24
2001:1388::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1810313 (0x1b9f89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5494bd71484d106b75c5bedf4263f48281a4e409
Validity
Not Before: Mar 22 14:46:11 2021 GMT
Not After : Mar 24 14:46:11 2026 GMT
Subject: CN=593664453b945b3ee59eecde8015c572fb477fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ce:db:91:b8:54:a8:9c:91:e7:c0:ed:6d:2e:
32:d0:ea:c0:d0:1e:8d:19:0e:73:f7:75:05:c0:88:
75:35:0c:e2:b5:25:23:c6:3a:32:2d:5d:7d:7b:68:
ca:a2:b6:a3:31:9b:fb:8b:46:cc:bb:de:8a:3a:d9:
64:72:74:1c:af:98:12:04:79:e1:39:7e:c4:f9:6e:
aa:ea:55:43:67:58:15:a5:a0:ec:ad:44:eb:d0:78:
3d:2a:55:26:6d:01:61:c0:a5:0b:6b:c2:66:ad:82:
0b:15:7d:48:7b:54:f7:9a:75:58:06:dd:c8:ef:70:
31:76:fb:e0:1e:39:0e:89:9a:f0:20:b2:01:fe:ac:
67:8d:57:26:94:6a:c7:77:6d:ab:aa:56:1c:8a:77:
2d:8e:9b:0e:db:63:cb:84:99:71:b3:8f:da:90:2a:
a8:67:55:77:d7:d6:88:bf:5a:3d:c4:7b:aa:9f:d6:
27:b4:cc:d4:d0:30:7f:dc:99:79:e3:2d:3e:7f:4b:
b2:70:72:47:3e:fc:c0:8d:82:ba:19:f8:22:50:af:
11:9d:9a:56:cf:d5:fb:d2:e3:d7:d4:f8:51:bc:31:
0b:ce:cd:15:c7:9a:62:71:64:ad:5b:f8:4c:f2:c7:
3c:1c:1b:ec:77:d5:75:64:15:85:bc:c0:78:f8:80:
e0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:64:D4:02:FA:9D:39:37:B2:AA:DB:9C:16:11:E1:85:43:F4:82:DD
X509v3 Authority Key Identifier:
keyid:4C:B6:BE:C7:78:41:99:EC:CA:F0:31:13:8A:C9:9A:2E:66:AB:83:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5494bd71484d106b75c5bedf4263f48281a4e409.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/593664453b945b3ee59eecde8015c572fb477fd6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2797b2f0-e5da-416c-a8d6-a61dc102a441/5494bd71484d106b75c5bedf4263f48281a4e409.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.79.36.0/22
181.64.0.0/14
190.40.0.0/14
190.232.0.0/13
200.4.192.0/18
200.10.64.0/19
200.37.0.0/16
200.48.0.0/16
200.60.0.0/16
200.106.0.0/17
200.107.128.0/18
200.121.0.0/16
201.131.220.0/22
201.230.0.0/16
201.240.0.0/16
IPv6:
2001:1388::/32
Signature Algorithm: sha256WithRSAEncryption
92:bd:d5:8d:eb:12:e4:30:ba:bf:92:9c:26:cd:79:51:ca:d8:
d0:43:a4:4f:a6:da:70:b5:46:89:d2:1d:9e:e0:48:ef:fe:83:
f3:92:ca:a7:ec:ca:7b:22:06:36:9b:d6:74:6b:15:69:9a:a0:
37:1f:52:bc:66:ea:be:f7:e3:5b:56:cc:2d:bf:9b:20:39:56:
44:81:2e:0b:d5:f6:4d:4c:1c:ab:ff:6a:d9:da:13:35:a7:28:
be:a2:d2:32:f6:62:89:53:d4:50:a1:75:5d:c0:e2:95:f3:10:
2f:66:b6:01:c1:db:b0:32:39:9d:1f:17:be:aa:fc:7b:73:59:
da:40:7b:60:92:01:52:6b:7b:db:de:b7:5b:eb:51:79:c2:be:
ae:c8:d3:9b:ea:57:f7:28:40:33:86:ab:71:7a:43:56:1c:95:
55:43:1a:53:ec:64:3f:ac:7f:43:11:60:7c:23:2b:84:4f:27:
01:7c:a3:ef:43:49:63:46:eb:4a:ad:53:e4:ed:f1:86:f1:a4:
63:4d:c1:0e:8e:bf:94:a7:92:6c:ca:ab:de:48:da:c7:fc:79:
85:fe:97:3e:4f:c2:5d:7d:53:11:61:be:9d:32:63:c6:c9:cd:
69:c9:f9:fd:9f:55:1e:10:71:dd:06:8d:f0:79:b7:32:d9:c7:
c4:d9:ec:8c
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgIDG5+JMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDU0
OTRiZDcxNDg0ZDEwNmI3NWM1YmVkZjQyNjNmNDgyODFhNGU0MDkwHhcNMjEwMzIy
MTQ0NjExWhcNMjYwMzI0MTQ0NjExWjAzMTEwLwYDVQQDEyg1OTM2NjQ0NTNiOTQ1
YjNlZTU5ZWVjZGU4MDE1YzU3MmZiNDc3ZmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA3M7bkbhUqJyR58DtbS4y0OrA0B6NGQ5z93UFwIh1NQzitSUj
xjoyLV19e2jKorajMZv7i0bMu96KOtlkcnQcr5gSBHnhOX7E+W6q6lVDZ1gVpaDs
rUTr0Hg9KlUmbQFhwKULa8JmrYILFX1Ie1T3mnVYBt3I73AxdvvgHjkOiZrwILIB
/qxnjVcmlGrHd22rqlYcinctjpsO22PLhJlxs4/akCqoZ1V319aIv1o9xHuqn9Yn
tMzU0DB/3Jl54y0+f0uycHJHPvzAjYK6GfgiUK8RnZpWz9X70uPX1PhRvDELzs0V
x5picWStW/hM8sc8HBvsd9V1ZBWFvMB4+IDgqQIDAQABo4ICtTCCArEwHQYDVR0O
BBYEFPVk1AL6nTk3sqrbnBYR4YVD9ILdMB8GA1UdIwQYMBaAFEy2vsd4QZnsyvAx
E4rJmi5mq4PdMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNTQ5NGJk
NzE0ODRkMTA2Yjc1YzViZWRmNDI2M2Y0ODI4MWE0ZTQwOS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMjc5N2IyZjAtZTVkYS00MTZjLWE4ZDYtYTYxZGMx
MDJhNDQxLzU5MzY2NDQ1M2I5NDViM2VlNTllZWNkZTgwMTVjNTcyZmI0NzdmZDYu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8yNzk3YjJmMC1lNWRhLTQxNmMtYThkNi1hNjFk
YzEwMmE0NDEvNTQ5NGJkNzE0ODRkMTA2Yjc1YzViZWRmNDI2M2Y0ODI4MWE0ZTQw
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB5BggrBgEFBQcBBwEB/wRq
MGgwVwQCAAEwUQMEAqpPJAMDArVAAwMCvigDAwO+6AMEBsgEwAMEBcgKQAMDAMgl
AwMAyDADAwDIPAMEB8hqAAMEBshrgAMDAMh5AwQCyYPcAwMAyeYDAwDJ8DANBAIA
AjAHAwUAIAETiDANBgkqhkiG9w0BAQsFAAOCAQEAkr3VjesS5DC6v5KcJs15UcrY
0EOkT6bacLVGidIdnuBI7/6D85LKp+zKeyIGNpvWdGsVaZqgNx9SvGbqvvfjW1bM
Lb+bIDlWRIEuC9X2TUwcq/9q2doTNacovqLSMvZiiVPUUKF1XcDilfMQL2a2AcHb
sDI5nR8Xvqr8e3NZ2kB7YJIBUmt72963W+tRecK+rsjTm+pX9yhAM4arcXpDVhyV
VUMaU+xkP6x/QxFgfCMrhE8nAXyj70NJY0brSq1T5O3xhvGkY03BDo6/lKeSbMqr
3kjax/x5hf6XPk/CXX1TEWG+nTJjxsnNacn5/Z9VHhBx3QaN8Hm3MtnHxNnsjA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:05 2024 by rpki-client on console-ams.rpki-client.org