Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/76bf7d796c6848cb4ac70ea52a28ce6639c2981f.roa
File:                     76bf7d796c6848cb4ac70ea52a28ce6639c2981f.roa (raw, json)
Hash identifier:          ihpna06vvPLRYMzSVeCERSCEF75Oq50fMB3MTeAZlSo=
Subject key identifier:   E0:C8:C6:6B:87:A9:17:73:0C:08:44:76:30:81:F7:13:4A:8E:1E:2E
Certificate issuer:       /CN=44c2caf4f7cfddcc44bc95bcacbf2d7813f606ca
Certificate serial:       241DAA
Authority key identifier: D9:E2:2D:FB:2E:DB:03:3D:7E:61:3B:B3:22:76:2A:C6:40:ED:53:30
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/44c2caf4f7cfddcc44bc95bcacbf2d7813f606ca.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/76bf7d796c6848cb4ac70ea52a28ce6639c2981f.roa
Signing time:             Tue 06 Jun 2023 15:23:22 +0000
ROA not before:           Mon 05 Jun 2023 15:23:21 +0000
ROA not after:            Tue 06 Jun 2028 15:23:21 +0000
asID:                     3790
IP address blocks:        190.171.20.0/24 maxlen: 24
                          190.171.22.0/23 maxlen: 24
                          190.171.32.0/19 maxlen: 24
                          190.241.12.0/22 maxlen: 24
                          190.241.17.0/24 maxlen: 24
                          190.241.18.0/23 maxlen: 24
                          190.241.20.0/22 maxlen: 24
                          190.241.30.0/24 maxlen: 24
                          190.241.32.0/19 maxlen: 24
                          190.241.119.0/24 maxlen: 27
                          190.241.77.0/24 maxlen: 24
                          190.241.78.0/23 maxlen: 24
                          190.241.116.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2366890 (0x241daa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=44c2caf4f7cfddcc44bc95bcacbf2d7813f606ca
        Validity
            Not Before: Jun  5 15:23:21 2023 GMT
            Not After : Jun  6 15:23:21 2028 GMT
        Subject: CN=76bf7d796c6848cb4ac70ea52a28ce6639c2981f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:d0:eb:c5:15:d1:60:ae:4c:26:01:c4:21:ae:
                    57:27:db:47:76:64:81:69:19:45:a1:9b:6a:76:85:
                    ee:38:76:17:cb:f0:bc:85:26:c7:4b:51:56:6e:dc:
                    e0:84:27:22:92:c9:a3:f3:8c:79:84:12:d3:ff:a9:
                    d2:d4:5b:a0:dd:18:24:b8:96:d6:7d:38:2f:8e:e4:
                    41:87:04:9d:99:8d:1c:f4:d0:60:6b:02:05:34:00:
                    70:65:56:14:18:af:cb:30:43:92:9c:ff:4b:a7:4f:
                    9f:73:a2:7d:34:d1:95:41:69:65:8a:6e:bf:6e:54:
                    be:d3:9e:31:b2:0c:ce:4c:86:eb:5b:ae:ae:1c:83:
                    6b:f5:ef:a9:48:d5:35:46:a1:71:79:b0:4f:89:46:
                    80:a9:23:34:a5:b8:7d:b3:ea:c6:b3:70:ac:9c:86:
                    ed:46:b2:0d:76:62:f2:6b:59:cd:e2:3a:31:91:f9:
                    64:8a:8a:b2:c2:53:8c:78:bf:81:47:38:c5:8e:cb:
                    2d:18:cf:b9:31:61:0d:ab:06:e3:f5:ea:6b:ac:a4:
                    d1:b5:6f:2b:f7:b3:42:1a:fe:23:52:77:01:06:5f:
                    07:db:4a:26:66:9a:06:7d:4e:ed:74:d2:47:41:22:
                    44:0b:8c:b2:cd:35:c0:e1:99:fe:68:02:96:9e:bd:
                    31:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:C8:C6:6B:87:A9:17:73:0C:08:44:76:30:81:F7:13:4A:8E:1E:2E
            X509v3 Authority Key Identifier:
                keyid:D9:E2:2D:FB:2E:DB:03:3D:7E:61:3B:B3:22:76:2A:C6:40:ED:53:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/44c2caf4f7cfddcc44bc95bcacbf2d7813f606ca.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/76bf7d796c6848cb4ac70ea52a28ce6639c2981f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/6a7862e8-d2db-48ea-b809-d4b970d1d892/44c2caf4f7cfddcc44bc95bcacbf2d7813f606ca.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.171.20.0/24
                  190.171.22.0/23
                  190.171.32.0/19
                  190.241.12.0/22
                  190.241.17.0-190.241.23.255
                  190.241.30.0/24
                  190.241.32.0/19
                  190.241.77.0-190.241.79.255
                  190.241.116.0/24
                  190.241.119.0/24

    Signature Algorithm: sha256WithRSAEncryption
         2a:4a:b0:67:c4:02:e1:94:c3:73:c5:51:a3:91:5d:63:6c:6d:
         a1:03:e2:ec:17:10:44:70:2f:7e:39:fb:2a:cf:59:67:ac:b4:
         52:9e:44:a1:b2:18:44:30:5f:ef:c9:db:28:30:e1:5b:09:53:
         2d:8f:5b:61:22:f0:6e:56:1d:f4:71:ea:be:78:13:41:0f:bd:
         ae:f9:05:36:ec:7f:6b:6c:00:cd:b1:0b:27:05:75:5c:c1:30:
         6f:1c:ac:3e:db:83:08:c8:b7:b2:4b:10:c9:2d:c4:44:e3:36:
         fa:af:23:6c:99:15:39:41:1e:8b:e5:14:05:30:d1:d1:99:0f:
         49:0e:32:f7:ec:ef:e7:d5:e8:9d:85:b3:ef:d0:e1:b4:90:0e:
         d0:e5:30:d0:4d:a8:25:a7:88:70:43:68:b8:8e:b9:25:01:f1:
         7e:5a:c3:d7:c8:7c:c6:89:8f:99:26:26:67:93:95:26:f4:4a:
         b6:9c:85:fe:11:bf:dd:99:af:57:d8:f4:b4:2b:29:4e:41:c0:
         21:3d:45:71:3f:36:30:5f:a5:95:58:77:79:8c:42:e4:1b:e6:
         cd:cf:c2:4a:d3:c9:bd:54:a9:cb:6c:45:f8:8f:7c:ad:7d:8a:
         6a:a6:c3:eb:2f:fa:01:4a:60:3a:06:86:c0:be:40:2a:5c:18:
         6b:d1:93:cb
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgIDJB2qMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDQ0
YzJjYWY0ZjdjZmRkY2M0NGJjOTViY2FjYmYyZDc4MTNmNjA2Y2EwHhcNMjMwNjA1
MTUyMzIxWhcNMjgwNjA2MTUyMzIxWjAzMTEwLwYDVQQDEyg3NmJmN2Q3OTZjNjg0
OGNiNGFjNzBlYTUyYTI4Y2U2NjM5YzI5ODFmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAstDrxRXRYK5MJgHEIa5XJ9tHdmSBaRlFoZtqdoXuOHYXy/C8
hSbHS1FWbtzghCciksmj84x5hBLT/6nS1Fug3RgkuJbWfTgvjuRBhwSdmY0c9NBg
awIFNABwZVYUGK/LMEOSnP9Lp0+fc6J9NNGVQWllim6/blS+054xsgzOTIbrW66u
HINr9e+pSNU1RqFxebBPiUaAqSM0pbh9s+rGs3CsnIbtRrINdmLya1nN4joxkflk
ioqywlOMeL+BRzjFjsstGM+5MWENqwbj9eprrKTRtW8r97NCGv4jUncBBl8H20om
ZpoGfU7tdNJHQSJEC4yyzTXA4Zn+aAKWnr0xYwIDAQABo4ICoTCCAp0wHQYDVR0O
BBYEFODIxmuHqRdzDAhEdjCB9xNKjh4uMB8GA1UdIwQYMBaAFNniLfsu2wM9fmE7
syJ2KsZA7VMwMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNDRjMmNh
ZjRmN2NmZGRjYzQ0YmM5NWJjYWNiZjJkNzgxM2Y2MDZjYS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNmE3ODYyZTgtZDJkYi00OGVhLWI4MDktZDRiOTcw
ZDFkODkyLzc2YmY3ZDc5NmM2ODQ4Y2I0YWM3MGVhNTJhMjhjZTY2MzljMjk4MWYu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy82YTc4NjJlOC1kMmRiLTQ4ZWEtYjgwOS1kNGI5
NzBkMWQ4OTIvNDRjMmNhZjRmN2NmZGRjYzQ0YmM5NWJjYWNiZjJkNzgxM2Y2MDZj
YS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBlBggrBgEFBQcBBwEB/wRW
MFQwUgQCAAEwTAMEAL6rFAMEAb6rFgMEBb6rIAMEAr7xDDAMAwQAvvERAwQDvvEQ
AwQAvvEeAwQFvvEgMAwDBAC+8U0DBAS+8UADBAC+8XQDBAC+8XcwDQYJKoZIhvcN
AQELBQADggEBACpKsGfEAuGUw3PFUaORXWNsbaED4uwXEERwL345+yrPWWestFKe
RKGyGEQwX+/J2ygw4VsJUy2PW2Ei8G5WHfRx6r54E0EPva75BTbsf2tsAM2xCycF
dVzBMG8crD7bgwjIt7JLEMktxETjNvqvI2yZFTlBHovlFAUw0dGZD0kOMvfs7+fV
6J2Fs+/Q4bSQDtDlMNBNqCWniHBDaLiOuSUB8X5aw9fIfMaJj5kmJmeTlSb0Srac
hf4Rv92Zr1fY9LQrKU5BwCE9RXE/NjBfpZVYd3mMQuQb5s3PwkrTyb1UqctsRfiP
fK19imqmw+sv+gFKYDoGhsC+QCpcGGvRk8s=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:49 2024 by rpki-client on console-fra.rpki-client.org