Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3B30EBAEDCD528F4283152A95242C5DE5EA4850C69747EDE1CEE862AF9A615AF/0/3230302e33342e3137312e302f32342d3234203d3e203631343633.roa
File: 3230302e33342e3137312e302f32342d3234203d3e203631343633.roa (raw, json)
Hash identifier: neoflDAQREmiHy4WLrg32htXI0XNtUUKNHbbkXlH9cA=
Subject key identifier: B3:F9:DD:A7:04:F2:70:99:D6:82:50:5A:50:B8:FB:48:43:09:DB:7A
Certificate issuer: /CN=12BFAA7C91F4EB76B90D5D65B9B1ADDD704DB0AB
Certificate serial: 379CD86F968B7FB652A6D2DE3EF5F7D3EB80945D
Authority key identifier: 12:BF:AA:7C:91:F4:EB:76:B9:0D:5D:65:B9:B1:AD:DD:70:4D:B0:AB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/12BFAA7C91F4EB76B90D5D65B9B1ADDD704DB0AB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3B30EBAEDCD528F4283152A95242C5DE5EA4850C69747EDE1CEE862AF9A615AF/0/3230302e33342e3137312e302f32342d3234203d3e203631343633.roa
Signing time: Tue 04 Feb 2025 18:02:17 +0000
ROA not before: Tue 04 Feb 2025 17:57:17 +0000
ROA not after: Tue 03 Feb 2026 18:02:17 +0000
asID: 61463
IP address blocks: 200.34.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:9c:d8:6f:96:8b:7f:b6:52:a6:d2:de:3e:f5:f7:d3:eb:80:94:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12BFAA7C91F4EB76B90D5D65B9B1ADDD704DB0AB
Validity
Not Before: Feb 4 17:57:17 2025 GMT
Not After : Feb 3 18:02:17 2026 GMT
Subject: CN=B3F9DDA704F27099D682505A50B8FB484309DB7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fc:a9:b4:00:b8:db:f5:76:b4:81:70:60:85:
0a:79:de:6f:27:e2:c0:6d:aa:15:08:0f:b3:b7:14:
02:6f:4b:c5:ef:06:92:76:7b:34:5c:32:15:f4:66:
59:d7:f9:d0:7e:1b:e3:1c:f2:c9:58:9c:ec:33:63:
7d:d5:1d:d7:17:0e:ea:80:36:d4:40:63:d5:fd:4e:
cf:c7:8b:a9:60:52:d7:86:14:30:1d:b3:e6:8b:9a:
19:98:a4:d1:ee:4b:28:50:54:8a:90:e5:21:12:2e:
2a:d7:db:fd:1f:bc:75:c0:77:0d:28:d1:57:01:83:
23:f3:f7:b5:6c:5a:c9:08:6c:ba:97:21:22:75:75:
12:e7:58:82:e0:14:ee:dd:c0:c7:56:04:c9:03:50:
ea:5d:0e:04:93:14:bb:da:01:d9:d4:4d:74:4f:6a:
f3:d9:cb:40:be:7b:2b:44:ed:6f:fa:db:b9:6b:18:
03:5b:07:e9:08:ef:69:d4:32:bb:a4:ba:b5:36:6a:
00:b1:91:b8:4b:93:5e:24:43:9c:7e:b1:83:15:0f:
4c:a9:a0:ea:c7:dd:53:38:69:52:7a:69:c1:9d:5a:
b9:1c:9a:c9:bd:ec:43:3a:64:9e:32:34:5f:b2:87:
39:19:66:b0:95:ce:9e:10:3b:b3:55:69:26:84:38:
82:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F9:DD:A7:04:F2:70:99:D6:82:50:5A:50:B8:FB:48:43:09:DB:7A
X509v3 Authority Key Identifier:
keyid:12:BF:AA:7C:91:F4:EB:76:B9:0D:5D:65:B9:B1:AD:DD:70:4D:B0:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3B30EBAEDCD528F4283152A95242C5DE5EA4850C69747EDE1CEE862AF9A615AF/0/12BFAA7C91F4EB76B90D5D65B9B1ADDD704DB0AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/12BFAA7C91F4EB76B90D5D65B9B1ADDD704DB0AB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3B30EBAEDCD528F4283152A95242C5DE5EA4850C69747EDE1CEE862AF9A615AF/0/3230302e33342e3137312e302f32342d3234203d3e203631343633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.34.171.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:77:a8:cd:1e:0c:2c:d4:44:aa:33:4b:66:78:46:0a:2e:c7:
db:2b:b6:4c:ba:33:45:45:22:d4:92:04:83:67:bf:ae:04:03:
9b:6a:ea:4b:39:37:13:f7:0f:f3:f7:a2:8c:dc:fb:7b:39:45:
31:d8:0f:29:43:59:2b:86:12:43:21:dd:41:c2:eb:7d:b0:b8:
95:4c:41:f7:e6:78:44:76:b7:07:9c:5e:73:ed:28:32:57:50:
2f:75:50:af:f1:da:8f:42:20:97:16:e7:58:42:0b:1a:71:67:
73:a1:22:49:e7:f9:f8:78:04:99:80:05:9a:8c:85:34:d2:96:
af:eb:b0:1e:0c:ac:95:97:e1:a9:9e:cb:ef:d4:94:91:b8:82:
02:4e:11:a9:9c:0d:76:0b:d3:18:79:ea:dc:6a:56:61:6c:d9:
df:b6:05:d5:ab:42:ae:e5:27:71:de:93:5d:7e:17:38:b1:4b:
05:0f:3c:cd:37:f1:c1:97:2b:a8:0d:d4:c1:d6:98:92:a7:1f:
12:ad:ae:32:30:d7:bd:cb:80:3a:12:bc:96:37:c3:f9:d1:89:
43:ac:7b:34:38:dc:ec:db:b2:d2:40:57:c6:91:cf:59:1d:d6:
29:85:86:ec:f0:43:59:37:5c:20:87:71:e4:4d:59:0f:2c:c1:
10:64:66:1f
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUN5zYb5aLf7ZSptLePvX30+uAlF0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTJCRkFBN0M5MUY0RUI3NkI5MEQ1RDY1QjlCMUFEREQ3
MDREQjBBQjAeFw0yNTAyMDQxNzU3MTdaFw0yNjAyMDMxODAyMTdaMDMxMTAvBgNV
BAMTKEIzRjlEREE3MDRGMjcwOTlENjgyNTA1QTUwQjhGQjQ4NDMwOURCN0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe/Km0ALjb9Xa0gXBghQp53m8n
4sBtqhUID7O3FAJvS8XvBpJ2ezRcMhX0ZlnX+dB+G+Mc8slYnOwzY33VHdcXDuqA
NtRAY9X9Ts/Hi6lgUteGFDAds+aLmhmYpNHuSyhQVIqQ5SESLirX2/0fvHXAdw0o
0VcBgyPz97VsWskIbLqXISJ1dRLnWILgFO7dwMdWBMkDUOpdDgSTFLvaAdnUTXRP
avPZy0C+eytE7W/627lrGANbB+kI72nUMrukurU2agCxkbhLk14kQ5x+sYMVD0yp
oOrH3VM4aVJ6acGdWrkcmsm97EM6ZJ4yNF+yhzkZZrCVzp4QO7NVaSaEOILrAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUs/ndpwTycJnWglBaULj7SEMJ23owHwYDVR0j
BBgwFoAUEr+qfJH063a5DV1lubGt3XBNsKswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zQjMwRUJBRURDRDUyOEY0MjgzMTUyQTk1MjQyQzVERTVF
QTQ4NTBDNjk3NDdFREUxQ0VFODYyQUY5QTYxNUFGLzAvMTJCRkFBN0M5MUY0RUI3
NkI5MEQ1RDY1QjlCMUFEREQ3MDREQjBBQi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8xMkJGQUE3QzkxRjRFQjc2Qjkw
RDVENjVCOUIxQURERDcwNERCMEFCLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvM0IzMEVCQUVEQ0Q1MjhGNDI4MzE1MkE5NTI0MkM1REU1RUE0ODUwQzY5
NzQ3RURFMUNFRTg2MkFGOUE2MTVBRi8wLzMyMzAzMDJlMzMzNDJlMzEzNzMxMmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMTM0MzYzMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMgiqzAN
BgkqhkiG9w0BAQsFAAOCAQEAX3eozR4MLNREqjNLZnhGCi7H2yu2TLozRUUi1JIE
g2e/rgQDm2rqSzk3E/cP8/eijNz7ezlFMdgPKUNZK4YSQyHdQcLrfbC4lUxB9+Z4
RHa3B5xec+0oMldQL3VQr/Haj0IglxbnWEILGnFnc6EiSef5+HgEmYAFmoyFNNKW
r+uwHgyslZfhqZ7L79SUkbiCAk4RqZwNdgvTGHnq3GpWYWzZ37YF1atCruUncd6T
XX4XOLFLBQ88zTfxwZcrqA3UwdaYkqcfEq2uMjDXvcuAOhK8ljfD+dGJQ6x7NDjc
7Nuy0kBXxpHPWR3WKYWG7PBDWTdcIIdx5E1ZDyzBEGRmHw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:18 2025 by rpki-client