Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a639b80b-9d59-4402-b477-a2b249caeee9/35639704c3109ca398c9decbc025162e5f3fe330.roa
File: 35639704c3109ca398c9decbc025162e5f3fe330.roa (raw, json)
Hash identifier: ec1awVn2cgntS0V5eMlnfHTbKL8l+8kn5ZoE27EdIpQ=
Subject key identifier: 76:70:0F:21:B3:36:C8:BE:C2:9C:7B:A8:6C:4F:AA:73:E0:20:5B:45
Certificate issuer: /CN=39c565bbc1beca70ca953d23feff753b392a17a7
Certificate serial: 2303B5
Authority key identifier: 87:B0:98:23:1A:C1:0E:6B:4E:27:AF:A8:8C:17:E4:9B:20:F2:1A:8C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/39c565bbc1beca70ca953d23feff753b392a17a7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/a639b80b-9d59-4402-b477-a2b249caeee9/35639704c3109ca398c9decbc025162e5f3fe330.roa
Signing time: Mon 31 Jul 2023 21:21:44 +0000
ROA not before: Sun 30 Jul 2023 21:21:43 +0000
ROA not after: Thu 31 Jul 2025 21:21:43 +0000
asID: 262589
IP address blocks: 190.121.128.0/24 maxlen: 24
190.121.130.0/24 maxlen: 24
190.121.142.0/23 maxlen: 24
190.121.149.0/24 maxlen: 24
190.121.157.0/24 maxlen: 24
138.117.111.0/24 maxlen: 24
190.0.242.0/24 maxlen: 24
190.0.244.0/24 maxlen: 24
190.107.19.0/24 maxlen: 24
190.107.20.0/24 maxlen: 24
190.14.246.0/24 maxlen: 24
190.14.249.0/24 maxlen: 24
190.14.251.0/24 maxlen: 24
168.90.14.0/24 maxlen: 24
181.225.65.0/24 maxlen: 24
181.225.73.0/24 maxlen: 24
181.225.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2294709 (0x2303b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39c565bbc1beca70ca953d23feff753b392a17a7
Validity
Not Before: Jul 30 21:21:43 2023 GMT
Not After : Jul 31 21:21:43 2025 GMT
Subject: CN=35639704c3109ca398c9decbc025162e5f3fe330
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c3:e7:09:99:92:37:65:34:33:99:be:e3:8f:
6e:e9:b0:ef:77:69:00:47:1d:96:81:4d:00:23:77:
59:ce:c8:14:8a:2f:f6:11:ac:f1:f3:ac:c7:de:47:
95:9d:5c:e4:f7:9e:10:9c:15:bb:1c:43:42:3c:ab:
88:3b:a2:29:2f:1d:d9:a1:d1:2f:11:0c:b5:6a:a7:
43:87:b7:8a:81:b9:57:5f:49:fd:55:da:cc:1e:e0:
34:c9:ea:24:87:fc:a0:23:3e:f7:dd:54:41:fa:70:
ad:14:1b:d9:85:f3:a6:a3:5c:49:bc:a5:8a:28:2f:
c5:dc:95:08:ba:18:dc:a2:46:ad:04:c5:20:f3:bc:
10:6a:c6:d5:de:97:3a:19:4f:2d:e5:85:f1:84:84:
6b:67:40:50:2b:37:17:52:9e:4d:39:fa:c5:af:bd:
7e:28:e9:5c:5f:47:1b:30:52:e5:45:a6:5f:77:db:
6d:77:a8:a2:f6:c7:b8:4a:f3:8b:27:6a:16:9e:ef:
46:2e:a4:6f:fe:b1:1a:b9:29:19:1c:dd:cd:f1:84:
16:ff:7d:ff:85:37:14:c2:f2:e1:d3:15:63:f2:f6:
a9:97:ae:bf:02:5f:ce:10:55:f2:bd:ea:b8:e5:7b:
a5:3c:d0:19:96:1f:59:49:3a:a2:8b:6f:0a:f4:d2:
dd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:70:0F:21:B3:36:C8:BE:C2:9C:7B:A8:6C:4F:AA:73:E0:20:5B:45
X509v3 Authority Key Identifier:
keyid:87:B0:98:23:1A:C1:0E:6B:4E:27:AF:A8:8C:17:E4:9B:20:F2:1A:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/39c565bbc1beca70ca953d23feff753b392a17a7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a639b80b-9d59-4402-b477-a2b249caeee9/35639704c3109ca398c9decbc025162e5f3fe330.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/a639b80b-9d59-4402-b477-a2b249caeee9/39c565bbc1beca70ca953d23feff753b392a17a7.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.111.0/24
168.90.14.0/24
181.225.65.0/24
181.225.73.0/24
181.225.78.0/24
190.0.242.0/24
190.0.244.0/24
190.14.246.0/24
190.14.249.0/24
190.14.251.0/24
190.107.19.0-190.107.20.255
190.121.128.0/24
190.121.130.0/24
190.121.142.0/23
190.121.149.0/24
190.121.157.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:42:8f:29:68:20:b9:a1:11:5d:32:5f:ae:2e:29:3a:eb:ba:
4e:d8:98:3e:1c:0e:cb:b3:a6:87:e9:02:26:1d:7c:50:bf:1b:
39:4e:f1:26:96:9c:ad:e3:f9:62:31:5b:2f:35:19:a3:55:22:
79:7e:34:cb:3f:f5:96:5e:c4:63:7e:85:ee:29:0f:79:c1:6c:
69:ea:e0:f6:33:61:7b:1a:a2:7d:0d:da:a4:ba:05:74:9f:c8:
75:90:34:5b:48:30:14:50:69:75:a2:6a:1a:bd:81:0b:b2:b5:
cd:52:90:ba:28:42:e7:b8:aa:de:5a:e1:60:d5:b1:f0:aa:6d:
bc:29:77:16:6a:66:53:55:3c:da:01:59:63:12:e3:c7:7e:c8:
c7:0d:2d:f1:c4:74:00:75:22:bb:98:1b:2e:da:d4:0e:cc:4f:
8a:89:bf:39:35:e0:ac:8a:f3:48:95:de:b2:c0:c7:de:ea:b2:
10:ea:18:e8:28:34:ca:c2:ae:d9:75:62:aa:2f:a3:5b:29:c1:
9d:b4:90:f2:53:1d:3e:d6:be:c9:b7:3e:b4:dd:c2:ed:8a:08:
c4:b3:f0:18:77:b0:ab:dd:b5:e7:07:c0:d9:ae:28:d1:5b:f0:
28:c6:0b:3d:c8:58:54:98:4d:5f:e0:1f:fa:cd:02:6e:1c:d5:
fd:e0:d5:af
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgIDIwO1MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDM5
YzU2NWJiYzFiZWNhNzBjYTk1M2QyM2ZlZmY3NTNiMzkyYTE3YTcwHhcNMjMwNzMw
MjEyMTQzWhcNMjUwNzMxMjEyMTQzWjAzMTEwLwYDVQQDEygzNTYzOTcwNGMzMTA5
Y2EzOThjOWRlY2JjMDI1MTYyZTVmM2ZlMzMwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAp8PnCZmSN2U0M5m+449u6bDvd2kARx2WgU0AI3dZzsgUii/2
Eazx86zH3keVnVzk954QnBW7HENCPKuIO6IpLx3ZodEvEQy1aqdDh7eKgblXX0n9
VdrMHuA0yeokh/ygIz733VRB+nCtFBvZhfOmo1xJvKWKKC/F3JUIuhjcokatBMUg
87wQasbV3pc6GU8t5YXxhIRrZ0BQKzcXUp5NOfrFr71+KOlcX0cbMFLlRaZfd9tt
d6ii9se4SvOLJ2oWnu9GLqRv/rEauSkZHN3N8YQW/33/hTcUwvLh0xVj8vapl66/
Al/OEFXyveq45XulPNAZlh9ZSTqii28K9NLd+QIDAQABo4ICvjCCArowHQYDVR0O
BBYEFHZwDyGzNsi+wpx7qGxPqnPgIFtFMB8GA1UdIwQYMBaAFIewmCMawQ5rTiev
qIwX5Jsg8hqMMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMzljNTY1
YmJjMWJlY2E3MGNhOTUzZDIzZmVmZjc1M2IzOTJhMTdhNy5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYTYzOWI4MGItOWQ1OS00NDAyLWI0NzctYTJiMjQ5
Y2FlZWU5LzM1NjM5NzA0YzMxMDljYTM5OGM5ZGVjYmMwMjUxNjJlNWYzZmUzMzAu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9hNjM5YjgwYi05ZDU5LTQ0MDItYjQ3Ny1hMmIy
NDljYWVlZTkvMzljNTY1YmJjMWJlY2E3MGNhOTUzZDIzZmVmZjc1M2IzOTJhMTdh
Ny5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCBgQYIKwYBBQUHAQcBAf8E
cjBwMG4EAgABMGgDBACKdW8DBACoWg4DBAC14UEDBAC14UkDBAC14U4DBAC+APID
BAC+APQDBAC+DvYDBAC+DvkDBAC+DvswDAMEAL5rEwMEAL5rFAMEAL55gAMEAL55
ggMEAb55jgMEAL55lQMEAL55nTANBgkqhkiG9w0BAQsFAAOCAQEAPEKPKWgguaER
XTJfri4pOuu6TtiYPhwOy7Omh+kCJh18UL8bOU7xJpacreP5YjFbLzUZo1UieX40
yz/1ll7EY36F7ikPecFsaerg9jNhexqifQ3apLoFdJ/IdZA0W0gwFFBpdaJqGr2B
C7K1zVKQuihC57iq3lrhYNWx8KptvCl3FmpmU1U82gFZYxLjx37Ixw0t8cR0AHUi
u5gbLtrUDsxPiom/OTXgrIrzSJXessDH3uqyEOoY6Cg0ysKu2XViqi+jWynBnbSQ
8lMdPta+ybc+tN3C7YoIxLPwGHewq9215wfA2a4o0VvwKMYLPchYVJhNX+Af+s0C
bhzV/eDVrw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:21 2024 by rpki-client on console-ams.rpki-client.org