Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/3230302e32392e3135312e302f32342d3234203d3e2036343239.roa
File: 3230302e32392e3135312e302f32342d3234203d3e2036343239.roa (raw, json)
Hash identifier: YohK5a4mUpqcKPqFWI2BYetv9MRH/tQFJvLXega1aW8=
Subject key identifier: 98:71:FD:16:DE:11:AF:61:2F:6D:5A:CB:A9:B6:65:FF:32:05:C4:BD
Certificate issuer: /CN=CACAD70CF58B172E6D319A83D97EE37DB5B43E8B
Certificate serial: 1CA132D30CE4CC3DACA1889785880CD7D88D5EAD
Authority key identifier: CA:CA:D7:0C:F5:8B:17:2E:6D:31:9A:83:D9:7E:E3:7D:B5:B4:3E:8B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CACAD70CF58B172E6D319A83D97EE37DB5B43E8B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/3230302e32392e3135312e302f32342d3234203d3e2036343239.roa
Signing time: Tue 04 Feb 2025 20:03:22 +0000
ROA not before: Tue 04 Feb 2025 19:58:22 +0000
ROA not after: Tue 03 Feb 2026 20:03:22 +0000
asID: 6429
IP address blocks: 200.29.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:a1:32:d3:0c:e4:cc:3d:ac:a1:88:97:85:88:0c:d7:d8:8d:5e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CACAD70CF58B172E6D319A83D97EE37DB5B43E8B
Validity
Not Before: Feb 4 19:58:22 2025 GMT
Not After : Feb 3 20:03:22 2026 GMT
Subject: CN=9871FD16DE11AF612F6D5ACBA9B665FF3205C4BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:54:d6:4e:6c:e5:76:bf:0b:95:87:30:c7:8f:
e9:8c:37:50:f6:f5:1e:0b:1c:9d:33:6c:b3:f1:be:
01:8c:37:01:7a:56:58:ad:fb:23:8a:75:d6:54:10:
02:25:d6:19:d6:9b:19:0f:7d:e4:df:b2:47:2b:dd:
e6:9b:f0:da:fd:44:a7:ff:86:16:d9:3f:a9:be:c6:
f8:73:a1:33:e3:af:e8:68:46:06:e9:ed:52:9b:4e:
9a:10:a9:1d:9c:44:ad:77:3c:ed:44:a3:86:87:39:
c2:89:20:4c:d5:c1:cc:1e:9d:31:54:5f:52:59:f9:
0b:f8:6c:62:87:c8:8a:98:24:8b:3f:19:22:98:55:
11:88:73:4f:f0:f3:bd:ec:9d:4d:9c:d1:29:62:ff:
75:cb:30:5b:61:09:2d:5d:6f:fd:4c:58:f5:62:aa:
ab:e8:75:56:e6:c7:18:e0:70:fd:c1:c8:34:f6:7d:
d8:47:e7:ea:fb:45:5f:b2:60:6a:ab:dd:f3:10:82:
70:7f:05:b4:e0:d1:90:5a:23:2b:a5:9b:6e:5e:55:
b0:7a:bd:af:18:68:1f:2b:ab:60:69:ad:75:87:81:
03:11:c1:68:15:9d:73:78:fd:cd:c6:ce:16:d2:86:
70:d5:c9:b8:fb:06:81:fb:e8:eb:28:7e:2e:2f:38:
17:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:71:FD:16:DE:11:AF:61:2F:6D:5A:CB:A9:B6:65:FF:32:05:C4:BD
X509v3 Authority Key Identifier:
keyid:CA:CA:D7:0C:F5:8B:17:2E:6D:31:9A:83:D9:7E:E3:7D:B5:B4:3E:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/CACAD70CF58B172E6D319A83D97EE37DB5B43E8B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CACAD70CF58B172E6D319A83D97EE37DB5B43E8B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/3230302e32392e3135312e302f32342d3234203d3e2036343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.151.0/24
Signature Algorithm: sha256WithRSAEncryption
90:27:c6:93:d7:aa:63:e2:d8:78:31:c4:0d:05:c4:17:54:b7:
80:89:3f:9f:6d:a7:95:42:32:7a:27:4f:2b:6f:ae:86:d7:07:
05:83:ef:b6:8a:bd:99:fe:0d:c0:3e:2d:c4:58:d9:4b:6c:54:
b2:ac:12:2e:68:96:a5:b4:df:51:6f:70:7e:16:c8:37:76:a4:
3b:7c:07:b7:32:e7:69:39:96:e7:fa:ab:af:71:4c:d5:60:ee:
9a:51:92:9a:e0:08:68:d3:ec:22:f6:c6:c0:6f:52:e1:0c:48:
ad:88:08:4e:61:a6:99:c1:f9:7d:00:dd:23:db:98:48:c3:55:
f1:0d:41:1c:11:b6:51:65:30:8f:97:bd:4a:6e:1f:02:3d:30:
3e:f2:64:19:a0:43:32:a9:a4:a1:ae:4d:03:c0:e0:d7:49:73:
ee:e9:f8:58:a6:88:02:a9:9c:45:88:14:10:f4:25:bf:4a:e5:
c7:06:f4:f5:b2:67:3d:9b:9a:ba:a7:39:7d:b2:10:32:cb:fa:
fb:4b:df:8a:47:95:d7:2a:f0:10:77:83:6b:70:90:ba:eb:ef:
2a:e3:8a:5e:c5:d6:37:f9:03:b2:c6:10:4e:95:b6:e7:9a:c7:
3b:cc:6e:eb:8b:3b:60:07:82:83:14:c7:e4:c4:c3:11:0b:dc:
30:3e:10:f8
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUHKEy0wzkzD2soYiXhYgM19iNXq0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0FDQUQ3MENGNThCMTcyRTZEMzE5QTgzRDk3RUUzN0RC
NUI0M0U4QjAeFw0yNTAyMDQxOTU4MjJaFw0yNjAyMDMyMDAzMjJaMDMxMTAvBgNV
BAMTKDk4NzFGRDE2REUxMUFGNjEyRjZENUFDQkE5QjY2NUZGMzIwNUM0QkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWVNZObOV2vwuVhzDHj+mMN1D2
9R4LHJ0zbLPxvgGMNwF6Vlit+yOKddZUEAIl1hnWmxkPfeTfskcr3eab8Nr9RKf/
hhbZP6m+xvhzoTPjr+hoRgbp7VKbTpoQqR2cRK13PO1Eo4aHOcKJIEzVwcwenTFU
X1JZ+Qv4bGKHyIqYJIs/GSKYVRGIc0/w873snU2c0Sli/3XLMFthCS1db/1MWPVi
qqvodVbmxxjgcP3ByDT2fdhH5+r7RV+yYGqr3fMQgnB/BbTg0ZBaIyulm25eVbB6
va8YaB8rq2BprXWHgQMRwWgVnXN4/c3GzhbShnDVybj7BoH76Osofi4vOBfTAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUmHH9Ft4Rr2EvbVrLqbZl/zIFxL0wHwYDVR0j
BBgwFoAUysrXDPWLFy5tMZqD2X7jfbW0PoswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xNzA3ODQwRENGNTlBODMzRjVGOTczNUFCQjdEQUI5QTMx
QkMzQTM2QTM4ODcxOUIyMzhFNzlDQkQyODU4NjlCLzAvQ0FDQUQ3MENGNThCMTcy
RTZEMzE5QTgzRDk3RUUzN0RCNUI0M0U4Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DQUNBRDcwQ0Y1OEIxNzJFNkQz
MTlBODNEOTdFRTM3REI1QjQzRThCLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMTcwNzg0MERDRjU5QTgzM0Y1Rjk3MzVBQkI3REFCOUEzMUJDM0EzNkEz
ODg3MTlCMjM4RTc5Q0JEMjg1ODY5Qi8wLzMyMzAzMDJlMzIzOTJlMzEzNTMxMmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzNDMyMzkucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADIHZcwDQYJ
KoZIhvcNAQELBQADggEBAJAnxpPXqmPi2HgxxA0FxBdUt4CJP59tp5VCMnonTytv
robXBwWD77aKvZn+DcA+LcRY2UtsVLKsEi5olqW031FvcH4WyDd2pDt8B7cy52k5
luf6q69xTNVg7ppRkprgCGjT7CL2xsBvUuEMSK2ICE5hppnB+X0A3SPbmEjDVfEN
QRwRtlFlMI+XvUpuHwI9MD7yZBmgQzKppKGuTQPA4NdJc+7p+FimiAKpnEWIFBD0
Jb9K5ccG9PWyZz2bmrqnOX2yEDLL+vtL34pHldcq8BB3g2twkLrr7yrjil7F1jf5
A7LGEE6VtueaxzvMbuuLO2AHgoMUx+TEwxEL3DA+EPg=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:11:51 2025 by rpki-client