Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133332e302f32342d3234203d3e20323731393036.roa
File: 3230302e38352e3133332e302f32342d3234203d3e20323731393036.roa (raw, json)
Hash identifier: Ypso3ys1PVwGgrCj3GTjYZuaUxaaL9woGSWtyKDdLW0=
Subject key identifier: C1:F2:32:A1:B9:C7:D1:EE:55:2D:CA:BC:00:C6:10:D8:D6:02:E5:4A
Certificate issuer: /CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Certificate serial: 0B313B9DD95612E9D3502A4B60B9B597DFE7818A
Authority key identifier: AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133332e302f32342d3234203d3e20323731393036.roa
Signing time: Tue 04 Feb 2025 18:40:03 +0000
ROA not before: Tue 04 Feb 2025 18:35:03 +0000
ROA not after: Tue 03 Feb 2026 18:40:03 +0000
asID: 271906
IP address blocks: 200.85.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:31:3b:9d:d9:56:12:e9:d3:50:2a:4b:60:b9:b5:97:df:e7:81:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Validity
Not Before: Feb 4 18:35:03 2025 GMT
Not After : Feb 3 18:40:03 2026 GMT
Subject: CN=C1F232A1B9C7D1EE552DCABC00C610D8D602E54A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:56:d2:ee:e0:0d:4d:6e:47:9f:22:47:33:bf:
84:f4:6d:fb:d4:a1:c2:ac:fd:9b:bd:01:ac:fc:fc:
cb:fa:74:8c:c1:27:21:c7:24:3f:18:21:6f:cf:6e:
69:86:77:aa:17:38:a5:9b:ad:19:68:49:dc:53:6e:
0b:e4:d2:c0:2b:34:b5:ad:82:46:0a:d4:92:79:06:
36:9c:4e:99:70:f9:a6:2b:af:c8:f0:ac:76:9f:1e:
30:da:16:10:51:04:91:16:f2:4f:f2:49:80:2d:21:
80:7e:0d:52:ab:be:96:6b:b2:61:26:19:75:53:d9:
1a:24:a9:73:bd:f1:71:29:8f:28:6d:df:3a:6c:a6:
16:c5:9d:8a:fd:89:bb:75:74:44:82:e0:59:99:37:
00:f7:dc:3b:0e:03:5a:78:a2:f8:65:cc:8a:11:e1:
1c:67:2b:62:33:9b:57:b5:92:5d:29:75:7c:7a:3a:
81:e1:d2:55:1b:0d:b1:28:fb:b7:45:75:2e:85:72:
0f:a1:1e:f9:f7:8e:da:28:0d:56:2c:e3:c1:bb:39:
76:2d:92:f4:dc:a1:9e:de:4a:14:63:b7:88:9d:a4:
52:b3:03:31:7e:a3:15:64:f0:6c:1c:f8:63:b6:a8:
88:d9:dc:42:7c:12:30:4e:c9:fb:5d:f5:e2:53:c7:
12:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F2:32:A1:B9:C7:D1:EE:55:2D:CA:BC:00:C6:10:D8:D6:02:E5:4A
X509v3 Authority Key Identifier:
keyid:AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133332e302f32342d3234203d3e20323731393036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.85.133.0/24
Signature Algorithm: sha256WithRSAEncryption
27:b4:81:43:4c:8a:4e:72:52:e8:e5:65:e6:d1:af:ff:0b:c3:
0d:14:a6:16:20:10:c8:27:bf:df:97:81:a7:46:bf:0f:e7:6e:
89:a5:34:f7:81:b6:da:4f:a3:c5:8c:fc:dd:45:a2:e6:5e:04:
97:c6:81:82:58:4f:e2:3e:68:fa:00:46:1e:89:52:fd:60:11:
66:a1:06:c7:9a:c0:a6:17:27:9c:41:99:95:32:d5:cc:4a:a3:
eb:93:1a:ea:70:1a:6b:c5:38:a7:bc:44:73:cd:fc:2b:b9:34:
40:2f:c3:be:fb:6d:60:a4:6d:c5:c6:be:e9:45:87:f5:7b:f3:
a5:e3:dd:ee:6d:aa:87:2d:33:66:30:99:2f:40:2a:a3:fb:c0:
74:7f:06:79:19:d5:37:4c:10:53:d0:d4:01:26:ba:c7:f8:4e:
86:41:71:1e:96:6c:e0:4e:99:73:3e:6b:81:0d:37:3d:eb:25:
a5:8a:94:93:b8:7e:1c:15:41:27:cd:a4:0e:5f:9e:d2:93:d8:
21:6f:3b:3b:4b:08:f0:11:85:21:79:36:d6:8b:fd:2b:32:15:
e8:79:59:06:9b:7b:6f:26:81:f6:82:f5:22:d9:0f:f5:9c:d6:
b5:2d:45:59:bc:f3:ad:ae:af:79:1f:92:01:3f:62:8e:d8:ef:
78:78:ba:a2
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUCzE7ndlWEunTUCpLYLm1l9/ngYowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM2OEVERkU5RUZDOTc1QUY4OTJBQzkyQjZBRTE5MTRB
M0IyRDBEMzAeFw0yNTAyMDQxODM1MDNaFw0yNjAyMDMxODQwMDNaMDMxMTAvBgNV
BAMTKEMxRjIzMkExQjlDN0QxRUU1NTJEQ0FCQzAwQzYxMEQ4RDYwMkU1NEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTVtLu4A1NbkefIkczv4T0bfvU
ocKs/Zu9Aaz8/Mv6dIzBJyHHJD8YIW/PbmmGd6oXOKWbrRloSdxTbgvk0sArNLWt
gkYK1JJ5BjacTplw+aYrr8jwrHafHjDaFhBRBJEW8k/ySYAtIYB+DVKrvpZrsmEm
GXVT2RokqXO98XEpjyht3zpsphbFnYr9ibt1dESC4FmZNwD33DsOA1p4ovhlzIoR
4RxnK2Izm1e1kl0pdXx6OoHh0lUbDbEo+7dFdS6Fcg+hHvn3jtooDVYs48G7OXYt
kvTcoZ7eShRjt4idpFKzAzF+oxVk8Gwc+GO2qIjZ3EJ8EjBOyftd9eJTxxKJAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUwfIyobnH0e5VLcq8AMYQ2NYC5UowHwYDVR0j
BBgwFoAUrGjt/p78l1r4kqyStq4ZFKOy0NMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xQThGQjlCNTBCRDZGNkJEQjkwNUQ0RjUyOTVFMzlFNzc3
MEJFQUJDMjQ3MUYyQjQ1OTg5QjM2MTk4Q0ZBRjY3LzAvQUM2OEVERkU5RUZDOTc1
QUY4OTJBQzkyQjZBRTE5MTRBM0IyRDBEMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BQzY4RURGRTlFRkM5NzVBRjg5
MkFDOTJCNkFFMTkxNEEzQjJEMEQzLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUE4RkI5QjUwQkQ2RjZCREI5MDVENEY1Mjk1RTM5RTc3NzBCRUFCQzI0
NzFGMkI0NTk4OUIzNjE5OENGQUY2Ny8wLzMyMzAzMDJlMzgzNTJlMzEzMzMzMmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzMxMzkzMDM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyFWF
MA0GCSqGSIb3DQEBCwUAA4IBAQAntIFDTIpOclLo5WXm0a//C8MNFKYWIBDIJ7/f
l4GnRr8P526JpTT3gbbaT6PFjPzdRaLmXgSXxoGCWE/iPmj6AEYeiVL9YBFmoQbH
msCmFyecQZmVMtXMSqPrkxrqcBprxTinvERzzfwruTRAL8O++21gpG3Fxr7pRYf1
e/Ol493ubaqHLTNmMJkvQCqj+8B0fwZ5GdU3TBBT0NQBJrrH+E6GQXEelmzgTplz
PmuBDTc96yWlipSTuH4cFUEnzaQOX57Sk9ghbzs7SwjwEYUheTbWi/0rMhXoeVkG
m3tvJoH2gvUi2Q/1nNa1LUVZvPOtrq95H5IBP2KO2O94eLqi
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:10 2025 by rpki-client