Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/b6d63527-7a9f-47ed-87f4-d69d34f5995a/153d75787c890600e161e8be8dcb28a64788636d.roa
File: 153d75787c890600e161e8be8dcb28a64788636d.roa (raw, json)
Hash identifier: bpiICl5ujQOPkG67UWwEceiTuGDWttBgizgGgy0vmQk=
Subject key identifier: 52:68:BC:5D:2A:70:3C:83:77:9C:6D:55:70:33:FD:E1:79:01:11:B6
Certificate issuer: /CN=954ca0092fe1270a75f055c704b40b0b1f6c6601
Certificate serial: 122BBF
Authority key identifier: 11:AD:4B:DE:7D:DD:68:AC:34:0D:5A:3F:DC:F5:4F:F7:D7:8C:1B:05
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/954ca0092fe1270a75f055c704b40b0b1f6c6601.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/b6d63527-7a9f-47ed-87f4-d69d34f5995a/153d75787c890600e161e8be8dcb28a64788636d.roa
Signing time: Tue 19 Oct 2021 00:47:57 +0000
ROA not before: Mon 18 Oct 2021 03:00:00 +0000
ROA not after: Wed 18 Oct 2023 03:00:00 +0000
asID: 26617
IP address blocks: 131.100.140.0/22 maxlen: 24
138.99.0.0/22 maxlen: 24
138.219.156.0/22 maxlen: 24
168.232.36.0/22 maxlen: 24
190.120.0.0/19 maxlen: 24
2803:9d80::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1190847 (0x122bbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=954ca0092fe1270a75f055c704b40b0b1f6c6601
Validity
Not Before: Oct 18 03:00:00 2021 GMT
Not After : Oct 18 03:00:00 2023 GMT
Subject: CN=153d75787c890600e161e8be8dcb28a64788636d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f0:f0:4d:e2:62:b4:29:86:70:bb:34:19:5d:
7e:74:08:d9:dd:b1:50:68:91:d1:c4:12:ee:ac:7c:
6d:72:6b:f1:13:19:4d:53:c6:49:33:71:6e:9d:4f:
89:8b:3b:e7:06:58:af:14:15:b0:2c:68:71:27:13:
bb:f5:7e:55:a1:cb:2a:ed:af:03:f2:02:3f:3a:b2:
d1:79:b4:b1:bc:ec:00:2d:ac:de:28:73:a6:71:00:
e5:c7:68:70:75:0b:e2:67:cf:51:b9:3b:5c:b9:97:
91:c6:ba:14:c2:8d:0c:f0:6d:8d:46:4b:69:69:71:
a9:6f:da:91:9e:00:75:bd:23:0a:6d:d1:91:16:a8:
d8:d4:fa:64:93:42:f0:ae:ab:ef:0b:1c:5b:5c:f6:
56:06:e6:36:82:25:a4:1b:87:a7:c8:de:a3:4b:3c:
7f:ef:9a:45:f7:66:a8:57:3f:bd:cc:23:be:38:36:
89:a3:4a:95:a8:e0:65:0e:2c:6d:5a:a5:a4:68:dd:
ed:77:db:fc:6b:71:c7:1a:05:e5:99:ca:66:eb:6d:
37:1d:d2:8f:23:47:2f:fc:bd:82:b9:2e:88:a0:4f:
3e:57:7d:06:d5:81:a1:0a:75:ea:d7:bc:90:58:01:
f2:ae:4f:50:b1:6e:08:da:84:c3:28:8e:32:6b:a4:
25:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:68:BC:5D:2A:70:3C:83:77:9C:6D:55:70:33:FD:E1:79:01:11:B6
X509v3 Authority Key Identifier:
keyid:11:AD:4B:DE:7D:DD:68:AC:34:0D:5A:3F:DC:F5:4F:F7:D7:8C:1B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/954ca0092fe1270a75f055c704b40b0b1f6c6601.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/b6d63527-7a9f-47ed-87f4-d69d34f5995a/153d75787c890600e161e8be8dcb28a64788636d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/b6d63527-7a9f-47ed-87f4-d69d34f5995a/954ca0092fe1270a75f055c704b40b0b1f6c6601.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.100.140.0/22
138.99.0.0/22
138.219.156.0/22
168.232.36.0/22
190.120.0.0/19
IPv6:
2803:9d80::/32
Signature Algorithm: sha256WithRSAEncryption
20:9d:49:a5:3c:cc:fe:bf:bc:7f:bb:bb:d3:0a:31:1a:f4:c5:
20:2a:58:56:aa:8e:22:fd:d8:f1:5c:43:de:03:da:11:a9:68:
ca:b6:46:75:a8:8c:08:b7:a1:23:53:a4:f6:09:5c:60:e0:34:
ba:1d:a5:f7:c1:a8:ce:5f:04:a4:f0:ec:0e:78:d5:c7:88:fe:
58:f5:43:5a:86:72:ee:02:94:6b:5f:53:97:08:7d:2b:67:5f:
46:66:62:55:e7:ef:ce:b8:d1:6f:18:2f:76:3b:38:7f:68:df:
bb:80:ba:7f:c8:fb:d4:51:d8:8d:51:e5:3d:ec:e1:09:ae:a5:
79:71:49:e9:f3:b4:a1:5a:91:c9:09:07:b4:78:ca:3e:d7:aa:
0a:52:33:30:89:94:4b:ee:7f:6b:9a:d4:53:ae:79:8d:15:ff:
4c:28:3c:a2:98:e9:1c:7b:e0:1c:8c:2b:9d:07:35:50:0a:cb:
17:30:83:d6:64:9b:93:53:f2:b3:5c:fa:33:cc:25:a9:c4:94:
eb:92:18:d3:04:e2:33:a9:f2:f9:40:03:5c:bd:b1:fb:97:ec:
86:29:72:b0:67:0f:99:b6:d1:a8:30:fb:1b:5d:a1:11:67:e7:
f3:44:61:30:8a:ea:61:b5:84:82:1a:0e:45:33:24:05:24:47:
96:2e:29:96
-----BEGIN CERTIFICATE-----
MIIFZzCCBE+gAwIBAgIDEiu/MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDk1
NGNhMDA5MmZlMTI3MGE3NWYwNTVjNzA0YjQwYjBiMWY2YzY2MDEwHhcNMjExMDE4
MDMwMDAwWhcNMjMxMDE4MDMwMDAwWjAzMTEwLwYDVQQDEygxNTNkNzU3ODdjODkw
NjAwZTE2MWU4YmU4ZGNiMjhhNjQ3ODg2MzZkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAnPDwTeJitCmGcLs0GV1+dAjZ3bFQaJHRxBLurHxtcmvxExlN
U8ZJM3FunU+JizvnBlivFBWwLGhxJxO79X5Vocsq7a8D8gI/OrLRebSxvOwALaze
KHOmcQDlx2hwdQviZ89RuTtcuZeRxroUwo0M8G2NRktpaXGpb9qRngB1vSMKbdGR
FqjY1Ppkk0LwrqvvCxxbXPZWBuY2giWkG4enyN6jSzx/75pF92aoVz+9zCO+ODaJ
o0qVqOBlDixtWqWkaN3td9v8a3HHGgXlmcpm6203HdKPI0cv/L2CuS6IoE8+V30G
1YGhCnXq17yQWAHyrk9QsW4I2oTDKI4ya6Ql2QIDAQABo4ICgjCCAn4wHQYDVR0O
BBYEFFJovF0qcDyDd5xtVXAz/eF5ARG2MB8GA1UdIwQYMBaAFBGtS9593WisNA1a
P9z1T/fXjBsFMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvOTU0Y2Ew
MDkyZmUxMjcwYTc1ZjA1NWM3MDRiNDBiMGIxZjZjNjYwMS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYjZkNjM1MjctN2E5Zi00N2VkLTg3ZjQtZDY5ZDM0
ZjU5OTVhLzE1M2Q3NTc4N2M4OTA2MDBlMTYxZThiZThkY2IyOGE2NDc4ODYzNmQu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9iNmQ2MzUyNy03YTlmLTQ3ZWQtODdmNC1kNjlk
MzRmNTk5NWEvOTU0Y2EwMDkyZmUxMjcwYTc1ZjA1NWM3MDRiNDBiMGIxZjZjNjYw
MS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBGBggrBgEFBQcBBwEB/wQ3
MDUwJAQCAAEwHgMEAoNkjAMEAopjAAMEAorbnAMEAqjoJAMEBb54ADANBAIAAjAH
AwUAKAOdgDANBgkqhkiG9w0BAQsFAAOCAQEAIJ1JpTzM/r+8f7u70woxGvTFICpY
VqqOIv3Y8VxD3gPaEaloyrZGdaiMCLehI1Ok9glcYOA0uh2l98Gozl8EpPDsDnjV
x4j+WPVDWoZy7gKUa19Tlwh9K2dfRmZiVefvzrjRbxgvdjs4f2jfu4C6f8j71FHY
jVHlPezhCa6leXFJ6fO0oVqRyQkHtHjKPteqClIzMImUS+5/a5rUU655jRX/TCg8
opjpHHvgHIwrnQc1UArLFzCD1mSbk1Pys1z6M8wlqcSU65IY0wTiM6ny+UADXL2x
+5fshilysGcPmbbRqDD7G12hEWfn80RhMIrqYbWEghoORTMkBSRHli4plg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:24 2024 by rpki-client on console-ams.rpki-client.org