Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1B07A4CF9C093D46B15E6B1B09954FE9C8276009074D03772E45261D769271AC/0/AS52468.roa
File: AS52468.roa (raw, json)
Hash identifier: IvQTCWJss0R6Fs1OO4R6C/jEMtlPTnvpMctPdvZTUcA=
Subject key identifier: 3B:7D:0C:FC:BC:C5:6F:26:B5:90:C7:54:B6:85:70:8C:4C:A7:37:30
Certificate issuer: /CN=725E298CCA0B840DB726F60EED140C37FDB23BD6
Certificate serial: 4EAD5DFD3B0CD4942CCD84069D5C54015A197949
Authority key identifier: 72:5E:29:8C:CA:0B:84:0D:B7:26:F6:0E:ED:14:0C:37:FD:B2:3B:D6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/725E298CCA0B840DB726F60EED140C37FDB23BD6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1B07A4CF9C093D46B15E6B1B09954FE9C8276009074D03772E45261D769271AC/0/AS52468.roa
Signing time: Tue 04 Feb 2025 18:07:28 +0000
ROA not before: Tue 04 Feb 2025 18:02:28 +0000
ROA not after: Tue 03 Feb 2026 18:07:28 +0000
asID: 52468
IP address blocks: 181.188.202.0/23 maxlen: 24
181.188.215.0/24 maxlen: 24
181.188.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:ad:5d:fd:3b:0c:d4:94:2c:cd:84:06:9d:5c:54:01:5a:19:79:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=725E298CCA0B840DB726F60EED140C37FDB23BD6
Validity
Not Before: Feb 4 18:02:28 2025 GMT
Not After : Feb 3 18:07:28 2026 GMT
Subject: CN=3B7D0CFCBCC56F26B590C754B685708C4CA73730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ce:47:cd:55:aa:24:1d:47:9e:ee:30:31:e3:
23:77:70:0b:01:b8:54:9b:fe:be:8a:00:e7:80:10:
22:66:c2:a2:19:18:62:1c:fa:3d:4b:1a:57:b5:32:
bb:b1:f1:e8:e2:8f:4b:85:ca:b9:6e:2b:28:85:26:
90:6d:8a:32:5a:a0:06:b9:6c:c4:18:19:6c:6e:e7:
3c:bb:b1:3c:2e:fb:73:09:1f:f0:6b:c1:32:19:e2:
a6:63:51:7f:95:c5:29:75:92:72:41:14:9c:a4:da:
0f:03:52:dc:c2:69:28:17:aa:bb:84:c5:e7:19:be:
08:d4:e9:bb:cc:da:0f:ac:a0:d8:5e:98:0b:1d:39:
d3:f3:91:dd:7c:b1:9a:54:70:4d:55:04:a8:27:b0:
79:95:47:89:99:c5:3a:50:ac:b5:b9:8f:72:da:0a:
f0:ec:15:4a:d8:81:8b:21:e1:e2:e1:93:27:85:3c:
f8:75:dc:de:a6:d5:eb:06:6e:0d:e2:60:50:9f:01:
a9:d8:c5:70:ec:b0:53:72:b5:2d:e7:76:64:5d:e6:
3b:7d:6e:22:4a:b7:5f:f3:81:cf:1e:8e:d8:b7:25:
af:d9:f6:9b:0f:a5:e1:5d:18:aa:8e:18:a0:6a:da:
82:6f:7b:4e:bc:cc:10:50:39:0c:d0:1a:a8:35:59:
3d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:7D:0C:FC:BC:C5:6F:26:B5:90:C7:54:B6:85:70:8C:4C:A7:37:30
X509v3 Authority Key Identifier:
keyid:72:5E:29:8C:CA:0B:84:0D:B7:26:F6:0E:ED:14:0C:37:FD:B2:3B:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1B07A4CF9C093D46B15E6B1B09954FE9C8276009074D03772E45261D769271AC/0/725E298CCA0B840DB726F60EED140C37FDB23BD6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/725E298CCA0B840DB726F60EED140C37FDB23BD6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1B07A4CF9C093D46B15E6B1B09954FE9C8276009074D03772E45261D769271AC/0/AS52468.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.188.202.0/23
181.188.215.0-181.188.216.255
Signature Algorithm: sha256WithRSAEncryption
55:21:28:44:fc:17:37:f7:ee:05:58:84:a7:26:bd:2b:11:b9:
52:92:91:7f:62:19:1f:d1:bc:cc:d0:69:39:94:69:37:12:37:
24:90:d9:1b:56:4a:0a:44:f5:61:8d:f3:1d:e4:35:df:15:a6:
62:3c:2c:e6:80:f9:8b:26:03:22:85:0a:5b:e5:b4:71:37:7b:
26:0d:be:46:f3:76:0a:cb:d1:7e:60:02:f9:5a:c9:3a:24:3c:
3d:54:0a:f3:91:8e:0b:2e:85:37:28:4d:5a:26:1d:91:46:47:
dd:ee:20:1d:a5:36:c9:bd:fd:54:7d:82:cf:13:d8:71:d7:bc:
13:1e:3d:37:3a:20:df:82:c8:41:1b:27:fa:38:2b:b4:a2:47:
41:22:b0:5a:4b:96:cd:65:b8:4d:32:21:ad:0a:e8:e9:60:a9:
5e:65:41:0c:1f:4d:df:db:0c:a0:91:bd:7d:f1:14:26:db:13:
13:cf:19:a9:a8:89:ea:2b:6e:88:7b:38:22:2f:cc:bf:ac:f1:
32:01:f1:6d:88:be:9e:18:11:26:cf:04:ca:38:25:fe:5a:81:
3e:25:ba:f2:81:b4:4a:ab:dd:59:bf:b1:2b:bb:43:e8:9b:55:
b2:8e:07:ce:6d:62:ec:42:5b:a5:d4:da:f9:13:06:44:dd:b8:
3a:37:82:93
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgIUTq1d/TsM1JQszYQGnVxUAVoZeUkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzI1RTI5OENDQTBCODQwREI3MjZGNjBFRUQxNDBDMzdG
REIyM0JENjAeFw0yNTAyMDQxODAyMjhaFw0yNjAyMDMxODA3MjhaMDMxMTAvBgNV
BAMTKDNCN0QwQ0ZDQkNDNTZGMjZCNTkwQzc1NEI2ODU3MDhDNENBNzM3MzAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDszkfNVaokHUee7jAx4yN3cAsB
uFSb/r6KAOeAECJmwqIZGGIc+j1LGle1Mrux8ejij0uFyrluKyiFJpBtijJaoAa5
bMQYGWxu5zy7sTwu+3MJH/BrwTIZ4qZjUX+VxSl1knJBFJyk2g8DUtzCaSgXqruE
xecZvgjU6bvM2g+soNhemAsdOdPzkd18sZpUcE1VBKgnsHmVR4mZxTpQrLW5j3La
CvDsFUrYgYsh4eLhkyeFPPh13N6m1esGbg3iYFCfAanYxXDssFNytS3ndmRd5jt9
biJKt1/zgc8ejti3Ja/Z9psPpeFdGKqOGKBq2oJve068zBBQOQzQGqg1WT3rAgMB
AAGjggKmMIICojAdBgNVHQ4EFgQUO30M/LzFbya1kMdUtoVwjEynNzAwHwYDVR0j
BBgwFoAUcl4pjMoLhA23JvYO7RQMN/2yO9YwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xQjA3QTRDRjlDMDkzRDQ2QjE1RTZCMUIwOTk1NEZFOUM4
Mjc2MDA5MDc0RDAzNzcyRTQ1MjYxRDc2OTI3MUFDLzAvNzI1RTI5OENDQTBCODQw
REI3MjZGNjBFRUQxNDBDMzdGREIyM0JENi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83MjVFMjk4Q0NBMEI4NDBEQjcy
NkY2MEVFRDE0MEMzN0ZEQjIzQkQ2LmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG
CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy8xQjA3QTRDRjlDMDkzRDQ2QjE1RTZCMUIwOTk1NEZFOUM4Mjc2MDA5MDc0
RDAzNzcyRTQ1MjYxRDc2OTI3MUFDLzAvQVM1MjQ2OC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAtBggrBgEFBQcBBwEB/wQeMBwwGgQCAAEwFAMEAbW8yjAM
AwQAtbzXAwQAtbzYMA0GCSqGSIb3DQEBCwUAA4IBAQBVIShE/Bc39+4FWISnJr0r
EblSkpF/Yhkf0bzM0Gk5lGk3EjckkNkbVkoKRPVhjfMd5DXfFaZiPCzmgPmLJgMi
hQpb5bRxN3smDb5G83YKy9F+YAL5Wsk6JDw9VArzkY4LLoU3KE1aJh2RRkfd7iAd
pTbJvf1UfYLPE9hx17wTHj03OiDfgshBGyf6OCu0okdBIrBaS5bNZbhNMiGtCujp
YKleZUEMH03f2wygkb198RQm2xMTzxmpqInqK26IezgiL8y/rPEyAfFtiL6eGBEm
zwTKOCX+WoE+JbrygbRKq91Zv7Eru0Pom1WyjgfObWLsQlul1Nr5EwZE3bg6N4KT
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:49 2025 by rpki-client