Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/58ada439527ab1964b1dd9ecab4480922e6483f2.roa
File:                     58ada439527ab1964b1dd9ecab4480922e6483f2.roa (raw, json)
Hash identifier:          yRFCpFtrlnPSKrApHrwF0dvcceeKn2DI6knlBX7OI6M=
Subject key identifier:   7E:6E:BB:2F:F6:0E:0E:B2:28:C5:61:63:2E:C6:D0:9F:F1:4F:84:5D
Certificate issuer:       /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial:       21517F
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/58ada439527ab1964b1dd9ecab4480922e6483f2.roa
Signing time:             Mon 06 Feb 2023 21:30:55 +0000
ROA not before:           Thu 11 Mar 2021 03:00:00 +0000
ROA not after:            Fri 24 Mar 2023 03:00:00 +0000
asID:                     18678
IP address blocks:        190.90.63.0/24 maxlen: 24
                          190.90.82.0/24 maxlen: 24
                          190.90.93.0/24 maxlen: 24
                          190.90.94.0/24 maxlen: 24
                          190.90.115.0/24 maxlen: 24
                          190.90.116.0/24 maxlen: 24
                          190.90.121.0/24 maxlen: 24
                          190.90.151.0/24 maxlen: 24
                          190.90.152.0/24 maxlen: 24
                          190.90.190.0/24 maxlen: 24
                          190.90.193.0/24 maxlen: 24
                          190.90.216.0/21 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2183551 (0x21517f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
        Validity
            Not Before: Mar 11 03:00:00 2021 GMT
            Not After : Mar 24 03:00:00 2023 GMT
        Subject: CN=58ada439527ab1964b1dd9ecab4480922e6483f2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:ea:68:e6:09:99:b1:9c:5e:75:a9:21:30:86:
                    32:09:e5:a5:f1:f1:6f:37:4c:e1:6e:40:d9:69:c9:
                    56:5e:7d:3c:bb:9e:18:23:2c:a0:79:33:51:b9:73:
                    d3:fd:72:8b:99:a7:60:66:47:c1:ca:43:b4:38:81:
                    18:96:6c:12:83:5a:c8:d4:b4:dd:18:4f:cb:90:1d:
                    49:91:93:9c:d4:22:c2:f7:bf:7a:f1:d6:8d:07:c4:
                    16:a3:01:97:ff:7c:e5:d5:ba:98:94:54:70:7a:09:
                    b4:33:6f:f6:03:26:e4:98:de:4f:a0:99:52:cc:e3:
                    eb:a6:bd:87:29:04:70:1e:0b:2e:bf:7e:4e:8d:13:
                    52:14:f5:79:b8:95:7c:66:1a:f8:eb:b4:af:04:75:
                    51:0f:f3:ef:76:97:40:0d:94:cd:e2:48:b5:83:94:
                    b7:f8:2d:87:d3:1e:3f:51:f5:af:00:b9:0c:f6:9e:
                    c5:8c:8c:b6:cb:b1:36:d9:d1:7e:fd:22:88:e4:d7:
                    b4:1b:93:77:35:b0:16:fe:4f:90:ce:e5:56:1c:87:
                    c1:37:15:5b:4f:81:7f:c9:d2:a3:cd:e3:63:ab:6e:
                    56:d9:ec:42:43:bc:09:72:ef:f2:34:de:0f:63:d5:
                    70:cd:77:0a:ee:ab:7c:05:c2:62:9c:ea:26:27:cd:
                    34:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:6E:BB:2F:F6:0E:0E:B2:28:C5:61:63:2E:C6:D0:9F:F1:4F:84:5D
            X509v3 Authority Key Identifier:
                keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/58ada439527ab1964b1dd9ecab4480922e6483f2.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.90.63.0/24
                  190.90.82.0/24
                  190.90.93.0-190.90.94.255
                  190.90.115.0-190.90.116.255
                  190.90.121.0/24
                  190.90.151.0-190.90.152.255
                  190.90.190.0/24
                  190.90.193.0/24
                  190.90.216.0/21

    Signature Algorithm: sha256WithRSAEncryption
         2f:19:af:c8:3e:fa:7f:45:bd:18:d8:9c:66:07:0f:c7:c1:41:
         98:c9:b1:cd:42:d0:f2:93:2d:12:f6:97:48:45:94:da:3c:e2:
         f9:ae:3d:29:89:90:1c:be:d2:33:87:b5:d6:7a:ca:9d:84:c3:
         dd:e1:e0:aa:cc:2e:19:eb:ff:1a:9d:d0:79:76:8a:dd:1f:0e:
         fb:df:46:61:b4:1d:b6:c2:74:81:86:3b:38:6d:86:e3:64:29:
         63:96:8f:4f:06:6d:9e:84:0b:86:d4:62:79:bc:5a:54:90:f4:
         55:46:b3:69:73:e5:bf:37:cb:57:c4:d5:ed:fd:f3:ce:75:ef:
         ce:54:b5:4e:0e:32:55:2b:fb:e8:e6:d3:63:fa:4c:34:76:20:
         1d:fe:92:e9:97:2a:fa:3b:a2:b6:27:ad:9f:3d:1d:af:1a:01:
         21:54:1e:e8:c5:26:7b:36:31:d7:83:ef:3a:bc:fd:d0:64:bc:
         6c:1e:54:3c:bf:f8:3c:35:84:99:97:74:fa:b5:56:95:00:75:
         08:a5:d1:39:43:af:a3:86:eb:62:90:e8:65:65:80:98:f9:ba:
         6f:88:89:49:2f:31:82:a6:e1:d5:52:96:52:68:21:0c:ed:6a:
         21:94:b7:1e:c4:4e:ec:a4:cf:85:db:6c:d3:85:50:ac:9a:da:
         56:37:4d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:01 2024 by rpki-client on console-fra.rpki-client.org