Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3230302e31332e3138362e302f32342d3234203d3e203237373733.roa
File: 3230302e31332e3138362e302f32342d3234203d3e203237373733.roa (raw, json)
Hash identifier: 7D4AHPhRjKmxJ2ZgETK++O4J6k4Y2csj+fGks52yzYE=
Subject key identifier: E8:AF:9F:58:A3:C7:F6:98:28:64:AF:05:9F:AA:D0:51:67:A8:97:A2
Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Certificate serial: 2FB75A2FAA651CB3D2B39F5D7811227E9FA6214D
Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3230302e31332e3138362e302f32342d3234203d3e203237373733.roa
Signing time: Tue 04 Feb 2025 20:02:28 +0000
ROA not before: Tue 04 Feb 2025 19:57:28 +0000
ROA not after: Tue 03 Feb 2026 20:02:28 +0000
asID: 27773
IP address blocks: 200.13.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:b7:5a:2f:aa:65:1c:b3:d2:b3:9f:5d:78:11:22:7e:9f:a6:21:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Validity
Not Before: Feb 4 19:57:28 2025 GMT
Not After : Feb 3 20:02:28 2026 GMT
Subject: CN=E8AF9F58A3C7F6982864AF059FAAD05167A897A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:76:f5:68:9f:13:a5:9f:51:34:8f:a6:77:4d:
d3:98:56:4e:77:be:8d:99:ad:01:6b:cf:73:2c:c0:
b6:27:58:d5:cf:cd:1e:b4:d3:92:b0:28:e3:6a:99:
9c:58:1a:56:cf:d7:57:55:4b:47:1f:b4:01:7f:0c:
17:df:ae:1d:d8:29:f9:0d:0d:5d:ca:e4:ae:28:a3:
0d:55:10:af:99:9e:bc:b2:9e:15:51:95:41:da:11:
b4:de:7d:ad:e2:b0:1a:58:af:53:06:db:ed:f0:a2:
29:1e:ec:09:cf:56:52:d0:66:f9:b1:32:6a:b0:54:
96:d4:29:0e:8c:af:90:db:67:50:9f:ca:48:56:34:
ce:9c:1e:71:08:d9:36:fb:16:4b:da:33:58:9f:42:
86:fa:fc:25:19:76:d4:05:5a:ec:9e:80:23:24:bc:
8e:42:c7:e6:38:2a:e6:b7:ce:fa:83:0b:7a:2e:a0:
2b:ca:ab:9d:05:ba:77:bb:26:e4:ca:28:54:a3:88:
46:b9:69:d0:81:0c:13:50:4c:eb:c6:b4:2d:6b:e4:
73:27:27:f5:fa:7d:79:c8:f4:47:40:37:26:13:b8:
71:3b:8a:d0:c5:33:5d:2a:71:60:72:58:a2:2d:e8:
62:76:f2:6d:c6:bf:24:cd:97:32:e9:17:d9:2f:8e:
83:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:AF:9F:58:A3:C7:F6:98:28:64:AF:05:9F:AA:D0:51:67:A8:97:A2
X509v3 Authority Key Identifier:
keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3230302e31332e3138362e302f32342d3234203d3e203237373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.13.186.0/24
Signature Algorithm: sha256WithRSAEncryption
89:ac:f4:05:32:67:7c:b3:0a:87:ab:08:b9:4a:86:e7:c9:b3:
ca:04:c0:de:c5:4d:cf:1b:5d:87:ab:06:90:4d:5e:d7:b7:77:
03:13:6e:6e:2c:55:d3:39:7a:c0:5f:72:ed:de:56:0b:3a:3a:
45:6d:f8:1f:9a:e7:3d:96:0f:04:76:a5:a5:09:93:78:ef:5a:
e8:c2:ba:c4:71:d7:1a:94:b7:cd:ff:20:a5:3a:34:99:31:f2:
7c:6d:03:c5:46:dd:e1:68:8c:bb:02:f2:f0:80:e5:6c:c2:94:
2d:48:55:a4:40:08:97:1b:00:67:22:84:e6:f4:1c:56:c5:e0:
db:d5:0b:cd:49:29:2d:64:a1:eb:22:54:82:3d:dd:d6:0a:f4:
bf:eb:52:75:90:c7:44:02:da:e7:ef:60:c1:4e:55:b8:89:5e:
91:a8:62:f9:6a:93:74:46:87:ad:6a:46:3f:0f:92:de:39:5b:
db:c1:67:1f:99:0a:69:0f:4e:02:55:8a:b7:8d:21:82:14:16:
01:33:51:cf:2b:cd:21:ca:f2:7b:0f:da:7c:c3:e3:8e:2a:fb:
8a:db:fe:f4:d0:33:fa:f7:72:86:7e:b7:39:fd:ee:6a:72:02:
0f:bc:8a:2f:84:a0:a0:36:52:ac:f8:31:7f:27:d2:81:43:6a:
e5:ef:0e:aa
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUL7daL6plHLPSs59deBEifp+mIU0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUJDQ0JENjhFQjIyQzM3Qjg4NkQ4MUJERkM4QkE3N0NE
NzMxMjIwODAeFw0yNTAyMDQxOTU3MjhaFw0yNjAyMDMyMDAyMjhaMDMxMTAvBgNV
BAMTKEU4QUY5RjU4QTNDN0Y2OTgyODY0QUYwNTlGQUFEMDUxNjdBODk3QTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2dvVonxOln1E0j6Z3TdOYVk53
vo2ZrQFrz3MswLYnWNXPzR6005KwKONqmZxYGlbP11dVS0cftAF/DBffrh3YKfkN
DV3K5K4oow1VEK+ZnryynhVRlUHaEbTefa3isBpYr1MG2+3woike7AnPVlLQZvmx
MmqwVJbUKQ6Mr5DbZ1CfykhWNM6cHnEI2Tb7FkvaM1ifQob6/CUZdtQFWuyegCMk
vI5Cx+Y4Kua3zvqDC3ouoCvKq50Fune7JuTKKFSjiEa5adCBDBNQTOvGtC1r5HMn
J/X6fXnI9EdANyYTuHE7itDFM10qcWByWKIt6GJ28m3GvyTNlzLpF9kvjoP5AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQU6K+fWKPH9pgoZK8Fn6rQUWeol6IwHwYDVR0j
BBgwFoAUm8y9aOsiw3uIbYG9/IunfNcxIggwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zQTVGMkY4N0QxMTc4NkZCM0ZDQURBQTA0MzQzMUVCMDEz
Q0RCQUQwMDI0N0VEQjdBNjUwMkJGRkQ4QjRDQzI0LzAvOUJDQ0JENjhFQjIyQzM3
Qjg4NkQ4MUJERkM4QkE3N0NENzMxMjIwOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85QkNDQkQ2OEVCMjJDMzdCODg2
RDgxQkRGQzhCQTc3Q0Q3MzEyMjA4LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvM0E1RjJGODdEMTE3ODZGQjNGQ0FEQUEwNDM0MzFFQjAxM0NEQkFEMDAy
NDdFREI3QTY1MDJCRkZEOEI0Q0MyNC8wLzMyMzAzMDJlMzEzMzJlMzEzODM2MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzM3MzczMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMgNujAN
BgkqhkiG9w0BAQsFAAOCAQEAiaz0BTJnfLMKh6sIuUqG58mzygTA3sVNzxtdh6sG
kE1e17d3AxNubixV0zl6wF9y7d5WCzo6RW34H5rnPZYPBHalpQmTeO9a6MK6xHHX
GpS3zf8gpTo0mTHyfG0DxUbd4WiMuwLy8IDlbMKULUhVpEAIlxsAZyKE5vQcVsXg
29ULzUkpLWSh6yJUgj3d1gr0v+tSdZDHRALa5+9gwU5VuIlekahi+WqTdEaHrWpG
Pw+S3jlb28FnH5kKaQ9OAlWKt40hghQWATNRzyvNIcryew/afMPjjir7itv+9NAz
+vdyhn63Of3uanICD7yKL4SgoDZSrPgxfyfSgUNq5e8Oqg==
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:47:04 2025 by rpki-client