Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/94da481b6eda7039692cbe6e6128912dcc2c568e.roa
File: 94da481b6eda7039692cbe6e6128912dcc2c568e.roa (raw, json)
Hash identifier: tmCEpYBmxd9/wsylC6j3ytlrl2L5uR9nUZDTa3YgrMg=
Subject key identifier: A4:CB:6C:41:75:75:AB:1F:47:9A:8C:BF:C3:DE:08:C1:A1:A2:83:CE
Certificate issuer: /CN=1c730cc4f1140e9c3a243768d1052ae2bf36d279
Certificate serial: 2759C7
Authority key identifier: 3D:A3:67:37:DA:4A:CD:E5:E9:6B:4B:A9:47:08:77:64:8A:B3:25:19
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1c730cc4f1140e9c3a243768d1052ae2bf36d279.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/94da481b6eda7039692cbe6e6128912dcc2c568e.roa
Signing time: Tue 30 Jan 2024 04:37:04 +0000
ROA not before: Tue 30 Jan 2024 04:37:04 +0000
ROA not after: Fri 30 Jan 2026 04:37:04 +0000
asID: 6429
IP address blocks: 200.29.173.0/24 maxlen: 24
200.29.177.0/24 maxlen: 24
200.29.178.0/24 maxlen: 24
200.29.184.0/24 maxlen: 24
200.29.191.0/24 maxlen: 24
200.9.151.0/24 maxlen: 24
190.54.187.0/24 maxlen: 24
190.54.188.0/24 maxlen: 24
190.54.191.0/24 maxlen: 24
190.208.0.0/18 maxlen: 24
200.29.143.0/24 maxlen: 24
190.54.0.0/17 maxlen: 24
200.29.151.0/24 maxlen: 24
190.54.136.0/22 maxlen: 24
200.32.160.0/19 maxlen: 24
190.54.140.0/23 maxlen: 24
190.54.176.0/22 maxlen: 24
190.54.180.0/24 maxlen: 24
190.54.182.0/23 maxlen: 24
190.54.184.0/23 maxlen: 24
200.31.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2578887 (0x2759c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c730cc4f1140e9c3a243768d1052ae2bf36d279
Validity
Not Before: Jan 30 04:37:04 2024 GMT
Not After : Jan 30 04:37:04 2026 GMT
Subject: CN=94da481b6eda7039692cbe6e6128912dcc2c568e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:65:45:41:df:41:82:a7:50:d2:2f:0a:18:78:
be:31:b6:58:b4:46:a1:3f:5c:9c:5e:86:98:a9:9c:
2c:01:8e:0f:bd:e1:d9:a4:6b:58:f2:61:b6:05:22:
f7:4f:1a:b3:aa:68:ca:af:62:41:c1:a5:10:86:b2:
36:de:e0:9d:db:f0:84:34:ab:d4:d8:b4:4c:0a:30:
2a:18:fd:a8:d0:75:68:6d:7e:df:82:2b:83:de:0a:
af:1b:7f:8c:8a:8c:09:74:5d:c7:81:f6:de:f2:53:
51:fa:12:a4:e5:7d:57:65:46:a0:58:98:ed:ca:9c:
3e:66:19:a9:14:c0:71:24:a7:ef:66:06:ee:2a:2e:
7c:3b:9f:52:cc:ab:6e:6e:d5:8b:1c:2b:91:69:52:
ba:1c:4c:d8:7c:fc:08:dc:e9:f6:7c:ac:72:4c:68:
4a:ff:fa:54:e6:d8:48:42:c6:41:cc:91:2a:b5:e8:
f8:8c:30:67:b3:83:c2:83:bb:9f:a6:e6:dd:a0:d9:
26:cc:4f:5b:33:92:3e:0d:8f:39:b1:c2:d5:07:b7:
f3:81:9b:c4:f8:50:ee:dd:63:1f:c6:d3:3b:a6:fc:
31:bf:61:3a:b0:80:55:1a:0a:a8:28:13:23:41:da:
59:9b:58:88:eb:3e:87:76:6d:70:f4:bf:2a:4a:97:
2b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CB:6C:41:75:75:AB:1F:47:9A:8C:BF:C3:DE:08:C1:A1:A2:83:CE
X509v3 Authority Key Identifier:
keyid:3D:A3:67:37:DA:4A:CD:E5:E9:6B:4B:A9:47:08:77:64:8A:B3:25:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1c730cc4f1140e9c3a243768d1052ae2bf36d279.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/94da481b6eda7039692cbe6e6128912dcc2c568e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/91c81eff-a6cd-4319-b3c3-dca83e866d25/1c730cc4f1140e9c3a243768d1052ae2bf36d279.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.54.0.0/17
190.54.136.0-190.54.141.255
190.54.176.0-190.54.180.255
190.54.182.0-190.54.185.255
190.54.187.0-190.54.188.255
190.54.191.0/24
190.208.0.0/18
200.9.151.0/24
200.29.143.0/24
200.29.151.0/24
200.29.173.0/24
200.29.177.0-200.29.178.255
200.29.184.0/24
200.29.191.0/24
200.31.32.0/19
200.32.160.0/19
Signature Algorithm: sha256WithRSAEncryption
62:0d:e9:54:9b:9c:df:1c:7e:1d:f7:7b:a0:ab:32:9d:fb:38:
81:4b:16:10:3d:73:4c:12:1d:c7:42:7f:48:19:2b:04:3b:d0:
f8:7f:5b:59:ab:49:a3:70:68:d6:91:94:66:e4:fe:f0:4e:a8:
d8:27:8f:da:93:06:d0:38:77:c8:53:83:ff:4e:dd:80:0f:4e:
a8:54:00:e4:37:9b:c7:c4:a6:a4:ea:92:7c:6c:64:b6:cd:04:
37:ed:3f:45:16:a7:96:98:16:aa:ae:a7:50:eb:c4:88:37:81:
c2:08:b8:48:1d:a0:0e:a8:84:fb:ba:42:e4:a6:fb:a6:2a:bc:
1f:a0:18:4c:2b:69:48:8c:ab:a5:3b:e2:18:1a:d2:17:84:2d:
e5:0e:23:d7:3b:d9:7b:51:60:51:2e:7f:e6:dc:98:72:48:f9:
c1:9a:c2:43:66:42:1c:36:4b:02:99:ef:7a:e1:09:0c:16:02:
51:ca:cd:ed:a9:71:de:e7:c7:00:d3:a6:62:9f:38:e3:8c:37:
5c:76:0c:18:d2:2f:7a:e1:9c:5b:d0:9b:70:1d:68:6a:bf:8a:
4e:33:2a:7a:e2:4e:77:36:aa:71:c8:8c:bd:17:20:ab:e2:bb:
62:25:6a:3e:d1:90:a7:6b:bf:26:b1:dc:aa:da:92:25:63:85:
60:c1:4a:db
-----BEGIN CERTIFICATE-----
MIIFxzCCBK+gAwIBAgIDJ1nHMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDFj
NzMwY2M0ZjExNDBlOWMzYTI0Mzc2OGQxMDUyYWUyYmYzNmQyNzkwHhcNMjQwMTMw
MDQzNzA0WhcNMjYwMTMwMDQzNzA0WjAzMTEwLwYDVQQDEyg5NGRhNDgxYjZlZGE3
MDM5NjkyY2JlNmU2MTI4OTEyZGNjMmM1NjhlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA5WVFQd9BgqdQ0i8KGHi+MbZYtEahP1ycXoaYqZwsAY4PveHZ
pGtY8mG2BSL3TxqzqmjKr2JBwaUQhrI23uCd2/CENKvU2LRMCjAqGP2o0HVobX7f
giuD3gqvG3+MiowJdF3Hgfbe8lNR+hKk5X1XZUagWJjtypw+ZhmpFMBxJKfvZgbu
Ki58O59SzKtubtWLHCuRaVK6HEzYfPwI3On2fKxyTGhK//pU5thIQsZBzJEqtej4
jDBns4PCg7ufpubdoNkmzE9bM5I+DY85scLVB7fzgZvE+FDu3WMfxtM7pvwxv2E6
sIBVGgqoKBMjQdpZm1iI6z6Hdm1w9L8qSpcrUQIDAQABo4IC4jCCAt4wHQYDVR0O
BBYEFKTLbEF1dasfR5qMv8PeCMGhooPOMB8GA1UdIwQYMBaAFD2jZzfaSs3l6WtL
qUcId2SKsyUZMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMWM3MzBj
YzRmMTE0MGU5YzNhMjQzNzY4ZDEwNTJhZTJiZjM2ZDI3OS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvOTFjODFlZmYtYTZjZC00MzE5LWIzYzMtZGNhODNl
ODY2ZDI1Lzk0ZGE0ODFiNmVkYTcwMzk2OTJjYmU2ZTYxMjg5MTJkY2MyYzU2OGUu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy85MWM4MWVmZi1hNmNkLTQzMTktYjNjMy1kY2E4
M2U4NjZkMjUvMWM3MzBjYzRmMTE0MGU5YzNhMjQzNzY4ZDEwNTJhZTJiZjM2ZDI3
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCBpQYIKwYBBQUHAQcBAf8E
gZUwgZIwgY8EAgABMIGIAwQHvjYAMAwDBAO+NogDBAG+NowwDAMEBL42sAMEAL42
tDAMAwQBvja2AwQBvja4MAwDBAC+NrsDBAC+NrwDBAC+Nr8DBAa+0AADBADICZcD
BADIHY8DBADIHZcDBADIHa0wDAMEAMgdsQMEAMgdsgMEAMgduAMEAMgdvwMEBcgf
IAMEBcggoDANBgkqhkiG9w0BAQsFAAOCAQEAYg3pVJuc3xx+Hfd7oKsynfs4gUsW
ED1zTBIdx0J/SBkrBDvQ+H9bWatJo3Bo1pGUZuT+8E6o2CeP2pMG0Dh3yFOD/07d
gA9OqFQA5Debx8SmpOqSfGxkts0EN+0/RRanlpgWqq6nUOvEiDeBwgi4SB2gDqiE
+7pC5Kb7piq8H6AYTCtpSIyrpTviGBrSF4Qt5Q4j1zvZe1FgUS5/5tyYckj5wZrC
Q2ZCHDZLApnveuEJDBYCUcrN7alx3ufHANOmYp8444w3XHYMGNIveuGcW9CbcB1o
ar+KTjMqeuJOdzaqcciMvRcgq+K7YiVqPtGQp2u/JrHcqtqSJWOFYMFK2w==
-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:24 2024 by rpki-client on console-fra.rpki-client.org