Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/2b641598cf479d22aa810758f104a449b2620746.roa
File:                     2b641598cf479d22aa810758f104a449b2620746.roa (raw, json)
Hash identifier:          btfCRufp3Qcyd9UcDSwpmsINcbYOPvBNd131Y0kXWoI=
Subject key identifier:   FF:4C:4C:4C:17:50:E4:0A:31:34:28:DF:0C:CF:FC:55:7F:EB:5E:CC
Certificate issuer:       /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial:       1FCA21
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/2b641598cf479d22aa810758f104a449b2620746.roa
Signing time:             Thu 19 Jan 2023 11:26:12 +0000
ROA not before:           Mon 22 Mar 2021 03:00:00 +0000
ROA not after:            Fri 24 Mar 2023 03:00:00 +0000
asID:                     262589
IP address blocks:        190.90.81.0/24 maxlen: 24
                          190.90.95.0/24 maxlen: 24
                          190.90.102.0/24 maxlen: 24
                          190.90.136.0/24 maxlen: 24
                          190.90.140.0/24 maxlen: 24
                          190.90.141.0/24 maxlen: 24
                          190.90.142.0/24 maxlen: 24
                          190.90.147.0/24 maxlen: 24
                          190.90.154.0/24 maxlen: 24
                          190.90.209.0/24 maxlen: 24
                          190.90.225.0/24 maxlen: 24
                          190.90.233.0/24 maxlen: 24
                          190.90.242.0/24 maxlen: 24
                          190.90.250.0/24 maxlen: 24
                          190.90.251.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2083361 (0x1fca21)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
        Validity
            Not Before: Mar 22 03:00:00 2021 GMT
            Not After : Mar 24 03:00:00 2023 GMT
        Subject: CN=2b641598cf479d22aa810758f104a449b2620746
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:41:13:cb:d8:04:09:66:e8:43:86:ec:65:bd:
                    4d:dc:e7:b3:bc:db:f2:bb:ad:f1:93:de:18:b7:1c:
                    fa:9b:3b:70:fb:1b:92:00:c2:ff:00:f5:a8:9a:2b:
                    63:62:dd:b8:bf:a8:d0:a7:cd:6b:e4:58:92:e3:73:
                    a2:cf:50:60:48:9d:43:53:f1:87:89:0a:fe:4d:34:
                    9f:5b:86:d6:d6:94:18:f6:67:d0:23:49:11:2c:63:
                    bb:d7:98:5c:f0:c7:65:5b:f6:ca:7b:51:32:9d:b5:
                    d0:27:98:23:c7:12:6c:cc:82:82:64:c7:27:e9:57:
                    36:1e:56:30:65:39:58:62:94:2a:8d:82:64:8d:bd:
                    10:e6:aa:16:94:4b:07:d2:3a:7b:81:ab:ad:0b:f0:
                    4a:1d:ca:c4:10:11:a4:e2:c0:34:ab:06:a7:dc:6a:
                    b5:af:ef:b6:31:25:8e:f6:3a:25:b5:dc:40:cf:74:
                    08:c7:8d:4f:4f:b4:c9:7e:32:2f:3a:7b:93:9c:1b:
                    41:20:3c:4f:66:fb:21:6c:dd:e7:17:59:e3:b0:2d:
                    fe:b2:a7:3a:a8:f7:95:4c:8e:b4:e1:28:49:63:55:
                    e0:e2:08:1c:78:68:bd:f9:53:85:ce:46:e9:da:55:
                    db:bb:f2:9d:43:35:cf:a2:66:c4:1d:cf:39:de:75:
                    43:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:4C:4C:4C:17:50:E4:0A:31:34:28:DF:0C:CF:FC:55:7F:EB:5E:CC
            X509v3 Authority Key Identifier:
                keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/2b641598cf479d22aa810758f104a449b2620746.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.90.81.0/24
                  190.90.95.0/24
                  190.90.102.0/24
                  190.90.136.0/24
                  190.90.140.0-190.90.142.255
                  190.90.147.0/24
                  190.90.154.0/24
                  190.90.209.0/24
                  190.90.225.0/24
                  190.90.233.0/24
                  190.90.242.0/24
                  190.90.250.0/23

    Signature Algorithm: sha256WithRSAEncryption
         77:b0:4d:37:1e:4d:7d:36:f9:8c:e4:2a:e8:4c:84:0a:44:98:
         8b:c0:ca:a2:cc:6c:82:c7:37:59:50:9b:8c:d8:df:43:ba:c1:
         0b:5b:92:61:f7:ca:ef:dc:87:86:f3:18:0c:65:4c:76:e8:a7:
         27:98:57:52:d8:d8:e0:0b:44:f4:5b:fe:88:50:d6:e8:cb:5e:
         c5:a1:fa:3b:2d:87:aa:ad:e1:ec:47:2c:5e:87:3e:e6:56:10:
         61:c3:1a:0c:3d:55:28:5a:99:0e:0c:8e:5c:6c:95:2d:41:9c:
         f9:10:50:69:46:be:54:09:8d:77:dc:9f:cb:22:48:85:28:61:
         96:d4:d0:7a:6a:b5:54:2f:77:89:4b:50:63:3e:ae:03:e2:ab:
         98:3d:65:04:30:db:e7:a3:af:c5:d7:4c:ea:a5:97:08:d5:a9:
         30:75:96:07:dd:0a:31:2a:1e:19:6e:54:a6:a3:73:80:da:d6:
         19:e4:f3:e2:e9:1f:ed:37:dc:f3:93:fd:51:d4:4e:91:67:d7:
         83:92:10:da:e8:f6:0f:7f:11:9b:20:5f:5d:b7:12:55:d4:da:
         ed:ed:9d:13:84:80:3d:3c:82:e0:50:48:92:5b:da:ac:06:2d:
         d3:b3:0f:1a:65:b9:42:a3:26:c5:0a:9b:bb:ef:72:90:e9:de:
         23:ae:fa:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:00 2024 by rpki-client on console-fra.rpki-client.org