Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133322e302f32342d3234203d3e20323731393036.roa
File: 3230302e38352e3133322e302f32342d3234203d3e20323731393036.roa (raw, json)
Hash identifier: 2euAAzGz+0ZKL6NaVmZgZSK2mnR0wyCNhrKZOcrK7bM=
Subject key identifier: 28:C4:43:D9:AF:DC:FB:64:DB:B5:68:7E:C3:C8:C8:CA:4B:BC:36:46
Certificate issuer: /CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Certificate serial: 16B2F46D33F33DB4DA1460059A64F5CDB8E2D36A
Authority key identifier: AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133322e302f32342d3234203d3e20323731393036.roa
Signing time: Tue 04 Feb 2025 18:40:04 +0000
ROA not before: Tue 04 Feb 2025 18:35:04 +0000
ROA not after: Tue 03 Feb 2026 18:40:04 +0000
asID: 271906
IP address blocks: 200.85.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:b2:f4:6d:33:f3:3d:b4:da:14:60:05:9a:64:f5:cd:b8:e2:d3:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Validity
Not Before: Feb 4 18:35:04 2025 GMT
Not After : Feb 3 18:40:04 2026 GMT
Subject: CN=28C443D9AFDCFB64DBB5687EC3C8C8CA4BBC3646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:80:a0:e2:14:26:5c:77:d2:63:4e:cf:ab:f1:
4c:87:f1:df:d4:cf:0c:06:ed:50:db:2a:49:48:26:
8d:eb:c9:a0:97:b6:4d:43:b4:2a:b6:ce:9c:4c:18:
01:63:7c:cb:da:59:91:c1:27:b4:0d:71:9e:65:89:
20:9b:5c:6e:e7:52:3b:9e:0b:73:61:3e:67:5a:1f:
85:f0:83:49:76:ca:fe:29:ec:13:df:99:cb:6f:4b:
f5:48:e8:40:4d:01:c3:2f:7b:6f:b0:d7:40:92:f6:
43:46:7f:c8:01:b3:60:4d:db:61:92:ac:d5:58:a4:
da:aa:96:b5:a2:9c:ce:a8:1a:4b:02:c9:15:f2:ff:
8c:bd:f5:3f:67:2f:31:43:e3:ce:98:c4:ba:78:c1:
8a:80:88:c3:97:76:4f:d3:59:8b:55:e4:a9:5a:8a:
b5:7d:ac:cf:ef:73:3b:6a:b9:65:f4:e9:47:82:01:
99:40:75:29:b8:5b:7d:f8:5e:33:02:65:b2:17:89:
ac:e7:b7:0f:ae:cf:ae:79:c0:f9:9f:06:ca:b3:30:
67:68:b6:20:61:38:ef:50:77:97:de:cc:0b:e6:f2:
ab:4a:e0:a6:f2:e7:24:ce:e6:a3:34:65:66:12:73:
bb:a8:c1:19:ab:df:81:4b:90:86:6d:a4:88:aa:51:
ff:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:C4:43:D9:AF:DC:FB:64:DB:B5:68:7E:C3:C8:C8:CA:4B:BC:36:46
X509v3 Authority Key Identifier:
keyid:AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133322e302f32342d3234203d3e20323731393036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.85.132.0/24
Signature Algorithm: sha256WithRSAEncryption
05:ff:bc:66:04:62:18:5a:79:3b:ee:f7:f3:70:64:7d:fa:55:
41:85:73:62:b8:f2:69:3a:bb:f1:ad:33:f3:e1:17:37:83:64:
6a:11:ff:bc:29:69:50:7b:71:c8:3b:b3:a6:a2:91:5b:f0:2d:
2e:8b:c6:19:04:16:12:45:68:32:8c:d6:f0:15:5e:27:71:8e:
ea:34:78:36:eb:a2:52:ae:1a:ec:6f:5d:94:d7:dd:35:68:11:
f1:09:b0:48:af:18:f5:bc:74:ac:7d:34:57:42:da:57:0d:60:
a1:fa:a4:3b:12:19:c6:bc:7b:d8:52:00:bc:c9:aa:5a:c7:e9:
bd:d9:f5:a0:2a:77:be:81:4a:32:7f:b3:2d:d7:4c:3b:26:c4:
5d:6b:0e:bd:44:c9:1d:85:cf:50:2f:a7:a2:c0:89:62:40:d8:
5f:e4:a8:a5:d4:fb:0f:55:3f:2c:02:ef:87:8b:d1:1a:b3:7d:
fa:c7:bd:1c:ea:2f:43:56:c6:c5:17:96:d3:07:d1:8f:3d:29:
86:d0:4e:ec:4b:41:98:b1:e0:1e:c5:f6:d9:8c:f1:a1:dc:34:
13:c0:f0:47:f7:0d:78:3a:a4:67:10:10:75:b8:1e:ff:90:d3:
b4:9f:fe:7d:a3:2c:2e:b3:2e:3b:a5:7f:5e:70:c1:dd:b2:4f:
07:51:d0:fb
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUFrL0bTPzPbTaFGAFmmT1zbji02owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM2OEVERkU5RUZDOTc1QUY4OTJBQzkyQjZBRTE5MTRB
M0IyRDBEMzAeFw0yNTAyMDQxODM1MDRaFw0yNjAyMDMxODQwMDRaMDMxMTAvBgNV
BAMTKDI4QzQ0M0Q5QUZEQ0ZCNjREQkI1Njg3RUMzQzhDOENBNEJCQzM2NDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsgKDiFCZcd9JjTs+r8UyH8d/U
zwwG7VDbKklIJo3ryaCXtk1DtCq2zpxMGAFjfMvaWZHBJ7QNcZ5liSCbXG7nUjue
C3NhPmdaH4Xwg0l2yv4p7BPfmctvS/VI6EBNAcMve2+w10CS9kNGf8gBs2BN22GS
rNVYpNqqlrWinM6oGksCyRXy/4y99T9nLzFD486YxLp4wYqAiMOXdk/TWYtV5Kla
irV9rM/vcztquWX06UeCAZlAdSm4W334XjMCZbIXiazntw+uz655wPmfBsqzMGdo
tiBhOO9Qd5fezAvm8qtK4Kby5yTO5qM0ZWYSc7uowRmr34FLkIZtpIiqUf/5AgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUKMRD2a/c+2TbtWh+w8jIyku8NkYwHwYDVR0j
BBgwFoAUrGjt/p78l1r4kqyStq4ZFKOy0NMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xQThGQjlCNTBCRDZGNkJEQjkwNUQ0RjUyOTVFMzlFNzc3
MEJFQUJDMjQ3MUYyQjQ1OTg5QjM2MTk4Q0ZBRjY3LzAvQUM2OEVERkU5RUZDOTc1
QUY4OTJBQzkyQjZBRTE5MTRBM0IyRDBEMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BQzY4RURGRTlFRkM5NzVBRjg5
MkFDOTJCNkFFMTkxNEEzQjJEMEQzLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUE4RkI5QjUwQkQ2RjZCREI5MDVENEY1Mjk1RTM5RTc3NzBCRUFCQzI0
NzFGMkI0NTk4OUIzNjE5OENGQUY2Ny8wLzMyMzAzMDJlMzgzNTJlMzEzMzMyMmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzMxMzkzMDM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyFWE
MA0GCSqGSIb3DQEBCwUAA4IBAQAF/7xmBGIYWnk77vfzcGR9+lVBhXNiuPJpOrvx
rTPz4Rc3g2RqEf+8KWlQe3HIO7OmopFb8C0ui8YZBBYSRWgyjNbwFV4ncY7qNHg2
66JSrhrsb12U1901aBHxCbBIrxj1vHSsfTRXQtpXDWCh+qQ7EhnGvHvYUgC8yapa
x+m92fWgKne+gUoyf7Mt10w7JsRdaw69RMkdhc9QL6eiwIliQNhf5Kil1PsPVT8s
Au+Hi9Eas336x70c6i9DVsbFF5bTB9GPPSmG0E7sS0GYseAexfbZjPGh3DQTwPBH
9w14OqRnEBB1uB7/kNO0n/59oywusy47pX9ecMHdsk8HUdD7
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:23 2025 by rpki-client