Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/8cca25acb41b490ac2197a3e23013a8688c8f8a5.roa
File: 8cca25acb41b490ac2197a3e23013a8688c8f8a5.roa (raw, json)
Hash identifier: 3i7ZA7m1FLZD9FCqxGOVJgTDFpuHOSdM7FdHGEQEt20=
Subject key identifier: E9:DF:CC:2A:AF:E9:4C:46:90:89:D7:64:66:CD:62:1F:32:82:5E:A1
Certificate issuer: /CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Certificate serial: 219303
Authority key identifier: 62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/8cca25acb41b490ac2197a3e23013a8688c8f8a5.roa
Signing time: Tue 14 Feb 2023 13:12:14 +0000
ROA not before: Tue 13 Apr 2021 03:00:00 +0000
ROA not after: Thu 11 May 2023 03:00:00 +0000
asID: 262589
IP address blocks: 190.90.0.0/21 maxlen: 24
190.90.8.0/21 maxlen: 24
190.90.16.0/21 maxlen: 24
190.90.24.0/21 maxlen: 24
190.90.32.0/21 maxlen: 24
190.90.52.0/22 maxlen: 24
190.90.60.0/22 maxlen: 24
190.90.64.0/20 maxlen: 24
190.90.80.0/20 maxlen: 24
190.90.96.0/20 maxlen: 24
190.90.112.0/21 maxlen: 24
190.90.120.0/21 maxlen: 24
190.90.128.0/20 maxlen: 24
190.90.144.0/21 maxlen: 24
190.90.152.0/22 maxlen: 24
190.90.172.0/22 maxlen: 24
190.90.176.0/23 maxlen: 24
190.90.188.0/22 maxlen: 24
190.90.191.0/24 maxlen: 24
190.90.192.0/20 maxlen: 24
190.90.208.0/21 maxlen: 24
190.90.224.0/21 maxlen: 24
190.90.232.0/21 maxlen: 24
190.90.243.0/24 maxlen: 24
190.90.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2200323 (0x219303)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3300a6efb5b34c79125fce5dc4afa6977a46744f
Validity
Not Before: Apr 13 03:00:00 2021 GMT
Not After : May 11 03:00:00 2023 GMT
Subject: CN=8cca25acb41b490ac2197a3e23013a8688c8f8a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9e:e2:35:48:03:c2:b0:9a:79:e0:24:86:13:
d6:8a:f9:ee:7a:d0:4f:23:4c:43:21:fa:61:4d:36:
49:a5:47:d6:d1:b0:e2:cf:ec:94:4f:04:e2:64:fc:
94:c8:ae:85:3d:78:f4:19:90:47:b8:03:17:45:05:
ab:18:55:51:76:74:a6:96:9f:44:47:26:73:27:e5:
1a:46:b6:1f:20:d3:2a:41:60:a3:60:3e:97:7e:5a:
39:03:f9:dc:0d:ae:28:00:3d:50:d8:0a:bf:b9:53:
86:ad:62:48:61:82:a8:3b:14:6d:46:80:80:82:51:
20:18:14:4f:82:64:f7:f6:5d:32:5c:07:e3:5f:a4:
80:65:dc:74:2b:26:71:6f:33:b7:89:a8:43:b4:44:
94:7c:3c:7e:d9:14:5c:ff:e6:4f:09:0d:ba:e4:02:
76:85:7f:9f:e5:29:d6:30:c0:fa:c8:99:4c:70:af:
1c:ff:27:4a:5c:f0:72:e3:9a:48:04:09:7f:68:aa:
37:a8:a1:5e:e6:0d:69:54:ad:de:59:f7:db:45:09:
e6:86:71:a8:c0:45:65:9f:1c:f0:a9:77:bb:71:f1:
6c:0e:dd:d6:6e:1c:6f:27:c7:a4:cb:cb:84:01:8f:
66:8e:21:00:4c:28:44:aa:8b:c6:3f:d9:13:6f:37:
ba:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:DF:CC:2A:AF:E9:4C:46:90:89:D7:64:66:CD:62:1F:32:82:5E:A1
X509v3 Authority Key Identifier:
keyid:62:AA:07:2A:74:5B:AE:77:82:D2:D9:44:76:20:4C:0C:A5:4E:ED:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3300a6efb5b34c79125fce5dc4afa6977a46744f.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/8cca25acb41b490ac2197a3e23013a8688c8f8a5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/aa69a975-83a3-4532-a779-5ffb87580309/3300a6efb5b34c79125fce5dc4afa6977a46744f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.0.0-190.90.39.255
190.90.52.0/22
190.90.60.0-190.90.155.255
190.90.172.0-190.90.177.255
190.90.188.0-190.90.215.255
190.90.224.0/20
190.90.243.0/24
190.90.249.0/24
Signature Algorithm: sha256WithRSAEncryption
90:38:58:6a:42:64:76:88:26:e4:67:67:b1:60:0d:7a:be:b3:
f3:38:ec:51:23:40:35:70:8b:c4:2d:ee:0b:0b:e3:6c:61:e6:
1b:c6:99:9f:91:04:99:86:8c:5c:d1:eb:07:2f:a8:63:b0:d9:
61:c9:fe:e7:61:63:c7:3c:6b:50:cf:d8:ef:89:ed:68:7c:f5:
b8:19:a1:15:d3:16:af:6c:7a:a0:ab:88:7f:41:48:36:ce:40:
e0:48:11:e5:e3:23:31:4d:fb:a1:77:cd:7d:1f:8a:79:b1:66:
e0:04:49:7f:bd:30:ec:dc:7a:39:61:80:a2:e8:f9:47:47:e6:
ef:6f:60:5a:b3:3e:14:6c:45:1a:5f:ab:8c:b5:7c:b2:bb:12:
6f:3a:41:e4:34:96:96:f5:77:ef:d2:7c:9b:e4:2c:9f:76:af:
cd:2e:ba:70:19:f2:1e:48:90:d5:c0:81:53:7e:01:9d:dc:1c:
f6:0b:d8:ae:9a:06:75:70:0b:c1:01:4b:29:2f:9a:4e:23:ab:
ce:ff:99:f7:0e:12:f4:16:b1:68:2d:31:10:e6:c6:f2:e4:fa:
4a:6c:4f:a5:1b:1c:6b:ad:b6:9f:a5:c3:f3:06:33:ad:2a:17:
52:e1:d0:02:16:3b:c6:18:45:00:90:fd:59:16:2b:29:08:69:
43:77:dc:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 23 22:24:53 2025 by rpki-client