Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/b7e2cbcb-4e1e-4451-ba9f-b839acb5a75f/690236fadbe898a2895473bb1747f84afa240dbe.roa
File:                     690236fadbe898a2895473bb1747f84afa240dbe.roa (raw, json)
Hash identifier:          WMSUsVfm4nz3vJXYObwtGtoE5caxwEDX2+qXXnNghyA=
Subject key identifier:   F4:53:8D:1E:5A:CC:93:18:D3:70:CA:33:71:C4:6D:90:62:F0:1F:A5
Certificate issuer:       /CN=c376ce9732a7f8438a8728863d42624058e18390
Certificate serial:       1F742D
Authority key identifier: D1:A6:22:E9:31:1A:89:37:4E:F7:42:9E:B6:EB:2C:D4:16:A2:54:92
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c376ce9732a7f8438a8728863d42624058e18390.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/b7e2cbcb-4e1e-4451-ba9f-b839acb5a75f/690236fadbe898a2895473bb1747f84afa240dbe.roa
Signing time:             Thu 23 Mar 2023 08:30:16 +0000
ROA not before:           Wed 22 Mar 2023 08:30:16 +0000
ROA not after:            Fri 21 Mar 2025 08:30:16 +0000
asID:                     18747
IP address blocks:        200.73.1.0/24 maxlen: 24
                          200.73.12.0/24 maxlen: 24
                          200.73.13.0/24 maxlen: 24
                          200.73.14.0/24 maxlen: 24
                          200.73.17.0/24 maxlen: 24
                          200.73.2.0/24 maxlen: 24
                          200.73.21.0/24 maxlen: 24
                          200.73.28.0/24 maxlen: 24
                          200.73.3.0/24 maxlen: 24
                          200.73.31.0/24 maxlen: 24
                          200.73.33.0/24 maxlen: 24
                          200.73.5.0/24 maxlen: 24
                          200.73.55.0/24 maxlen: 24
                          200.73.6.0/24 maxlen: 24
                          200.73.64.0/24 maxlen: 24
                          200.73.66.0/24 maxlen: 24
                          200.73.7.0/24 maxlen: 24
                          200.73.70.0/24 maxlen: 24
                          200.73.76.0/24 maxlen: 24
                          200.73.8.0/24 maxlen: 24
                          200.73.81.0/24 maxlen: 24
                          200.73.83.0/24 maxlen: 24
                          200.73.84.0/24 maxlen: 24
                          200.73.93.0/24 maxlen: 24
                          216.241.0.0/24 maxlen: 24
                          216.241.11.0/24 maxlen: 24
                          216.241.13.0/24 maxlen: 24
                          216.241.14.0/24 maxlen: 24
                          216.241.17.0/24 maxlen: 24
                          216.241.2.0/24 maxlen: 24
                          216.241.25.0/24 maxlen: 24
                          216.241.26.0/24 maxlen: 24
                          216.241.29.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2061357 (0x1f742d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c376ce9732a7f8438a8728863d42624058e18390
        Validity
            Not Before: Mar 22 08:30:16 2023 GMT
            Not After : Mar 21 08:30:16 2025 GMT
        Subject: CN=690236fadbe898a2895473bb1747f84afa240dbe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:c4:20:35:02:40:64:f1:93:9d:36:25:73:d2:
                    e2:fb:f8:d2:47:24:ba:eb:4b:b8:5f:04:e2:fc:2a:
                    50:a1:d8:d1:c0:6a:d4:f7:77:a2:09:d8:3c:f1:37:
                    1a:32:c4:dd:bb:87:c2:4b:6a:dc:ad:17:18:72:a2:
                    49:3c:a1:b1:1a:a6:af:00:af:bc:c8:e7:54:3c:81:
                    93:78:f0:d2:b7:a2:17:b8:cd:4a:91:c3:65:7e:39:
                    c4:21:f6:75:4b:f7:bb:f0:b6:13:e7:32:f1:71:27:
                    9e:dc:c8:61:e8:41:a2:5e:8b:e9:1d:68:97:c7:6e:
                    e1:4e:c3:6b:d7:55:cf:a0:a7:d7:88:cb:74:f1:86:
                    e5:ba:90:05:82:32:d5:47:36:bd:3f:84:d7:67:80:
                    1c:37:ee:fa:12:6b:da:b3:f7:6c:02:1c:53:52:2d:
                    6d:ee:e9:1f:4a:50:1c:fd:2b:e3:68:71:0d:2b:9d:
                    1c:81:c0:35:2b:f9:5e:12:8d:0d:71:f4:73:65:7c:
                    1a:a0:8e:88:2d:04:d2:7c:c7:0f:7e:2c:7b:c3:ac:
                    61:18:a9:86:db:bf:b8:9e:32:f4:98:34:e1:d7:70:
                    1b:65:b1:44:af:30:8e:45:4f:11:6f:af:d2:3a:91:
                    34:54:c2:0a:d7:49:f4:0a:ce:fd:59:54:78:a2:d7:
                    90:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:53:8D:1E:5A:CC:93:18:D3:70:CA:33:71:C4:6D:90:62:F0:1F:A5
            X509v3 Authority Key Identifier:
                keyid:D1:A6:22:E9:31:1A:89:37:4E:F7:42:9E:B6:EB:2C:D4:16:A2:54:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c376ce9732a7f8438a8728863d42624058e18390.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/b7e2cbcb-4e1e-4451-ba9f-b839acb5a75f/690236fadbe898a2895473bb1747f84afa240dbe.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/b7e2cbcb-4e1e-4451-ba9f-b839acb5a75f/c376ce9732a7f8438a8728863d42624058e18390.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.73.1.0-200.73.3.255
                  200.73.5.0-200.73.8.255
                  200.73.12.0-200.73.14.255
                  200.73.17.0/24
                  200.73.21.0/24
                  200.73.28.0/24
                  200.73.31.0/24
                  200.73.33.0/24
                  200.73.55.0/24
                  200.73.64.0/24
                  200.73.66.0/24
                  200.73.70.0/24
                  200.73.76.0/24
                  200.73.81.0/24
                  200.73.83.0-200.73.84.255
                  200.73.93.0/24
                  216.241.0.0/24
                  216.241.2.0/24
                  216.241.11.0/24
                  216.241.13.0-216.241.14.255
                  216.241.17.0/24
                  216.241.25.0-216.241.26.255
                  216.241.29.0/24

    Signature Algorithm: sha256WithRSAEncryption
         55:ee:69:d1:57:0c:93:8d:48:22:91:8b:b4:2d:4a:59:d8:4a:
         9c:66:92:0f:6b:ca:7b:5c:63:21:70:6e:c0:3a:3a:b2:71:36:
         b1:c4:81:93:2f:f4:81:ae:56:8e:a9:83:ee:43:a2:62:eb:68:
         27:e3:df:31:97:d2:87:e5:c4:af:ff:5a:a1:a2:1f:ea:98:41:
         40:c6:b7:a5:94:f8:ce:9e:e1:f3:ee:a0:46:9a:f8:6c:2c:d4:
         9c:be:89:74:2c:64:91:65:a2:aa:53:91:49:5f:54:1f:13:69:
         dd:00:3c:05:e6:97:92:5f:71:af:e5:00:a5:dc:a7:c9:d9:3d:
         88:e2:49:66:f2:80:9f:7b:56:8f:c4:f5:e0:c9:f5:44:c7:1c:
         b9:45:67:cf:44:dc:e7:92:84:b1:d6:cf:1a:80:08:52:5d:a0:
         bf:18:e9:78:e7:09:4e:37:02:59:bb:0a:30:52:dd:66:f4:38:
         b4:b0:ea:8a:85:61:0e:aa:42:4d:87:0f:e5:4e:3a:e2:fc:32:
         d7:56:94:85:6f:42:a3:61:f0:e0:f2:2a:b5:cd:bd:23:84:a9:
         4c:89:f4:64:05:71:07:01:8a:ab:36:1a:2a:2b:c7:40:41:d8:
         ce:52:e5:1f:61:73:91:64:e6:42:25:93:36:d8:38:3f:7b:ef:
         03:7b:82:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:25 2024 by rpki-client on console-ams.rpki-client.org