Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/35cd56e5-06e9-4af1-90d4-5164a6144f55/cea5ea90978b309311e56784da587155a855d939.roa
File:                     cea5ea90978b309311e56784da587155a855d939.roa (raw, json)
Hash identifier:          AriMbTfnQMzlMKLKqU3QzoPgTeqCerMcJSzIElreZHQ=
Subject key identifier:   F2:67:83:D1:3C:E0:A2:12:87:FD:FE:39:75:E2:82:59:35:00:1F:50
Certificate issuer:       /CN=0fd41aeb6fb8aebe0877d653310ce6d90a678fb9
Certificate serial:       08F9
Authority key identifier: A6:58:88:B0:DB:2B:35:05:6A:2A:8C:70:B6:C0:14:BC:4E:66:9F:46
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/0fd41aeb6fb8aebe0877d653310ce6d90a678fb9.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/35cd56e5-06e9-4af1-90d4-5164a6144f55/cea5ea90978b309311e56784da587155a855d939.roa
Signing time:             Tue 05 Jul 2022 22:42:16 +0000
ROA not before:           Tue 05 Jul 2022 03:00:00 +0000
ROA not after:            Fri 05 Jul 2024 03:00:00 +0000
asID:                     52341
IP address blocks:        186.189.69.0/24 maxlen: 24
                          186.189.70.0/23 maxlen: 24
                          186.189.72.0/21 maxlen: 24
                          186.189.80.0/20 maxlen: 24
                          186.189.96.0/19 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2297 (0x8f9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0fd41aeb6fb8aebe0877d653310ce6d90a678fb9
        Validity
            Not Before: Jul  5 03:00:00 2022 GMT
            Not After : Jul  5 03:00:00 2024 GMT
        Subject: CN=cea5ea90978b309311e56784da587155a855d939
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:f4:64:28:fe:a3:d6:ec:95:7c:9a:e4:9e:1d:
                    98:71:de:53:7a:e1:1e:3c:38:29:f5:17:f3:3a:07:
                    8e:d2:f8:83:9f:7e:d1:8c:6c:2f:10:83:9f:35:d2:
                    12:72:40:02:c0:70:3e:40:de:2f:9e:02:63:1c:8e:
                    aa:94:67:17:a3:f6:41:19:27:21:cd:d6:f6:a2:b3:
                    5d:06:39:09:70:00:1e:44:b4:bd:c4:06:15:43:95:
                    8b:8c:82:9a:6f:2f:d5:ae:c3:d2:9a:65:43:98:7d:
                    6d:58:96:8f:c6:a1:7c:88:a2:de:3f:74:d7:ad:0e:
                    6a:d5:6b:58:e6:67:61:e3:c4:8a:5b:1e:ae:1e:b7:
                    1b:c9:0e:cf:0c:13:39:21:6e:da:1f:9a:af:23:63:
                    a4:12:32:ed:52:a8:be:42:b9:02:00:ec:64:b6:8e:
                    a3:19:71:ff:d0:a1:37:a8:2c:58:a3:07:1a:82:42:
                    58:a0:b7:d4:8e:30:f2:78:68:4b:19:e5:1d:bd:e2:
                    49:81:6a:32:30:9d:29:d2:22:55:f6:21:8f:4d:da:
                    02:39:c0:25:f9:f5:ff:ac:50:e0:e6:9f:1b:9d:23:
                    cb:4d:f4:61:70:7e:39:56:ce:d1:ae:36:bf:42:5c:
                    37:ea:c6:d8:86:e8:3f:94:2c:26:5c:c4:b5:9c:fd:
                    cd:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:67:83:D1:3C:E0:A2:12:87:FD:FE:39:75:E2:82:59:35:00:1F:50
            X509v3 Authority Key Identifier:
                keyid:A6:58:88:B0:DB:2B:35:05:6A:2A:8C:70:B6:C0:14:BC:4E:66:9F:46

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/0fd41aeb6fb8aebe0877d653310ce6d90a678fb9.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/35cd56e5-06e9-4af1-90d4-5164a6144f55/cea5ea90978b309311e56784da587155a855d939.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/35cd56e5-06e9-4af1-90d4-5164a6144f55/0fd41aeb6fb8aebe0877d653310ce6d90a678fb9.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  186.189.69.0-186.189.127.255

    Signature Algorithm: sha256WithRSAEncryption
         4e:bc:8a:49:7f:8c:61:11:2f:e9:0a:08:48:8c:32:65:d0:8a:
         0e:0c:cd:88:16:20:ab:7d:7b:9f:76:61:b2:95:39:8f:cc:ef:
         54:a3:a5:26:0c:ff:e8:d0:48:6f:0e:b3:1f:b1:79:33:be:7f:
         f5:5a:39:90:19:57:d7:ba:87:5a:27:54:f2:5d:e0:0b:a5:fe:
         d6:54:2b:e6:9a:85:17:58:b7:c9:08:36:fa:4a:1c:42:2f:44:
         f9:f8:a6:6f:f2:ff:01:d1:0b:35:01:3c:ca:2d:aa:76:ee:db:
         17:0b:9b:27:ff:da:6f:bb:cc:01:0d:dd:91:63:3e:c1:dd:f3:
         85:89:2d:49:57:e9:bf:a7:8b:8c:77:9b:f8:fc:ed:b4:9c:fa:
         46:f5:8a:b9:08:e3:4f:8a:6b:e5:f2:0e:4b:31:da:54:8b:6c:
         83:b3:c7:56:d5:ec:bd:0c:5a:8a:4d:ae:80:51:ee:22:50:74:
         fd:bd:ce:e8:f5:ef:15:ff:d8:c2:6f:47:fb:60:2d:3d:a8:b5:
         92:02:f2:0e:2f:38:4c:74:8c:c3:20:a6:45:5a:1a:ce:8a:13:
         d8:b0:8a:1a:fa:31:6a:f0:21:a5:39:5f:48:50:ec:5c:ab:8d:
         81:36:4f:a5:84:8f:65:b1:a2:9b:2c:d8:4d:e4:28:f6:0e:2f:
         0c:ba:26:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:19 2024 by rpki-client on console-ams.rpki-client.org