Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9bc68c15-0410-48f4-bf10-b6b8520eb6fd/cfe0e3c1ef3ff9180207aa7bddd6f1ab46e4d41a.roa
File: cfe0e3c1ef3ff9180207aa7bddd6f1ab46e4d41a.roa (raw, json)
Hash identifier: oY1TGqOw/brhw/9bF/er24dtzB9L+MOvAL+80MFNbSM=
Subject key identifier: 99:57:11:FC:03:3C:2C:97:9F:8A:8A:99:C6:55:56:B6:9A:10:37:10
Certificate issuer: /CN=580830aa46930a9ed0126869d25c20fe0e806ec5
Certificate serial: 0D8F64
Authority key identifier: CD:14:06:D7:74:A5:5E:B9:84:66:FE:FD:56:67:32:EE:B8:52:C8:83
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/580830aa46930a9ed0126869d25c20fe0e806ec5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9bc68c15-0410-48f4-bf10-b6b8520eb6fd/cfe0e3c1ef3ff9180207aa7bddd6f1ab46e4d41a.roa
Signing time: Wed 24 Mar 2021 14:33:17 +0000
ROA not before: Wed 24 Mar 2021 14:33:17 +0000
ROA not after: Tue 24 Mar 2026 14:33:17 +0000
asID: 13381
IP address blocks: 200.112.232.0/24 maxlen: 24
200.112.233.0/24 maxlen: 24
200.112.234.0/24 maxlen: 24
200.112.235.0/24 maxlen: 24
200.112.236.0/24 maxlen: 24
200.112.237.0/24 maxlen: 24
200.112.238.0/24 maxlen: 24
200.112.239.0/24 maxlen: 24
200.112.224.0/24 maxlen: 24
200.112.225.0/24 maxlen: 24
200.112.226.0/24 maxlen: 24
200.112.227.0/24 maxlen: 24
200.112.228.0/24 maxlen: 24
200.112.229.0/24 maxlen: 24
200.112.230.0/24 maxlen: 24
200.112.231.0/24 maxlen: 24
200.112.248.0/24 maxlen: 24
200.112.249.0/24 maxlen: 24
200.112.250.0/24 maxlen: 24
200.112.251.0/24 maxlen: 24
200.112.252.0/24 maxlen: 24
200.112.253.0/24 maxlen: 24
200.112.254.0/24 maxlen: 24
200.112.255.0/24 maxlen: 24
200.112.240.0/24 maxlen: 24
200.112.241.0/24 maxlen: 24
200.112.242.0/23 maxlen: 24
200.112.244.0/24 maxlen: 24
200.112.245.0/24 maxlen: 24
200.112.246.0/24 maxlen: 24
200.112.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 888676 (0xd8f64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=580830aa46930a9ed0126869d25c20fe0e806ec5
Validity
Not Before: Mar 24 14:33:17 2021 GMT
Not After : Mar 24 14:33:17 2026 GMT
Subject: CN=cfe0e3c1ef3ff9180207aa7bddd6f1ab46e4d41a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:60:69:25:77:f7:0b:c9:ac:ba:ef:2a:66:f7:
af:13:7c:cb:7a:f3:f6:e7:6e:b4:3f:c0:ab:1a:61:
2c:6e:25:b9:72:e6:b9:33:08:d7:1f:42:2d:97:74:
08:9c:e8:03:dc:5d:28:0c:e3:1e:f2:b3:01:38:7f:
c5:54:85:06:86:b9:af:96:d8:8f:3d:f5:ef:9f:91:
5c:40:8a:e8:89:4f:0a:2e:80:99:0a:89:cd:17:2f:
df:8b:23:e9:58:fe:86:7a:c3:60:ab:80:da:16:db:
8e:01:6d:11:35:94:cc:55:f1:d0:3e:4e:98:c3:1d:
8c:25:1c:a3:96:4d:d2:c1:47:15:3f:10:4f:70:e0:
16:d4:16:27:71:20:5f:a7:b5:ec:ee:14:d7:01:ec:
99:13:26:ec:4b:c3:ab:a2:16:b7:ef:a2:71:e7:b8:
83:ef:ba:23:6d:21:fb:e5:0f:b2:25:82:6e:35:a4:
95:2f:19:11:b0:d7:98:db:bd:80:5e:1c:1a:83:2d:
b8:eb:38:79:70:8f:f1:40:af:ac:2d:6a:44:bc:61:
16:2a:d1:2e:8c:57:e2:65:cc:4d:b9:76:4a:a3:f5:
fc:10:4f:00:d0:bc:8f:41:21:5f:6f:07:22:09:fb:
af:0e:84:dc:e1:63:75:d9:3b:87:62:b4:2c:e0:9f:
dd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:57:11:FC:03:3C:2C:97:9F:8A:8A:99:C6:55:56:B6:9A:10:37:10
X509v3 Authority Key Identifier:
keyid:CD:14:06:D7:74:A5:5E:B9:84:66:FE:FD:56:67:32:EE:B8:52:C8:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/580830aa46930a9ed0126869d25c20fe0e806ec5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9bc68c15-0410-48f4-bf10-b6b8520eb6fd/cfe0e3c1ef3ff9180207aa7bddd6f1ab46e4d41a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9bc68c15-0410-48f4-bf10-b6b8520eb6fd/580830aa46930a9ed0126869d25c20fe0e806ec5.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.112.224.0/19
Signature Algorithm: sha256WithRSAEncryption
80:d6:c8:29:a7:05:d8:50:65:fd:4b:97:ea:72:33:00:4a:4f:
85:d8:08:33:ff:1f:7b:7e:b1:07:c6:c3:e5:60:fc:30:6e:ac:
72:6a:a4:d5:c8:de:f4:fd:84:a6:b2:9f:9b:25:02:82:e1:7e:
b9:00:3e:f9:f6:13:0d:1a:29:db:bd:ec:c0:c6:94:01:a1:29:
35:17:04:85:be:46:52:0a:07:59:dc:21:f5:bf:33:d7:ef:4d:
c5:1b:b9:a0:32:dc:c0:c1:98:d5:c9:e3:68:f3:c3:b6:c7:a1:
db:3d:e4:70:f7:49:91:e8:1c:a7:8f:d7:92:bc:f3:0b:80:8d:
98:8d:29:4b:ce:23:fe:80:64:4f:e1:c0:00:13:74:b8:e6:45:
d5:4a:4e:91:1b:db:03:94:ea:c3:ef:8d:70:fe:e7:9e:0e:be:
40:6b:8b:bb:47:2c:00:4c:4e:b8:4c:97:7e:42:b1:28:d9:c1:
0e:42:77:d0:13:ec:63:21:51:e8:65:73:5c:4f:df:61:14:05:
89:0d:fd:2e:95:74:5f:a8:ac:f9:d1:42:8b:ec:f3:9d:cb:55:
28:2a:55:59:e5:6b:36:63:4b:e6:f0:62:e8:3e:79:df:8d:71:
b6:68:e8:ff:06:d6:3b:3a:00:01:f8:75:b2:da:8e:3f:43:33:
99:c2:02:9b
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDDY9kMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDU4
MDgzMGFhNDY5MzBhOWVkMDEyNjg2OWQyNWMyMGZlMGU4MDZlYzUwHhcNMjEwMzI0
MTQzMzE3WhcNMjYwMzI0MTQzMzE3WjAzMTEwLwYDVQQDEyhjZmUwZTNjMWVmM2Zm
OTE4MDIwN2FhN2JkZGQ2ZjFhYjQ2ZTRkNDFhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAn2BpJXf3C8msuu8qZvevE3zLevP25260P8CrGmEsbiW5cua5
MwjXH0Itl3QInOgD3F0oDOMe8rMBOH/FVIUGhrmvltiPPfXvn5FcQIroiU8KLoCZ
ConNFy/fiyPpWP6GesNgq4DaFtuOAW0RNZTMVfHQPk6Ywx2MJRyjlk3SwUcVPxBP
cOAW1BYncSBfp7Xs7hTXAeyZEybsS8Oroha376Jx57iD77ojbSH75Q+yJYJuNaSV
LxkRsNeY272AXhwagy246zh5cI/xQK+sLWpEvGEWKtEujFfiZcxNuXZKo/X8EE8A
0LyPQSFfbwciCfuvDoTc4WN12TuHYrQs4J/drwIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFJlXEfwDPCyXn4qKmcZVVraaEDcQMB8GA1UdIwQYMBaAFM0UBtd0pV65hGb+
/VZnMu64UsiDMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNTgwODMw
YWE0NjkzMGE5ZWQwMTI2ODY5ZDI1YzIwZmUwZTgwNmVjNS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvOWJjNjhjMTUtMDQxMC00OGY0LWJmMTAtYjZiODUy
MGViNmZkL2NmZTBlM2MxZWYzZmY5MTgwMjA3YWE3YmRkZDZmMWFiNDZlNGQ0MWEu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy85YmM2OGMxNS0wNDEwLTQ4ZjQtYmYxMC1iNmI4
NTIwZWI2ZmQvNTgwODMwYWE0NjkzMGE5ZWQwMTI2ODY5ZDI1YzIwZmUwZTgwNmVj
NS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEBchw4DANBgkqhkiG9w0BAQsFAAOCAQEAgNbIKacF2FBl/UuX
6nIzAEpPhdgIM/8fe36xB8bD5WD8MG6scmqk1cje9P2EprKfmyUCguF+uQA++fYT
DRop273swMaUAaEpNRcEhb5GUgoHWdwh9b8z1+9NxRu5oDLcwMGY1cnjaPPDtseh
2z3kcPdJkegcp4/XkrzzC4CNmI0pS84j/oBkT+HAABN0uOZF1UpOkRvbA5Tqw++N
cP7nng6+QGuLu0csAExOuEyXfkKxKNnBDkJ30BPsYyFR6GVzXE/fYRQFiQ39LpV0
X6is+dFCi+zznctVKCpVWeVrNmNL5vBi6D55341xtmjo/wbWOzoAAfh1stqOP0Mz
mcICmw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:17 2024 by rpki-client on console-ams.rpki-client.org