Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3137392e34332e3131372e302f32342d3234203d3e203237383233.roa
File: 3137392e34332e3131372e302f32342d3234203d3e203237383233.roa (raw, json)
Hash identifier: duk73iErejk/3g/4TRRqTzt2tBN7o+kzoIjadp3cuTs=
Subject key identifier: B7:71:2A:FB:D1:74:41:2D:7E:6C:D4:44:04:56:CA:0B:3E:28:6A:07
Certificate issuer: /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Certificate serial: 630AC66FE70D6D81D9A3BE7D89878A076868B7DA
Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3137392e34332e3131372e302f32342d3234203d3e203237383233.roa
Signing time: Tue 04 Feb 2025 18:08:27 +0000
ROA not before: Tue 04 Feb 2025 18:03:27 +0000
ROA not after: Tue 03 Feb 2026 18:08:27 +0000
asID: 27823
IP address blocks: 179.43.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:0a:c6:6f:e7:0d:6d:81:d9:a3:be:7d:89:87:8a:07:68:68:b7:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Validity
Not Before: Feb 4 18:03:27 2025 GMT
Not After : Feb 3 18:08:27 2026 GMT
Subject: CN=B7712AFBD174412D7E6CD4440456CA0B3E286A07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:14:6d:5d:c6:6d:39:93:28:2a:9d:ce:e9:ec:
0b:0f:f3:5b:b8:01:d1:a4:11:dc:e2:97:d6:50:95:
83:a4:87:bc:7d:6c:21:0b:b5:da:e4:6b:1a:09:43:
db:59:cc:fb:41:46:74:fc:7e:97:1c:79:0a:ab:08:
64:39:34:79:d5:c2:f5:2a:24:fb:97:8a:7a:d3:c1:
59:6e:7d:95:f4:96:ac:1c:5e:68:77:8a:55:03:a1:
7d:13:55:3f:8e:eb:50:b8:85:57:ed:16:db:37:5a:
4e:cc:3f:3b:33:23:8c:2d:e5:62:51:0c:96:dd:1e:
01:0c:a3:dc:8d:30:bd:2f:6b:9f:f9:24:b2:dc:eb:
6b:b3:ed:16:21:e4:0c:f4:65:96:97:6a:41:97:8b:
28:b6:39:ad:c0:4d:01:7e:1e:d2:c7:0c:db:71:fe:
46:ba:4a:e3:13:3d:19:86:6c:92:bd:3a:d8:21:f4:
5e:ee:2d:34:76:6d:dd:82:f0:0a:d6:f2:3d:c9:4c:
84:93:50:b6:5f:93:63:c9:ba:73:a8:9a:9c:03:c4:
13:65:48:8d:c4:71:f4:2f:a1:5a:c5:0e:29:94:b6:
d6:7c:47:78:10:e8:31:cb:9f:99:77:15:0b:1e:5b:
33:3a:1a:fd:b9:24:59:41:57:2b:89:de:8a:10:12:
94:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:71:2A:FB:D1:74:41:2D:7E:6C:D4:44:04:56:CA:0B:3E:28:6A:07
X509v3 Authority Key Identifier:
keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3137392e34332e3131372e302f32342d3234203d3e203237383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.43.117.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:58:35:11:5e:2f:f5:c3:a2:be:b8:2a:92:ef:67:62:7c:80:
4c:3f:61:7e:c5:b6:98:d1:68:9c:e5:86:20:4c:6b:01:6a:6a:
c2:16:1b:d7:8a:70:39:74:44:a9:70:da:22:c0:6b:f1:90:4d:
22:3a:c7:a5:21:35:37:f8:cd:d4:9d:75:36:04:f3:e3:0a:22:
37:0f:2f:c5:05:a1:8f:76:0d:1d:1c:50:3c:02:83:e2:37:d6:
71:f9:fc:e0:26:50:af:15:3f:3d:3b:1d:4e:5a:ce:d4:2c:5b:
55:c9:0d:be:50:66:ac:da:1e:d4:4e:c0:17:43:54:43:f8:5e:
28:00:b6:56:a1:33:46:86:42:f5:6c:87:2d:ab:8b:dd:d0:46:
32:08:e9:0d:95:25:1e:52:9b:5b:49:94:0b:91:eb:05:88:98:
bb:01:80:23:39:a2:cf:31:13:06:e0:e8:e6:3c:97:a3:31:c2:
81:0b:06:5f:ac:a9:44:94:37:ef:6f:1c:1a:92:99:98:b0:c2:
db:82:6f:6b:32:8e:4a:b7:dd:b4:c1:4f:2d:f3:06:da:dc:33:
1d:ea:c5:df:3b:54:8f:ed:f1:b3:ac:b5:c6:85:ce:13:3c:a7:
1c:96:d7:56:2b:d2:6a:37:86:fb:95:98:97:4c:c5:8e:3f:ca:
4f:4f:6a:8a
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUYwrGb+cNbYHZo759iYeKB2hot9owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTVDMzFEQ0E0MDYyRkJBOEZGNDE3NUM1MThFRjIyNDZD
RjU3MEQ4MDAeFw0yNTAyMDQxODAzMjdaFw0yNjAyMDMxODA4MjdaMDMxMTAvBgNV
BAMTKEI3NzEyQUZCRDE3NDQxMkQ3RTZDRDQ0NDA0NTZDQTBCM0UyODZBMDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlFG1dxm05kygqnc7p7AsP81u4
AdGkEdzil9ZQlYOkh7x9bCELtdrkaxoJQ9tZzPtBRnT8fpcceQqrCGQ5NHnVwvUq
JPuXinrTwVlufZX0lqwcXmh3ilUDoX0TVT+O61C4hVftFts3Wk7MPzszI4wt5WJR
DJbdHgEMo9yNML0va5/5JLLc62uz7RYh5Az0ZZaXakGXiyi2Oa3ATQF+HtLHDNtx
/ka6SuMTPRmGbJK9Otgh9F7uLTR2bd2C8ArW8j3JTISTULZfk2PJunOompwDxBNl
SI3EcfQvoVrFDimUttZ8R3gQ6DHLn5l3FQseWzM6Gv25JFlBVyuJ3ooQEpRJAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUt3Eq+9F0QS1+bNREBFbKCz4oagcwHwYDVR0j
BBgwFoAUpcMdykBi+6j/QXXFGO8iRs9XDYAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xNkIxQjU3QjE5Qjc0M0MxRTBCNjdEQzUwMjBFNzY5RkY2
OTdENUQ4RkU2NzY0NTQ0M0MwMTcwQTU5QTYyOEY0LzAvQTVDMzFEQ0E0MDYyRkJB
OEZGNDE3NUM1MThFRjIyNDZDRjU3MEQ4MC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BNUMzMURDQTQwNjJGQkE4RkY0
MTc1QzUxOEVGMjI0NkNGNTcwRDgwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMTZCMUI1N0IxOUI3NDNDMUUwQjY3REM1MDIwRTc2OUZGNjk3RDVEOEZF
Njc2NDU0NDNDMDE3MEE1OUE2MjhGNC8wLzMxMzczOTJlMzQzMzJlMzEzMTM3MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzM4MzIzMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALMrdTAN
BgkqhkiG9w0BAQsFAAOCAQEAxFg1EV4v9cOivrgqku9nYnyATD9hfsW2mNFonOWG
IExrAWpqwhYb14pwOXREqXDaIsBr8ZBNIjrHpSE1N/jN1J11NgTz4woiNw8vxQWh
j3YNHRxQPAKD4jfWcfn84CZQrxU/PTsdTlrO1CxbVckNvlBmrNoe1E7AF0NUQ/he
KAC2VqEzRoZC9WyHLauL3dBGMgjpDZUlHlKbW0mUC5HrBYiYuwGAIzmizzETBuDo
5jyXozHCgQsGX6ypRJQ3728cGpKZmLDC24JvazKOSrfdtMFPLfMG2twzHerF3ztU
j+3xs6y1xoXOEzynHJbXVivSajeG+5WYl0zFjj/KT09qig==
-----END CERTIFICATE-----
Generated at Mon Apr 7 17:47:26 2025 by rpki-client