Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/23E0ADF9AE86293D41DA88AE1D38141EA98368B999EF68E3198EF9E54EF1C62F/0/3230312e3232302e3134342e302f32302d3234203d3e203532343230.roa
File: 3230312e3232302e3134342e302f32302d3234203d3e203532343230.roa (raw, json)
Hash identifier: UGh4s4dwfJ5tFPmMmAZInBBiXC5Ap2zQ8aXu/80MPCc=
Subject key identifier: A6:78:FE:DA:16:89:84:0F:2D:5F:8D:E7:A6:A2:31:44:C7:29:DB:11
Certificate issuer: /CN=5EEF74EC549BBA3A98586948A652EF1E67729F08
Certificate serial: 68DE550A537B4D54E18CAEC1669B61295B497959
Authority key identifier: 5E:EF:74:EC:54:9B:BA:3A:98:58:69:48:A6:52:EF:1E:67:72:9F:08
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5EEF74EC549BBA3A98586948A652EF1E67729F08.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/23E0ADF9AE86293D41DA88AE1D38141EA98368B999EF68E3198EF9E54EF1C62F/0/3230312e3232302e3134342e302f32302d3234203d3e203532343230.roa
Signing time: Tue 04 Feb 2025 18:40:19 +0000
ROA not before: Tue 04 Feb 2025 18:35:19 +0000
ROA not after: Tue 03 Feb 2026 18:40:19 +0000
asID: 52420
IP address blocks: 201.220.144.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:de:55:0a:53:7b:4d:54:e1:8c:ae:c1:66:9b:61:29:5b:49:79:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5EEF74EC549BBA3A98586948A652EF1E67729F08
Validity
Not Before: Feb 4 18:35:19 2025 GMT
Not After : Feb 3 18:40:19 2026 GMT
Subject: CN=A678FEDA1689840F2D5F8DE7A6A23144C729DB11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b3:04:9d:22:30:a7:42:ca:94:0f:04:52:c7:
62:ef:b4:80:4b:41:72:a2:5f:3f:5b:95:15:40:86:
f0:5b:2a:0e:55:90:10:08:f1:92:63:06:ab:51:dc:
51:8f:a2:4f:a5:94:9a:aa:74:81:18:cf:59:89:95:
4f:f6:a3:ff:d0:47:88:75:c5:5e:c8:8c:b4:f8:6c:
a6:b3:fa:68:11:db:ec:f3:e3:46:3a:24:e1:b2:0d:
e8:b3:95:21:81:40:e2:86:cd:94:fb:10:47:6f:8a:
ff:c1:e5:66:74:ac:62:53:76:ac:1b:04:e8:1b:3c:
20:c8:5d:cc:eb:9a:16:0d:9a:ce:5e:9c:ac:e0:f2:
9e:e7:47:ed:cd:c8:1e:fc:08:78:34:9c:0c:67:4d:
7b:87:0e:4b:73:4a:fd:50:8e:12:3d:a3:cb:95:79:
e4:61:31:32:6a:d8:4b:f0:69:37:14:3d:01:aa:2c:
10:fe:97:e5:1e:96:45:19:9a:ff:0a:9a:13:de:3c:
e9:88:5d:ca:11:c2:d4:38:06:3f:ac:da:48:d9:1a:
cf:88:bf:ca:b5:9d:39:19:7e:c2:66:db:d7:f4:98:
1d:fb:04:08:a5:87:da:3c:35:86:46:6c:d9:85:18:
b4:5b:dd:73:fb:f7:23:e7:f3:a8:de:bc:1a:9e:f7:
63:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:78:FE:DA:16:89:84:0F:2D:5F:8D:E7:A6:A2:31:44:C7:29:DB:11
X509v3 Authority Key Identifier:
keyid:5E:EF:74:EC:54:9B:BA:3A:98:58:69:48:A6:52:EF:1E:67:72:9F:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/23E0ADF9AE86293D41DA88AE1D38141EA98368B999EF68E3198EF9E54EF1C62F/0/5EEF74EC549BBA3A98586948A652EF1E67729F08.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5EEF74EC549BBA3A98586948A652EF1E67729F08.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/23E0ADF9AE86293D41DA88AE1D38141EA98368B999EF68E3198EF9E54EF1C62F/0/3230312e3232302e3134342e302f32302d3234203d3e203532343230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.220.144.0/20
Signature Algorithm: sha256WithRSAEncryption
2c:ea:08:8d:b3:31:20:dc:6f:74:af:ae:22:f2:ab:2e:af:97:
c9:7f:b3:93:17:48:e2:6a:2a:29:5c:9c:68:db:95:7f:cb:9a:
d1:34:47:3a:44:e9:1d:6b:86:07:fe:43:92:97:93:2c:d8:09:
f8:a8:6d:93:2a:2b:23:a7:e0:22:e7:1a:0c:e7:c8:22:d5:0d:
07:d3:c2:bc:de:8e:82:b5:8c:82:a8:5d:9b:43:92:7b:0d:e6:
be:f5:20:94:f7:45:74:36:1b:61:03:6f:10:66:3b:8b:1e:ef:
1b:12:67:71:5b:a3:5d:26:e9:35:d2:4c:bf:28:06:8d:14:aa:
1c:7a:a3:c0:c9:b8:6d:42:5b:f9:ee:1c:8e:f3:f2:92:ca:9f:
8b:c3:c8:76:ec:0b:ec:b1:6d:b6:31:7a:1d:e8:cd:93:3b:21:
5e:51:63:c8:d5:50:c6:d2:85:13:51:aa:7a:3e:57:9c:25:5e:
36:ed:91:fe:42:84:69:d5:56:9c:a6:0d:17:4f:3c:df:89:52:
af:92:1d:e9:69:fe:02:9a:6d:da:56:e4:6e:48:7b:98:aa:ef:
df:82:c8:90:cb:52:c2:5b:cb:a4:20:51:ab:f9:f6:33:d6:f2:
99:a3:fa:ca:10:ec:e6:7c:71:92:aa:16:ac:5f:2f:9d:9b:3b:
6f:0d:ed:b5
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUaN5VClN7TVThjK7BZpthKVtJeVkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNUVFRjc0RUM1NDlCQkEzQTk4NTg2OTQ4QTY1MkVGMUU2
NzcyOUYwODAeFw0yNTAyMDQxODM1MTlaFw0yNjAyMDMxODQwMTlaMDMxMTAvBgNV
BAMTKEE2NzhGRURBMTY4OTg0MEYyRDVGOERFN0E2QTIzMTQ0QzcyOURCMTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChswSdIjCnQsqUDwRSx2LvtIBL
QXKiXz9blRVAhvBbKg5VkBAI8ZJjBqtR3FGPok+llJqqdIEYz1mJlU/2o//QR4h1
xV7IjLT4bKaz+mgR2+zz40Y6JOGyDeizlSGBQOKGzZT7EEdviv/B5WZ0rGJTdqwb
BOgbPCDIXczrmhYNms5enKzg8p7nR+3NyB78CHg0nAxnTXuHDktzSv1QjhI9o8uV
eeRhMTJq2EvwaTcUPQGqLBD+l+UelkUZmv8KmhPePOmIXcoRwtQ4Bj+s2kjZGs+I
v8q1nTkZfsJm29f0mB37BAilh9o8NYZGbNmFGLRb3XP79yPn86jevBqe92PDAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUpnj+2haJhA8tX43npqIxRMcp2xEwHwYDVR0j
BBgwFoAUXu907FSbujqYWGlIplLvHmdynwgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yM0UwQURGOUFFODYyOTNENDFEQTg4QUUxRDM4MTQxRUE5
ODM2OEI5OTlFRjY4RTMxOThFRjlFNTRFRjFDNjJGLzAvNUVFRjc0RUM1NDlCQkEz
QTk4NTg2OTQ4QTY1MkVGMUU2NzcyOUYwOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81RUVGNzRFQzU0OUJCQTNBOTg1
ODY5NDhBNjUyRUYxRTY3NzI5RjA4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMjNFMEFERjlBRTg2MjkzRDQxREE4OEFFMUQzODE0MUVBOTgzNjhCOTk5
RUY2OEUzMTk4RUY5RTU0RUYxQzYyRi8wLzMyMzAzMTJlMzIzMjMwMmUzMTM0MzQy
ZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzNTMyMzQzMjMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEydyQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAs6giNszEg3G90r64i8qsur5fJf7OTF0jiaiop
XJxo25V/y5rRNEc6ROkda4YH/kOSl5Ms2An4qG2TKisjp+Ai5xoM58gi1Q0H08K8
3o6CtYyCqF2bQ5J7Dea+9SCU90V0NhthA28QZjuLHu8bEmdxW6NdJuk10ky/KAaN
FKoceqPAybhtQlv57hyO8/KSyp+Lw8h27AvssW22MXod6M2TOyFeUWPI1VDG0oUT
Uap6PlecJV427ZH+QoRp1Vacpg0XTzzfiVKvkh3paf4Cmm3aVuRuSHuYqu/fgsiQ
y1LCW8ukIFGr+fYz1vKZo/rKEOzmfHGSqhasXy+dmztvDe21
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:32 2025 by rpki-client