Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/49103830332AC6B62BE5F050A24A7698B457D89966AC49F9D2D0D53B614ACD3F/0/3230302e31302e3134372e302f32342d3234203d3e203237393437.roa
File: 3230302e31302e3134372e302f32342d3234203d3e203237393437.roa (raw, json)
Hash identifier: rla7ne4M0zxEkNI7tPHediqKbd91Ql3HbvBLn577Ro8=
Subject key identifier: 65:13:70:FA:C6:3D:A3:C7:0A:1B:51:85:9E:9B:42:4F:AE:D3:BF:99
Certificate issuer: /CN=5094E25430BCD5E2E482E64388ADB10B84687666
Certificate serial: 20FAF2E7EC0685CC4FFFA06513517D549DD2B182
Authority key identifier: 50:94:E2:54:30:BC:D5:E2:E4:82:E6:43:88:AD:B1:0B:84:68:76:66
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5094E25430BCD5E2E482E64388ADB10B84687666.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/49103830332AC6B62BE5F050A24A7698B457D89966AC49F9D2D0D53B614ACD3F/0/3230302e31302e3134372e302f32342d3234203d3e203237393437.roa
Signing time: Tue 04 Mar 2025 20:11:19 +0000
ROA not before: Tue 04 Mar 2025 20:06:19 +0000
ROA not after: Tue 03 Mar 2026 20:11:19 +0000
asID: 27947
IP address blocks: 200.10.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:fa:f2:e7:ec:06:85:cc:4f:ff:a0:65:13:51:7d:54:9d:d2:b1:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5094E25430BCD5E2E482E64388ADB10B84687666
Validity
Not Before: Mar 4 20:06:19 2025 GMT
Not After : Mar 3 20:11:19 2026 GMT
Subject: CN=651370FAC63DA3C70A1B51859E9B424FAED3BF99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:88:c7:8a:33:6b:b5:32:38:19:4e:f7:26:2f:
f4:c5:fc:ed:16:08:9a:08:6b:4b:92:c9:87:43:46:
9e:12:c7:f4:bd:a3:af:96:ba:52:b0:af:e7:de:41:
5a:13:07:90:25:b1:69:37:ce:49:0a:28:78:ee:f2:
cf:b6:04:df:90:37:17:8a:e0:57:2d:e4:ee:30:ee:
28:51:f2:0d:1e:78:e7:43:47:bb:85:a4:17:eb:a8:
f1:88:73:1a:90:a1:9c:76:28:a3:1f:d8:50:97:77:
db:35:a8:ae:9f:a3:a6:cd:37:4b:5f:70:75:2e:d5:
f9:3d:68:e5:b9:9e:6b:1b:42:92:89:f8:fa:e6:48:
20:b3:57:1b:b7:61:2b:64:bb:53:b4:ff:07:ad:2e:
af:f0:25:c5:06:b2:cd:02:d7:0a:0e:17:f1:79:28:
b2:34:77:5f:9d:70:17:db:32:a2:a6:35:bc:c8:43:
42:86:51:1b:36:e2:64:54:c7:ec:4c:a2:d1:03:df:
99:43:ee:57:b7:1c:7d:ee:df:c5:05:3a:bc:58:60:
00:e4:70:9d:ef:75:ef:4d:07:d9:6e:f1:92:d0:1f:
89:16:21:4e:74:6d:89:7d:9b:5f:43:bc:8c:33:7d:
83:88:84:49:34:f3:4b:25:e9:94:95:67:37:e5:03:
ab:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:13:70:FA:C6:3D:A3:C7:0A:1B:51:85:9E:9B:42:4F:AE:D3:BF:99
X509v3 Authority Key Identifier:
keyid:50:94:E2:54:30:BC:D5:E2:E4:82:E6:43:88:AD:B1:0B:84:68:76:66
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/49103830332AC6B62BE5F050A24A7698B457D89966AC49F9D2D0D53B614ACD3F/0/5094E25430BCD5E2E482E64388ADB10B84687666.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5094E25430BCD5E2E482E64388ADB10B84687666.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/49103830332AC6B62BE5F050A24A7698B457D89966AC49F9D2D0D53B614ACD3F/0/3230302e31302e3134372e302f32342d3234203d3e203237393437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.10.147.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:76:2d:8e:54:37:3a:1e:0e:1f:fc:bf:ac:b4:0e:a5:82:c5:
75:2a:3f:e4:8b:f3:45:24:5b:69:fb:b9:b2:cd:fc:7a:67:bf:
7d:3f:ce:e3:e7:f1:53:a6:0c:5d:6b:1a:e1:97:64:d4:56:91:
ce:e7:a6:f2:46:f4:9d:c1:1e:cb:99:1e:a4:1e:12:b9:eb:63:
29:ae:23:35:ba:cf:e4:89:7b:4e:d3:1d:4c:45:9b:9f:be:a7:
69:43:c8:3a:44:0a:a5:2a:ea:ea:e0:0f:00:82:03:06:7a:a7:
8d:c3:80:03:ec:64:0d:40:ac:bf:c7:68:5f:2f:64:60:91:e5:
fb:ae:9e:8e:ed:2a:7f:95:68:28:9e:fb:02:19:af:b0:87:45:
21:38:84:a5:bb:2f:25:15:c0:64:4e:d6:e9:ca:3b:08:33:0a:
85:f0:0f:86:98:f0:8b:99:27:3f:76:7b:80:c6:3d:0b:00:5a:
78:71:b4:82:3c:34:53:4d:11:09:9c:d9:d3:6b:21:b2:10:76:
19:d7:a3:4e:ce:2f:a2:ca:db:ff:46:f1:a8:9a:02:f4:49:35:
34:36:7a:bb:55:03:c0:f3:5d:db:36:d8:62:6a:c5:bd:6c:9b:
56:ec:69:a4:6c:14:fa:c9:ad:7b:86:48:4c:97:8b:22:f0:f3:
a3:55:f8:3f
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUIPry5+wGhcxP/6BlE1F9VJ3SsYIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTA5NEUyNTQzMEJDRDVFMkU0ODJFNjQzODhBREIxMEI4
NDY4NzY2NjAeFw0yNTAzMDQyMDA2MTlaFw0yNjAzMDMyMDExMTlaMDMxMTAvBgNV
BAMTKDY1MTM3MEZBQzYzREEzQzcwQTFCNTE4NTlFOUI0MjRGQUVEM0JGOTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpiMeKM2u1MjgZTvcmL/TF/O0W
CJoIa0uSyYdDRp4Sx/S9o6+WulKwr+feQVoTB5AlsWk3zkkKKHju8s+2BN+QNxeK
4Fct5O4w7ihR8g0eeOdDR7uFpBfrqPGIcxqQoZx2KKMf2FCXd9s1qK6fo6bNN0tf
cHUu1fk9aOW5nmsbQpKJ+PrmSCCzVxu3YStku1O0/wetLq/wJcUGss0C1woOF/F5
KLI0d1+dcBfbMqKmNbzIQ0KGURs24mRUx+xMotED35lD7le3HH3u38UFOrxYYADk
cJ3vde9NB9lu8ZLQH4kWIU50bYl9m19DvIwzfYOIhEk080sl6ZSVZzflA6sBAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUZRNw+sY9o8cKG1GFnptCT67Tv5kwHwYDVR0j
BBgwFoAUUJTiVDC81eLkguZDiK2xC4RodmYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy80OTEwMzgzMDMzMkFDNkI2MkJFNUYwNTBBMjRBNzY5OEI0
NTdEODk5NjZBQzQ5RjlEMkQwRDUzQjYxNEFDRDNGLzAvNTA5NEUyNTQzMEJDRDVF
MkU0ODJFNjQzODhBREIxMEI4NDY4NzY2Ni5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81MDk0RTI1NDMwQkNENUUyRTQ4
MkU2NDM4OEFEQjEwQjg0Njg3NjY2LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNDkxMDM4MzAzMzJBQzZCNjJCRTVGMDUwQTI0QTc2OThCNDU3RDg5OTY2
QUM0OUY5RDJEMEQ1M0I2MTRBQ0QzRi8wLzMyMzAzMDJlMzEzMDJlMzEzNDM3MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzM5MzQzNy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMgKkzAN
BgkqhkiG9w0BAQsFAAOCAQEAOnYtjlQ3Oh4OH/y/rLQOpYLFdSo/5IvzRSRbafu5
ss38eme/fT/O4+fxU6YMXWsa4Zdk1FaRzuem8kb0ncEey5kepB4SuetjKa4jNbrP
5Il7TtMdTEWbn76naUPIOkQKpSrq6uAPAIIDBnqnjcOAA+xkDUCsv8doXy9kYJHl
+66eju0qf5VoKJ77AhmvsIdFITiEpbsvJRXAZE7W6co7CDMKhfAPhpjwi5knP3Z7
gMY9CwBaeHG0gjw0U00RCZzZ02shshB2GdejTs4vosrb/0bxqJoC9Ek1NDZ6u1UD
wPNd2zbYYmrFvWybVuxppGwU+smte4ZITJeLIvDzo1X4Pw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:51 2025 by rpki-client