Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/fe91a7aa-2d10-478d-abc0-c38f604f3488/a3f68217410289bf85640ebf31d8de4e39955630.roa
File: a3f68217410289bf85640ebf31d8de4e39955630.roa (raw, json)
Hash identifier: xj0d0b8fqxzuxUW9zUJ6My+5SnXHq2+QOOtxVMlHVoA=
Subject key identifier: AA:94:4B:57:62:C3:DA:52:84:F3:A5:2E:8A:E3:48:B9:7E:74:4B:D2
Certificate issuer: /CN=6e37ba61cda2665349146e3f47d9626599bc42f0
Certificate serial: 239A14
Authority key identifier: 95:AE:CE:6D:67:BE:1D:4E:2D:8F:34:DB:70:3E:01:B2:11:53:03:12
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6e37ba61cda2665349146e3f47d9626599bc42f0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/fe91a7aa-2d10-478d-abc0-c38f604f3488/a3f68217410289bf85640ebf31d8de4e39955630.roa
Signing time: Fri 01 Sep 2023 15:12:20 +0000
ROA not before: Thu 31 Aug 2023 15:12:19 +0000
ROA not after: Mon 01 Sep 2025 15:12:19 +0000
asID: 6057
IP address blocks: 186.48.0.0/13 maxlen: 24
167.108.0.0/16 maxlen: 24
201.217.128.0/18 maxlen: 24
200.125.0.0/18 maxlen: 24
190.64.0.0/16 maxlen: 24
167.56.0.0/13 maxlen: 24
179.24.0.0/13 maxlen: 24
167.116.0.0/16 maxlen: 24
190.132.0.0/14 maxlen: 24
200.2.32.0/19 maxlen: 24
200.40.0.0/16 maxlen: 24
190.0.128.0/19 maxlen: 24
201.221.32.0/19 maxlen: 24
2800:a0::/28 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2333204 (0x239a14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e37ba61cda2665349146e3f47d9626599bc42f0
Validity
Not Before: Aug 31 15:12:19 2023 GMT
Not After : Sep 1 15:12:19 2025 GMT
Subject: CN=a3f68217410289bf85640ebf31d8de4e39955630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:47:6c:fc:44:ed:22:50:a3:b0:ff:74:02:16:
e8:20:df:ef:9d:0d:aa:b4:c3:93:3f:28:40:a8:ba:
ec:b1:39:df:6b:0d:16:18:62:8d:2c:1c:13:41:61:
18:9c:9c:78:7f:5b:76:6e:26:b3:42:cb:53:7e:ff:
e3:25:b3:62:02:03:eb:c4:b6:85:38:8f:eb:e6:b1:
2e:62:04:b1:aa:fe:51:c9:79:ff:e4:a1:23:2a:ff:
f5:c0:37:53:8f:c8:fa:18:21:ef:3c:20:8a:00:ce:
ae:69:1a:e3:df:e4:c9:d7:a8:e9:75:9c:bf:c4:b7:
1c:52:75:b8:e9:94:8f:ba:33:84:c2:65:31:bc:5a:
54:e5:67:98:ca:97:1d:45:60:26:c9:f0:34:c1:10:
43:2a:a6:bb:b2:6b:9f:9c:08:99:69:a9:c2:f8:06:
d3:46:3c:c7:22:54:f1:f3:6f:37:1c:ac:b3:44:4b:
60:12:60:b7:58:72:83:f8:70:7a:81:ab:0c:77:e0:
10:5c:dc:c0:9c:61:a9:dc:c2:11:f9:8f:44:cd:c2:
f1:a3:f8:4c:6e:62:9f:2b:02:a7:82:1d:4a:2a:8b:
6c:47:65:9f:e7:03:85:6a:bf:d5:50:a2:dd:fe:47:
2e:e3:d8:8b:a2:91:af:8a:08:97:4a:dd:57:ca:23:
21:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:94:4B:57:62:C3:DA:52:84:F3:A5:2E:8A:E3:48:B9:7E:74:4B:D2
X509v3 Authority Key Identifier:
keyid:95:AE:CE:6D:67:BE:1D:4E:2D:8F:34:DB:70:3E:01:B2:11:53:03:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6e37ba61cda2665349146e3f47d9626599bc42f0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/fe91a7aa-2d10-478d-abc0-c38f604f3488/a3f68217410289bf85640ebf31d8de4e39955630.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/fe91a7aa-2d10-478d-abc0-c38f604f3488/6e37ba61cda2665349146e3f47d9626599bc42f0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.56.0.0/13
167.108.0.0/16
167.116.0.0/16
179.24.0.0/13
186.48.0.0/13
190.0.128.0/19
190.64.0.0/16
190.132.0.0/14
200.2.32.0/19
200.40.0.0/16
200.125.0.0/18
201.217.128.0/18
201.221.32.0/19
IPv6:
2800:a0::/28
Signature Algorithm: sha256WithRSAEncryption
55:92:5c:9c:4c:24:e8:1e:0f:ca:75:61:a1:41:dc:6e:2b:1e:
49:c0:2c:09:5b:86:57:64:bd:7e:af:89:b0:e9:bc:0e:b8:a8:
42:ab:58:ab:d3:81:0e:12:0e:6c:74:9e:9e:d6:d7:0c:b6:f2:
16:d1:2f:7a:20:6f:90:06:60:61:e2:2c:51:9f:0c:d0:45:ef:
7c:0e:f0:c5:f6:66:28:6e:69:a5:f9:4f:4c:42:e7:1c:0d:f9:
e5:8a:e6:d4:d9:a9:02:68:9a:7d:51:30:df:fa:12:55:e2:5f:
02:72:30:0a:39:33:d2:66:6a:d7:2c:ce:f5:44:89:ed:ce:5f:
d0:1e:4c:2c:99:dd:69:0b:61:aa:8c:01:a0:7a:8f:c9:9f:be:
1e:30:07:96:21:dd:57:64:95:8a:2e:ed:af:e7:65:49:d3:55:
5a:d4:22:ca:7c:04:70:2a:41:8e:b8:79:26:f1:8a:53:4b:49:
97:7c:f5:0d:50:9a:87:62:86:43:7b:eb:1c:2a:7b:e1:e4:72:
0d:15:19:e0:af:ce:b0:a8:dd:35:3a:0e:79:58:b4:d0:82:c6:
0e:16:fb:79:45:f2:92:f8:c7:c2:ad:62:69:f1:34:71:52:00:
c1:67:92:ef:bd:f1:6a:9c:66:4d:88:30:81:67:9e:42:39:2c:
c6:cc:98:65
-----BEGIN CERTIFICATE-----
MIIFjzCCBHegAwIBAgIDI5oUMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDZl
MzdiYTYxY2RhMjY2NTM0OTE0NmUzZjQ3ZDk2MjY1OTliYzQyZjAwHhcNMjMwODMx
MTUxMjE5WhcNMjUwOTAxMTUxMjE5WjAzMTEwLwYDVQQDEyhhM2Y2ODIxNzQxMDI4
OWJmODU2NDBlYmYzMWQ4ZGU0ZTM5OTU1NjMwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmUds/ETtIlCjsP90AhboIN/vnQ2qtMOTPyhAqLrssTnfaw0W
GGKNLBwTQWEYnJx4f1t2biazQstTfv/jJbNiAgPrxLaFOI/r5rEuYgSxqv5RyXn/
5KEjKv/1wDdTj8j6GCHvPCCKAM6uaRrj3+TJ16jpdZy/xLccUnW46ZSPujOEwmUx
vFpU5WeYypcdRWAmyfA0wRBDKqa7smufnAiZaanC+AbTRjzHIlTx8283HKyzREtg
EmC3WHKD+HB6gasMd+AQXNzAnGGp3MIR+Y9EzcLxo/hMbmKfKwKngh1KKotsR2Wf
5wOFar/VUKLd/kcu49iLopGvigiXSt1XyiMhNwIDAQABo4ICqjCCAqYwHQYDVR0O
BBYEFKqUS1diw9pShPOlLorjSLl+dEvSMB8GA1UdIwQYMBaAFJWuzm1nvh1OLY80
23A+AbIRUwMSMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNmUzN2Jh
NjFjZGEyNjY1MzQ5MTQ2ZTNmNDdkOTYyNjU5OWJjNDJmMC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvZmU5MWE3YWEtMmQxMC00NzhkLWFiYzAtYzM4ZjYw
NGYzNDg4L2EzZjY4MjE3NDEwMjg5YmY4NTY0MGViZjMxZDhkZTRlMzk5NTU2MzAu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9mZTkxYTdhYS0yZDEwLTQ3OGQtYWJjMC1jMzhm
NjA0ZjM0ODgvNmUzN2JhNjFjZGEyNjY1MzQ5MTQ2ZTNmNDdkOTYyNjU5OWJjNDJm
MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBuBggrBgEFBQcBBwEB/wRf
MF0wTAQCAAEwRgMDA6c4AwMAp2wDAwCndAMDA7MYAwMDujADBAW+AIADAwC+QAMD
Ar6EAwQFyAIgAwMAyCgDBAbIfQADBAbJ2YADBAXJ3SAwDQQCAAIwBwMFBCgAAKAw
DQYJKoZIhvcNAQELBQADggEBAFWSXJxMJOgeD8p1YaFB3G4rHknALAlbhldkvX6v
ibDpvA64qEKrWKvTgQ4SDmx0np7W1wy28hbRL3ogb5AGYGHiLFGfDNBF73wO8MX2
ZihuaaX5T0xC5xwN+eWK5tTZqQJomn1RMN/6ElXiXwJyMAo5M9JmatcszvVEie3O
X9AeTCyZ3WkLYaqMAaB6j8mfvh4wB5Yh3VdklYou7a/nZUnTVVrUIsp8BHAqQY64
eSbxilNLSZd89Q1QmodihkN76xwqe+Hkcg0VGeCvzrCo3TU6DnlYtNCCxg4W+3lF
8pL4x8KtYmnxNHFSAMFnku+98WqcZk2IMIFnnkI5LMbMmGU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:15 2024 by rpki-client on console-fra.rpki-client.org