Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/35e13e226b82a3a10854efe234fa2ff4e303cb95.roa
File: 35e13e226b82a3a10854efe234fa2ff4e303cb95.roa (raw, json)
Hash identifier: yE/bBn2TiG8ozJD3y5qticabBN5sFqX33UqxE8/jLcM=
Subject key identifier: 99:9B:78:29:71:6A:D0:92:B1:E2:6C:04:DA:F6:7E:F8:CF:7E:D6:02
Certificate issuer: /CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Certificate serial: 0D542C
Authority key identifier: 8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/35e13e226b82a3a10854efe234fa2ff4e303cb95.roa
Signing time: Wed 11 Oct 2023 21:46:50 +0000
ROA not before: Tue 10 Oct 2023 21:46:49 +0000
ROA not after: Sat 11 Oct 2025 21:46:49 +0000
asID: 22884
IP address blocks: 189.203.241.0/24 maxlen: 24
189.203.238.0/24 maxlen: 24
189.203.234.0/24 maxlen: 24
189.203.215.0/24 maxlen: 24
189.203.211.0/24 maxlen: 24
189.203.139.0/24 maxlen: 24
189.203.130.0/24 maxlen: 24
189.203.75.0/24 maxlen: 24
189.203.74.0/24 maxlen: 24
189.203.71.0/24 maxlen: 24
189.203.44.0/24 maxlen: 24
189.203.32.0/24 maxlen: 24
189.203.25.0/24 maxlen: 24
189.203.18.0/24 maxlen: 24
189.203.15.0/24 maxlen: 24
189.203.5.0/24 maxlen: 24
187.251.238.0/24 maxlen: 24
187.251.220.0/24 maxlen: 24
187.251.210.0/24 maxlen: 24
187.251.151.0/24 maxlen: 24
187.251.138.0/24 maxlen: 24
187.251.131.0/24 maxlen: 24
187.251.130.0/24 maxlen: 24
187.251.129.0/24 maxlen: 24
187.251.128.0/24 maxlen: 24
187.251.111.0/24 maxlen: 24
187.191.51.0/24 maxlen: 24
187.191.46.0/24 maxlen: 24
187.191.43.0/24 maxlen: 24
187.191.35.0/24 maxlen: 24
187.191.30.0/24 maxlen: 24
187.191.28.0/24 maxlen: 24
187.191.3.0/24 maxlen: 24
187.190.250.0/24 maxlen: 24
187.190.245.0/24 maxlen: 24
187.190.240.0/24 maxlen: 24
187.190.237.0/24 maxlen: 24
187.190.236.0/24 maxlen: 24
187.190.217.0/24 maxlen: 24
187.190.214.0/24 maxlen: 24
187.190.143.0/24 maxlen: 24
187.190.130.0/24 maxlen: 24
187.190.127.0/24 maxlen: 24
187.190.110.0/24 maxlen: 24
187.190.99.0/24 maxlen: 24
187.190.98.0/24 maxlen: 24
187.190.97.0/24 maxlen: 24
187.190.59.0/24 maxlen: 24
187.190.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 873516 (0xd542c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913d5cdb160726dc92e04ed46a658ec6bfcbbdd1
Validity
Not Before: Oct 10 21:46:49 2023 GMT
Not After : Oct 11 21:46:49 2025 GMT
Subject: CN=35e13e226b82a3a10854efe234fa2ff4e303cb95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3e:24:75:7a:17:de:c8:5f:59:b2:e3:00:30:
4f:b7:b8:f0:d0:9d:63:8c:34:e3:fb:db:10:69:f5:
4f:dd:4c:ff:8c:35:8d:82:16:53:8c:d4:6c:79:19:
4b:af:85:6d:54:4a:c1:f5:ae:f0:82:9b:9c:88:00:
7e:18:eb:39:c1:84:ff:a9:26:92:ea:ec:10:5b:2b:
c9:01:34:0b:fa:41:f3:51:40:a7:30:90:23:5d:a5:
2b:57:ad:5f:43:f8:c1:cc:6e:b0:8e:d0:2c:f2:99:
eb:91:e4:b9:44:c5:f0:2b:46:02:f6:06:31:97:12:
00:74:dc:cd:56:4c:1f:72:c7:0c:51:3e:a5:ae:be:
46:bf:94:64:8a:51:8d:b0:1e:f4:c5:16:f4:c6:71:
29:39:10:3e:1c:54:0f:fc:19:f3:fb:b7:b0:56:71:
a8:d9:d2:b4:9b:e9:24:87:85:7e:91:41:c7:c0:71:
4b:98:c6:45:26:d7:2e:e0:a6:ea:87:5f:68:75:d7:
11:a2:c0:9b:0e:de:e1:5b:fb:bf:39:7b:41:21:d7:
35:92:d1:2f:eb:04:d3:d9:dc:8d:bd:94:03:d0:17:
7e:36:42:6e:7e:cd:86:54:09:b5:b8:b5:6d:e6:44:
b5:ba:62:2a:9a:38:24:4d:b6:fb:a5:48:dd:5b:0f:
d6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9B:78:29:71:6A:D0:92:B1:E2:6C:04:DA:F6:7E:F8:CF:7E:D6:02
X509v3 Authority Key Identifier:
keyid:8F:71:4F:02:F7:D5:BA:46:48:22:E9:D9:D4:7B:BB:60:D5:93:A1:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/35e13e226b82a3a10854efe234fa2ff4e303cb95.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/cd5ad6c0-499b-4380-984f-874c9f51d2ff/913d5cdb160726dc92e04ed46a658ec6bfcbbdd1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
187.190.40.0/24
187.190.59.0/24
187.190.97.0-187.190.99.255
187.190.110.0/24
187.190.127.0/24
187.190.130.0/24
187.190.143.0/24
187.190.214.0/24
187.190.217.0/24
187.190.236.0/23
187.190.240.0/24
187.190.245.0/24
187.190.250.0/24
187.191.3.0/24
187.191.28.0/24
187.191.30.0/24
187.191.35.0/24
187.191.43.0/24
187.191.46.0/24
187.191.51.0/24
187.251.111.0/24
187.251.128.0/22
187.251.138.0/24
187.251.151.0/24
187.251.210.0/24
187.251.220.0/24
187.251.238.0/24
189.203.5.0/24
189.203.15.0/24
189.203.18.0/24
189.203.25.0/24
189.203.32.0/24
189.203.44.0/24
189.203.71.0/24
189.203.74.0/23
189.203.130.0/24
189.203.139.0/24
189.203.211.0/24
189.203.215.0/24
189.203.234.0/24
189.203.238.0/24
189.203.241.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:91:f3:8a:5c:2b:fc:2b:3d:aa:0d:da:d8:d3:4e:6f:0f:cd:
19:44:bc:fc:11:3a:35:9b:d2:a4:1e:4d:53:b0:35:fa:b1:39:
d1:11:2d:7d:52:5b:13:6a:58:5d:e0:4e:a0:9a:e8:29:e9:2d:
61:cc:29:fd:f7:2b:37:03:28:e8:57:91:8f:c7:f5:78:32:f2:
ec:9f:73:e4:82:b2:d3:b1:e5:55:3b:49:df:2f:36:f2:8e:7c:
ed:a5:7c:28:2f:9f:dc:80:9a:d7:2a:ef:96:68:1b:c7:99:eb:
fa:bc:a1:cb:0a:35:a2:db:8b:6b:82:f8:f8:7d:6b:94:d4:f3:
2c:f4:cc:b8:e7:2d:a9:c6:dd:ed:7c:eb:65:85:52:a9:29:6d:
53:c6:f9:19:48:66:4f:2d:4e:54:e0:9e:eb:26:df:8b:88:da:
cc:52:70:03:6c:00:7e:8e:d8:c9:a5:78:36:87:af:0f:1b:00:
36:26:9f:07:8e:0d:f6:61:95:d1:6b:78:4d:60:e9:59:6a:eb:
f6:db:96:2b:4a:9c:f8:55:fd:ae:8e:8d:c5:07:fd:0e:62:4a:
f2:7a:bc:86:fa:00:d4:ba:dd:14:e8:86:74:c4:47:49:ab:ad:
e5:7b:9a:bf:48:50:2b:21:6b:ed:ce:19:43:cd:11:45:77:a2:
0a:be:ce:d9
-----BEGIN CERTIFICATE-----
MIIGSDCCBTCgAwIBAgIDDVQsMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDkx
M2Q1Y2RiMTYwNzI2ZGM5MmUwNGVkNDZhNjU4ZWM2YmZjYmJkZDEwHhcNMjMxMDEw
MjE0NjQ5WhcNMjUxMDExMjE0NjQ5WjAzMTEwLwYDVQQDEygzNWUxM2UyMjZiODJh
M2ExMDg1NGVmZTIzNGZhMmZmNGUzMDNjYjk1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAkj4kdXoX3shfWbLjADBPt7jw0J1jjDTj+9sQafVP3Uz/jDWN
ghZTjNRseRlLr4VtVErB9a7wgpuciAB+GOs5wYT/qSaS6uwQWyvJATQL+kHzUUCn
MJAjXaUrV61fQ/jBzG6wjtAs8pnrkeS5RMXwK0YC9gYxlxIAdNzNVkwfcscMUT6l
rr5Gv5RkilGNsB70xRb0xnEpORA+HFQP/Bnz+7ewVnGo2dK0m+kkh4V+kUHHwHFL
mMZFJtcu4Kbqh19oddcRosCbDt7hW/u/OXtBIdc1ktEv6wTT2dyNvZQD0Bd+NkJu
fs2GVAm1uLVt5kS1umIqmjgkTbb7pUjdWw/WQQIDAQABo4IDYzCCA18wHQYDVR0O
BBYEFJmbeClxatCSseJsBNr2fvjPftYCMB8GA1UdIwQYMBaAFI9xTwL31bpGSCLp
2dR7u2DVk6EyMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvOTEzZDVj
ZGIxNjA3MjZkYzkyZTA0ZWQ0NmE2NThlYzZiZmNiYmRkMS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvY2Q1YWQ2YzAtNDk5Yi00MzgwLTk4NGYtODc0Yzlm
NTFkMmZmLzM1ZTEzZTIyNmI4MmEzYTEwODU0ZWZlMjM0ZmEyZmY0ZTMwM2NiOTUu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9jZDVhZDZjMC00OTliLTQzODAtOTg0Zi04NzRj
OWY1MWQyZmYvOTEzZDVjZGIxNjA3MjZkYzkyZTA0ZWQ0NmE2NThlYzZiZmNiYmRk
MS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjCCASUGCCsGAQUFBwEHAQH/
BIIBFDCCARAwggEMBAIAATCCAQQDBAC7vigDBAC7vjswDAMEALu+YQMEAru+YAME
ALu+bgMEALu+fwMEALu+ggMEALu+jwMEALu+1gMEALu+2QMEAbu+7AMEALu+8AME
ALu+9QMEALu++gMEALu/AwMEALu/HAMEALu/HgMEALu/IwMEALu/KwMEALu/LgME
ALu/MwMEALv7bwMEArv7gAMEALv7igMEALv7lwMEALv70gMEALv73AMEALv77gME
AL3LBQMEAL3LDwMEAL3LEgMEAL3LGQMEAL3LIAMEAL3LLAMEAL3LRwMEAb3LSgME
AL3LggMEAL3LiwMEAL3L0wMEAL3L1wMEAL3L6gMEAL3L7gMEAL3L8TANBgkqhkiG
9w0BAQsFAAOCAQEAipHzilwr/Cs9qg3a2NNObw/NGUS8/BE6NZvSpB5NU7A1+rE5
0REtfVJbE2pYXeBOoJroKektYcwp/fcrNwMo6FeRj8f1eDLy7J9z5IKy07HlVTtJ
3y828o587aV8KC+f3ICa1yrvlmgbx5nr+ryhywo1otuLa4L4+H1rlNTzLPTMuOct
qcbd7XzrZYVSqSltU8b5GUhmTy1OVOCe6ybfi4jazFJwA2wAfo7YyaV4NoevDxsA
NiafB44N9mGV0Wt4TWDpWWrr9tuWK0qc+FX9ro6NxQf9DmJK8nq8hvoA1LrdFOiG
dMRHSaut5Xuav0hQKyFr7c4ZQ80RRXeiCr7O2Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:33 2024 by rpki-client on console-ams.rpki-client.org