Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/3230302e32392e36342e302f31392d3234203d3e203130373738.roa
File: 3230302e32392e36342e302f31392d3234203d3e203130373738.roa (raw, json)
Hash identifier: CQDC5xyp2aRIurLDlTwK7w/WVr44EJ5PGCesuTWaVQE=
Subject key identifier: 49:18:64:76:F9:B2:83:00:D7:AA:3D:04:16:27:87:75:78:21:71:14
Certificate issuer: /CN=979E05FFEED48A9692454F668B83D49714C9FE39
Certificate serial: 24C3F88888C82588BC38FB34DCF2D1E7E1DBBFA7
Authority key identifier: 97:9E:05:FF:EE:D4:8A:96:92:45:4F:66:8B:83:D4:97:14:C9:FE:39
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/979E05FFEED48A9692454F668B83D49714C9FE39.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/3230302e32392e36342e302f31392d3234203d3e203130373738.roa
Signing time: Tue 04 Feb 2025 20:03:33 +0000
ROA not before: Tue 04 Feb 2025 19:58:33 +0000
ROA not after: Tue 03 Feb 2026 20:03:33 +0000
asID: 10778
IP address blocks: 200.29.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:c3:f8:88:88:c8:25:88:bc:38:fb:34:dc:f2:d1:e7:e1:db:bf:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979E05FFEED48A9692454F668B83D49714C9FE39
Validity
Not Before: Feb 4 19:58:33 2025 GMT
Not After : Feb 3 20:03:33 2026 GMT
Subject: CN=49186476F9B28300D7AA3D041627877578217114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:7d:bb:ab:f7:04:36:38:94:d9:11:92:4e:c3:
21:f8:e3:10:a8:74:78:b6:33:3a:76:46:bb:5e:5b:
3c:8c:2d:e6:5b:96:59:ce:09:e0:ba:2f:b2:d0:f6:
51:4d:39:21:58:19:23:3f:0a:1f:39:cc:53:c3:d2:
46:0b:ea:a0:57:1a:45:f3:a5:15:b8:f4:4f:b0:36:
48:cd:28:bf:b8:44:b2:57:1e:f8:de:06:52:16:b5:
89:24:21:71:6b:aa:e2:db:d1:ac:14:fa:28:3f:d4:
0f:55:94:a6:1b:af:59:1b:4a:c2:b2:1b:54:e3:11:
98:d9:02:16:2c:d1:26:6e:f1:ee:81:52:24:67:e2:
4c:38:a9:d5:43:8a:42:90:a7:d1:7f:66:2f:a2:c2:
f2:33:0b:b7:a3:cb:03:af:9d:bb:40:03:ca:c1:3e:
c5:3d:8a:3e:f6:38:b7:fb:a8:0b:87:49:49:b6:62:
a1:52:a6:0a:33:61:09:33:13:22:7e:d6:55:96:18:
22:6a:48:cd:a7:3f:cf:98:8e:82:b7:87:7c:b4:0c:
81:25:74:db:ab:91:c1:84:9f:92:65:b4:dd:ee:07:
1c:82:a0:66:a5:cb:27:40:80:4f:a3:9e:bd:88:6e:
50:ff:f3:f6:e8:ca:d5:e3:4c:d6:fa:0e:7b:61:5f:
7c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:18:64:76:F9:B2:83:00:D7:AA:3D:04:16:27:87:75:78:21:71:14
X509v3 Authority Key Identifier:
keyid:97:9E:05:FF:EE:D4:8A:96:92:45:4F:66:8B:83:D4:97:14:C9:FE:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/979E05FFEED48A9692454F668B83D49714C9FE39.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/979E05FFEED48A9692454F668B83D49714C9FE39.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/3230302e32392e36342e302f31392d3234203d3e203130373738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.64.0/19
Signature Algorithm: sha256WithRSAEncryption
2b:9b:c3:c9:93:93:6e:c1:3d:14:bb:1e:31:6e:f8:58:77:e0:
b0:b1:b3:31:77:bc:8c:e5:c9:3d:f3:56:58:bf:3b:7c:64:db:
45:aa:33:e5:95:f6:c9:95:b6:7b:4a:d9:75:f6:dc:b1:1d:a0:
c4:ad:4a:8c:4d:c9:9d:04:2a:3b:18:d5:43:41:77:f1:37:80:
59:25:e5:35:2a:41:d9:aa:d7:b7:1e:b6:db:79:38:f8:d1:db:
ae:ef:1e:06:20:a3:b7:06:64:c2:c5:d7:50:92:ce:37:4a:67:
9a:62:a3:fb:8d:41:49:32:10:6d:76:3e:7e:c3:f8:5d:2e:16:
c1:c0:d9:8a:0b:ec:fd:97:b0:77:70:a9:9b:f2:48:54:19:ae:
64:c7:d0:77:0f:70:9a:ef:45:02:60:fe:18:8f:be:45:03:a5:
82:3c:7e:74:61:fc:3b:e2:6a:04:5b:96:49:7b:2f:61:bc:e4:
eb:fe:33:3e:a4:6f:bd:de:9c:31:75:b6:78:a6:fa:f2:c4:d3:
45:af:df:cc:45:72:5c:e3:2c:2c:34:ec:d6:db:77:ab:40:74:
e5:1c:83:85:71:a9:f9:2c:c3:3a:b6:96:e7:c6:4c:a0:f8:92:
5f:e7:c9:29:d7:e0:20:ca:dc:bf:24:c0:be:ab:87:5c:b0:26:
3c:d9:e0:3f
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUJMP4iIjIJYi8OPs03PLR5+Hbv6cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTc5RTA1RkZFRUQ0OEE5NjkyNDU0RjY2OEI4M0Q0OTcx
NEM5RkUzOTAeFw0yNTAyMDQxOTU4MzNaFw0yNjAyMDMyMDAzMzNaMDMxMTAvBgNV
BAMTKDQ5MTg2NDc2RjlCMjgzMDBEN0FBM0QwNDE2Mjc4Nzc1NzgyMTcxMTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDefbur9wQ2OJTZEZJOwyH44xCo
dHi2Mzp2RrteWzyMLeZbllnOCeC6L7LQ9lFNOSFYGSM/Ch85zFPD0kYL6qBXGkXz
pRW49E+wNkjNKL+4RLJXHvjeBlIWtYkkIXFrquLb0awU+ig/1A9VlKYbr1kbSsKy
G1TjEZjZAhYs0SZu8e6BUiRn4kw4qdVDikKQp9F/Zi+iwvIzC7ejywOvnbtAA8rB
PsU9ij72OLf7qAuHSUm2YqFSpgozYQkzEyJ+1lWWGCJqSM2nP8+YjoK3h3y0DIEl
dNurkcGEn5JltN3uBxyCoGalyydAgE+jnr2IblD/8/boytXjTNb6DnthX3zHAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUSRhkdvmygwDXqj0EFieHdXghcRQwHwYDVR0j
BBgwFoAUl54F/+7UipaSRU9mi4PUlxTJ/jkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yQ0NGOTc4REUwMDQ2NkExRjQxQTlDNzYxQUVCMjU3N0U1
NTY5MEIwMEM0QjNEREYzMzlBMjNCOTVCMzExQjkzLzAvOTc5RTA1RkZFRUQ0OEE5
NjkyNDU0RjY2OEI4M0Q0OTcxNEM5RkUzOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85NzlFMDVGRkVFRDQ4QTk2OTI0
NTRGNjY4QjgzRDQ5NzE0QzlGRTM5LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMkNDRjk3OERFMDA0NjZBMUY0MUE5Qzc2MUFFQjI1NzdFNTU2OTBCMDBD
NEIzRERGMzM5QTIzQjk1QjMxMUI5My8wLzMyMzAzMDJlMzIzOTJlMzYzNDJlMzAy
ZjMxMzkyZDMyMzQyMDNkM2UyMDMxMzAzNzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXIHUAwDQYJ
KoZIhvcNAQELBQADggEBACubw8mTk27BPRS7HjFu+Fh34LCxszF3vIzlyT3zVli/
O3xk20WqM+WV9smVtntK2XX23LEdoMStSoxNyZ0EKjsY1UNBd/E3gFkl5TUqQdmq
17cettt5OPjR267vHgYgo7cGZMLF11CSzjdKZ5pio/uNQUkyEG12Pn7D+F0uFsHA
2YoL7P2XsHdwqZvySFQZrmTH0HcPcJrvRQJg/hiPvkUDpYI8fnRh/DviagRblkl7
L2G85Ov+Mz6kb73enDF1tnim+vLE00Wv38xFclzjLCw07Nbbd6tAdOUcg4Vxqfks
wzq2lufGTKD4kl/nySnX4CDK3L8kwL6rh1ywJjzZ4D8=
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:05 2025 by rpki-client