Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f250093c-ba98-48b8-8c52-9abe57d52d4f/a44d3d625c252a044ac4840912509b9d0d1b4ee5.roa
File: a44d3d625c252a044ac4840912509b9d0d1b4ee5.roa (raw, json)
Hash identifier: Zh1apCcfn62lndcVPsAdA47Zmf3i3ARcVHV25RKPFGM=
Subject key identifier: AD:EC:06:49:BA:7A:9C:8F:AA:08:A0:CD:23:D3:87:E5:BD:78:8E:2B
Certificate issuer: /CN=0932ed7fc7587a11240901c76c1f6f64f3020149
Certificate serial: 1EF10A
Authority key identifier: 63:E5:E7:0F:A2:3C:0C:80:83:7E:A1:FE:96:50:76:95:C0:CE:5E:FF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/0932ed7fc7587a11240901c76c1f6f64f3020149.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f250093c-ba98-48b8-8c52-9abe57d52d4f/a44d3d625c252a044ac4840912509b9d0d1b4ee5.roa
Signing time: Mon 29 May 2023 12:27:57 +0000
ROA not before: Sun 28 May 2023 12:27:56 +0000
ROA not after: Thu 29 May 2025 12:27:56 +0000
asID: 11172
IP address blocks: 200.76.0.0/18 maxlen: 24
200.52.112.0/20 maxlen: 24
201.151.0.0/16 maxlen: 24
200.56.112.0/20 maxlen: 24
192.190.30.0/23 maxlen: 24
192.207.204.0/23 maxlen: 24
148.244.0.0/16 maxlen: 24
200.76.128.0/18 maxlen: 24
207.248.224.0/19 maxlen: 24
143.202.156.0/22 maxlen: 24
201.163.0.0/16 maxlen: 24
200.94.0.0/17 maxlen: 24
200.94.128.0/19 maxlen: 24
189.206.0.0/16 maxlen: 24
2001:1248::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2027786 (0x1ef10a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0932ed7fc7587a11240901c76c1f6f64f3020149
Validity
Not Before: May 28 12:27:56 2023 GMT
Not After : May 29 12:27:56 2025 GMT
Subject: CN=a44d3d625c252a044ac4840912509b9d0d1b4ee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:62:a3:2e:48:db:48:90:53:d6:66:4a:b1:79:
65:e5:77:30:93:7a:48:ba:e4:15:8b:69:07:6e:27:
f9:0d:44:e8:e0:b4:64:8f:ed:d2:b0:98:46:15:68:
17:6f:b3:9e:f9:be:da:7d:4c:3e:50:8f:94:2f:ce:
ae:73:6a:ca:05:d7:8c:08:e5:92:75:98:7d:30:fd:
c2:2f:b2:7e:c4:17:13:5a:83:a4:c8:d6:dd:e1:2b:
cc:3e:ca:3e:37:56:0b:52:3b:24:3f:7c:c2:f3:6a:
f7:bb:57:66:65:55:0d:72:c7:ba:2b:2b:dc:56:ab:
03:2c:e0:37:cf:f1:79:ed:1e:ec:c0:d5:8a:75:97:
14:c7:e4:1d:c0:da:f2:cb:7a:0e:c4:11:c3:38:8a:
db:fc:25:a8:da:41:d9:ea:fd:a9:45:81:a6:b8:96:
4f:10:c0:09:08:3c:3a:fa:16:1b:db:1d:44:e4:4e:
d4:58:27:4f:c6:03:03:97:ce:cb:a4:4d:dc:d6:75:
60:2d:bf:ac:76:28:9c:52:a3:8c:16:61:e8:0b:ad:
c7:7f:e1:fb:3e:bc:a9:75:23:03:51:ca:06:4f:9c:
de:bf:35:47:52:cd:c3:80:8f:51:e0:32:79:05:29:
51:78:3d:d6:eb:82:6e:a5:25:77:fa:4c:8a:d2:0d:
a4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:EC:06:49:BA:7A:9C:8F:AA:08:A0:CD:23:D3:87:E5:BD:78:8E:2B
X509v3 Authority Key Identifier:
keyid:63:E5:E7:0F:A2:3C:0C:80:83:7E:A1:FE:96:50:76:95:C0:CE:5E:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/0932ed7fc7587a11240901c76c1f6f64f3020149.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f250093c-ba98-48b8-8c52-9abe57d52d4f/a44d3d625c252a044ac4840912509b9d0d1b4ee5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f250093c-ba98-48b8-8c52-9abe57d52d4f/0932ed7fc7587a11240901c76c1f6f64f3020149.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.202.156.0/22
148.244.0.0/16
189.206.0.0/16
192.190.30.0/23
192.207.204.0/23
200.52.112.0/20
200.56.112.0/20
200.76.0.0/18
200.76.128.0/18
200.94.0.0-200.94.159.255
201.151.0.0/16
201.163.0.0/16
207.248.224.0/19
IPv6:
2001:1248::/32
Signature Algorithm: sha256WithRSAEncryption
6e:c1:4e:6e:7a:e1:1a:4e:cf:99:57:c3:fc:b0:e9:78:54:cb:
54:f0:b1:a9:6e:1e:dc:15:83:1e:3b:eb:8f:58:0d:bf:0c:79:
94:c0:99:1e:6a:23:9b:70:46:59:d5:8f:ef:24:51:89:7d:10:
8d:da:0b:69:7b:2c:d3:c1:81:20:09:01:f6:08:42:a4:52:3f:
c7:62:f3:99:47:7c:b6:65:a5:9d:8a:3c:92:db:2b:61:41:c8:
fd:db:ae:ae:7e:81:eb:51:66:4f:48:a9:c7:f4:cc:dd:82:a6:
93:92:0a:d6:96:42:32:c4:72:67:01:fc:b1:64:59:cb:97:0b:
39:b0:b8:ec:b1:d1:8a:23:9e:bb:3d:19:4e:91:34:1b:f8:d6:
c6:32:a0:81:f4:c0:d7:c0:f4:36:d6:ac:d5:8b:d9:03:aa:9a:
89:87:9a:59:3f:77:41:a3:96:d9:54:8d:90:d5:12:c8:48:66:
95:ff:62:6a:92:02:25:4d:d6:c7:0b:da:86:8c:65:52:31:d5:
d4:01:54:13:21:15:6a:cb:72:8e:a5:c6:49:98:a9:3f:83:69:
c5:72:b7:e9:71:03:f1:bd:0b:88:e8:54:ee:0b:32:0a:30:e1:
f9:d2:de:b8:48:67:fb:ca:4f:80:70:4a:f0:d9:5d:7a:57:a3:
bc:b7:e5:3b
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgIDHvEKMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDA5
MzJlZDdmYzc1ODdhMTEyNDA5MDFjNzZjMWY2ZjY0ZjMwMjAxNDkwHhcNMjMwNTI4
MTIyNzU2WhcNMjUwNTI5MTIyNzU2WjAzMTEwLwYDVQQDEyhhNDRkM2Q2MjVjMjUy
YTA0NGFjNDg0MDkxMjUwOWI5ZDBkMWI0ZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAoWKjLkjbSJBT1mZKsXll5Xcwk3pIuuQVi2kHbif5DUTo4LRk
j+3SsJhGFWgXb7Oe+b7afUw+UI+UL86uc2rKBdeMCOWSdZh9MP3CL7J+xBcTWoOk
yNbd4SvMPso+N1YLUjskP3zC82r3u1dmZVUNcse6KyvcVqsDLOA3z/F57R7swNWK
dZcUx+QdwNryy3oOxBHDOIrb/CWo2kHZ6v2pRYGmuJZPEMAJCDw6+hYb2x1E5E7U
WCdPxgMDl87LpE3c1nVgLb+sdiicUqOMFmHoC63Hf+H7PrypdSMDUcoGT5zevzVH
Us3DgI9R4DJ5BSlReD3W64JupSV3+kyK0g2kyQIDAQABo4ICtTCCArEwHQYDVR0O
BBYEFK3sBkm6epyPqgigzSPTh+W9eI4rMB8GA1UdIwQYMBaAFGPl5w+iPAyAg36h
/pZQdpXAzl7/MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMDkzMmVk
N2ZjNzU4N2ExMTI0MDkwMWM3NmMxZjZmNjRmMzAyMDE0OS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvZjI1MDA5M2MtYmE5OC00OGI4LThjNTItOWFiZTU3
ZDUyZDRmL2E0NGQzZDYyNWMyNTJhMDQ0YWM0ODQwOTEyNTA5YjlkMGQxYjRlZTUu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9mMjUwMDkzYy1iYTk4LTQ4YjgtOGM1Mi05YWJl
NTdkNTJkNGYvMDkzMmVkN2ZjNzU4N2ExMTI0MDkwMWM3NmMxZjZmNjRmMzAyMDE0
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjB5BggrBgEFBQcBBwEB/wRq
MGgwVwQCAAEwUQMEAo/KnAMDAJT0AwMAvc4DBAHAvh4DBAHAz8wDBATINHADBATI
OHADBAbITAADBAbITIAwCwMDAcheAwQFyF6AAwMAyZcDAwDJowMEBc/44DANBAIA
AjAHAwUAIAESSDANBgkqhkiG9w0BAQsFAAOCAQEAbsFObnrhGk7PmVfD/LDpeFTL
VPCxqW4e3BWDHjvrj1gNvwx5lMCZHmojm3BGWdWP7yRRiX0QjdoLaXss08GBIAkB
9ghCpFI/x2LzmUd8tmWlnYo8ktsrYUHI/duurn6B61FmT0ipx/TM3YKmk5IK1pZC
MsRyZwH8sWRZy5cLObC47LHRiiOeuz0ZTpE0G/jWxjKggfTA18D0Ntas1YvZA6qa
iYeaWT93QaOW2VSNkNUSyEhmlf9iapICJU3WxwvahoxlUjHV1AFUEyEVastyjqXG
SZipP4NpxXK36XED8b0LiOhU7gsyCjDh+dLeuEhn+8pPgHBK8NldelejvLflOw==
-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:36 2024 by rpki-client on console-fra.rpki-client.org