Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/664d3016045c10f4e79b267f5b9c7ae511aacca6.roa
File: 664d3016045c10f4e79b267f5b9c7ae511aacca6.roa (raw, json)
Hash identifier: /ZTqeYlRzU3PwylbUhIopzKGtS82vV+nDRQ8s0qhUsI=
Subject key identifier: 4F:2C:05:0A:18:F3:59:E1:77:E6:A0:38:A3:E1:F9:10:6F:D8:C7:C9
Certificate issuer: /CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Certificate serial: 1EF644
Authority key identifier: DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/664d3016045c10f4e79b267f5b9c7ae511aacca6.roa
Signing time: Mon 28 Nov 2022 12:56:03 +0000
ROA not before: Sat 24 Sep 2022 15:15:42 +0000
ROA not after: Thu 26 Sep 2024 15:15:42 +0000
asID: 3816
IP address blocks: 152.200.0.0/17 maxlen: 17
152.200.128.0/20 maxlen: 20
152.200.144.0/22 maxlen: 22
152.200.148.0/22 maxlen: 22
152.200.152.0/22 maxlen: 22
152.200.156.0/22 maxlen: 22
152.200.160.0/22 maxlen: 22
152.200.164.0/22 maxlen: 22
152.200.168.0/22 maxlen: 22
152.200.172.0/22 maxlen: 22
152.200.176.0/20 maxlen: 20
152.201.32.0/19 maxlen: 19
152.202.0.0/19 maxlen: 19
152.202.32.0/19 maxlen: 19
152.202.64.0/19 maxlen: 19
152.202.96.0/19 maxlen: 19
152.202.128.0/19 maxlen: 19
152.202.160.0/19 maxlen: 19
152.202.192.0/19 maxlen: 19
152.202.224.0/19 maxlen: 19
152.203.0.0/20 maxlen: 20
152.203.32.0/19 maxlen: 19
152.203.64.0/18 maxlen: 18
152.203.128.0/19 maxlen: 19
152.203.160.0/19 maxlen: 19
152.203.192.0/19 maxlen: 19
152.203.224.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2029124 (0x1ef644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Validity
Not Before: Sep 24 15:15:42 2022 GMT
Not After : Sep 26 15:15:42 2024 GMT
Subject: CN=664d3016045c10f4e79b267f5b9c7ae511aacca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bc:55:82:08:04:23:4d:51:3a:ee:6a:7e:4b:
48:cf:09:0c:23:32:1f:78:61:f0:04:f0:c1:77:e3:
d6:85:05:da:66:3e:65:d0:ac:48:75:3f:ca:c2:78:
12:2a:bd:1c:2b:bb:60:33:3c:00:95:a6:a0:30:1b:
bc:d5:d8:7d:75:5c:ab:19:b5:9e:1e:2d:f0:19:53:
3e:3b:c6:48:01:27:cd:48:0c:3e:3d:7e:0b:e9:a4:
02:ac:e0:69:20:48:2e:13:be:24:e4:49:9b:03:f2:
4e:7f:bc:2c:f8:de:82:02:58:3d:ff:da:2b:60:62:
51:df:84:1a:df:32:25:95:29:d9:79:04:62:98:da:
cf:38:b2:7b:5f:b5:50:79:3a:b2:03:7b:df:a9:98:
23:e9:cc:df:2d:7a:a2:a2:11:59:fa:e0:3e:dd:d5:
33:46:fa:14:68:0c:d9:69:51:cb:1f:58:88:e4:5b:
d1:0a:7b:4c:ec:88:60:5e:a2:0b:6b:83:fc:4f:52:
47:50:d3:34:29:f9:ee:48:e3:65:3c:04:db:3a:85:
0e:61:8f:cf:74:29:85:7f:f0:59:d8:8e:77:ff:33:
6c:58:2a:d0:f2:89:94:c9:c3:8c:ac:1e:dd:f2:f6:
13:ab:3c:24:f6:7d:ad:c3:e8:31:ee:fc:54:dd:6d:
34:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2C:05:0A:18:F3:59:E1:77:E6:A0:38:A3:E1:F9:10:6F:D8:C7:C9
X509v3 Authority Key Identifier:
keyid:DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/664d3016045c10f4e79b267f5b9c7ae511aacca6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.200.0.0-152.200.191.255
152.201.32.0/19
152.202.0.0-152.203.15.255
152.203.32.0-152.203.255.255
Signature Algorithm: sha256WithRSAEncryption
12:6b:a6:38:0c:fc:67:f5:b4:08:43:33:03:4b:08:9f:be:28:
c8:37:05:2e:02:ff:22:84:9a:a3:e1:4d:6e:29:ec:e6:2a:a7:
f4:aa:ac:9b:e4:6c:a8:0a:4d:df:35:bc:79:85:ee:52:9f:40:
89:b3:7f:94:f4:6a:2e:67:fc:08:27:24:50:22:57:f0:ef:92:
fc:c6:bf:5e:7c:8c:5d:9f:17:bd:03:57:7e:b0:e7:40:2c:88:
df:8b:0f:0a:e9:80:1e:ff:d2:b1:14:a6:b2:45:11:66:12:82:
c6:59:51:f4:1c:9f:19:7b:ef:ad:84:35:29:6e:2b:b0:4e:e2:
3c:ba:e7:ed:67:28:6c:86:e5:c9:9e:f4:5f:da:90:b0:79:50:
e3:69:93:eb:de:03:2b:f4:29:c6:1b:8a:11:a1:c2:a4:06:6d:
20:a2:f6:5f:1d:e1:a2:87:82:37:7c:a8:fb:01:b0:d6:92:27:
5b:33:bc:b2:11:8a:6d:36:f3:ff:1b:d0:85:d5:f7:c7:2e:a8:
4b:ee:c1:5f:e4:31:c0:71:57:ea:87:24:1c:66:4b:d5:0d:99:
9d:2d:46:7a:b8:bd:ab:22:3b:20:c0:9f:83:bf:b4:0b:c5:78:
43:72:de:4f:82:dd:05:3b:88:88:1e:21:0a:e6:32:f3:3a:16:
87:3a:71:27
-----BEGIN CERTIFICATE-----
MIIFZzCCBE+gAwIBAgIDHvZEMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGIz
NTgwMDc4ZjRmODk3ZmNmZGJhYTBkOTBjMmVjNmY0NjBlMzMyMjIwHhcNMjIwOTI0
MTUxNTQyWhcNMjQwOTI2MTUxNTQyWjAzMTEwLwYDVQQDEyg2NjRkMzAxNjA0NWMx
MGY0ZTc5YjI2N2Y1YjljN2FlNTExYWFjY2E2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAsLxVgggEI01ROu5qfktIzwkMIzIfeGHwBPDBd+PWhQXaZj5l
0KxIdT/KwngSKr0cK7tgMzwAlaagMBu81dh9dVyrGbWeHi3wGVM+O8ZIASfNSAw+
PX4L6aQCrOBpIEguE74k5EmbA/JOf7ws+N6CAlg9/9orYGJR34Qa3zIllSnZeQRi
mNrPOLJ7X7VQeTqyA3vfqZgj6czfLXqiohFZ+uA+3dUzRvoUaAzZaVHLH1iI5FvR
CntM7IhgXqILa4P8T1JHUNM0KfnuSONlPATbOoUOYY/PdCmFf/BZ2I53/zNsWCrQ
8omUycOMrB7d8vYTqzwk9n2tw+gx7vxU3W00wQIDAQABo4ICgjCCAn4wHQYDVR0O
BBYEFE8sBQoY81nhd+agOKPh+RBv2MfJMB8GA1UdIwQYMBaAFN/Gyo1ROTKXljh0
TDeMs6BDDpW1MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYjM1ODAw
NzhmNGY4OTdmY2ZkYmFhMGQ5MGMyZWM2ZjQ2MGUzMzIyMi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYzIwYjU1OGEtODllMC00YzllLWI2YzgtZDdjNjk0
NjMyMTIwLzY2NGQzMDE2MDQ1YzEwZjRlNzliMjY3ZjViOWM3YWU1MTFhYWNjYTYu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9jMjBiNTU4YS04OWUwLTRjOWUtYjZjOC1kN2M2
OTQ2MzIxMjAvYjM1ODAwNzhmNGY4OTdmY2ZkYmFhMGQ5MGMyZWM2ZjQ2MGUzMzIy
Mi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBGBggrBgEFBQcBBwEB/wQ3
MDUwMwQCAAEwLTALAwMDmMgDBAaYyIADBAWYySAwCwMDAZjKAwQEmMsAMAsDBAWY
yyADAwKYyDANBgkqhkiG9w0BAQsFAAOCAQEAEmumOAz8Z/W0CEMzA0sIn74oyDcF
LgL/IoSao+FNbins5iqn9Kqsm+RsqApN3zW8eYXuUp9AibN/lPRqLmf8CCckUCJX
8O+S/Ma/XnyMXZ8XvQNXfrDnQCyI34sPCumAHv/SsRSmskURZhKCxllR9ByfGXvv
rYQ1KW4rsE7iPLrn7WcobIblyZ70X9qQsHlQ42mT694DK/QpxhuKEaHCpAZtIKL2
Xx3hooeCN3yo+wGw1pInWzO8shGKbTbz/xvQhdX3xy6oS+7BX+QxwHFX6ockHGZL
1Q2ZnS1Geri9qyI7IMCfg7+0C8V4Q3LeT4LdBTuIiB4hCuYy8zoWhzpxJw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-ams.rpki-client.org