Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3137322e302f32322d3234203d3e20323632313636.roa
File: 3136382e3233342e3137322e302f32322d3234203d3e20323632313636.roa (raw, json)
Hash identifier: csspImCsCzdF2wFw/BRKiCCUp3bmiNzIhFTm7NGw8QU=
Subject key identifier: 89:EB:08:46:0E:20:F7:42:26:14:D9:A4:44:F2:0E:FF:8B:A7:63:D8
Certificate issuer: /CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Certificate serial: 63819A61FE0B3B43BD331059761FAEC2E5A09EFC
Authority key identifier: 0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3137322e302f32322d3234203d3e20323632313636.roa
Signing time: Tue 04 Feb 2025 17:59:43 +0000
ROA not before: Tue 04 Feb 2025 17:54:43 +0000
ROA not after: Tue 03 Feb 2026 17:59:43 +0000
asID: 262166
IP address blocks: 168.234.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:81:9a:61:fe:0b:3b:43:bd:33:10:59:76:1f:ae:c2:e5:a0:9e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Validity
Not Before: Feb 4 17:54:43 2025 GMT
Not After : Feb 3 17:59:43 2026 GMT
Subject: CN=89EB08460E20F7422614D9A444F20EFF8BA763D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:cf:83:30:c4:b0:20:16:fe:e9:b5:3f:4a:f9:
6d:4f:a3:ba:d1:30:9c:52:38:7a:ac:f8:2c:b6:b8:
37:e7:2a:0e:e3:28:29:9f:8d:97:01:c2:1e:6a:e9:
5a:07:c9:37:13:bf:a3:e8:ba:79:c6:66:2e:6f:53:
2d:b1:f2:b6:c8:2e:a2:ec:44:51:93:64:71:17:65:
33:99:ba:6f:99:07:12:ee:0a:0f:9d:75:d4:ec:0f:
c2:49:a4:01:c2:d1:ae:a0:4b:b0:fc:51:5d:45:cd:
0e:6e:24:2a:b0:54:68:0b:fa:38:5b:1f:b5:e3:0c:
ef:dc:de:d1:26:47:00:a4:a6:cd:b0:39:4e:d3:08:
0a:d4:7a:38:40:a9:00:82:8c:5c:b9:87:a4:9d:96:
83:42:b7:5b:41:41:ed:34:44:ff:93:5b:8f:6d:a8:
fb:4b:96:a6:38:75:9e:64:a5:11:02:11:7f:89:d0:
c8:d4:80:26:ad:c1:1a:d1:b0:5f:24:f0:85:b9:d7:
44:a5:00:69:6f:ed:7e:cf:74:c4:36:0d:b1:6f:37:
96:54:73:b9:0b:d9:63:14:2b:08:87:4b:82:7d:5b:
77:8a:e5:52:8e:5c:cc:17:70:da:f7:01:63:d9:cc:
0e:33:3a:cf:de:24:19:0a:0b:36:9b:a9:25:34:0f:
da:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:EB:08:46:0E:20:F7:42:26:14:D9:A4:44:F2:0E:FF:8B:A7:63:D8
X509v3 Authority Key Identifier:
keyid:0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/0D1797043F7F529F13952CEE646AE7365392BBC3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3137322e302f32322d3234203d3e20323632313636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.234.172.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:69:58:3b:ad:42:f4:fa:e3:92:30:26:85:13:e8:20:4f:a4:
49:55:00:9a:a9:39:f2:e4:61:9b:b9:2e:66:58:31:0d:1f:fa:
58:5c:66:e4:bf:3b:70:94:2c:d2:28:2a:30:44:41:16:3a:ec:
5b:8c:a2:1b:3e:12:bb:15:be:9c:81:11:a3:0b:fc:33:48:04:
ed:28:7c:e5:dd:ce:7f:9d:36:c1:0a:4a:a9:08:89:64:32:56:
c8:fa:4e:0f:d6:76:31:11:c4:96:d7:6c:7b:4f:7f:e4:37:e0:
e6:67:e2:5b:ac:3a:f8:24:f8:19:22:d3:7e:a3:bc:05:e0:18:
f5:82:28:dd:0a:75:c1:ce:57:18:60:e3:43:e4:1a:a5:8d:77:
3a:0b:48:3c:c9:ea:56:b0:7c:54:9b:fe:e4:fa:6d:34:ea:5c:
ff:43:f5:36:44:3d:0f:48:ae:14:4a:1b:23:47:97:b4:38:06:
98:b7:8e:f1:25:05:d4:71:7e:e2:9e:3c:b9:61:40:13:ae:08:
d1:7b:c2:2b:c1:d1:0a:37:e5:ba:18:84:0f:0b:6d:cc:f8:f7:
26:9f:40:c3:d8:47:79:8c:23:fc:c5:bf:0f:ad:12:f1:9d:a0:
4a:dd:55:5e:09:32:be:3d:16:5f:f0:e6:6c:f7:d0:54:31:9a:
13:46:24:23
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUY4GaYf4LO0O9MxBZdh+uwuWgnvwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEQxNzk3MDQzRjdGNTI5RjEzOTUyQ0VFNjQ2QUU3MzY1
MzkyQkJDMzAeFw0yNTAyMDQxNzU0NDNaFw0yNjAyMDMxNzU5NDNaMDMxMTAvBgNV
BAMTKDg5RUIwODQ2MEUyMEY3NDIyNjE0RDlBNDQ0RjIwRUZGOEJBNzYzRDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCDz4MwxLAgFv7ptT9K+W1Po7rR
MJxSOHqs+Cy2uDfnKg7jKCmfjZcBwh5q6VoHyTcTv6PounnGZi5vUy2x8rbILqLs
RFGTZHEXZTOZum+ZBxLuCg+dddTsD8JJpAHC0a6gS7D8UV1FzQ5uJCqwVGgL+jhb
H7XjDO/c3tEmRwCkps2wOU7TCArUejhAqQCCjFy5h6SdloNCt1tBQe00RP+TW49t
qPtLlqY4dZ5kpRECEX+J0MjUgCatwRrRsF8k8IW510SlAGlv7X7PdMQ2DbFvN5ZU
c7kL2WMUKwiHS4J9W3eK5VKOXMwXcNr3AWPZzA4zOs/eJBkKCzabqSU0D9p7AgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUiesIRg4g90ImFNmkRPIO/4unY9gwHwYDVR0j
BBgwFoAUDReXBD9/Up8TlSzuZGrnNlOSu8MwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zNjM1NDU0M0QyMjQyNzJDRjQ3MjJGRjRENzE4MTk4RUI4
RTJGRjhDQkQ2RDlCN0I5N0NEQTg2MEQ5QzFDRDNCLzAvMEQxNzk3MDQzRjdGNTI5
RjEzOTUyQ0VFNjQ2QUU3MzY1MzkyQkJDMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wRDE3OTcwNDNGN0Y1MjlGMTM5
NTJDRUU2NDZBRTczNjUzOTJCQkMzLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzYzNTQ1NDNEMjI0MjcyQ0Y0NzIyRkY0RDcxODE5OEVCOEUyRkY4Q0JE
NkQ5QjdCOTdDREE4NjBEOUMxQ0QzQi8wLzMxMzYzODJlMzIzMzM0MmUzMTM3MzIy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2MzIzMTM2MzYucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKo
6qwwDQYJKoZIhvcNAQELBQADggEBAJxpWDutQvT645IwJoUT6CBPpElVAJqpOfLk
YZu5LmZYMQ0f+lhcZuS/O3CULNIoKjBEQRY67FuMohs+ErsVvpyBEaML/DNIBO0o
fOXdzn+dNsEKSqkIiWQyVsj6Tg/WdjERxJbXbHtPf+Q34OZn4lusOvgk+Bki036j
vAXgGPWCKN0KdcHOVxhg40PkGqWNdzoLSDzJ6lawfFSb/uT6bTTqXP9D9TZEPQ9I
rhRKGyNHl7Q4Bpi3jvElBdRxfuKePLlhQBOuCNF7wivB0Qo35boYhA8Lbcz49yaf
QMPYR3mMI/zFvw+tEvGdoErdVV4JMr49Fl/w5mz30FQxmhNGJCM=
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:21:11 2025 by rpki-client