Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9e898202-551c-4a4e-a6d0-cf739c316678/a6983c3772b421651bbb8da2255e599e6eed6684.roa
File: a6983c3772b421651bbb8da2255e599e6eed6684.roa (raw, json)
Hash identifier: JGg5TeI3M5+KDU69ZveLoVQ4zQo9M6fwd43AUiy+y0s=
Subject key identifier: C2:48:E4:C4:87:69:81:D5:DD:11:0C:8C:EC:7D:9F:BE:E4:FF:3F:75
Certificate issuer: /CN=a3a1d5f9c3b42669fce6b8ae03d338f1d21f942f
Certificate serial: 210C03
Authority key identifier: DB:EE:7B:EC:56:4F:90:5D:60:8E:8A:D7:C2:54:C5:D8:32:57:10:50
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a3a1d5f9c3b42669fce6b8ae03d338f1d21f942f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9e898202-551c-4a4e-a6d0-cf739c316678/a6983c3772b421651bbb8da2255e599e6eed6684.roa
Signing time: Wed 06 Dec 2023 18:18:21 +0000
ROA not before: Wed 06 Dec 2023 18:18:21 +0000
ROA not after: Sat 06 Dec 2025 18:18:21 +0000
asID: 264688
IP address blocks: 190.107.240.0/21 maxlen: 24
190.107.240.0/24 maxlen: 24
190.107.241.0/24 maxlen: 24
190.107.242.0/24 maxlen: 24
190.107.243.0/24 maxlen: 24
190.107.244.0/24 maxlen: 24
190.107.245.0/24 maxlen: 24
190.107.246.0/24 maxlen: 24
190.107.247.0/24 maxlen: 24
190.196.224.0/20 maxlen: 24
190.196.225.0/24 maxlen: 24
190.196.226.0/24 maxlen: 24
190.196.227.0/24 maxlen: 24
190.196.228.0/24 maxlen: 24
190.196.229.0/24 maxlen: 24
190.196.230.0/24 maxlen: 24
190.196.231.0/24 maxlen: 24
190.196.232.0/24 maxlen: 24
190.196.233.0/24 maxlen: 24
190.196.234.0/24 maxlen: 24
190.196.235.0/24 maxlen: 24
190.196.236.0/24 maxlen: 24
190.196.237.0/24 maxlen: 24
190.196.238.0/24 maxlen: 24
190.196.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2165763 (0x210c03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3a1d5f9c3b42669fce6b8ae03d338f1d21f942f
Validity
Not Before: Dec 6 18:18:21 2023 GMT
Not After : Dec 6 18:18:21 2025 GMT
Subject: CN=a6983c3772b421651bbb8da2255e599e6eed6684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d0:b0:82:60:35:15:cf:57:d4:be:c2:f3:2d:
01:bb:3e:f0:e0:f3:c2:2a:97:91:5b:92:19:c8:84:
5d:29:30:5b:98:5f:4b:63:45:e3:be:10:e1:8b:bb:
25:13:21:ee:7a:10:a5:b6:51:ee:6e:cd:57:6c:7a:
d9:a3:f3:7c:15:a7:dd:2c:7c:34:0d:c8:65:01:02:
d8:f8:56:62:ca:41:1e:68:4e:93:06:0d:d7:92:00:
a5:4e:bc:1b:7c:ca:08:65:45:76:81:3b:23:01:c6:
68:96:54:54:33:89:33:a6:dd:47:b1:aa:0c:a5:d1:
c4:70:5c:fa:cb:19:ed:21:2f:65:40:da:a6:36:a3:
63:7b:39:1e:83:7c:f1:8c:c6:2c:7c:0f:23:8d:ca:
a0:47:14:95:35:9b:49:b3:77:5f:1a:c6:ea:ae:fb:
a4:ae:a4:66:c9:bf:62:12:de:a4:85:ac:ea:25:16:
a4:d9:15:ab:8d:f9:96:cd:d3:23:d0:52:74:be:1c:
2f:f3:1f:bc:0b:2f:a6:5f:39:78:6f:08:6b:d6:1b:
b2:d5:f8:c0:ec:76:36:24:00:ce:b8:1f:d1:4f:f8:
ab:9a:06:39:ed:e8:dd:58:06:dd:41:be:74:f8:e5:
20:5f:af:0b:2e:81:90:f1:d4:58:93:c5:f0:0a:3d:
73:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:48:E4:C4:87:69:81:D5:DD:11:0C:8C:EC:7D:9F:BE:E4:FF:3F:75
X509v3 Authority Key Identifier:
keyid:DB:EE:7B:EC:56:4F:90:5D:60:8E:8A:D7:C2:54:C5:D8:32:57:10:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a3a1d5f9c3b42669fce6b8ae03d338f1d21f942f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9e898202-551c-4a4e-a6d0-cf739c316678/a6983c3772b421651bbb8da2255e599e6eed6684.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9e898202-551c-4a4e-a6d0-cf739c316678/a3a1d5f9c3b42669fce6b8ae03d338f1d21f942f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.107.240.0/21
190.196.224.0/20
Signature Algorithm: sha256WithRSAEncryption
2c:81:85:6b:42:cd:d9:4f:f5:20:b3:d9:31:53:48:67:3d:80:
cc:fc:83:32:63:e5:51:8c:9a:6f:8b:69:9f:e5:9e:9f:76:da:
0b:1b:46:ad:a8:a6:59:93:3e:35:9e:7d:48:59:d4:c0:8d:a2:
ae:1a:7f:72:da:22:2b:77:09:d4:f8:69:65:2e:ae:8a:a3:1f:
15:35:29:71:ae:d9:59:7c:04:14:e8:27:58:6c:19:ce:8c:04:
b0:62:15:0b:33:c4:f0:8a:aa:a1:47:59:43:a4:fd:e8:d3:05:
a1:e9:83:18:67:9e:58:80:0f:e9:9f:bc:b4:4d:f4:cd:81:63:
52:e5:e5:eb:92:c4:5c:50:00:aa:23:7f:91:5e:56:bc:07:ee:
a8:4b:a0:fa:5b:1b:60:12:c7:c5:39:13:97:b2:bf:91:3b:4a:
f1:f0:c2:dd:e3:56:36:71:19:a4:03:1d:90:4b:4f:f7:42:ab:
46:8a:77:43:90:19:91:ec:f9:88:69:44:9c:7d:29:68:66:05:
f3:94:36:ac:0a:8b:91:47:bb:10:c9:a7:45:81:4a:6b:53:64:
8b:c0:5e:4f:e4:4d:b1:2f:3a:6e:cc:d8:62:36:5f:cf:f7:f7:
79:ba:ed:ac:53:0b:4d:8b:7a:bb:ea:31:a4:d0:75:86:1b:74:
b4:41:48:1b
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgIDIQwDMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGEz
YTFkNWY5YzNiNDI2NjlmY2U2YjhhZTAzZDMzOGYxZDIxZjk0MmYwHhcNMjMxMjA2
MTgxODIxWhcNMjUxMjA2MTgxODIxWjAzMTEwLwYDVQQDEyhhNjk4M2MzNzcyYjQy
MTY1MWJiYjhkYTIyNTVlNTk5ZTZlZWQ2Njg0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAhNCwgmA1Fc9X1L7C8y0Buz7w4PPCKpeRW5IZyIRdKTBbmF9L
Y0XjvhDhi7slEyHuehCltlHubs1XbHrZo/N8FafdLHw0DchlAQLY+FZiykEeaE6T
Bg3XkgClTrwbfMoIZUV2gTsjAcZollRUM4kzpt1HsaoMpdHEcFz6yxntIS9lQNqm
NqNjezkeg3zxjMYsfA8jjcqgRxSVNZtJs3dfGsbqrvukrqRmyb9iEt6khazqJRak
2RWrjfmWzdMj0FJ0vhwv8x+8Cy+mXzl4bwhr1huy1fjA7HY2JADOuB/RT/irmgY5
7ejdWAbdQb50+OUgX68LLoGQ8dRYk8XwCj1zkQIDAQABo4ICYTCCAl0wHQYDVR0O
BBYEFMJI5MSHaYHV3REMjOx9n77k/z91MB8GA1UdIwQYMBaAFNvue+xWT5BdYI6K
18JUxdgyVxBQMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYTNhMWQ1
ZjljM2I0MjY2OWZjZTZiOGFlMDNkMzM4ZjFkMjFmOTQyZi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvOWU4OTgyMDItNTUxYy00YTRlLWE2ZDAtY2Y3Mzlj
MzE2Njc4L2E2OTgzYzM3NzJiNDIxNjUxYmJiOGRhMjI1NWU1OTllNmVlZDY2ODQu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy85ZTg5ODIwMi01NTFjLTRhNGUtYTZkMC1jZjcz
OWMzMTY2NzgvYTNhMWQ1ZjljM2I0MjY2OWZjZTZiOGFlMDNkMzM4ZjFkMjFmOTQy
Zi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQW
MBQwEgQCAAEwDAMEA75r8AMEBL7E4DANBgkqhkiG9w0BAQsFAAOCAQEALIGFa0LN
2U/1ILPZMVNIZz2AzPyDMmPlUYyab4tpn+Wen3baCxtGraimWZM+NZ59SFnUwI2i
rhp/ctoiK3cJ1PhpZS6uiqMfFTUpca7ZWXwEFOgnWGwZzowEsGIVCzPE8IqqoUdZ
Q6T96NMFoemDGGeeWIAP6Z+8tE30zYFjUuXl65LEXFAAqiN/kV5WvAfuqEug+lsb
YBLHxTkTl7K/kTtK8fDC3eNWNnEZpAMdkEtP90KrRop3Q5AZkez5iGlEnH0paGYF
85Q2rAqLkUe7EMmnRYFKa1Nki8BeT+RNsS86bszYYjZfz/f3ebrtrFMLTYt6u+ox
pNB1hht0tEFIGw==
-----END CERTIFICATE-----
Generated at Wed Dec 6 20:14:34 2023 by rpki-client on console-ams.rpki-client.org