Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/028611bf39859af40b07a2b732cfba3eeffcd04b.roa
File: 028611bf39859af40b07a2b732cfba3eeffcd04b.roa (raw, json)
Hash identifier: WxoBRSmxMzF08P2s0qWrOtRCxw6xmzxP2rD54HdVIqw=
Subject key identifier: 81:6C:1C:79:56:79:6E:CB:F9:85:30:67:78:F9:71:87:48:03:7A:7D
Certificate issuer: /CN=9fa677563ca5bfe6068216c74122a5d7cb2db27a
Certificate serial: 1A5EA7
Authority key identifier: E6:D0:FB:F5:F7:54:60:F0:31:D8:08:B8:92:07:1C:B8:BE:CA:A4:39
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9fa677563ca5bfe6068216c74122a5d7cb2db27a.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/028611bf39859af40b07a2b732cfba3eeffcd04b.roa
Signing time: Wed 31 Aug 2022 20:21:01 +0000
ROA not before: Thu 12 Aug 2021 03:00:00 +0000
ROA not after: Sat 12 Aug 2023 03:00:00 +0000
asID: 26617
IP address blocks: 181.189.129.0/24 maxlen: 24
181.189.130.0/23 maxlen: 24
181.189.159.0/24 maxlen: 24
190.111.0.0/20 maxlen: 24
190.111.16.0/24 maxlen: 24
190.111.18.0/23 maxlen: 24
190.111.20.0/22 maxlen: 24
190.111.25.0/24 maxlen: 24
190.111.26.0/23 maxlen: 24
190.111.28.0/24 maxlen: 24
200.35.160.0/23 maxlen: 24
200.35.162.0/24 maxlen: 24
200.35.163.0/24 maxlen: 24
200.35.164.0/24 maxlen: 24
200.35.167.0/24 maxlen: 24
200.35.168.0/21 maxlen: 24
200.35.176.0/22 maxlen: 24
200.35.180.0/23 maxlen: 24
200.35.182.0/24 maxlen: 24
200.35.184.0/22 maxlen: 24
200.35.188.0/23 maxlen: 24
200.35.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1728167 (0x1a5ea7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fa677563ca5bfe6068216c74122a5d7cb2db27a
Validity
Not Before: Aug 12 03:00:00 2021 GMT
Not After : Aug 12 03:00:00 2023 GMT
Subject: CN=028611bf39859af40b07a2b732cfba3eeffcd04b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:51:ec:f8:92:9b:c0:75:40:6b:5a:4b:ad:0f:
6b:1f:ee:70:d4:a4:a2:b5:bf:38:de:77:62:21:88:
08:de:60:83:b0:0d:f8:87:7e:11:9b:a0:80:dc:1a:
5f:67:b3:46:67:75:b1:6c:5e:ba:fd:24:03:04:3e:
d8:79:f6:6a:91:32:71:0b:67:48:ea:d7:a1:b7:27:
d5:3a:8c:bf:d1:04:3d:2c:21:ce:be:17:b0:cd:94:
9b:bf:99:56:e9:b5:a0:c1:87:00:e7:7e:d1:0c:4d:
20:7b:10:66:f0:df:8a:b9:79:34:93:4f:cb:f8:d5:
88:52:93:23:c4:2c:19:4e:b8:40:ef:4f:ad:5b:be:
a5:57:ca:d5:8d:97:bf:d2:6b:79:1a:bc:4d:dd:e9:
37:db:b0:67:21:87:a7:1e:b6:e7:ce:fc:3c:60:9c:
d4:43:3b:9a:a5:9e:c5:e4:99:2f:eb:34:61:20:ea:
69:4a:79:85:15:f9:0e:79:33:49:06:86:81:55:1e:
f7:9c:c6:76:a8:99:2d:b9:a1:a0:79:99:69:3b:56:
af:89:1d:43:af:18:1a:7e:9a:f9:bc:ab:25:5a:8d:
4d:3b:04:cb:83:04:be:db:be:95:06:99:93:35:8c:
e0:87:36:58:cb:df:5b:9b:32:19:a6:e0:30:ad:c6:
f3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6C:1C:79:56:79:6E:CB:F9:85:30:67:78:F9:71:87:48:03:7A:7D
X509v3 Authority Key Identifier:
keyid:E6:D0:FB:F5:F7:54:60:F0:31:D8:08:B8:92:07:1C:B8:BE:CA:A4:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9fa677563ca5bfe6068216c74122a5d7cb2db27a.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/028611bf39859af40b07a2b732cfba3eeffcd04b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/bef91ee1-4224-4c1c-aee6-5ce138641c48/9fa677563ca5bfe6068216c74122a5d7cb2db27a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.189.129.0-181.189.131.255
181.189.159.0/24
190.111.0.0-190.111.16.255
190.111.18.0-190.111.23.255
190.111.25.0-190.111.28.255
200.35.160.0-200.35.164.255
200.35.167.0-200.35.182.255
200.35.184.0-200.35.190.255
Signature Algorithm: sha256WithRSAEncryption
6a:ae:76:c0:c3:f9:27:4f:55:68:67:a2:42:c6:18:4b:dc:31:
17:26:a4:fa:f4:df:8e:90:bd:84:e8:dc:b9:fd:c4:67:63:80:
02:ae:78:d6:02:98:52:8d:df:99:d5:ab:16:48:29:3a:45:6a:
aa:f5:26:48:19:08:7e:01:2c:d9:28:92:10:01:e9:d3:2c:2d:
65:00:dd:07:ba:82:9d:45:3f:67:18:f7:df:0e:7f:76:18:3c:
05:a3:21:dc:f7:10:92:48:9f:3e:8b:5e:2f:5d:4c:2d:d0:f3:
4c:85:0f:9a:0c:5d:02:a5:a1:c2:ee:ad:21:7b:81:d1:da:b6:
99:07:81:0e:1a:55:49:8c:56:80:9c:4c:26:6f:8b:5f:4a:58:
0a:df:b4:5b:d6:89:e2:a0:9d:b0:71:6a:95:85:97:05:c8:ba:
dd:93:10:0f:3f:3a:1c:27:83:35:15:6a:73:9c:5b:50:2c:1b:
b2:b4:df:17:40:ad:f4:79:01:d1:1c:85:e0:76:42:2b:27:9f:
a6:bb:00:3b:4f:42:a5:a3:0d:11:f6:fd:c7:57:34:0e:85:99:
9a:27:27:94:08:6d:bc:34:d0:34:26:a4:32:24:3f:8f:00:63:
4d:c1:bb:06:f7:f9:b4:90:fa:4f:5a:50:0c:36:04:c0:b9:45:
a9:81:ef:c4
-----BEGIN CERTIFICATE-----
MIIFojCCBIqgAwIBAgIDGl6nMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDlm
YTY3NzU2M2NhNWJmZTYwNjgyMTZjNzQxMjJhNWQ3Y2IyZGIyN2EwHhcNMjEwODEy
MDMwMDAwWhcNMjMwODEyMDMwMDAwWjAzMTEwLwYDVQQDEygwMjg2MTFiZjM5ODU5
YWY0MGIwN2EyYjczMmNmYmEzZWVmZmNkMDRiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAjVHs+JKbwHVAa1pLrQ9rH+5w1KSitb843ndiIYgI3mCDsA34
h34Rm6CA3BpfZ7NGZ3WxbF66/SQDBD7YefZqkTJxC2dI6tehtyfVOoy/0QQ9LCHO
vhewzZSbv5lW6bWgwYcA537RDE0gexBm8N+KuXk0k0/L+NWIUpMjxCwZTrhA70+t
W76lV8rVjZe/0mt5GrxN3ek327BnIYenHrbnzvw8YJzUQzuapZ7F5Jkv6zRhIOpp
SnmFFfkOeTNJBoaBVR73nMZ2qJktuaGgeZlpO1aviR1Drxgafpr5vKslWo1NOwTL
gwS+276VBpmTNYzghzZYy99bmzIZpuAwrcbzdQIDAQABo4ICvTCCArkwHQYDVR0O
BBYEFIFsHHlWeW7L+YUwZ3j5cYdIA3p9MB8GA1UdIwQYMBaAFObQ+/X3VGDwMdgI
uJIHHLi+yqQ5MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvOWZhNjc3
NTYzY2E1YmZlNjA2ODIxNmM3NDEyMmE1ZDdjYjJkYjI3YS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYmVmOTFlZTEtNDIyNC00YzFjLWFlZTYtNWNlMTM4
NjQxYzQ4LzAyODYxMWJmMzk4NTlhZjQwYjA3YTJiNzMyY2ZiYTNlZWZmY2QwNGIu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9iZWY5MWVlMS00MjI0LTRjMWMtYWVlNi01Y2Ux
Mzg2NDFjNDgvOWZhNjc3NTYzY2E1YmZlNjA2ODIxNmM3NDEyMmE1ZDdjYjJkYjI3
YS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCBgAYIKwYBBQUHAQcBAf8E
cTBvMG0EAgABMGcwDAMEALW9gQMEArW9gAMEALW9nzALAwMAvm8DBAC+bxAwDAME
Ab5vEgMEA75vEDAMAwQAvm8ZAwQAvm8cMAwDBAXII6ADBADII6QwDAMEAMgjpwME
AMgjtjAMAwQDyCO4AwQAyCO+MA0GCSqGSIb3DQEBCwUAA4IBAQBqrnbAw/knT1Vo
Z6JCxhhL3DEXJqT69N+OkL2E6Ny5/cRnY4ACrnjWAphSjd+Z1asWSCk6RWqq9SZI
GQh+ASzZKJIQAenTLC1lAN0HuoKdRT9nGPffDn92GDwFoyHc9xCSSJ8+i14vXUwt
0PNMhQ+aDF0CpaHC7q0he4HR2raZB4EOGlVJjFaAnEwmb4tfSlgK37Rb1onioJ2w
cWqVhZcFyLrdkxAPPzocJ4M1FWpznFtQLBuytN8XQK30eQHRHIXgdkIrJ5+muwA7
T0Klow0R9v3HVzQOhZmaJyeUCG28NNA0JqQyJD+PAGNNwbsG9/m0kPpPWlAMNgTA
uUWpge/E
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:52 2023 by rpki-client on console-ams.rpki-client.org