Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/71a706ab-d3ce-4bac-8b51-26963947590e/bad6e66b107a9270d60fa53471ea688a0a3ffe42.roa
File:                     bad6e66b107a9270d60fa53471ea688a0a3ffe42.roa (raw, json)
Hash identifier:          x0UZORt3Vj3DMcHqnoZ6JAyAZ17k/ZJje1eED/2Rjbw=
Subject key identifier:   C0:07:B3:D2:32:18:23:93:36:0C:15:55:12:5C:01:09:F8:39:7F:DD
Certificate issuer:       /CN=09a0ff6e67bd13945bbb2c559d52176f5801f883
Certificate serial:       174EEA
Authority key identifier: D4:AF:B0:6F:81:C0:C2:79:06:89:39:35:E2:90:46:BD:82:20:18:94
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/09a0ff6e67bd13945bbb2c559d52176f5801f883.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/71a706ab-d3ce-4bac-8b51-26963947590e/bad6e66b107a9270d60fa53471ea688a0a3ffe42.roa
Signing time:             Sun 24 Apr 2022 19:00:17 +0000
ROA not before:           Wed 24 Mar 2021 03:00:00 +0000
ROA not after:            Tue 24 Mar 2026 03:00:00 +0000
asID:                     52423
IP address blocks:        2803:6900:1::/48 maxlen: 48
                          2803:6900:200::/48 maxlen: 48
                          2803:6900:507::/48 maxlen: 48
                          2803:6900:520::/48 maxlen: 48
                          2803:6900:524::/48 maxlen: 48
                          2803:6900:533::/48 maxlen: 48
                          2803:6900:534::/48 maxlen: 48
                          2803:6900:546::/48 maxlen: 48
                          2803:6900:547::/48 maxlen: 48
                          2803:6900:543::/48 maxlen: 48
                          2803:6900:561::/48 maxlen: 48
                          2803:6900:578::/48 maxlen: 48
                          2803:6900:593::/48 maxlen: 48
                          2803:6900:597::/48 maxlen: 48
                          2803:6900:598::/48 maxlen: 48
                          2803:6900:609::/48 maxlen: 48
                          2803:6900:616::/48 maxlen: 48
                          2803:6900:617::/48 maxlen: 48
                          2803:6900:1400::/48 maxlen: 48
                          2803:6900:1500::/48 maxlen: 48
                          2803:6900:1501::/48 maxlen: 48
                          2803:6900:1503::/48 maxlen: 48
                          2803:6900:1510::/48 maxlen: 48
                          2803:6900:1514::/48 maxlen: 48
                          2803:6900:1531::/48 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1527530 (0x174eea)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=09a0ff6e67bd13945bbb2c559d52176f5801f883
        Validity
            Not Before: Mar 24 03:00:00 2021 GMT
            Not After : Mar 24 03:00:00 2026 GMT
        Subject: CN=bad6e66b107a9270d60fa53471ea688a0a3ffe42
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:4a:7b:e1:20:fb:09:d3:92:81:a5:d2:40:b2:
                    a8:d0:8d:98:bb:84:86:61:66:f6:dd:0e:87:c4:2b:
                    55:b1:0e:93:5c:ba:7b:ec:86:9b:88:c9:ec:71:a6:
                    98:c4:4a:b3:93:d2:86:11:7e:34:34:99:0e:1c:74:
                    73:92:f2:9a:eb:30:e0:61:20:54:00:16:2e:b9:73:
                    3f:bb:a1:fe:ee:9c:83:80:0a:fb:7a:5c:fd:b6:f7:
                    95:e4:b7:2e:18:4c:03:a2:ff:46:62:01:95:aa:cd:
                    23:d5:d2:d1:09:15:6c:ab:17:21:15:b1:b8:40:7c:
                    83:64:7d:7b:3c:24:66:fb:23:fe:13:f3:a7:46:b3:
                    33:c3:9a:4d:64:08:82:32:1d:d0:cd:e4:4f:6c:a9:
                    09:d8:18:30:fb:73:a8:de:be:9a:83:31:2a:76:ec:
                    66:97:9b:4d:ce:99:2d:ff:38:09:cf:fb:9b:ea:25:
                    8e:2e:88:e2:b9:f4:4f:da:b5:48:25:c5:c5:81:34:
                    2b:18:23:ce:b0:1e:f9:91:ef:59:85:01:b6:5a:7b:
                    44:1f:36:72:b6:ca:b6:7a:f3:ee:e2:ce:13:c0:6d:
                    a4:91:47:49:84:a3:84:59:30:a7:09:c8:b1:f2:22:
                    e8:bf:cb:b6:12:8b:e9:02:bc:d8:60:d6:86:72:60:
                    10:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:07:B3:D2:32:18:23:93:36:0C:15:55:12:5C:01:09:F8:39:7F:DD
            X509v3 Authority Key Identifier:
                keyid:D4:AF:B0:6F:81:C0:C2:79:06:89:39:35:E2:90:46:BD:82:20:18:94

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/09a0ff6e67bd13945bbb2c559d52176f5801f883.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/71a706ab-d3ce-4bac-8b51-26963947590e/bad6e66b107a9270d60fa53471ea688a0a3ffe42.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/71a706ab-d3ce-4bac-8b51-26963947590e/09a0ff6e67bd13945bbb2c559d52176f5801f883.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:6900:1::/48
                  2803:6900:200::/48
                  2803:6900:507::/48
                  2803:6900:520::/48
                  2803:6900:524::/48
                  2803:6900:533::-2803:6900:534:ffff:ffff:ffff:ffff:ffff
                  2803:6900:543::/48
                  2803:6900:546::/47
                  2803:6900:561::/48
                  2803:6900:578::/48
                  2803:6900:593::/48
                  2803:6900:597::-2803:6900:598:ffff:ffff:ffff:ffff:ffff
                  2803:6900:609::/48
                  2803:6900:616::/47
                  2803:6900:1400::/48
                  2803:6900:1500::/47
                  2803:6900:1503::/48
                  2803:6900:1510::/48
                  2803:6900:1514::/48
                  2803:6900:1531::/48

    Signature Algorithm: sha256WithRSAEncryption
         25:2e:ff:8a:8d:f7:0d:ef:ab:93:36:1d:31:fb:64:04:84:71:
         49:75:0f:8a:1b:a4:9d:52:7b:0c:22:2b:b9:25:ef:fb:26:bc:
         12:70:77:07:65:c8:ed:29:06:82:d8:b8:9b:d1:ec:a1:09:be:
         12:6d:0b:51:ee:37:08:5c:38:46:d7:44:e9:65:3a:3c:67:38:
         9e:60:11:f0:d9:04:53:d8:cb:f4:a8:db:59:d6:1c:6b:c4:4e:
         c2:af:ac:1f:81:03:ed:00:54:dc:b2:3d:17:bc:e8:92:9d:00:
         a8:32:e3:14:5c:cd:e2:49:88:f6:53:05:15:ca:48:25:67:c2:
         d2:f3:33:e8:ec:0d:04:3e:e4:53:57:e0:dd:98:d5:6e:b2:ca:
         1a:84:02:ba:e1:e7:5e:7b:31:d1:59:66:c9:e5:2c:2d:d9:61:
         01:cb:92:40:cb:8c:cc:f3:ab:51:70:41:f1:34:cb:86:62:19:
         2a:28:fd:27:bf:d5:6e:9f:4f:ab:01:0c:a3:78:1d:2f:d2:b9:
         ed:44:64:66:a3:22:ac:ae:d6:e5:bf:12:98:c3:0f:2a:40:79:
         17:e5:1c:d4:e8:6d:54:2c:2a:65:fd:3f:0f:4e:85:e2:ab:1b:
         c3:eb:64:01:bc:f6:50:17:f0:76:11:64:85:57:61:5b:7d:86:
         cb:ae:6d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:02 2024 by rpki-client on console-ams.rpki-client.org