Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/3230302e3132332e3230342e302f32342d3234203d3e203136393630.roa
File: 3230302e3132332e3230342e302f32342d3234203d3e203136393630.roa (raw, json)
Hash identifier: cjE49nmnvQ9oUvFXK2auGNM2Sk+VNgJAJeafFPu72iY=
Subject key identifier: 95:71:6A:D7:C2:DE:04:79:CE:3F:88:1A:A3:E9:89:81:42:88:93:B0
Certificate issuer: /CN=EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D
Certificate serial: 2D3C019898BCB70F6EE83D8EE7C63A13397D5D63
Authority key identifier: EF:64:06:F2:A9:DB:B0:8A:9E:E3:AC:2B:4F:78:EC:25:F2:DF:D7:2D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/3230302e3132332e3230342e302f32342d3234203d3e203136393630.roa
Signing time: Fri 22 Nov 2024 23:00:00 +0000
ROA not before: Fri 22 Nov 2024 22:55:00 +0000
ROA not after: Fri 21 Nov 2025 23:00:00 +0000
asID: 16960
IP address blocks: 200.123.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:3c:01:98:98:bc:b7:0f:6e:e8:3d:8e:e7:c6:3a:13:39:7d:5d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D
Validity
Not Before: Nov 22 22:55:00 2024 GMT
Not After : Nov 21 23:00:00 2025 GMT
Subject: CN=95716AD7C2DE0479CE3F881AA3E98981428893B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8a:c6:a6:a6:70:6b:fc:39:25:eb:80:6a:3c:
56:fe:6e:b6:3f:50:6b:5d:3d:3f:25:03:3c:ac:63:
5c:74:22:5c:f0:76:d1:58:d1:05:10:73:93:26:ef:
4f:a9:23:91:c3:6b:e6:23:68:eb:5d:81:5f:91:8a:
2c:c3:8c:46:73:6f:98:1e:75:6c:1b:ae:64:2f:7f:
b7:a3:d3:14:53:57:82:64:c0:16:75:b2:9a:f6:45:
9b:57:bf:a6:35:c3:e3:2b:9e:f9:a8:72:d4:52:09:
5b:96:00:f7:3d:49:c6:ff:d1:75:c3:b1:bf:04:aa:
3c:c2:26:9c:98:b2:9b:33:6e:66:2f:43:98:b9:af:
77:69:da:0f:a9:00:c9:75:be:9e:85:4d:c3:cf:ab:
42:53:ae:54:3a:e0:ad:37:58:15:91:20:08:4f:9f:
f4:d5:cc:7c:5f:ae:5b:f6:e6:0e:66:e7:0f:dc:90:
e4:8d:84:b6:18:14:a9:cc:31:c2:39:d5:25:1a:e2:
57:50:d3:7f:94:f6:0d:3a:dc:f6:3a:8f:bf:26:4f:
38:13:9a:54:5b:01:84:68:eb:87:18:cf:0a:20:92:
16:32:cc:60:1a:fc:4b:cb:3a:92:01:aa:0b:77:d9:
0b:98:ce:f7:97:1f:7f:2d:cf:fd:c0:f2:22:5a:b1:
ae:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:71:6A:D7:C2:DE:04:79:CE:3F:88:1A:A3:E9:89:81:42:88:93:B0
X509v3 Authority Key Identifier:
keyid:EF:64:06:F2:A9:DB:B0:8A:9E:E3:AC:2B:4F:78:EC:25:F2:DF:D7:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/3230302e3132332e3230342e302f32342d3234203d3e203136393630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.123.204.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d1:7f:35:e3:43:8a:92:7c:98:c5:40:54:52:f2:c9:60:35:
d0:5d:db:54:70:2a:3d:71:ef:f7:dd:ed:62:0e:42:be:35:64:
9a:2d:71:25:db:29:eb:0b:9b:ca:cb:c1:c7:c8:47:7a:b9:90:
e9:9f:3a:52:0d:bb:be:b4:44:b2:9e:7e:8f:ca:b6:53:3a:0b:
ab:77:0e:f5:e5:41:f7:ba:60:5c:d9:85:df:b2:43:52:29:4a:
65:03:d6:6e:4f:c5:30:78:01:9e:47:07:1b:1e:ec:ef:c4:d1:
79:ce:4f:11:d5:d4:b2:5f:99:4c:9e:23:08:71:26:10:e7:0e:
21:31:52:a0:56:ef:69:0b:44:c2:f4:75:d2:46:83:60:1d:71:
0e:f8:19:b2:88:50:06:45:2c:53:38:9e:7f:01:9b:8b:51:43:
29:04:77:96:97:39:cd:30:39:07:a6:90:bd:e6:20:6b:21:12:
9b:94:22:ce:e8:8d:68:b7:74:c6:2d:f4:10:22:31:5e:21:74:
98:f5:66:b0:c5:a4:28:fd:fd:ac:48:fc:ca:06:36:71:7e:2f:
6e:2e:f8:19:bf:d5:28:0f:e5:fb:59:3e:7d:b1:d3:87:c0:ea:
db:e3:67:65:8a:8f:21:50:17:25:5e:60:48:45:06:83:92:50:
07:a6:7b:73
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIULTwBmJi8tw9u6D2O58Y6Ezl9XWMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUY2NDA2RjJBOURCQjA4QTlFRTNBQzJCNEY3OEVDMjVG
MkRGRDcyRDAeFw0yNDExMjIyMjU1MDBaFw0yNTExMjEyMzAwMDBaMDMxMTAvBgNV
BAMTKDk1NzE2QUQ3QzJERTA0NzlDRTNGODgxQUEzRTk4OTgxNDI4ODkzQjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiisampnBr/Dkl64BqPFb+brY/
UGtdPT8lAzysY1x0IlzwdtFY0QUQc5Mm70+pI5HDa+YjaOtdgV+RiizDjEZzb5ge
dWwbrmQvf7ej0xRTV4JkwBZ1spr2RZtXv6Y1w+MrnvmoctRSCVuWAPc9Scb/0XXD
sb8EqjzCJpyYspszbmYvQ5i5r3dp2g+pAMl1vp6FTcPPq0JTrlQ64K03WBWRIAhP
n/TVzHxfrlv25g5m5w/ckOSNhLYYFKnMMcI51SUa4ldQ03+U9g063PY6j78mTzgT
mlRbAYRo64cYzwogkhYyzGAa/EvLOpIBqgt32QuYzveXH38tz/3A8iJasa75AgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUlXFq18LeBHnOP4gao+mJgUKIk7AwHwYDVR0j
BBgwFoAU72QG8qnbsIqe46wrT3jsJfLf1y0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zNDkwOUNFMEZERUU3Q0RENjdCQUVBRDdCNzg5QTE4MTQ1
MDY1RjcyRjkzRjFFMTgwNDRCNEExQTQ4NUM2NEExLzAvRUY2NDA2RjJBOURCQjA4
QTlFRTNBQzJCNEY3OEVDMjVGMkRGRDcyRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FRjY0MDZGMkE5REJCMDhBOUVF
M0FDMkI0Rjc4RUMyNUYyREZENzJELmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzQ5MDlDRTBGREVFN0NERDY3QkFFQUQ3Qjc4OUExODE0NTA2NUY3MkY5
M0YxRTE4MDQ0QjRBMUE0ODVDNjRBMS8wLzMyMzAzMDJlMzEzMjMzMmUzMjMwMzQy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM2MzkzNjMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyHvM
MA0GCSqGSIb3DQEBCwUAA4IBAQBw0X8140OKknyYxUBUUvLJYDXQXdtUcCo9ce/3
3e1iDkK+NWSaLXEl2ynrC5vKy8HHyEd6uZDpnzpSDbu+tESynn6PyrZTOgurdw71
5UH3umBc2YXfskNSKUplA9ZuT8UweAGeRwcbHuzvxNF5zk8R1dSyX5lMniMIcSYQ
5w4hMVKgVu9pC0TC9HXSRoNgHXEO+BmyiFAGRSxTOJ5/AZuLUUMpBHeWlznNMDkH
ppC95iBrIRKblCLO6I1ot3TGLfQQIjFeIXSY9WawxaQo/f2sSPzKBjZxfi9uLvgZ
v9UoD+X7WT59sdOHwOrb42dlio8hUBclXmBIRQaDklAHpntz
-----END CERTIFICATE-----
Generated at Fri Apr 11 14:27:46 2025 by rpki-client