Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2353C53CD7C88C7D1437D00591FF34FC1DC1E219737B14E6386A048F7C7FD43F/0/3136382e3233322e3130382e302f32322d3232203d3e20323634373530.roa
File: 3136382e3233322e3130382e302f32322d3232203d3e20323634373530.roa (raw, json)
Hash identifier: 1XyMVqEVf0+2b0/f6iCGTIYi5Vt42Pvfose/hZCH2Wg=
Subject key identifier: 7E:B7:63:AC:4E:48:C8:2B:E0:B8:60:4C:64:07:7C:CC:4D:4E:25:0E
Certificate issuer: /CN=0B8AC92CFBA0AF5ADE74587FB67774AAB82C4463
Certificate serial: 2407D27E4F547ECED7C3E8E177464736BC4D560F
Authority key identifier: 0B:8A:C9:2C:FB:A0:AF:5A:DE:74:58:7F:B6:77:74:AA:B8:2C:44:63
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0B8AC92CFBA0AF5ADE74587FB67774AAB82C4463.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2353C53CD7C88C7D1437D00591FF34FC1DC1E219737B14E6386A048F7C7FD43F/0/3136382e3233322e3130382e302f32322d3232203d3e20323634373530.roa
Signing time: Tue 04 Feb 2025 18:09:25 +0000
ROA not before: Tue 04 Feb 2025 18:04:25 +0000
ROA not after: Tue 03 Feb 2026 18:09:25 +0000
asID: 264750
IP address blocks: 168.232.108.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:07:d2:7e:4f:54:7e:ce:d7:c3:e8:e1:77:46:47:36:bc:4d:56:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0B8AC92CFBA0AF5ADE74587FB67774AAB82C4463
Validity
Not Before: Feb 4 18:04:25 2025 GMT
Not After : Feb 3 18:09:25 2026 GMT
Subject: CN=7EB763AC4E48C82BE0B8604C64077CCC4D4E250E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:01:66:58:0a:e8:ef:b8:3b:cb:47:c7:4b:84:
4f:e3:6f:d3:7c:06:28:de:a5:81:c1:08:dc:47:db:
10:e6:48:3d:8f:58:2d:a3:27:f6:de:92:ff:8c:44:
8c:c4:32:c5:2b:72:43:b0:b9:94:2f:17:d2:32:e5:
87:25:ec:ed:11:70:bf:8f:14:ca:f8:0c:d8:e3:c6:
00:57:e9:15:02:3d:64:19:0f:07:f5:56:dd:2c:05:
de:4b:bf:ea:c6:0b:30:a2:11:33:eb:16:89:dc:a9:
26:8d:ed:76:23:25:e8:89:a7:3f:6e:68:42:6d:12:
84:e3:f3:87:f6:d1:c0:92:80:90:37:01:cd:61:f7:
df:d9:29:22:da:95:83:30:c1:b7:9f:c8:33:af:e3:
c1:a9:c4:f0:87:52:6b:e1:9a:6f:0e:ea:ac:46:78:
6a:09:fe:f9:ee:5a:56:2e:6a:f5:44:ff:7c:95:73:
f5:73:c5:e3:db:c2:c7:53:0c:d7:30:1f:52:98:01:
5f:26:38:4f:6c:9f:07:84:a6:de:76:c3:37:8c:d7:
eb:71:6a:c5:e8:8d:21:83:38:aa:18:f0:bf:73:9a:
77:99:5f:39:52:8a:d4:00:9f:22:1a:41:37:94:2d:
2e:aa:ec:1d:39:dc:03:9d:95:20:e5:08:0b:9f:f5:
3e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B7:63:AC:4E:48:C8:2B:E0:B8:60:4C:64:07:7C:CC:4D:4E:25:0E
X509v3 Authority Key Identifier:
keyid:0B:8A:C9:2C:FB:A0:AF:5A:DE:74:58:7F:B6:77:74:AA:B8:2C:44:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2353C53CD7C88C7D1437D00591FF34FC1DC1E219737B14E6386A048F7C7FD43F/0/0B8AC92CFBA0AF5ADE74587FB67774AAB82C4463.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0B8AC92CFBA0AF5ADE74587FB67774AAB82C4463.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2353C53CD7C88C7D1437D00591FF34FC1DC1E219737B14E6386A048F7C7FD43F/0/3136382e3233322e3130382e302f32322d3232203d3e20323634373530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.232.108.0/22
Signature Algorithm: sha256WithRSAEncryption
73:46:fe:c8:e3:37:fe:c1:3e:3b:99:8e:bf:a5:38:6d:9b:3b:
bf:2a:c1:7f:a0:bf:59:5f:6f:96:6b:65:42:db:28:23:44:9b:
f7:a0:0f:3d:a0:77:41:2f:3e:8b:23:5c:a4:18:0a:8c:1f:7e:
27:c5:27:82:d2:df:d2:d0:a5:a3:6f:0c:04:25:dd:c9:e1:da:
91:d6:a5:5a:98:0b:75:01:73:76:77:86:bd:b6:a6:c8:e0:be:
86:6f:7c:c4:e2:f7:4b:cd:15:00:7a:01:b8:08:8e:23:46:7c:
7c:c1:02:09:f3:09:c4:60:d8:64:b0:a2:fc:23:33:86:78:f7:
b2:a0:ce:7b:91:da:ea:93:d0:f9:0c:d7:08:5d:57:60:d8:af:
c6:cc:d9:fe:34:78:94:68:72:84:33:0e:65:44:fa:0c:76:f1:
4d:16:dd:80:1f:5e:45:c1:28:89:80:52:2d:22:88:e7:0a:07:
b7:b6:8c:51:3f:e9:15:ec:d1:87:a2:0c:7e:a3:4a:35:c8:a7:
f6:fa:b9:4c:9d:3c:6b:74:4d:db:9d:a2:e0:8c:bd:6a:0e:c7:
7d:fa:73:96:30:fe:ae:08:05:b9:ee:1c:32:f6:f6:25:37:a4:
4e:70:78:8b:b4:14:53:08:14:f3:61:71:d0:07:6e:53:c5:3b:
3b:e3:27:cb
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUJAfSfk9Ufs7Xw+jhd0ZHNrxNVg8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEI4QUM5MkNGQkEwQUY1QURFNzQ1ODdGQjY3Nzc0QUFC
ODJDNDQ2MzAeFw0yNTAyMDQxODA0MjVaFw0yNjAyMDMxODA5MjVaMDMxMTAvBgNV
BAMTKDdFQjc2M0FDNEU0OEM4MkJFMEI4NjA0QzY0MDc3Q0NDNEQ0RTI1MEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGAWZYCujvuDvLR8dLhE/jb9N8
BijepYHBCNxH2xDmSD2PWC2jJ/bekv+MRIzEMsUrckOwuZQvF9Iy5Ycl7O0RcL+P
FMr4DNjjxgBX6RUCPWQZDwf1Vt0sBd5Lv+rGCzCiETPrFoncqSaN7XYjJeiJpz9u
aEJtEoTj84f20cCSgJA3Ac1h99/ZKSLalYMwwbefyDOv48GpxPCHUmvhmm8O6qxG
eGoJ/vnuWlYuavVE/3yVc/VzxePbwsdTDNcwH1KYAV8mOE9snweEpt52wzeM1+tx
asXojSGDOKoY8L9zmneZXzlSitQAnyIaQTeULS6q7B053AOdlSDlCAuf9T43AgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUfrdjrE5IyCvguGBMZAd8zE1OJQ4wHwYDVR0j
BBgwFoAUC4rJLPugr1redFh/tnd0qrgsRGMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yMzUzQzUzQ0Q3Qzg4QzdEMTQzN0QwMDU5MUZGMzRGQzFE
QzFFMjE5NzM3QjE0RTYzODZBMDQ4RjdDN0ZENDNGLzAvMEI4QUM5MkNGQkEwQUY1
QURFNzQ1ODdGQjY3Nzc0QUFCODJDNDQ2My5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wQjhBQzkyQ0ZCQTBBRjVBREU3
NDU4N0ZCNjc3NzRBQUI4MkM0NDYzLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMjM1M0M1M0NEN0M4OEM3RDE0MzdEMDA1OTFGRjM0RkMxREMxRTIxOTcz
N0IxNEU2Mzg2QTA0OEY3QzdGRDQzRi8wLzMxMzYzODJlMzIzMzMyMmUzMTMwMzgy
ZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzMjM2MzQzNzM1MzAucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKo
6GwwDQYJKoZIhvcNAQELBQADggEBAHNG/sjjN/7BPjuZjr+lOG2bO78qwX+gv1lf
b5ZrZULbKCNEm/egDz2gd0EvPosjXKQYCowffifFJ4LS39LQpaNvDAQl3cnh2pHW
pVqYC3UBc3Z3hr22psjgvoZvfMTi90vNFQB6AbgIjiNGfHzBAgnzCcRg2GSwovwj
M4Z497KgznuR2uqT0PkM1whdV2DYr8bM2f40eJRocoQzDmVE+gx28U0W3YAfXkXB
KImAUi0iiOcKB7e2jFE/6RXs0YeiDH6jSjXIp/b6uUydPGt0TdudouCMvWoOx336
c5Yw/q4IBbnuHDL29iU3pE5weIu0FFMIFPNhcdAHblPFOzvjJ8s=
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:28:46 2025 by rpki-client