Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/ac86af8c47ac68fa48fb2f53b65eeebea6208acd.roa
File: ac86af8c47ac68fa48fb2f53b65eeebea6208acd.roa (raw, json)
Hash identifier: Yaa1eMzClWCqo3UFxWzYdHmAyAEIzZBIknUtLvnpO4I=
Subject key identifier: 58:87:F0:C5:D0:34:7E:F7:0E:14:55:86:55:B0:E7:30:C4:EA:DB:3E
Certificate issuer: /CN=a7237d32fd35bbf0fdba7734a8368fd9626eca5a
Certificate serial: 280D73
Authority key identifier: BE:02:D2:36:F8:B0:06:BA:87:81:2A:20:2E:F5:B7:66:DC:8E:30:3F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/ac86af8c47ac68fa48fb2f53b65eeebea6208acd.roa
Signing time: Mon 12 Feb 2024 15:10:20 +0000
ROA not before: Mon 12 Feb 2024 15:09:57 +0000
ROA not after: Mon 12 Feb 2029 15:09:57 +0000
asID: 23520
IP address blocks: 190.242.10.0/24 maxlen: 24
190.242.102.0/24 maxlen: 24
190.242.118.0/24 maxlen: 24
190.242.119.0/24 maxlen: 24
190.242.12.0/24 maxlen: 24
190.242.126.0/24 maxlen: 24
190.242.132.0/24 maxlen: 24
190.242.133.0/24 maxlen: 24
190.242.134.0/24 maxlen: 24
190.242.135.0/24 maxlen: 24
190.242.136.0/23 maxlen: 24
190.242.140.0/24 maxlen: 24
190.242.14.0/24 maxlen: 24
190.242.141.0/24 maxlen: 24
190.242.145.0/24 maxlen: 24
190.242.147.0/24 maxlen: 24
190.242.156.0/24 maxlen: 24
190.242.157.0/24 maxlen: 24
190.242.169.0/24 maxlen: 24
190.242.170.0/24 maxlen: 24
190.242.171.0/24 maxlen: 24
190.242.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2624883 (0x280d73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7237d32fd35bbf0fdba7734a8368fd9626eca5a
Validity
Not Before: Feb 12 15:09:57 2024 GMT
Not After : Feb 12 15:09:57 2029 GMT
Subject: CN=ac86af8c47ac68fa48fb2f53b65eeebea6208acd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e5:c3:80:bd:69:ae:20:36:be:9e:ee:39:ca:
76:17:a8:45:3d:7e:98:72:ab:72:a5:67:6a:ad:12:
f9:d4:dd:bc:3d:78:c1:41:f2:93:3a:ac:36:f7:c0:
20:5c:b8:df:5a:6b:d0:ab:b0:d7:12:a2:76:8c:0c:
03:89:64:c6:b2:e2:7a:02:fd:92:ec:b2:3d:f7:e6:
55:3b:6f:af:af:65:a6:12:b1:94:b0:47:f9:cd:3f:
77:1d:85:3e:23:d0:3e:a8:41:38:37:82:97:f8:2b:
fb:a8:ff:06:fd:a9:ec:d2:ad:5b:98:31:c4:58:c6:
c2:11:8c:ba:d0:cd:b3:7e:f1:97:20:dd:05:d3:60:
c9:00:52:2e:ef:6c:6d:8c:52:64:32:a8:3c:1b:5d:
76:87:ea:e5:19:6a:f7:bd:c4:d4:95:fd:5a:68:6c:
f2:a4:dc:23:53:18:e5:3b:41:cf:89:07:0c:0b:b9:
8a:a5:c4:c6:de:9a:f3:c4:80:85:d3:ad:ec:99:b3:
ac:95:d0:66:fd:e4:70:19:cf:47:72:aa:28:01:e7:
ef:cf:2f:f6:72:49:c1:8e:fb:18:3e:fc:b3:03:9a:
0c:76:27:a3:ef:97:4a:57:9e:b2:04:e2:30:10:51:
d0:06:24:e5:23:65:19:82:ed:64:5b:02:3b:6f:1c:
98:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:87:F0:C5:D0:34:7E:F7:0E:14:55:86:55:B0:E7:30:C4:EA:DB:3E
X509v3 Authority Key Identifier:
keyid:BE:02:D2:36:F8:B0:06:BA:87:81:2A:20:2E:F5:B7:66:DC:8E:30:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/ac86af8c47ac68fa48fb2f53b65eeebea6208acd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.242.10.0/24
190.242.12.0/24
190.242.14.0/24
190.242.102.0/24
190.242.118.0/23
190.242.126.0/24
190.242.132.0-190.242.137.255
190.242.140.0/23
190.242.145.0/24
190.242.147.0/24
190.242.156.0/23
190.242.169.0-190.242.172.255
Signature Algorithm: sha256WithRSAEncryption
76:87:10:60:9f:a2:d6:43:38:fb:2d:8c:6f:57:81:1d:4a:53:
00:1f:d1:68:62:85:0d:95:55:29:d1:27:87:24:17:2e:a7:a4:
84:9c:6a:01:64:25:84:16:14:1e:d6:1d:1b:5f:40:f0:6b:9c:
48:ac:87:20:7e:96:e9:e0:41:de:27:92:e7:ac:48:11:2d:ae:
30:c3:8a:a9:8c:69:9c:b4:14:b0:56:1e:91:c9:c9:ec:9b:29:
02:5e:7e:24:54:08:07:a7:35:79:a9:5c:87:be:68:22:72:99:
d8:cb:2c:67:b6:c6:a2:e6:87:ae:96:e4:f3:de:cd:4a:ae:11:
d7:01:95:41:13:b0:57:00:da:cf:8d:88:9a:f3:40:2a:77:ce:
f5:96:35:b0:ec:a2:f6:3e:93:5b:56:a3:37:4d:4c:a9:99:37:
de:b2:de:cf:54:0e:80:25:17:fd:62:cc:45:e9:f7:3a:f2:b1:
27:ae:1e:85:96:e0:dc:cf:bc:1d:99:56:10:ce:7d:f5:37:dc:
ee:67:e0:e7:07:52:68:09:5f:d4:b3:5a:bc:82:4c:f3:15:70:
31:59:8c:bd:d1:2d:b7:e4:85:72:a0:d2:4d:4e:77:13:f7:c5:
5b:ab:cf:d6:8a:50:60:80:23:e5:96:ef:53:75:14:06:07:8b:
a0:df:70:69
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDKA1zMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE3
MjM3ZDMyZmQzNWJiZjBmZGJhNzczNGE4MzY4ZmQ5NjI2ZWNhNWEwHhcNMjQwMjEy
MTUwOTU3WhcNMjkwMjEyMTUwOTU3WjAzMTEwLwYDVQQDEyhhYzg2YWY4YzQ3YWM2
OGZhNDhmYjJmNTNiNjVlZWViZWE2MjA4YWNkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAjOXDgL1priA2vp7uOcp2F6hFPX6YcqtypWdqrRL51N28PXjB
QfKTOqw298AgXLjfWmvQq7DXEqJ2jAwDiWTGsuJ6Av2S7LI99+ZVO2+vr2WmErGU
sEf5zT93HYU+I9A+qEE4N4KX+Cv7qP8G/ans0q1bmDHEWMbCEYy60M2zfvGXIN0F
02DJAFIu72xtjFJkMqg8G112h+rlGWr3vcTUlf1aaGzypNwjUxjlO0HPiQcMC7mK
pcTG3przxICF063smbOsldBm/eRwGc9HcqooAefvzy/2cknBjvsYPvyzA5oMdiej
75dKV56yBOIwEFHQBiTlI2UZgu1kWwI7bxyY1QIDAQABo4ICrTCCAqkwHQYDVR0O
BBYEFFiH8MXQNH73DhRVhlWw5zDE6ts+MB8GA1UdIwQYMBaAFL4C0jb4sAa6h4Eq
IC71t2bcjjA/MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYTcyMzdk
MzJmZDM1YmJmMGZkYmE3NzM0YTgzNjhmZDk2MjZlY2E1YS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNjdlZDkwMDgtYWUzNC00NGJlLTg4MmYtNTkzODEy
MDFiMWUxL2FjODZhZjhjNDdhYzY4ZmE0OGZiMmY1M2I2NWVlZWJlYTYyMDhhY2Qu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy82N2VkOTAwOC1hZTM0LTQ0YmUtODgyZi01OTM4
MTIwMWIxZTEvYTcyMzdkMzJmZDM1YmJmMGZkYmE3NzM0YTgzNjhmZDk2MjZlY2E1
YS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBxBggrBgEFBQcBBwEB/wRi
MGAwXgQCAAEwWAMEAL7yCgMEAL7yDAMEAL7yDgMEAL7yZgMEAb7ydgMEAL7yfjAM
AwQCvvKEAwQBvvKIAwQBvvKMAwQAvvKRAwQAvvKTAwQBvvKcMAwDBAC+8qkDBAC+
8qwwDQYJKoZIhvcNAQELBQADggEBAHaHEGCfotZDOPstjG9XgR1KUwAf0WhihQ2V
VSnRJ4ckFy6npIScagFkJYQWFB7WHRtfQPBrnEishyB+lungQd4nkuesSBEtrjDD
iqmMaZy0FLBWHpHJyeybKQJefiRUCAenNXmpXIe+aCJymdjLLGe2xqLmh66W5PPe
zUquEdcBlUETsFcA2s+NiJrzQCp3zvWWNbDsovY+k1tWozdNTKmZN96y3s9UDoAl
F/1izEXp9zrysSeuHoWW4NzPvB2ZVhDOffU33O5n4OcHUmgJX9SzWryCTPMVcDFZ
jL3RLbfkhXKg0k1OdxP3xVurz9aKUGCAI+WW71N1FAYHi6DfcGk=
-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:21 2024 by rpki-client on console-fra.rpki-client.org