Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/026CF02C4ED29BE51A5CF7349FEF7F5AEE84C01AD4960B2C3BE10F9D37B17BE0/0/3133312e3139362e3131322e302f32322d3234203d3e203532343638.roa
File: 3133312e3139362e3131322e302f32322d3234203d3e203532343638.roa (raw, json)
Hash identifier: SKW6lGekIxLlGbQDR26+KQX6MJYVmJ7u1Y3vgDUPSkY=
Subject key identifier: 53:A5:9A:96:5C:CC:51:72:B4:B1:73:FE:CF:F8:14:83:4E:15:C7:50
Certificate issuer: /CN=575E8C6CA1804CEB8830FE8544A39CB633AA341C
Certificate serial: 27A9A725529D689D100C602458340812152197B4
Authority key identifier: 57:5E:8C:6C:A1:80:4C:EB:88:30:FE:85:44:A3:9C:B6:33:AA:34:1C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/575E8C6CA1804CEB8830FE8544A39CB633AA341C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/026CF02C4ED29BE51A5CF7349FEF7F5AEE84C01AD4960B2C3BE10F9D37B17BE0/0/3133312e3139362e3131322e302f32322d3234203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:00:12 +0000
ROA not before: Tue 04 Feb 2025 17:55:12 +0000
ROA not after: Tue 03 Feb 2026 18:00:12 +0000
asID: 52468
IP address blocks: 131.196.112.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:a9:a7:25:52:9d:68:9d:10:0c:60:24:58:34:08:12:15:21:97:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=575E8C6CA1804CEB8830FE8544A39CB633AA341C
Validity
Not Before: Feb 4 17:55:12 2025 GMT
Not After : Feb 3 18:00:12 2026 GMT
Subject: CN=53A59A965CCC5172B4B173FECFF814834E15C750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:72:d6:6c:74:a3:44:e0:f1:9c:16:d0:d9:50:
f5:a6:05:70:36:6f:eb:17:d5:35:03:43:b8:d3:58:
1f:e3:40:12:d6:97:e9:76:20:38:c8:3d:ae:37:71:
09:cb:dd:51:52:23:f1:26:cc:69:68:8e:28:e9:f1:
3e:43:5c:54:35:e3:50:ba:a0:9e:fb:32:c7:46:e7:
c0:89:2d:f1:30:8a:bc:be:81:20:a2:52:2e:20:90:
a8:19:8d:90:e1:22:0b:04:80:17:52:b1:b2:22:40:
68:e5:3c:25:41:0c:19:b7:b9:e0:c8:b5:48:5b:51:
6c:95:20:62:0c:64:91:84:29:4e:11:a3:bc:3c:20:
05:f9:80:34:2b:58:9c:71:15:d8:cd:e0:f2:ec:93:
12:27:48:df:1a:5f:9a:f2:5f:1b:bf:d8:0f:0b:33:
74:c3:a0:d0:c4:9f:38:15:fc:e4:fb:66:d8:69:30:
a9:a6:4c:16:19:1c:85:d8:11:c5:44:b5:9c:c1:bf:
bf:77:f9:69:f7:34:4d:f1:5f:59:6b:86:2a:eb:28:
81:81:ec:fb:83:53:47:79:c8:0c:30:c6:de:c5:71:
5b:fd:40:52:03:0e:1f:2f:e0:11:48:c4:8e:2e:92:
13:f3:60:8c:69:41:0b:26:e7:6f:24:ff:78:96:ee:
64:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A5:9A:96:5C:CC:51:72:B4:B1:73:FE:CF:F8:14:83:4E:15:C7:50
X509v3 Authority Key Identifier:
keyid:57:5E:8C:6C:A1:80:4C:EB:88:30:FE:85:44:A3:9C:B6:33:AA:34:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/026CF02C4ED29BE51A5CF7349FEF7F5AEE84C01AD4960B2C3BE10F9D37B17BE0/0/575E8C6CA1804CEB8830FE8544A39CB633AA341C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/575E8C6CA1804CEB8830FE8544A39CB633AA341C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/026CF02C4ED29BE51A5CF7349FEF7F5AEE84C01AD4960B2C3BE10F9D37B17BE0/0/3133312e3139362e3131322e302f32322d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.196.112.0/22
Signature Algorithm: sha256WithRSAEncryption
27:1c:c8:41:d1:db:1d:ff:26:9a:af:aa:cb:a7:c9:f3:4c:ef:
15:b7:10:21:03:77:9e:f2:0b:75:3d:f5:30:bc:26:19:07:47:
88:f3:21:73:ba:74:e7:8a:be:68:d2:8e:4f:e9:19:61:42:83:
d0:e4:85:b9:10:bb:e8:0a:de:7c:9e:fb:6e:2c:08:e0:06:c4:
13:25:77:73:d9:48:b9:b1:9f:ed:3e:85:3f:dc:20:fa:db:44:
ca:91:1b:1b:42:f8:19:3f:bb:0e:8b:94:2c:cf:08:04:6e:c3:
40:5e:46:4f:f8:a8:bd:7c:6e:3d:c2:fc:1b:81:21:cd:cf:b4:
04:83:62:c9:6e:38:22:6f:7e:48:83:25:c5:9e:85:58:11:1a:
93:d6:49:3b:9a:41:0e:79:4c:b8:0d:ed:ed:ff:0b:fc:d9:02:
da:99:80:82:04:e6:6c:e2:64:ac:09:cb:8c:d2:07:fb:ee:e5:
59:fd:89:b7:8a:49:74:ab:d2:73:ba:2c:0e:20:0d:e2:ed:51:
5d:37:50:c2:c4:71:5a:85:55:48:08:a8:4c:cc:a6:0d:dc:5d:
1d:3f:23:4e:49:9a:df:e1:d4:88:87:f0:04:02:64:e1:db:78:
32:47:ff:39:d3:f0:ab:25:13:65:89:e7:5f:88:41:fb:a3:72:
93:23:00:0d
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUJ6mnJVKdaJ0QDGAkWDQIEhUhl7QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTc1RThDNkNBMTgwNENFQjg4MzBGRTg1NDRBMzlDQjYz
M0FBMzQxQzAeFw0yNTAyMDQxNzU1MTJaFw0yNjAyMDMxODAwMTJaMDMxMTAvBgNV
BAMTKDUzQTU5QTk2NUNDQzUxNzJCNEIxNzNGRUNGRjgxNDgzNEUxNUM3NTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ctZsdKNE4PGcFtDZUPWmBXA2
b+sX1TUDQ7jTWB/jQBLWl+l2IDjIPa43cQnL3VFSI/EmzGlojijp8T5DXFQ141C6
oJ77MsdG58CJLfEwiry+gSCiUi4gkKgZjZDhIgsEgBdSsbIiQGjlPCVBDBm3ueDI
tUhbUWyVIGIMZJGEKU4Ro7w8IAX5gDQrWJxxFdjN4PLskxInSN8aX5ryXxu/2A8L
M3TDoNDEnzgV/OT7ZthpMKmmTBYZHIXYEcVEtZzBv793+Wn3NE3xX1lrhirrKIGB
7PuDU0d5yAwwxt7FcVv9QFIDDh8v4BFIxI4ukhPzYIxpQQsm528k/3iW7mTzAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUU6WallzMUXK0sXP+z/gUg04Vx1AwHwYDVR0j
BBgwFoAUV16MbKGATOuIMP6FRKOctjOqNBwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wMjZDRjAyQzRFRDI5QkU1MUE1Q0Y3MzQ5RkVGN0Y1QUVF
ODRDMDFBRDQ5NjBCMkMzQkUxMEY5RDM3QjE3QkUwLzAvNTc1RThDNkNBMTgwNENF
Qjg4MzBGRTg1NDRBMzlDQjYzM0FBMzQxQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81NzVFOEM2Q0ExODA0Q0VCODgz
MEZFODU0NEEzOUNCNjMzQUEzNDFDLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMDI2Q0YwMkM0RUQyOUJFNTFBNUNGNzM0OUZFRjdGNUFFRTg0QzAxQUQ0
OTYwQjJDM0JFMTBGOUQzN0IxN0JFMC8wLzMxMzMzMTJlMzEzOTM2MmUzMTMxMzIy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNTMyMzQzNjM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCg8Rw
MA0GCSqGSIb3DQEBCwUAA4IBAQAnHMhB0dsd/yaar6rLp8nzTO8VtxAhA3ee8gt1
PfUwvCYZB0eI8yFzunTnir5o0o5P6RlhQoPQ5IW5ELvoCt58nvtuLAjgBsQTJXdz
2Ui5sZ/tPoU/3CD620TKkRsbQvgZP7sOi5QszwgEbsNAXkZP+Ki9fG49wvwbgSHN
z7QEg2LJbjgib35IgyXFnoVYERqT1kk7mkEOeUy4De3t/wv82QLamYCCBOZs4mSs
CcuM0gf77uVZ/Ym3ikl0q9JzuiwOIA3i7VFdN1DCxHFahVVICKhMzKYN3F0dPyNO
SZrf4dSIh/AEAmTh23gyR/850/CrJRNliedfiEH7o3KTIwAN
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:23 2025 by rpki-client