Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/964b6088-85a6-4363-a11f-20d725bba3f7/ce55e3cde2d16648f29fda8eef38a7bea6926c49.roa
File: ce55e3cde2d16648f29fda8eef38a7bea6926c49.roa (raw, json)
Hash identifier: 6af0gWYEHTw6zQp+P/Xgm1rmKQpgYRW/4pww/wlZ7/o=
Subject key identifier: 01:67:60:1D:DC:6B:62:5E:C0:EE:6D:C2:21:CD:09:CD:18:3D:9C:EE
Certificate issuer: /CN=d5f5b360f6396f35cac76fe7727148af2ea950d9
Certificate serial: 22AC69
Authority key identifier: 38:66:D1:54:E1:04:2B:B2:C3:11:22:39:6A:CB:0D:60:F0:7A:DD:C9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d5f5b360f6396f35cac76fe7727148af2ea950d9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/964b6088-85a6-4363-a11f-20d725bba3f7/ce55e3cde2d16648f29fda8eef38a7bea6926c49.roa
Signing time: Fri 28 Apr 2023 17:34:46 +0000
ROA not before: Thu 27 Apr 2023 17:34:45 +0000
ROA not after: Mon 28 Apr 2025 17:34:45 +0000
asID: 52323
IP address blocks: 181.16.236.0/22 maxlen: 24
181.16.240.0/24 maxlen: 24
181.16.254.0/23 maxlen: 24
181.16.160.0/23 maxlen: 24
181.16.168.0/24 maxlen: 24
181.16.170.0/23 maxlen: 24
181.16.175.0/24 maxlen: 24
181.16.176.0/23 maxlen: 24
181.16.180.0/23 maxlen: 24
181.16.184.0/22 maxlen: 24
181.16.192.0/22 maxlen: 24
181.16.196.0/23 maxlen: 24
181.16.204.0/22 maxlen: 24
181.16.208.0/21 maxlen: 24
181.16.130.0/23 maxlen: 24
181.16.136.0/21 maxlen: 24
181.16.145.0/24 maxlen: 24
181.16.146.0/24 maxlen: 24
181.16.156.0/23 maxlen: 24
2800:600::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2272361 (0x22ac69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f5b360f6396f35cac76fe7727148af2ea950d9
Validity
Not Before: Apr 27 17:34:45 2023 GMT
Not After : Apr 28 17:34:45 2025 GMT
Subject: CN=ce55e3cde2d16648f29fda8eef38a7bea6926c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bb:37:c3:02:eb:37:63:a9:cd:4a:3a:82:d1:
8b:f1:0e:ea:c9:13:b2:0d:37:28:fb:43:8f:9c:47:
a0:2b:55:89:6e:1c:89:73:a4:17:a6:a4:83:62:6d:
b8:da:38:dc:64:37:52:46:b8:19:fb:f1:3d:af:fa:
b9:4a:e0:70:2f:b2:98:a0:a4:47:03:61:04:66:93:
d1:66:19:ec:5b:1e:5e:7e:d7:7c:39:d7:a3:4a:40:
40:16:18:1b:82:ac:fe:a6:54:6c:1a:21:0e:68:24:
06:03:b4:6b:de:0b:53:e2:1a:be:d2:b6:db:b9:0a:
38:5a:f3:fd:75:ec:d0:74:38:f8:ef:c3:c0:46:3a:
4d:8b:c2:e5:62:2a:a4:d8:f1:2c:1e:84:55:59:28:
91:d0:c1:88:81:42:48:46:d6:9d:e7:f9:3b:29:32:
0a:ad:6e:a6:76:0b:e6:8d:00:3c:c4:e8:d1:f2:8d:
30:66:54:50:b6:b8:b0:6d:d1:79:f3:15:23:5f:56:
94:22:cb:a8:8e:52:d7:68:38:2e:5c:be:fa:6d:5e:
3b:a2:e2:d2:83:79:f9:0b:bf:fa:63:20:39:12:6d:
81:41:5f:43:9e:8a:c8:46:27:7c:ea:65:c2:3d:b9:
5b:42:b9:71:7f:21:cc:d6:f7:2d:0f:8d:cc:85:12:
02:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:67:60:1D:DC:6B:62:5E:C0:EE:6D:C2:21:CD:09:CD:18:3D:9C:EE
X509v3 Authority Key Identifier:
keyid:38:66:D1:54:E1:04:2B:B2:C3:11:22:39:6A:CB:0D:60:F0:7A:DD:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d5f5b360f6396f35cac76fe7727148af2ea950d9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/964b6088-85a6-4363-a11f-20d725bba3f7/ce55e3cde2d16648f29fda8eef38a7bea6926c49.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/964b6088-85a6-4363-a11f-20d725bba3f7/d5f5b360f6396f35cac76fe7727148af2ea950d9.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.16.130.0/23
181.16.136.0/21
181.16.145.0-181.16.146.255
181.16.156.0/23
181.16.160.0/23
181.16.168.0/24
181.16.170.0/23
181.16.175.0-181.16.177.255
181.16.180.0/23
181.16.184.0/22
181.16.192.0-181.16.197.255
181.16.204.0-181.16.215.255
181.16.236.0-181.16.240.255
181.16.254.0/23
IPv6:
2800:600::/32
Signature Algorithm: sha256WithRSAEncryption
73:54:30:90:b0:d2:a0:0c:3e:8d:1e:19:9e:8d:58:60:30:2d:
c9:f1:3e:05:d0:dd:29:82:c3:61:79:19:d7:56:7c:0b:e0:10:
cf:45:ea:96:2b:1e:83:cd:fc:f3:68:64:cb:00:15:07:ea:b1:
2e:3b:11:2b:d1:06:94:65:ff:7c:de:dd:ef:8f:ac:7c:66:17:
ac:7b:9d:da:91:7e:66:13:c3:f9:82:21:0f:9d:1d:c1:e4:40:
0a:ed:f4:1b:3d:22:27:24:ac:27:d7:47:f5:7a:9e:6f:f0:1d:
dc:6a:fd:03:18:05:d5:c4:dc:0e:5e:bf:70:20:f5:9d:36:cc:
02:42:9e:5d:7a:d7:8e:78:03:36:f2:53:2e:f5:4a:87:c7:ad:
32:90:06:6c:2e:af:05:2b:73:bb:35:e2:e4:bd:1e:70:25:0d:
23:5b:b3:20:86:65:bc:20:78:f7:5f:b7:17:7e:93:44:79:ef:
84:7f:96:6f:b2:45:ea:4e:7a:42:62:0c:ab:d2:e5:9b:98:93:
d9:cf:f5:e6:a7:a6:b9:a5:a5:d3:ea:3f:bf:51:20:e4:14:57:
c9:26:c7:3b:8a:00:60:4f:c4:83:03:7a:aa:2c:d8:1a:ee:9d:
52:10:fc:0d:c7:11:3c:9f:7b:d9:35:ff:52:9f:14:81:38:f5:
1a:74:fb:9b
-----BEGIN CERTIFICATE-----
MIIFyTCCBLGgAwIBAgIDIqxpMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQ1
ZjViMzYwZjYzOTZmMzVjYWM3NmZlNzcyNzE0OGFmMmVhOTUwZDkwHhcNMjMwNDI3
MTczNDQ1WhcNMjUwNDI4MTczNDQ1WjAzMTEwLwYDVQQDEyhjZTU1ZTNjZGUyZDE2
NjQ4ZjI5ZmRhOGVlZjM4YTdiZWE2OTI2YzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmbs3wwLrN2OpzUo6gtGL8Q7qyROyDTco+0OPnEegK1WJbhyJ
c6QXpqSDYm242jjcZDdSRrgZ+/E9r/q5SuBwL7KYoKRHA2EEZpPRZhnsWx5eftd8
OdejSkBAFhgbgqz+plRsGiEOaCQGA7Rr3gtT4hq+0rbbuQo4WvP9dezQdDj478PA
RjpNi8LlYiqk2PEsHoRVWSiR0MGIgUJIRtad5/k7KTIKrW6mdgvmjQA8xOjR8o0w
ZlRQtriwbdF58xUjX1aUIsuojlLXaDguXL76bV47ouLSg3n5C7/6YyA5Em2BQV9D
norIRid86mXCPblbQrlxfyHM1vctD43MhRICZQIDAQABo4IC5DCCAuAwHQYDVR0O
BBYEFAFnYB3ca2JewO5twiHNCc0YPZzuMB8GA1UdIwQYMBaAFDhm0VThBCuywxEi
OWrLDWDwet3JMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZDVmNWIz
NjBmNjM5NmYzNWNhYzc2ZmU3NzI3MTQ4YWYyZWE5NTBkOS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvOTY0YjYwODgtODVhNi00MzYzLWExMWYtMjBkNzI1
YmJhM2Y3L2NlNTVlM2NkZTJkMTY2NDhmMjlmZGE4ZWVmMzhhN2JlYTY5MjZjNDku
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy85NjRiNjA4OC04NWE2LTQzNjMtYTExZi0yMGQ3
MjViYmEzZjcvZDVmNWIzNjBmNjM5NmYzNWNhYzc2ZmU3NzI3MTQ4YWYyZWE5NTBk
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCBpwYIKwYBBQUHAQcBAf8E
gZcwgZQwgYIEAgABMHwDBAG1EIIDBAO1EIgwDAMEALUQkQMEALUQkgMEAbUQnAME
AbUQoAMEALUQqAMEAbUQqjAMAwQAtRCvAwQBtRCwAwQBtRC0AwQCtRC4MAwDBAa1
EMADBAG1EMQwDAMEArUQzAMEA7UQ0DAMAwQCtRDsAwQAtRDwAwQBtRD+MA0EAgAC
MAcDBQAoAAYAMA0GCSqGSIb3DQEBCwUAA4IBAQBzVDCQsNKgDD6NHhmejVhgMC3J
8T4F0N0pgsNheRnXVnwL4BDPReqWKx6DzfzzaGTLABUH6rEuOxEr0QaUZf983t3v
j6x8Zhese53akX5mE8P5giEPnR3B5EAK7fQbPSInJKwn10f1ep5v8B3cav0DGAXV
xNwOXr9wIPWdNswCQp5deteOeAM28lMu9UqHx60ykAZsLq8FK3O7NeLkvR5wJQ0j
W7MghmW8IHj3X7cXfpNEee+Ef5ZvskXqTnpCYgyr0uWbmJPZz/Xmp6a5paXT6j+/
USDkFFfJJsc7igBgT8SDA3qqLNga7p1SEPwNxxE8n3vZNf9SnxSBOPUadPub
-----END CERTIFICATE-----
Generated at Sat Apr 12 09:32:20 2025 by rpki-client