Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/23C75C911B352DF0BC9691D4FFEA0118290A296B48618F95A0D7BBF42C21BB43/0/3230302e39312e3135382e302f32342d3234203d3e203235373733.roa
File: 3230302e39312e3135382e302f32342d3234203d3e203235373733.roa (raw, json)
Hash identifier: D6/Y5/vwAAdj2Just23RMRQ+SOzpv2kcq+X2GiCRNt0=
Subject key identifier: 7B:A2:17:E2:35:DE:DE:CF:8E:DD:01:C1:68:18:F7:18:53:56:D0:0C
Certificate issuer: /CN=DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2
Certificate serial: 0A73FBDFD0D6F1B6E6F0A1E1E042B6AD175DF753
Authority key identifier: DE:D9:DD:B6:E0:5D:26:D9:3F:76:D4:43:4C:06:0C:7E:1D:26:E6:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/23C75C911B352DF0BC9691D4FFEA0118290A296B48618F95A0D7BBF42C21BB43/0/3230302e39312e3135382e302f32342d3234203d3e203235373733.roa
Signing time: Tue 04 Feb 2025 18:36:37 +0000
ROA not before: Tue 04 Feb 2025 18:31:37 +0000
ROA not after: Tue 03 Feb 2026 18:36:37 +0000
asID: 25773
IP address blocks: 200.91.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:73:fb:df:d0:d6:f1:b6:e6:f0:a1:e1:e0:42:b6:ad:17:5d:f7:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2
Validity
Not Before: Feb 4 18:31:37 2025 GMT
Not After : Feb 3 18:36:37 2026 GMT
Subject: CN=7BA217E235DEDECF8EDD01C16818F7185356D00C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:85:54:2a:a8:ff:b9:48:5f:e9:03:e6:e8:c8:
56:df:8f:9e:80:d7:a9:0d:95:90:62:6c:af:5a:89:
23:43:d1:5a:fa:d7:86:c3:de:3d:79:83:c9:07:71:
43:7d:e6:14:48:1f:1e:32:34:db:4e:fe:77:e1:30:
32:44:85:ee:62:7b:05:23:87:38:92:5b:be:48:3b:
ce:16:b5:fc:a1:8c:65:fc:05:2b:96:4c:92:eb:14:
24:dd:93:d9:f7:86:60:53:0b:ec:c2:d9:98:16:43:
f1:e9:11:fb:36:e6:50:07:d8:06:6a:8a:b5:9c:03:
cb:1d:47:f6:4b:b7:35:10:f8:b7:25:b0:c3:dd:9f:
d0:2b:ca:cc:94:f6:df:6b:a1:30:2f:1a:ca:44:67:
50:3a:ec:dc:be:62:1c:b7:af:cf:7d:20:c6:f1:c1:
40:2b:34:c4:5f:8a:78:6e:3b:ec:c4:6c:0d:b4:e9:
a2:cc:61:dc:bc:63:ea:42:35:2a:56:e7:3e:2f:14:
82:89:a0:b0:97:fd:ec:d8:64:32:af:d0:ab:a0:c6:
c5:69:5d:3d:ce:78:d0:26:c2:c9:e7:7b:f3:ff:0d:
78:fb:aa:1d:88:ec:52:aa:bf:63:d9:38:74:e5:fd:
66:f9:90:44:61:49:65:cf:94:53:6a:ee:74:c6:31:
ff:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A2:17:E2:35:DE:DE:CF:8E:DD:01:C1:68:18:F7:18:53:56:D0:0C
X509v3 Authority Key Identifier:
keyid:DE:D9:DD:B6:E0:5D:26:D9:3F:76:D4:43:4C:06:0C:7E:1D:26:E6:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/23C75C911B352DF0BC9691D4FFEA0118290A296B48618F95A0D7BBF42C21BB43/0/DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/23C75C911B352DF0BC9691D4FFEA0118290A296B48618F95A0D7BBF42C21BB43/0/3230302e39312e3135382e302f32342d3234203d3e203235373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.91.158.0/24
Signature Algorithm: sha256WithRSAEncryption
67:cf:ae:d4:98:97:a8:f4:ec:87:06:6f:5e:55:3d:3c:18:e2:
9a:9d:2c:90:b5:7b:f2:1a:b0:75:42:2b:0c:10:71:59:8c:e3:
90:d7:da:93:fc:a3:f5:52:9b:78:0b:f6:38:ef:8a:14:73:69:
c8:b0:0d:7d:41:6d:bc:6a:23:cf:71:e2:6f:87:d4:c3:40:f7:
ed:bf:3e:89:57:85:52:34:b0:72:c8:4d:79:5c:4b:b6:53:ef:
94:0b:6a:1c:f6:25:43:c4:4d:79:3c:7f:9f:8f:eb:2a:bd:f2:
c7:08:73:0d:a0:67:0b:e1:7c:2a:a5:39:4d:1b:c9:43:f7:10:
b9:7d:03:ef:27:9f:70:60:08:e8:00:cb:0a:45:c5:08:fd:55:
1f:7d:15:07:da:b6:e4:6d:73:5f:55:ca:cd:c8:c7:7e:6b:3a:
ea:f1:a4:65:1b:92:e2:f5:f6:c8:3f:4d:53:cf:02:41:1c:d9:
71:c3:12:10:bc:77:98:f6:ed:2e:9c:c1:92:e8:77:b0:3e:f1:
71:95:d7:d6:7c:23:bd:6d:47:74:3e:87:91:f6:df:c4:2d:68:
4f:fc:46:4c:c4:2e:4e:e3:17:fc:b7:fc:f4:0e:4f:71:5c:21:
f5:16:ca:f4:1a:5a:17:48:e2:d0:ec:23:b3:00:93:cf:12:67:
bd:95:73:68
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUCnP739DW8bbm8KHh4EK2rRdd91MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREVEOUREQjZFMDVEMjZEOTNGNzZENDQzNEMwNjBDN0Ux
RDI2RTZDMjAeFw0yNTAyMDQxODMxMzdaFw0yNjAyMDMxODM2MzdaMDMxMTAvBgNV
BAMTKDdCQTIxN0UyMzVERURFQ0Y4RUREMDFDMTY4MThGNzE4NTM1NkQwMEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEhVQqqP+5SF/pA+boyFbfj56A
16kNlZBibK9aiSND0Vr614bD3j15g8kHcUN95hRIHx4yNNtO/nfhMDJEhe5iewUj
hziSW75IO84WtfyhjGX8BSuWTJLrFCTdk9n3hmBTC+zC2ZgWQ/HpEfs25lAH2AZq
irWcA8sdR/ZLtzUQ+LclsMPdn9ArysyU9t9roTAvGspEZ1A67Ny+Yhy3r899IMbx
wUArNMRfinhuO+zEbA206aLMYdy8Y+pCNSpW5z4vFIKJoLCX/ezYZDKv0KugxsVp
XT3OeNAmwsnne/P/DXj7qh2I7FKqv2PZOHTl/Wb5kERhSWXPlFNq7nTGMf+/AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUe6IX4jXe3s+O3QHBaBj3GFNW0AwwHwYDVR0j
BBgwFoAU3tndtuBdJtk/dtRDTAYMfh0m5sIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yM0M3NUM5MTFCMzUyREYwQkM5NjkxRDRGRkVBMDExODI5
MEEyOTZCNDg2MThGOTVBMEQ3QkJGNDJDMjFCQjQzLzAvREVEOUREQjZFMDVEMjZE
OTNGNzZENDQzNEMwNjBDN0UxRDI2RTZDMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ERUQ5RERCNkUwNUQyNkQ5M0Y3
NkQ0NDM0QzA2MEM3RTFEMjZFNkMyLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMjNDNzVDOTExQjM1MkRGMEJDOTY5MUQ0RkZFQTAxMTgyOTBBMjk2QjQ4
NjE4Rjk1QTBEN0JCRjQyQzIxQkI0My8wLzMyMzAzMDJlMzkzMTJlMzEzNTM4MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNTM3MzczMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMhbnjAN
BgkqhkiG9w0BAQsFAAOCAQEAZ8+u1JiXqPTshwZvXlU9PBjimp0skLV78hqwdUIr
DBBxWYzjkNfak/yj9VKbeAv2OO+KFHNpyLANfUFtvGojz3Hib4fUw0D37b8+iVeF
UjSwcshNeVxLtlPvlAtqHPYlQ8RNeTx/n4/rKr3yxwhzDaBnC+F8KqU5TRvJQ/cQ
uX0D7yefcGAI6ADLCkXFCP1VH30VB9q25G1zX1XKzcjHfms66vGkZRuS4vX2yD9N
U88CQRzZccMSELx3mPbtLpzBkuh3sD7xcZXX1nwjvW1HdD6HkfbfxC1oT/xGTMQu
TuMX/Lf89A5PcVwh9RbK9BpaF0ji0OwjswCTzxJnvZVzaA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:38:24 2025 by rpki-client