Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/d37891fe-eea3-48a1-a501-257aaa18d4bc/9b2fc62c23a9a6567ff3faa2d9e4461a4ec234cf.roa
File: 9b2fc62c23a9a6567ff3faa2d9e4461a4ec234cf.roa (raw, json)
Hash identifier: It7IX97ywcc3CzNVJyHDgMw46OTZacaUxxd/lRxAkcM=
Subject key identifier: E4:49:9D:5D:8F:B9:4C:33:C6:E0:21:3D:6C:01:EB:7F:20:5F:D2:9C
Certificate issuer: /CN=82de3982dc3fe10698e2213ddec20b8ab75df7bf
Certificate serial: 0D9076
Authority key identifier: AD:2C:98:FD:25:51:E2:8A:30:65:C7:48:5B:5F:46:44:46:B9:7F:7E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/82de3982dc3fe10698e2213ddec20b8ab75df7bf.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/d37891fe-eea3-48a1-a501-257aaa18d4bc/9b2fc62c23a9a6567ff3faa2d9e4461a4ec234cf.roa
Signing time: Wed 24 Mar 2021 14:40:39 +0000
ROA not before: Wed 24 Mar 2021 14:40:36 +0000
ROA not after: Tue 24 Mar 2026 14:40:36 +0000
asID: 14522
IP address blocks: 181.175.0.0/16 maxlen: 22
186.66.0.0/17 maxlen: 24
186.66.128.0/17 maxlen: 22
186.68.0.0/15 maxlen: 24
186.70.0.0/15 maxlen: 23
190.10.128.0/18 maxlen: 24
190.10.192.0/18 maxlen: 24
190.154.0.0/17 maxlen: 24
190.154.128.0/17 maxlen: 24
190.155.0.0/17 maxlen: 24
190.155.128.0/17 maxlen: 24
200.25.128.0/19 maxlen: 24
200.25.160.0/19 maxlen: 24
200.63.192.0/19 maxlen: 24
200.63.224.0/20 maxlen: 24
200.63.240.0/20 maxlen: 24
200.69.160.0/20 maxlen: 24
200.69.176.0/20 maxlen: 24
201.217.64.0/19 maxlen: 24
201.217.96.0/19 maxlen: 24
2800:9a0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 888950 (0xd9076)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82de3982dc3fe10698e2213ddec20b8ab75df7bf
Validity
Not Before: Mar 24 14:40:36 2021 GMT
Not After : Mar 24 14:40:36 2026 GMT
Subject: CN=9b2fc62c23a9a6567ff3faa2d9e4461a4ec234cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d6:28:4e:a2:51:ca:bf:c1:9e:b8:20:5b:f5:
10:97:48:83:64:44:ec:85:86:69:76:0e:00:c0:44:
ed:2c:ab:ef:7f:73:74:88:56:86:89:e1:c6:e9:97:
14:09:ee:3c:2c:ae:57:7a:91:0d:08:4e:a6:3f:bc:
db:03:bb:ce:cc:85:ae:38:18:ad:7b:d3:1d:c4:83:
2b:06:dc:d0:7e:0c:51:3e:89:89:13:0d:90:40:1c:
3b:d3:00:52:64:4b:45:b0:ff:dd:e5:34:0d:59:f5:
dd:88:dc:e1:4a:24:49:f7:10:2b:be:a6:98:e9:a6:
2f:c3:31:3b:04:de:62:7b:57:09:a0:1d:40:dd:2f:
e1:7d:3f:3b:6b:fa:d3:34:67:49:8c:b4:e7:d1:95:
5c:17:34:12:a3:d1:e9:e1:27:84:bc:ea:c6:b9:63:
03:e4:a3:d2:fb:20:9e:31:22:98:1f:78:ea:04:42:
ee:77:33:1e:af:79:61:72:f6:71:19:32:ce:19:3b:
0b:47:60:19:63:8a:47:8a:f8:45:43:4f:40:c1:e9:
53:b0:3f:c1:35:ed:65:fc:97:ec:88:c9:ff:ff:30:
a3:dd:8a:80:70:10:4f:e7:50:1a:58:71:55:d2:ba:
06:30:11:d2:28:a2:ee:14:4e:6d:d9:ce:83:c4:d6:
a1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:49:9D:5D:8F:B9:4C:33:C6:E0:21:3D:6C:01:EB:7F:20:5F:D2:9C
X509v3 Authority Key Identifier:
keyid:AD:2C:98:FD:25:51:E2:8A:30:65:C7:48:5B:5F:46:44:46:B9:7F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/82de3982dc3fe10698e2213ddec20b8ab75df7bf.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/d37891fe-eea3-48a1-a501-257aaa18d4bc/9b2fc62c23a9a6567ff3faa2d9e4461a4ec234cf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/d37891fe-eea3-48a1-a501-257aaa18d4bc/82de3982dc3fe10698e2213ddec20b8ab75df7bf.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.175.0.0/16
186.66.0.0/16
186.68.0.0/14
190.10.128.0/17
190.154.0.0/15
200.25.128.0/18
200.63.192.0/18
200.69.160.0/19
201.217.64.0/18
IPv6:
2800:9a0::/29
Signature Algorithm: sha256WithRSAEncryption
a5:bd:9f:66:b4:40:b0:b5:8b:d2:ee:7f:a7:8e:d5:88:39:d1:
7b:78:0d:ee:06:71:f3:43:10:38:e9:68:13:14:13:5d:a9:cb:
de:fb:e2:64:00:0a:46:bb:aa:8d:4b:ef:a7:51:29:0e:d9:1c:
bd:16:0d:f0:2e:7d:ad:2f:5c:cb:48:b3:f6:df:8e:3f:6c:ac:
45:82:79:06:23:f3:86:13:c4:ed:43:37:5f:c3:10:a6:29:21:
7a:60:e8:f3:69:af:e4:03:fe:0b:07:0b:d3:b9:07:aa:34:b8:
77:47:f2:e4:c9:a1:6b:e0:28:94:ce:5a:91:c6:95:61:56:97:
8d:bd:26:9a:90:4b:b3:f2:3d:f1:ad:39:5a:aa:17:ec:b7:d0:
00:d5:2b:13:77:f0:0a:ce:62:46:03:25:78:ef:01:ea:51:90:
30:85:ac:cd:c9:21:4b:34:73:f0:eb:37:ad:a5:1f:af:1e:2e:
da:97:8f:0b:de:4b:ba:f8:e4:ba:d2:04:ca:c9:d5:ed:ea:03:
86:50:64:dd:22:44:8c:5a:04:b3:cd:f6:b3:18:32:f3:89:60:
c8:55:35:cd:c6:60:60:d5:fc:90:6a:bc:4c:23:a0:8c:95:54:
d4:98:e7:10:35:a9:48:7b:a0:fc:85:57:29:99:10:c3:fa:eb:
f4:73:fc:44
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgIDDZB2MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDgy
ZGUzOTgyZGMzZmUxMDY5OGUyMjEzZGRlYzIwYjhhYjc1ZGY3YmYwHhcNMjEwMzI0
MTQ0MDM2WhcNMjYwMzI0MTQ0MDM2WjAzMTEwLwYDVQQDEyg5YjJmYzYyYzIzYTlh
NjU2N2ZmM2ZhYTJkOWU0NDYxYTRlYzIzNGNmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArdYoTqJRyr/BnrggW/UQl0iDZETshYZpdg4AwETtLKvvf3N0
iFaGieHG6ZcUCe48LK5XepENCE6mP7zbA7vOzIWuOBite9MdxIMrBtzQfgxRPomJ
Ew2QQBw70wBSZEtFsP/d5TQNWfXdiNzhSiRJ9xArvqaY6aYvwzE7BN5ie1cJoB1A
3S/hfT87a/rTNGdJjLTn0ZVcFzQSo9Hp4SeEvOrGuWMD5KPS+yCeMSKYH3jqBELu
dzMer3lhcvZxGTLOGTsLR2AZY4pHivhFQ09AwelTsD/BNe1l/JfsiMn//zCj3YqA
cBBP51AaWHFV0roGMBHSKKLuFE5t2c6DxNahowIDAQABo4ICljCCApIwHQYDVR0O
BBYEFORJnV2PuUwzxuAhPWwB638gX9KcMB8GA1UdIwQYMBaAFK0smP0lUeKKMGXH
SFtfRkRGuX9+MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvODJkZTM5
ODJkYzNmZTEwNjk4ZTIyMTNkZGVjMjBiOGFiNzVkZjdiZi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvZDM3ODkxZmUtZWVhMy00OGExLWE1MDEtMjU3YWFh
MThkNGJjLzliMmZjNjJjMjNhOWE2NTY3ZmYzZmFhMmQ5ZTQ0NjFhNGVjMjM0Y2Yu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9kMzc4OTFmZS1lZWEzLTQ4YTEtYTUwMS0yNTdh
YWExOGQ0YmMvODJkZTM5ODJkYzNmZTEwNjk4ZTIyMTNkZGVjMjBiOGFiNzVkZjdi
Zi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBggrBgEFBQcBBwEB/wRL
MEkwOAQCAAEwMgMDALWvAwMAukIDAwK6RAMEB74KgAMDAb6aAwQGyBmAAwQGyD/A
AwQFyEWgAwQGydlAMA0EAgACMAcDBQMoAAmgMA0GCSqGSIb3DQEBCwUAA4IBAQCl
vZ9mtECwtYvS7n+njtWIOdF7eA3uBnHzQxA46WgTFBNdqcve++JkAApGu6qNS++n
USkO2Ry9Fg3wLn2tL1zLSLP2344/bKxFgnkGI/OGE8TtQzdfwxCmKSF6YOjzaa/k
A/4LBwvTuQeqNLh3R/LkyaFr4CiUzlqRxpVhVpeNvSaakEuz8j3xrTlaqhfst9AA
1SsTd/AKzmJGAyV47wHqUZAwhazNySFLNHPw6zetpR+vHi7al48L3ku6+OS60gTK
ydXt6gOGUGTdIkSMWgSzzfazGDLziWDIVTXNxmBg1fyQarxMI6CMlVTUmOcQNalI
e6D8hVcpmRDD+uv0c/xE
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:08 2024 by rpki-client on console-fra.rpki-client.org