Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/127e4095-2f45-4ec9-8f75-e799385fbad0/4d754a2795b032c495cfbc93edebf9d43744b898.roa
File: 4d754a2795b032c495cfbc93edebf9d43744b898.roa (raw, json)
Hash identifier: fUzzYU2UEd3h9smr8CCT5OTApPsdAEtjzWrv02GuZXY=
Subject key identifier: EF:B1:21:37:B4:E7:ED:C5:2B:E6:1A:20:1C:73:4C:4D:70:1E:CE:69
Certificate issuer: /CN=797fbc6cdda2f3661b2a335060cb84d808706659
Certificate serial: 0E7050
Authority key identifier: 2B:62:77:3F:02:D2:1B:26:DA:9D:06:63:62:D0:AC:29:75:5F:69:49
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/797fbc6cdda2f3661b2a335060cb84d808706659.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/127e4095-2f45-4ec9-8f75-e799385fbad0/4d754a2795b032c495cfbc93edebf9d43744b898.roa
Signing time: Thu 25 Mar 2021 16:16:45 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 3356
IP address blocks: 200.41.8.0/24 maxlen: 24
201.234.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 946256 (0xe7050)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=797fbc6cdda2f3661b2a335060cb84d808706659
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=4d754a2795b032c495cfbc93edebf9d43744b898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b4:2e:d0:0e:f7:a9:d3:b9:7f:41:8c:9e:09:
80:ba:07:03:06:ce:f3:a4:ae:2a:d4:80:e0:e2:67:
b8:bf:c7:e8:68:fa:51:df:e3:43:d7:94:e4:c0:5f:
2e:ce:b2:c2:88:b8:67:38:d8:b1:23:71:00:f5:98:
ca:93:bb:cd:56:e8:03:1c:01:d1:00:da:b3:a6:70:
d4:fe:e9:14:a9:59:f3:99:80:95:2d:ee:fa:04:aa:
46:5c:2a:03:09:29:64:45:a8:ad:c1:15:3b:a8:30:
d8:76:ec:bf:69:b4:30:46:14:30:24:b8:d4:a4:15:
cc:48:93:d0:0c:a2:87:ce:f6:8d:bc:d2:84:5d:77:
df:a3:77:bb:8a:c7:96:7b:8f:9b:b7:33:b9:15:d0:
1a:24:20:c4:51:16:70:55:5b:22:a8:91:49:2b:0b:
e2:aa:15:1d:4e:10:6c:71:7e:8f:40:f7:e7:a1:cc:
98:fd:62:ed:3a:b6:67:ff:cd:5d:a4:b2:36:00:c2:
0c:c7:08:f9:4b:5e:33:32:02:55:84:6a:b5:0b:e4:
ce:85:ca:70:ac:0a:7f:f9:54:88:6e:f9:35:3e:de:
42:fe:dd:fb:d5:63:ed:cb:ba:22:65:4e:a4:b1:d1:
20:49:68:05:7c:e9:a2:b7:62:57:62:f9:0a:a2:cd:
fe:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B1:21:37:B4:E7:ED:C5:2B:E6:1A:20:1C:73:4C:4D:70:1E:CE:69
X509v3 Authority Key Identifier:
keyid:2B:62:77:3F:02:D2:1B:26:DA:9D:06:63:62:D0:AC:29:75:5F:69:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/797fbc6cdda2f3661b2a335060cb84d808706659.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/127e4095-2f45-4ec9-8f75-e799385fbad0/4d754a2795b032c495cfbc93edebf9d43744b898.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/127e4095-2f45-4ec9-8f75-e799385fbad0/797fbc6cdda2f3661b2a335060cb84d808706659.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.41.8.0/24
201.234.91.0/24
Signature Algorithm: sha256WithRSAEncryption
42:6e:02:ae:a5:a0:2d:cb:a1:a7:c6:ba:13:b7:c3:49:ad:d6:
17:83:96:42:9b:44:ea:38:09:74:8a:cc:05:34:df:fc:fa:8f:
18:cb:b3:71:f2:0d:8e:25:ec:d1:f6:96:b8:f7:f9:7e:9f:b1:
2c:12:1b:3f:b8:47:b7:f3:ea:c5:44:a8:1f:61:34:0c:35:fe:
70:61:2c:cf:1f:aa:0a:ef:40:38:ec:72:98:d1:b1:a2:82:b6:
50:40:f2:78:12:e0:46:4c:f0:0f:da:77:07:b5:e9:c6:9d:c1:
52:c6:5d:cc:69:80:a2:a5:5d:cf:43:51:ec:27:1b:12:81:01:
b6:c4:60:8b:49:4b:0d:f2:cf:e3:89:89:34:11:0b:b5:4a:6c:
bc:f5:bb:7b:77:4a:35:42:60:eb:ae:4b:be:c4:1b:5e:d8:8d:
b1:04:e5:a8:98:51:46:9a:ba:8d:83:21:a1:27:79:7f:7f:8e:
b6:3c:73:b2:0a:28:a0:fc:a1:fc:1c:60:a9:c7:b8:aa:e4:c7:
74:58:80:0d:ef:b9:ba:fc:78:f7:b1:e2:e1:2a:74:05:53:c4:
af:20:c5:23:6b:0e:bb:30:1c:df:ff:73:09:dc:f8:2b:13:2c:
b7:c8:d0:b3:01:5c:e3:fc:dc:c2:9d:57:a8:d8:50:c5:a6:6c:
92:4a:f6:16
-----BEGIN CERTIFICATE-----
MIIFRjCCBC6gAwIBAgIDDnBQMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDc5
N2ZiYzZjZGRhMmYzNjYxYjJhMzM1MDYwY2I4NGQ4MDg3MDY2NTkwHhcNMjEwMzI0
MDMwMDAwWhcNMjYwMzI0MDMwMDAwWjAzMTEwLwYDVQQDEyg0ZDc1NGEyNzk1YjAz
MmM0OTVjZmJjOTNlZGViZjlkNDM3NDRiODk4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAjLQu0A73qdO5f0GMngmAugcDBs7zpK4q1IDg4me4v8foaPpR
3+ND15TkwF8uzrLCiLhnONixI3EA9ZjKk7vNVugDHAHRANqzpnDU/ukUqVnzmYCV
Le76BKpGXCoDCSlkRaitwRU7qDDYduy/abQwRhQwJLjUpBXMSJPQDKKHzvaNvNKE
XXffo3e7iseWe4+btzO5FdAaJCDEURZwVVsiqJFJKwviqhUdThBscX6PQPfnocyY
/WLtOrZn/81dpLI2AMIMxwj5S14zMgJVhGq1C+TOhcpwrAp/+VSIbvk1Pt5C/t37
1WPty7oiZU6ksdEgSWgFfOmit2JXYvkKos3+NQIDAQABo4ICYTCCAl0wHQYDVR0O
BBYEFO+xITe05+3FK+YaIBxzTE1wHs5pMB8GA1UdIwQYMBaAFCtidz8C0hsm2p0G
Y2LQrCl1X2lJMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNzk3ZmJj
NmNkZGEyZjM2NjFiMmEzMzUwNjBjYjg0ZDgwODcwNjY1OS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMTI3ZTQwOTUtMmY0NS00ZWM5LThmNzUtZTc5OTM4
NWZiYWQwLzRkNzU0YTI3OTViMDMyYzQ5NWNmYmM5M2VkZWJmOWQ0Mzc0NGI4OTgu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8xMjdlNDA5NS0yZjQ1LTRlYzktOGY3NS1lNzk5
Mzg1ZmJhZDAvNzk3ZmJjNmNkZGEyZjM2NjFiMmEzMzUwNjBjYjg0ZDgwODcwNjY1
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQW
MBQwEgQCAAEwDAMEAMgpCAMEAMnqWzANBgkqhkiG9w0BAQsFAAOCAQEAQm4CrqWg
Lcuhp8a6E7fDSa3WF4OWQptE6jgJdIrMBTTf/PqPGMuzcfINjiXs0faWuPf5fp+x
LBIbP7hHt/PqxUSoH2E0DDX+cGEszx+qCu9AOOxymNGxooK2UEDyeBLgRkzwD9p3
B7Xpxp3BUsZdzGmAoqVdz0NR7CcbEoEBtsRgi0lLDfLP44mJNBELtUpsvPW7e3dK
NUJg665LvsQbXtiNsQTlqJhRRpq6jYMhoSd5f3+OtjxzsgoooPyh/Bxgqce4quTH
dFiADe+5uvx497Hi4Sp0BVPEryDFI2sOuzAc3/9zCdz4KxMst8jQswFc4/zcwp1X
qNhQxaZskkr2Fg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:21 2024 by rpki-client on console-fra.rpki-client.org