Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/8a16b2cfe3172f827fcef146966b8d8fc43af139.roa
File: 8a16b2cfe3172f827fcef146966b8d8fc43af139.roa (raw, json)
Hash identifier: LnVH0bSZHVNNx1cc2IBuI1EoU4Zbd67dumw+dwB37ro=
Subject key identifier: 7E:EC:DF:BC:32:4C:D3:0B:7D:DE:76:D1:1D:35:99:03:F6:05:2D:65
Certificate issuer: /CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Certificate serial: 1F4F5E
Authority key identifier: DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/8a16b2cfe3172f827fcef146966b8d8fc43af139.roa
Signing time: Mon 12 Dec 2022 12:59:00 +0000
ROA not before: Fri 23 Sep 2022 15:15:42 +0000
ROA not after: Thu 26 Sep 2024 15:15:42 +0000
asID: 3816
IP address blocks: 152.200.0.0/17 maxlen: 17
152.200.128.0/20 maxlen: 20
152.200.144.0/22 maxlen: 22
152.200.148.0/22 maxlen: 22
152.200.152.0/22 maxlen: 22
152.200.156.0/22 maxlen: 22
152.200.160.0/22 maxlen: 22
152.200.164.0/22 maxlen: 22
152.200.168.0/22 maxlen: 22
152.200.172.0/22 maxlen: 22
152.200.176.0/20 maxlen: 20
152.201.32.0/19 maxlen: 19
152.201.64.0/19 maxlen: 19
152.201.96.0/19 maxlen: 19
152.202.0.0/19 maxlen: 19
152.202.32.0/19 maxlen: 19
152.202.64.0/19 maxlen: 19
152.202.96.0/19 maxlen: 19
152.202.128.0/19 maxlen: 19
152.202.160.0/19 maxlen: 19
152.202.192.0/19 maxlen: 19
152.202.224.0/19 maxlen: 19
152.203.0.0/20 maxlen: 20
152.203.32.0/19 maxlen: 19
152.203.64.0/18 maxlen: 18
152.203.128.0/19 maxlen: 19
152.203.160.0/19 maxlen: 19
152.203.192.0/19 maxlen: 19
152.203.224.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2051934 (0x1f4f5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3580078f4f897fcfdbaa0d90c2ec6f460e33222
Validity
Not Before: Sep 23 15:15:42 2022 GMT
Not After : Sep 26 15:15:42 2024 GMT
Subject: CN=8a16b2cfe3172f827fcef146966b8d8fc43af139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:28:7b:67:da:91:98:bd:0e:cc:44:e0:65:92:
2f:27:fa:e1:ce:2d:42:4e:cd:57:d6:7c:c6:17:38:
55:68:ee:31:f8:f1:55:10:a3:fe:7d:04:54:98:09:
7e:3a:5b:62:5b:62:a7:74:bc:8c:a1:97:00:1e:c6:
7c:53:64:83:fb:2c:11:3c:66:f1:65:12:ed:c3:ff:
6d:50:da:15:3c:80:15:bb:a2:ba:61:c5:4d:d0:62:
f3:bf:a1:84:79:a0:1f:9d:e7:3c:2c:77:2d:32:d6:
ce:9f:13:bf:be:84:0a:19:b9:52:e4:e9:4a:82:94:
b8:0d:c3:f5:36:8f:93:3a:2c:7e:db:8b:e4:18:4a:
02:1e:5b:fe:a7:28:6c:e4:5b:40:4c:a9:96:60:3f:
f8:b9:fd:57:d5:de:33:ab:0b:c9:dd:bc:fa:e1:8e:
93:32:be:76:7b:23:28:db:bb:93:0b:7d:28:96:02:
3b:01:69:b9:fa:41:52:b5:ac:42:9b:d0:9b:fe:31:
d6:41:3a:b7:b0:91:49:05:02:57:84:26:95:49:51:
4b:3b:65:23:d7:7b:8d:c4:61:32:42:59:81:cf:64:
e9:1d:0d:a0:1c:9c:ff:10:22:83:eb:49:ff:2a:d3:
83:b2:6d:6e:2f:fb:9c:18:2f:3e:ed:d6:f4:b1:c0:
34:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:EC:DF:BC:32:4C:D3:0B:7D:DE:76:D1:1D:35:99:03:F6:05:2D:65
X509v3 Authority Key Identifier:
keyid:DF:C6:CA:8D:51:39:32:97:96:38:74:4C:37:8C:B3:A0:43:0E:95:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/8a16b2cfe3172f827fcef146966b8d8fc43af139.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/c20b558a-89e0-4c9e-b6c8-d7c694632120/b3580078f4f897fcfdbaa0d90c2ec6f460e33222.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.200.0.0-152.200.191.255
152.201.32.0-152.201.127.255
152.202.0.0-152.203.15.255
152.203.32.0-152.203.255.255
Signature Algorithm: sha256WithRSAEncryption
4a:0a:67:d8:e3:7b:e5:2f:6d:d0:d6:d2:63:93:fe:54:1b:f2:
54:43:40:a3:71:98:29:43:84:61:f5:15:56:b4:f5:b0:a1:c3:
38:a4:11:72:9c:6a:a6:ba:6f:f4:8e:68:04:ff:69:32:01:af:
3f:08:ed:6b:91:0c:02:f2:d8:32:c4:99:64:0d:6e:70:1e:74:
a2:5e:2f:df:b7:21:de:ae:dc:90:fe:81:eb:2d:04:30:39:d2:
0f:2c:a4:0b:ca:ac:70:cb:b8:7c:01:14:8b:d1:cb:e5:f3:f3:
dd:a1:dc:64:88:15:62:e0:13:c2:c8:6d:b1:38:2d:2a:d5:4a:
4d:95:b4:03:d9:5c:e7:06:5a:68:de:97:b7:ec:4c:81:73:84:
6e:65:bd:24:38:62:90:8b:73:8a:af:73:0a:cb:09:65:47:5d:
07:37:14:0e:0d:8d:26:2b:2b:1f:c9:8d:43:b7:b0:3d:c6:52:
da:d4:e3:fc:0c:bb:a6:8c:cd:b4:96:42:08:5e:0e:72:af:7d:
a7:b4:cc:8f:6e:ec:21:5f:b6:e9:6b:08:06:6e:91:13:c0:c0:
02:60:82:89:fa:c6:b1:de:07:86:89:a0:c1:50:8a:27:3b:8e:
e6:40:9e:e7:8f:4c:84:0e:6f:5e:cf:aa:d0:64:f9:8c:2e:86:
48:de:93:e7
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgIDH09eMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGIz
NTgwMDc4ZjRmODk3ZmNmZGJhYTBkOTBjMmVjNmY0NjBlMzMyMjIwHhcNMjIwOTIz
MTUxNTQyWhcNMjQwOTI2MTUxNTQyWjAzMTEwLwYDVQQDEyg4YTE2YjJjZmUzMTcy
ZjgyN2ZjZWYxNDY5NjZiOGQ4ZmM0M2FmMTM5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEApCh7Z9qRmL0OzETgZZIvJ/rhzi1CTs1X1nzGFzhVaO4x+PFV
EKP+fQRUmAl+OltiW2KndLyMoZcAHsZ8U2SD+ywRPGbxZRLtw/9tUNoVPIAVu6K6
YcVN0GLzv6GEeaAfnec8LHctMtbOnxO/voQKGblS5OlKgpS4DcP1No+TOix+24vk
GEoCHlv+pyhs5FtATKmWYD/4uf1X1d4zqwvJ3bz64Y6TMr52eyMo27uTC30olgI7
AWm5+kFStaxCm9Cb/jHWQTq3sJFJBQJXhCaVSVFLO2Uj13uNxGEyQlmBz2TpHQ2g
HJz/ECKD60n/KtODsm1uL/ucGC8+7db0scA0lQIDAQABo4ICijCCAoYwHQYDVR0O
BBYEFH7s37wyTNMLfd520R01mQP2BS1lMB8GA1UdIwQYMBaAFN/Gyo1ROTKXljh0
TDeMs6BDDpW1MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYjM1ODAw
NzhmNGY4OTdmY2ZkYmFhMGQ5MGMyZWM2ZjQ2MGUzMzIyMi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYzIwYjU1OGEtODllMC00YzllLWI2YzgtZDdjNjk0
NjMyMTIwLzhhMTZiMmNmZTMxNzJmODI3ZmNlZjE0Njk2NmI4ZDhmYzQzYWYxMzku
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9jMjBiNTU4YS04OWUwLTRjOWUtYjZjOC1kN2M2
OTQ2MzIxMjAvYjM1ODAwNzhmNGY4OTdmY2ZkYmFhMGQ5MGMyZWM2ZjQ2MGUzMzIy
Mi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBOBggrBgEFBQcBBwEB/wQ/
MD0wOwQCAAEwNTALAwMDmMgDBAaYyIAwDAMEBZjJIAMEB5jJADALAwMBmMoDBASY
ywAwCwMEBZjLIAMDApjIMA0GCSqGSIb3DQEBCwUAA4IBAQBKCmfY43vlL23Q1tJj
k/5UG/JUQ0CjcZgpQ4Rh9RVWtPWwocM4pBFynGqmum/0jmgE/2kyAa8/CO1rkQwC
8tgyxJlkDW5wHnSiXi/ftyHertyQ/oHrLQQwOdIPLKQLyqxwy7h8ARSL0cvl8/Pd
odxkiBVi4BPCyG2xOC0q1UpNlbQD2VznBlpo3pe37EyBc4RuZb0kOGKQi3OKr3MK
ywllR10HNxQODY0mKysfyY1Dt7A9xlLa1OP8DLumjM20lkIIXg5yr32ntMyPbuwh
X7bpawgGbpETwMACYIKJ+sax3geGiaDBUIonO47mQJ7nj0yEDm9ez6rQZPmMLoZI
3pPn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:32 2024 by rpki-client on console-ams.rpki-client.org