Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/9dedb905ec1db327b56d6fb8b15664318aa320cd.roa
File: 9dedb905ec1db327b56d6fb8b15664318aa320cd.roa (raw, json)
Hash identifier: GYsMcpT7YOdqAs7j5W0mDn0owFOmdCQ597gHylk3r5g=
Subject key identifier: 86:97:4A:AE:A7:6B:9A:CB:A5:43:72:A0:C0:A5:F8:E9:F4:91:B5:26
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 207673
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/9dedb905ec1db327b56d6fb8b15664318aa320cd.roa
Signing time: Sun 22 Jan 2023 21:53:47 +0000
ROA not before: Sat 13 Mar 2021 03:00:00 +0000
ROA not after: Fri 24 Mar 2023 03:00:00 +0000
asID: 18678
IP address blocks: 190.90.63.0/24 maxlen: 24
190.90.82.0/24 maxlen: 24
190.90.93.0/24 maxlen: 24
190.90.94.0/24 maxlen: 24
190.90.115.0/24 maxlen: 24
190.90.116.0/24 maxlen: 24
190.90.121.0/24 maxlen: 24
190.90.151.0/24 maxlen: 24
190.90.152.0/24 maxlen: 24
190.90.190.0/24 maxlen: 24
190.90.193.0/24 maxlen: 24
190.90.202.0/23 maxlen: 24
190.90.216.0/21 maxlen: 24
190.90.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2127475 (0x207673)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Mar 13 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2023 GMT
Subject: CN=9dedb905ec1db327b56d6fb8b15664318aa320cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6d:8a:c7:e6:e6:1b:95:72:5a:00:f3:45:45:
c4:cb:1d:21:41:db:a1:76:5b:23:ac:87:50:6d:83:
51:ef:1c:09:ee:e0:38:f4:f8:13:65:7a:54:85:ca:
b4:0a:4e:fb:87:14:24:fe:52:70:70:54:04:42:79:
f8:b6:72:06:49:57:0e:c9:63:9c:c0:14:44:b5:c9:
3b:1a:ba:f0:c9:39:a7:3d:7a:01:10:21:08:1c:96:
ae:72:9f:cd:b0:ce:ab:43:ca:57:eb:e5:5d:42:1b:
bc:8b:00:74:3f:0b:ad:ce:53:36:e8:50:00:45:cd:
68:b5:af:44:f5:df:71:77:9b:38:af:7d:f9:47:02:
b5:87:af:cc:3e:a0:53:f8:cd:eb:f5:65:28:1d:f8:
0d:28:88:0b:a1:2c:36:77:f8:76:9c:ea:19:ad:53:
de:b7:19:ee:b1:60:8c:24:73:7f:00:94:7a:db:0d:
7e:ae:ba:24:e5:63:31:08:1f:d2:c9:68:ff:0f:b5:
c3:f3:48:66:44:3f:c5:4a:3f:8f:fa:d6:6c:fc:da:
bb:42:e6:e0:55:bb:a9:8b:aa:65:0c:21:1d:76:c4:
eb:a5:15:36:b5:a3:6e:3a:4b:03:b5:61:fe:c7:32:
8b:bd:f4:00:11:a3:ed:17:ea:dc:0b:38:55:49:ee:
e5:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:97:4A:AE:A7:6B:9A:CB:A5:43:72:A0:C0:A5:F8:E9:F4:91:B5:26
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/9dedb905ec1db327b56d6fb8b15664318aa320cd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.63.0/24
190.90.82.0/24
190.90.93.0-190.90.94.255
190.90.115.0-190.90.116.255
190.90.121.0/24
190.90.151.0-190.90.152.255
190.90.190.0/24
190.90.193.0/24
190.90.202.0/23
190.90.216.0/21
190.90.242.0/24
Signature Algorithm: sha256WithRSAEncryption
59:88:8f:be:a2:7e:c5:c0:82:ea:ca:76:7e:80:f7:98:c8:46:
d3:31:fd:71:84:a2:81:6b:f9:4d:72:dc:03:9a:8f:9c:89:4d:
8d:27:a6:ea:a2:d1:cb:e4:f2:d4:38:92:37:af:b2:ed:44:7b:
20:3e:c4:9b:72:99:a2:13:74:bc:ef:a1:99:5e:76:21:e2:77:
f1:c9:4f:18:ff:31:ff:8e:d3:86:82:a0:b4:2a:fe:b7:47:c3:
ed:93:0b:14:50:85:22:4e:f7:b4:69:52:14:75:bd:8f:06:0c:
13:00:43:ce:89:b3:41:0d:3a:15:2d:cf:bb:a7:f6:c2:18:eb:
aa:dd:99:23:1e:64:ae:d8:4e:5c:4a:32:cf:d0:06:eb:03:7d:
11:eb:16:fd:6f:2b:e6:a4:91:ed:50:24:59:c2:42:ac:87:c8:
18:51:a8:94:68:b0:66:ab:fa:9a:f0:29:48:65:62:a2:0d:82:
fe:9d:4f:fc:9a:2e:ff:38:6e:f1:38:6f:6e:8c:c0:09:63:a3:
82:54:38:ce:02:90:4e:fd:a3:20:79:06:40:60:5d:2f:1a:ae:
52:97:f8:0a:6c:24:83:76:26:cc:f7:aa:c4:5f:51:eb:80:bc:
90:f3:48:26:3a:c9:37:00:88:d6:dc:46:fb:de:0c:93:b1:de:
13:26:1c:6b
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgIDIHZzMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDMz
MDBhNmVmYjViMzRjNzkxMjVmY2U1ZGM0YWZhNjk3N2E0Njc0NGYwHhcNMjEwMzEz
MDMwMDAwWhcNMjMwMzI0MDMwMDAwWjAzMTEwLwYDVQQDEyg5ZGVkYjkwNWVjMWRi
MzI3YjU2ZDZmYjhiMTU2NjQzMThhYTMyMGNkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAk22Kx+bmG5VyWgDzRUXEyx0hQduhdlsjrIdQbYNR7xwJ7uA4
9PgTZXpUhcq0Ck77hxQk/lJwcFQEQnn4tnIGSVcOyWOcwBREtck7GrrwyTmnPXoB
ECEIHJaucp/NsM6rQ8pX6+VdQhu8iwB0PwutzlM26FAARc1ota9E9d9xd5s4r335
RwK1h6/MPqBT+M3r9WUoHfgNKIgLoSw2d/h2nOoZrVPetxnusWCMJHN/AJR62w1+
rrok5WMxCB/SyWj/D7XD80hmRD/FSj+P+tZs/Nq7QubgVbupi6plDCEddsTrpRU2
taNuOksDtWH+xzKLvfQAEaPtF+rcCzhVSe7loQIDAQABo4ICrzCCAqswHQYDVR0O
BBYEFIaXSq6na5rLpUNyoMCl+On0kbUmMB8GA1UdIwQYMBaAFGKqByp0W653gtLZ
RHYgTAylTu3CMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMzMwMGE2
ZWZiNWIzNGM3OTEyNWZjZTVkYzRhZmE2OTc3YTQ2NzQ0Zi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYWE2OWE5NzUtODNhMy00NTMyLWE3NzktNWZmYjg3
NTgwMzA5LzlkZWRiOTA1ZWMxZGIzMjdiNTZkNmZiOGIxNTY2NDMxOGFhMzIwY2Qu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9hYTY5YTk3NS04M2EzLTQ1MzItYTc3OS01ZmZi
ODc1ODAzMDkvMzMwMGE2ZWZiNWIzNGM3OTEyNWZjZTVkYzRhZmE2OTc3YTQ2NzQ0
Zi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBzBggrBgEFBQcBBwEB/wRk
MGIwYAQCAAEwWgMEAL5aPwMEAL5aUjAMAwQAvlpdAwQAvlpeMAwDBAC+WnMDBAC+
WnQDBAC+WnkwDAMEAL5alwMEAL5amAMEAL5avgMEAL5awQMEAb5aygMEA75a2AME
AL5a8jANBgkqhkiG9w0BAQsFAAOCAQEAWYiPvqJ+xcCC6sp2foD3mMhG0zH9cYSi
gWv5TXLcA5qPnIlNjSem6qLRy+Ty1DiSN6+y7UR7ID7Em3KZohN0vO+hmV52IeJ3
8clPGP8x/47ThoKgtCr+t0fD7ZMLFFCFIk73tGlSFHW9jwYMEwBDzomzQQ06FS3P
u6f2whjrqt2ZIx5krthOXEoyz9AG6wN9EesW/W8r5qSR7VAkWcJCrIfIGFGolGiw
Zqv6mvApSGViog2C/p1P/Jou/zhu8ThvbozACWOjglQ4zgKQTv2jIHkGQGBdLxqu
Upf4Cmwkg3YmzPeqxF9R64C8kPNIJjrJNwCI1txG+94Mk7HeEyYcaw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:01 2024 by rpki-client on console-fra.rpki-client.org