Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/33787dd8a6baca38f4fbc72808f6d29a392f57f9.roa
File: 33787dd8a6baca38f4fbc72808f6d29a392f57f9.roa (raw, json)
Hash identifier: w2Ld72DtFAqLfTHYdHzEvLsfUY8tYmzJB2ZPPkrOR9E=
Subject key identifier: 21:A3:B5:42:97:DF:FA:77:72:89:67:4F:BF:F1:AF:2C:1C:92:1B:B8
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 0D3231
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/33787dd8a6baca38f4fbc72808f6d29a392f57f9.roa
Signing time: Wed 24 Mar 2021 14:35:22 +0000
ROA not before: Wed 24 Mar 2021 14:35:22 +0000
ROA not after: Tue 24 Mar 2026 14:35:22 +0000
asID: 27837
IP address blocks: 190.90.40.0/24 maxlen: 24
190.90.41.0/24 maxlen: 24
190.90.42.0/24 maxlen: 24
190.90.43.0/24 maxlen: 24
190.90.44.0/24 maxlen: 24
190.90.45.0/24 maxlen: 24
190.90.46.0/24 maxlen: 24
190.90.47.0/24 maxlen: 24
190.90.48.0/24 maxlen: 24
190.90.49.0/24 maxlen: 24
190.90.50.0/24 maxlen: 24
190.90.51.0/24 maxlen: 24
190.90.66.0/24 maxlen: 24
190.90.87.0/24 maxlen: 24
190.90.122.0/24 maxlen: 24
190.90.123.0/24 maxlen: 24
190.90.124.0/24 maxlen: 24
190.90.195.0/24 maxlen: 24
190.90.196.0/24 maxlen: 24
190.90.197.0/24 maxlen: 24
190.90.228.0/24 maxlen: 24
190.90.243.0/24 maxlen: 24
190.90.246.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 864817 (0xd3231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Mar 24 14:35:22 2021 GMT
Not After : Mar 24 14:35:22 2026 GMT
Subject: CN=33787dd8a6baca38f4fbc72808f6d29a392f57f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e6:31:f6:59:d3:f0:ec:fb:9f:9c:7b:23:a5:
7a:ab:64:5b:fb:f9:9a:6d:54:79:33:74:c2:56:2a:
30:72:e2:fd:c3:3c:b7:60:57:29:0b:ad:b0:2a:8e:
5d:8f:de:a3:0a:d7:bf:a2:d9:7f:54:ce:e4:9e:e0:
c4:99:43:bc:41:ff:0e:da:52:f2:4c:e2:5c:dd:3d:
8b:89:f1:05:7d:a2:90:fe:bf:33:45:1e:ed:10:a5:
38:9d:8e:73:95:bd:0e:b1:4b:71:a7:77:0b:01:c8:
c1:81:0c:d7:e2:ca:29:ad:f8:f4:fc:10:38:74:3e:
1b:78:29:ff:41:3e:b9:d3:c7:4a:2a:91:7f:d8:cf:
f9:bc:67:38:58:cc:6f:ab:cd:1a:b7:80:ba:1b:d7:
59:e8:7c:ea:99:d4:0b:3b:90:7b:19:bb:96:e4:d5:
4c:3d:90:a4:40:44:9d:c0:ad:ec:e3:70:d4:09:be:
8d:b2:ed:75:41:ed:d5:f9:2c:fe:61:94:d9:ff:64:
7b:bc:23:29:48:44:c9:b1:35:78:20:eb:49:89:ae:
eb:29:31:b4:c5:be:76:b3:18:c1:48:40:f4:b9:1f:
f9:fc:39:bb:87:f6:fb:70:f1:4e:1f:9d:dd:45:7c:
8f:5b:e7:84:ce:64:49:f8:57:da:91:31:5f:26:fc:
59:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A3:B5:42:97:DF:FA:77:72:89:67:4F:BF:F1:AF:2C:1C:92:1B:B8
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/33787dd8a6baca38f4fbc72808f6d29a392f57f9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.40.0-190.90.51.255
190.90.66.0/24
190.90.87.0/24
190.90.122.0-190.90.124.255
190.90.195.0-190.90.197.255
190.90.228.0/24
190.90.243.0/24
190.90.246.0/23
Signature Algorithm: sha256WithRSAEncryption
46:0a:c9:53:ba:3c:2d:b6:4f:27:61:33:18:7f:93:64:5b:e3:
01:2e:16:5d:42:41:54:78:11:57:94:6c:76:d5:ca:6b:54:e7:
34:4b:53:ed:ac:bb:f9:72:e5:ec:c0:6e:6e:a3:8d:37:89:cd:
d8:de:36:23:6d:e4:b3:ea:a3:1e:0d:99:0c:a4:e6:cb:6b:a5:
b2:06:4a:8e:bf:96:93:19:27:b8:b2:ac:3a:49:cd:39:79:30:
82:55:8b:1c:54:0a:e4:70:59:7c:6a:a1:a3:c2:d9:d0:5a:f2:
08:9a:24:9f:c4:9e:8e:4b:ca:c8:17:b5:09:48:d6:90:71:d5:
ab:1d:36:40:f4:ef:79:71:6f:7b:e2:dc:35:e9:2c:d3:a0:ee:
25:c0:83:d8:c2:c0:7f:36:73:79:35:e1:12:47:18:3c:97:e6:
ce:33:cb:ee:4a:40:53:e4:d2:87:e7:ca:64:d1:d9:8a:75:25:
10:15:89:f0:fd:29:97:8a:fc:94:ee:01:b0:96:86:1f:e7:6b:
1a:e5:56:19:c2:c8:4f:78:3b:25:b7:4c:1f:62:ec:6a:53:a1:
e0:ec:90:62:7d:0b:ab:ff:1f:9a:70:b3:7e:73:b5:b9:6a:23:
41:d4:e0:e9:8e:97:40:8d:fd:fb:80:4a:b6:9e:90:f3:38:dd:
0b:43:36:1b
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIDDTIxMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDMz
MDBhNmVmYjViMzRjNzkxMjVmY2U1ZGM0YWZhNjk3N2E0Njc0NGYwHhcNMjEwMzI0
MTQzNTIyWhcNMjYwMzI0MTQzNTIyWjAzMTEwLwYDVQQDEygzMzc4N2RkOGE2YmFj
YTM4ZjRmYmM3MjgwOGY2ZDI5YTM5MmY1N2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAv+Yx9lnT8Oz7n5x7I6V6q2Rb+/mabVR5M3TCViowcuL9wzy3
YFcpC62wKo5dj96jCte/otl/VM7knuDEmUO8Qf8O2lLyTOJc3T2LifEFfaKQ/r8z
RR7tEKU4nY5zlb0OsUtxp3cLAcjBgQzX4soprfj0/BA4dD4beCn/QT6508dKKpF/
2M/5vGc4WMxvq80at4C6G9dZ6HzqmdQLO5B7GbuW5NVMPZCkQESdwK3s43DUCb6N
su11Qe3V+Sz+YZTZ/2R7vCMpSETJsTV4IOtJia7rKTG0xb52sxjBSED0uR/5/Dm7
h/b7cPFOH53dRXyPW+eEzmRJ+FfakTFfJvxZiQIDAQABo4ICnTCCApkwHQYDVR0O
BBYEFCGjtUKX3/p3colnT7/xrywckhu4MB8GA1UdIwQYMBaAFGKqByp0W653gtLZ
RHYgTAylTu3CMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMzMwMGE2
ZWZiNWIzNGM3OTEyNWZjZTVkYzRhZmE2OTc3YTQ2NzQ0Zi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYWE2OWE5NzUtODNhMy00NTMyLWE3NzktNWZmYjg3
NTgwMzA5LzMzNzg3ZGQ4YTZiYWNhMzhmNGZiYzcyODA4ZjZkMjlhMzkyZjU3Zjku
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9hYTY5YTk3NS04M2EzLTQ1MzItYTc3OS01ZmZi
ODc1ODAzMDkvMzMwMGE2ZWZiNWIzNGM3OTEyNWZjZTVkYzRhZmE2OTc3YTQ2NzQ0
Zi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBhBggrBgEFBQcBBwEB/wRS
MFAwTgQCAAEwSDAMAwQDvlooAwQCvlowAwQAvlpCAwQAvlpXMAwDBAG+WnoDBAC+
WnwwDAMEAL5awwMEAb5axAMEAL5a5AMEAL5a8wMEAb5a9jANBgkqhkiG9w0BAQsF
AAOCAQEARgrJU7o8LbZPJ2EzGH+TZFvjAS4WXUJBVHgRV5RsdtXKa1TnNEtT7ay7
+XLl7MBubqONN4nN2N42I23ks+qjHg2ZDKTmy2ulsgZKjr+WkxknuLKsOknNOXkw
glWLHFQK5HBZfGqho8LZ0FryCJokn8SejkvKyBe1CUjWkHHVqx02QPTveXFve+Lc
Neks06DuJcCD2MLAfzZzeTXhEkcYPJfmzjPL7kpAU+TSh+fKZNHZinUlEBWJ8P0p
l4r8lO4BsJaGH+drGuVWGcLIT3g7JbdMH2LsalOh4OyQYn0Lq/8fmnCzfnO1uWoj
QdTg6Y6XQI39+4BKtp6Q8zjdC0M2Gw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:00 2024 by rpki-client on console-fra.rpki-client.org