Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/3137302e38342e3130382e302f32322d3234203d3e203233343536.roa
File: 3137302e38342e3130382e302f32322d3234203d3e203233343536.roa (raw, json)
Hash identifier: rQ5+F6z4zn0uDnztOIbk/FDrNjw0CZluhswd7gFxYfY=
Subject key identifier: A1:DF:A3:38:87:B2:98:F2:9C:72:64:45:BB:AE:20:FC:8B:47:82:15
Certificate issuer: /CN=A4EC8475F98014B965F34B25A2A68F58AAEE199B
Certificate serial: 79387CD5189EA0E8C50605A1507843F11E042EC3
Authority key identifier: A4:EC:84:75:F9:80:14:B9:65:F3:4B:25:A2:A6:8F:58:AA:EE:19:9B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A4EC8475F98014B965F34B25A2A68F58AAEE199B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/3137302e38342e3130382e302f32322d3234203d3e203233343536.roa
Signing time: Tue 04 Feb 2025 18:14:12 +0000
ROA not before: Tue 04 Feb 2025 18:09:12 +0000
ROA not after: Tue 03 Feb 2026 18:14:12 +0000
asID: 23456
IP address blocks: 170.84.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:38:7c:d5:18:9e:a0:e8:c5:06:05:a1:50:78:43:f1:1e:04:2e:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A4EC8475F98014B965F34B25A2A68F58AAEE199B
Validity
Not Before: Feb 4 18:09:12 2025 GMT
Not After : Feb 3 18:14:12 2026 GMT
Subject: CN=A1DFA33887B298F29C726445BBAE20FC8B478215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:3e:24:ae:27:bf:21:23:3b:f1:20:af:b3:e3:
44:3c:b0:15:9f:50:1f:12:a6:75:75:3b:63:82:4e:
ab:46:0b:cf:ef:ab:d5:b3:c5:f0:a7:26:3e:07:d6:
02:94:79:e3:0f:22:98:de:71:92:06:41:9c:06:85:
fc:fe:07:c8:c5:b5:d7:0c:54:2c:31:9a:c0:03:59:
cd:45:97:8d:26:c2:33:7e:dc:3f:a3:48:25:ec:ec:
41:40:5d:66:94:25:a8:64:2c:41:91:cf:80:10:66:
65:6f:f4:ae:eb:3d:1e:67:07:d5:e4:81:0b:eb:75:
97:a7:67:e5:4f:e6:c7:b3:c3:63:ac:7f:94:6c:ea:
63:61:10:e3:7e:dc:3b:4d:b6:7b:df:0e:c1:2f:8a:
8f:4b:30:e2:48:e6:64:f5:37:ae:4e:cb:33:94:d1:
b6:42:bf:d7:cc:20:83:0d:ee:25:6a:20:6c:4a:de:
d1:fb:d1:ef:3c:18:68:73:af:30:40:eb:b6:03:07:
a9:86:52:79:3e:c8:f4:9b:22:78:23:92:b9:82:28:
a3:69:83:80:46:7b:88:1e:08:b9:ac:15:df:fc:d7:
c7:18:8f:ca:2b:a5:44:2a:ef:85:d3:4a:79:17:d2:
40:6a:71:d2:02:c4:b5:f4:af:0c:00:27:7a:cc:e9:
75:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:DF:A3:38:87:B2:98:F2:9C:72:64:45:BB:AE:20:FC:8B:47:82:15
X509v3 Authority Key Identifier:
keyid:A4:EC:84:75:F9:80:14:B9:65:F3:4B:25:A2:A6:8F:58:AA:EE:19:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/A4EC8475F98014B965F34B25A2A68F58AAEE199B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A4EC8475F98014B965F34B25A2A68F58AAEE199B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/3137302e38342e3130382e302f32322d3234203d3e203233343536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.84.108.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:f0:72:fb:5e:46:8a:44:37:8d:d8:8b:59:39:37:94:a1:58:
bf:0d:f5:97:86:1f:ec:b3:01:32:5c:72:e1:40:6b:f3:a4:96:
45:79:bd:37:74:51:0a:13:4e:af:c1:e9:c6:b2:ce:11:c3:10:
d1:42:db:5a:a6:b9:64:bd:a8:c0:23:df:7a:b1:8b:de:e5:37:
64:0f:48:66:61:52:f8:35:eb:f5:8b:9e:dc:ad:68:7b:8c:cb:
fd:3e:c8:59:76:cf:1f:58:7e:65:42:29:86:1c:ba:87:90:12:
63:ed:41:21:bb:bc:a2:88:4e:cb:91:87:a9:f7:2b:e0:11:d6:
bf:d6:dc:2f:a0:10:6a:04:51:c5:63:a3:65:be:74:8d:0b:19:
d9:c3:06:f1:3b:17:d7:93:2b:09:41:9c:42:40:90:be:e8:96:
62:43:1f:1f:72:4a:99:eb:e3:40:5e:80:f4:5c:cb:a3:91:8e:
76:08:56:90:09:e8:c4:75:7e:29:50:f2:70:d4:b4:66:fe:33:
03:5b:12:21:98:5a:ab:b2:dc:0f:7d:9c:13:22:3e:37:ad:55:
0c:47:f2:6a:72:66:51:38:dd:30:36:01:46:18:8b:ce:97:1d:
dc:d2:f4:b6:d8:8f:7b:b6:06:0c:1b:60:ae:74:4d:d0:de:f6:
da:28:d2:28
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUeTh81RieoOjFBgWhUHhD8R4ELsMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTRFQzg0NzVGOTgwMTRCOTY1RjM0QjI1QTJBNjhGNThB
QUVFMTk5QjAeFw0yNTAyMDQxODA5MTJaFw0yNjAyMDMxODE0MTJaMDMxMTAvBgNV
BAMTKEExREZBMzM4ODdCMjk4RjI5QzcyNjQ0NUJCQUUyMEZDOEI0NzgyMTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgPiSuJ78hIzvxIK+z40Q8sBWf
UB8SpnV1O2OCTqtGC8/vq9WzxfCnJj4H1gKUeeMPIpjecZIGQZwGhfz+B8jFtdcM
VCwxmsADWc1Fl40mwjN+3D+jSCXs7EFAXWaUJahkLEGRz4AQZmVv9K7rPR5nB9Xk
gQvrdZenZ+VP5sezw2Osf5Rs6mNhEON+3DtNtnvfDsEvio9LMOJI5mT1N65OyzOU
0bZCv9fMIIMN7iVqIGxK3tH70e88GGhzrzBA67YDB6mGUnk+yPSbIngjkrmCKKNp
g4BGe4geCLmsFd/818cYj8orpUQq74XTSnkX0kBqcdICxLX0rwwAJ3rM6XWNAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUod+jOIeymPKccmRFu64g/ItHghUwHwYDVR0j
BBgwFoAUpOyEdfmAFLll80sloqaPWKruGZswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wQzk2NkFGMkQ2NjdDNzFEQjhGN0RDNkNCRTdBQTNCNTRD
OUExMzQxQUNBODcxQjU3QjQzOERGOEVBQzc2MURDLzAvQTRFQzg0NzVGOTgwMTRC
OTY1RjM0QjI1QTJBNjhGNThBQUVFMTk5Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BNEVDODQ3NUY5ODAxNEI5NjVG
MzRCMjVBMkE2OEY1OEFBRUUxOTlCLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMEM5NjZBRjJENjY3QzcxREI4RjdEQzZDQkU3QUEzQjU0QzlBMTM0MUFD
QTg3MUI1N0I0MzhERjhFQUM3NjFEQy8wLzMxMzczMDJlMzgzNDJlMzEzMDM4MmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzMzM0MzUzNi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAqpUbDAN
BgkqhkiG9w0BAQsFAAOCAQEAtPBy+15GikQ3jdiLWTk3lKFYvw31l4Yf7LMBMlxy
4UBr86SWRXm9N3RRChNOr8HpxrLOEcMQ0ULbWqa5ZL2owCPferGL3uU3ZA9IZmFS
+DXr9Yue3K1oe4zL/T7IWXbPH1h+ZUIphhy6h5ASY+1BIbu8oohOy5GHqfcr4BHW
v9bcL6AQagRRxWOjZb50jQsZ2cMG8TsX15MrCUGcQkCQvuiWYkMfH3JKmevjQF6A
9FzLo5GOdghWkAnoxHV+KVDycNS0Zv4zA1sSIZhaq7LcD32cEyI+N61VDEfyanJm
UTjdMDYBRhiLzpcd3NL0ttiPe7YGDBtgrnRN0N722ijSKA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 15:12:50 2025 by rpki-client