Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a639b80b-9d59-4402-b477-a2b249caeee9/45e5a8df972630c8f6dcc09d3dbec9ac0e4fa15a.roa
File: 45e5a8df972630c8f6dcc09d3dbec9ac0e4fa15a.roa (raw, json)
Hash identifier: UkeY1MMzSCdozvdsZyhCKtwRKE2/QSxeyt7xTS4sOb0=
Subject key identifier: 9A:7C:31:3F:73:9F:93:B4:04:D5:23:01:D1:0C:8A:BD:2D:FE:13:5A
Certificate issuer: /CN=39c565bbc1beca70ca953d23feff753b392a17a7
Certificate serial: 230A73
Authority key identifier: 87:B0:98:23:1A:C1:0E:6B:4E:27:AF:A8:8C:17:E4:9B:20:F2:1A:8C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/39c565bbc1beca70ca953d23feff753b392a17a7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/a639b80b-9d59-4402-b477-a2b249caeee9/45e5a8df972630c8f6dcc09d3dbec9ac0e4fa15a.roa
Signing time: Mon 31 Jul 2023 21:21:45 +0000
ROA not before: Sun 30 Jul 2023 21:21:43 +0000
ROA not after: Thu 31 Jul 2025 21:21:43 +0000
asID: 27951
IP address blocks: 190.121.128.0/19 maxlen: 24
200.110.168.0/21 maxlen: 24
138.117.108.0/22 maxlen: 24
181.225.64.0/20 maxlen: 24
190.0.240.0/21 maxlen: 24
190.107.16.0/20 maxlen: 24
181.118.144.0/20 maxlen: 26
132.255.20.0/22 maxlen: 24
168.90.12.0/22 maxlen: 24
170.246.112.0/22 maxlen: 24
190.14.224.0/19 maxlen: 24
170.254.228.0/22 maxlen: 24
2800:490::/32 maxlen: 40
2800:490:4800::/40 maxlen: 40
2800:490:4d00::/40 maxlen: 40
2800:490:8400::/40 maxlen: 40
2800:490:e000::/39 maxlen: 40
2800:490:e800::/39 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2296435 (0x230a73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39c565bbc1beca70ca953d23feff753b392a17a7
Validity
Not Before: Jul 30 21:21:43 2023 GMT
Not After : Jul 31 21:21:43 2025 GMT
Subject: CN=45e5a8df972630c8f6dcc09d3dbec9ac0e4fa15a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:83:a2:d0:7f:ac:0f:55:f2:41:91:f9:04:b3:
d7:7a:f1:8f:07:40:c8:f8:b1:a8:8f:a5:81:b4:40:
9a:69:03:1c:65:c8:6b:0b:bb:a7:dd:3c:90:17:2b:
87:22:35:b8:74:aa:8a:68:23:18:17:e4:4c:b5:fa:
48:20:4b:99:4b:d3:0b:8a:45:89:da:3f:55:bd:83:
9f:c4:72:5e:9d:6d:fd:55:71:78:72:41:8d:ae:f7:
0d:a7:4d:70:11:87:2b:9a:5c:a8:8e:e2:e0:77:52:
49:87:eb:7e:72:2d:fc:8c:dc:01:a9:66:55:fd:fd:
35:70:d2:2a:4c:f9:40:f1:9d:8f:ff:13:7e:e9:02:
a8:0d:a2:43:8f:71:50:44:bb:39:9f:ed:5b:44:7e:
e3:f6:81:aa:fc:61:d5:ea:3d:88:c6:a7:71:a2:a3:
4d:56:c1:83:6e:b9:c0:22:37:d5:55:4d:fa:a7:62:
71:e5:f2:92:38:ab:0b:30:bf:8a:60:4e:7b:ae:8a:
b3:d8:21:41:b9:21:57:64:79:07:57:66:d0:45:5a:
b8:27:39:7f:af:8e:c8:26:52:87:77:a5:75:59:69:
89:26:cc:de:17:6e:dc:ce:83:f4:aa:73:f0:0e:ce:
fd:49:7d:6a:3c:5d:eb:01:d3:db:9b:ab:ed:c1:8f:
a6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:7C:31:3F:73:9F:93:B4:04:D5:23:01:D1:0C:8A:BD:2D:FE:13:5A
X509v3 Authority Key Identifier:
keyid:87:B0:98:23:1A:C1:0E:6B:4E:27:AF:A8:8C:17:E4:9B:20:F2:1A:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/39c565bbc1beca70ca953d23feff753b392a17a7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a639b80b-9d59-4402-b477-a2b249caeee9/45e5a8df972630c8f6dcc09d3dbec9ac0e4fa15a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/a639b80b-9d59-4402-b477-a2b249caeee9/39c565bbc1beca70ca953d23feff753b392a17a7.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.255.20.0/22
138.117.108.0/22
168.90.12.0/22
170.246.112.0/22
170.254.228.0/22
181.118.144.0/20
181.225.64.0/20
190.0.240.0/21
190.14.224.0/19
190.107.16.0/20
190.121.128.0/19
200.110.168.0/21
IPv6:
2800:490::/32
Signature Algorithm: sha256WithRSAEncryption
aa:68:7d:f7:e4:79:75:ae:89:7a:07:0c:7e:85:a3:9a:67:03:
ee:e7:0a:ca:ca:66:75:a1:42:1e:35:91:3c:96:11:f9:fa:4d:
8b:80:34:90:81:bd:84:d1:38:9a:c9:a1:73:bd:62:50:28:3a:
b4:8e:64:50:02:5b:ff:b0:54:36:0a:f1:3b:c6:c9:f9:2a:2a:
e3:bf:0a:b3:44:c8:84:17:ae:c9:ff:cd:9a:0d:ca:f4:c7:0c:
3d:f0:27:51:aa:9b:22:99:0c:e0:cd:8b:35:83:c6:45:83:44:
28:eb:c0:5d:4f:3b:19:63:0b:60:18:be:11:7a:92:d8:d1:d5:
a7:31:cf:01:ea:a0:63:2c:de:9a:c6:e3:e6:b7:02:79:ed:f3:
d3:52:3c:c1:9c:af:f2:4c:01:84:41:ac:70:a8:d4:4c:08:99:
6e:71:7c:c6:b2:94:fe:a8:0d:71:4d:be:82:62:e8:da:12:49:
37:55:27:ff:90:d8:46:57:b8:85:e6:d4:41:3d:58:7b:a6:c0:
40:38:7e:36:ec:85:54:f9:11:e8:bb:5f:16:7f:40:0a:e4:94:
8f:41:35:a5:69:22:c2:8d:f1:e9:99:05:37:09:6c:70:8e:81:
f2:e4:53:30:d3:5b:2d:77:5d:0e:e5:e2:a6:c1:34:a9:32:33:
28:83:fa:b9
-----BEGIN CERTIFICATE-----
MIIFkTCCBHmgAwIBAgIDIwpzMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDM5
YzU2NWJiYzFiZWNhNzBjYTk1M2QyM2ZlZmY3NTNiMzkyYTE3YTcwHhcNMjMwNzMw
MjEyMTQzWhcNMjUwNzMxMjEyMTQzWjAzMTEwLwYDVQQDEyg0NWU1YThkZjk3MjYz
MGM4ZjZkY2MwOWQzZGJlYzlhYzBlNGZhMTVhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAz4Oi0H+sD1XyQZH5BLPXevGPB0DI+LGoj6WBtECaaQMcZchr
C7un3TyQFyuHIjW4dKqKaCMYF+RMtfpIIEuZS9MLikWJ2j9VvYOfxHJenW39VXF4
ckGNrvcNp01wEYcrmlyojuLgd1JJh+t+ci38jNwBqWZV/f01cNIqTPlA8Z2P/xN+
6QKoDaJDj3FQRLs5n+1bRH7j9oGq/GHV6j2IxqdxoqNNVsGDbrnAIjfVVU36p2Jx
5fKSOKsLML+KYE57roqz2CFBuSFXZHkHV2bQRVq4Jzl/r47IJlKHd6V1WWmJJsze
F27czoP0qnPwDs79SX1qPF3rAdPbm6vtwY+miwIDAQABo4ICrDCCAqgwHQYDVR0O
BBYEFJp8MT9zn5O0BNUjAdEMir0t/hNaMB8GA1UdIwQYMBaAFIewmCMawQ5rTiev
qIwX5Jsg8hqMMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMzljNTY1
YmJjMWJlY2E3MGNhOTUzZDIzZmVmZjc1M2IzOTJhMTdhNy5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYTYzOWI4MGItOWQ1OS00NDAyLWI0NzctYTJiMjQ5
Y2FlZWU5LzQ1ZTVhOGRmOTcyNjMwYzhmNmRjYzA5ZDNkYmVjOWFjMGU0ZmExNWEu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9hNjM5YjgwYi05ZDU5LTQ0MDItYjQ3Ny1hMmIy
NDljYWVlZTkvMzljNTY1YmJjMWJlY2E3MGNhOTUzZDIzZmVmZjc1M2IzOTJhMTdh
Ny5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBwBggrBgEFBQcBBwEB/wRh
MF8wTgQCAAEwSAMEAoT/FAMEAop1bAMEAqhaDAMEAqr2cAMEAqr+5AMEBLV2kAME
BLXhQAMEA74A8AMEBb4O4AMEBL5rEAMEBb55gAMEA8huqDANBAIAAjAHAwUAKAAE
kDANBgkqhkiG9w0BAQsFAAOCAQEAqmh99+R5da6JegcMfoWjmmcD7ucKyspmdaFC
HjWRPJYR+fpNi4A0kIG9hNE4msmhc71iUCg6tI5kUAJb/7BUNgrxO8bJ+Soq478K
s0TIhBeuyf/Nmg3K9McMPfAnUaqbIpkM4M2LNYPGRYNEKOvAXU87GWMLYBi+EXqS
2NHVpzHPAeqgYyzemsbj5rcCee3z01I8wZyv8kwBhEGscKjUTAiZbnF8xrKU/qgN
cU2+gmLo2hJJN1Un/5DYRle4hebUQT1Ye6bAQDh+NuyFVPkR6LtfFn9ACuSUj0E1
pWkiwo3x6ZkFNwlscI6B8uRTMNNbLXddDuXipsE0qTIzKIP6uQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:21 2024 by rpki-client on console-ams.rpki-client.org