Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230322e3235322e302f32342d3234203d3e203138373334.roa
File: 3138392e3230322e3235322e302f32342d3234203d3e203138373334.roa (raw, json)
Hash identifier: E9xY6bpYL50/fYyhY1im+UBaK80Vt4Wh8cutxCHqc/w=
Subject key identifier: 0C:7D:7D:B9:4A:5E:90:FD:30:DE:DE:AF:46:78:D1:CF:13:B4:2F:DD
Certificate issuer: /CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Certificate serial: 552F0D8BDA6AC52332E7DCBD19E48455B5CFEFAB
Authority key identifier: 79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230322e3235322e302f32342d3234203d3e203138373334.roa
Signing time: Tue 04 Feb 2025 18:06:41 +0000
ROA not before: Tue 04 Feb 2025 18:01:41 +0000
ROA not after: Tue 03 Feb 2026 18:06:41 +0000
asID: 18734
IP address blocks: 189.202.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:2f:0d:8b:da:6a:c5:23:32:e7:dc:bd:19:e4:84:55:b5:cf:ef:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Validity
Not Before: Feb 4 18:01:41 2025 GMT
Not After : Feb 3 18:06:41 2026 GMT
Subject: CN=0C7D7DB94A5E90FD30DEDEAF4678D1CF13B42FDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9e:58:ca:29:45:da:c8:80:e9:cb:12:8e:8f:
23:03:7d:fe:33:d3:e7:ff:4f:ed:13:c2:0e:a6:4e:
59:eb:b6:9d:f3:f6:df:82:ec:b8:c4:94:f2:51:03:
36:42:e3:47:f7:1d:43:a9:e6:a4:0a:ce:2b:7c:5f:
d2:3d:f1:bb:62:b2:49:07:87:2f:b6:92:5f:b4:7f:
34:71:67:cd:72:be:79:7f:19:1c:13:61:d5:32:32:
5a:df:7c:e3:bf:c5:7b:41:e7:4b:cb:df:a5:2a:a6:
62:cb:dd:8d:03:ef:61:a0:3d:a7:73:ff:60:54:52:
0b:aa:0d:e7:af:e1:6a:9e:e6:20:a1:99:08:e0:fb:
75:12:52:51:c8:41:af:dc:1c:75:1b:8e:35:fe:d9:
ff:49:22:3a:d4:c1:28:72:2e:02:3d:a4:0a:64:fa:
eb:4e:1d:43:bd:a1:7c:e6:91:eb:a8:3a:b9:57:35:
39:b0:68:08:93:ad:ed:50:d4:68:5d:aa:31:48:0b:
23:e7:2d:a4:3f:b7:b3:b1:fb:7e:72:75:be:52:90:
7c:aa:5a:af:28:f7:c8:6e:03:d8:8d:25:5d:45:3b:
4e:ea:e4:00:4a:90:27:f6:89:2e:5e:ea:88:8c:2f:
64:9e:12:81:22:66:94:5e:6c:93:64:f0:17:54:02:
57:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:7D:7D:B9:4A:5E:90:FD:30:DE:DE:AF:46:78:D1:CF:13:B4:2F:DD
X509v3 Authority Key Identifier:
keyid:79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230322e3235322e302f32342d3234203d3e203138373334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.202.252.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:b8:d0:c1:53:10:9a:72:45:3e:81:58:f6:9f:53:fb:21:ee:
f1:95:46:d4:d2:92:48:7e:7b:86:f4:6d:3b:7e:0a:d3:6e:1b:
52:b3:bc:eb:e5:45:8c:74:97:ae:3d:72:65:e2:b0:73:61:6e:
ee:f9:1c:da:1e:78:25:28:08:51:96:d5:1a:b7:92:b2:02:6d:
cc:c9:c6:1c:d9:3b:97:92:3d:72:07:ba:1c:15:2f:a2:28:b2:
e8:8b:2d:90:5c:fd:19:c5:09:11:76:53:8a:a2:89:fa:9e:78:
fb:a3:16:a3:73:82:4b:c4:89:df:fb:d9:2e:03:32:c0:1f:e1:
9a:ba:1e:65:60:47:fe:d4:4c:d9:2a:ea:51:e1:b8:03:a7:cb:
80:98:59:8a:63:a0:ca:40:ef:b9:e6:fe:29:a0:66:ba:d9:15:
5c:4d:03:f4:d4:9d:99:81:14:57:f9:e3:91:54:83:60:89:71:
7a:a9:b9:1f:84:d4:da:83:0b:d2:50:fe:d0:71:4d:ff:ef:f8:
36:e7:e3:ba:b0:ba:8f:cf:cc:a7:d9:fe:32:70:53:b2:8f:a6:
e8:06:81:07:a4:30:4f:2b:b2:37:f0:08:b7:ac:6f:04:1e:6e:
65:7e:fd:f5:96:1c:ed:d8:69:51:bb:8f:14:83:a7:c4:ad:99:
13:3b:40:99
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUVS8Ni9pqxSMy59y9GeSEVbXP76swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5N0EyNTgzNkI0MjlFOUU2RDE1NTE4REM3Mzk3MDBC
NkM5QzRGRDAeFw0yNTAyMDQxODAxNDFaFw0yNjAyMDMxODA2NDFaMDMxMTAvBgNV
BAMTKDBDN0Q3REI5NEE1RTkwRkQzMERFREVBRjQ2NzhEMUNGMTNCNDJGREQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSnljKKUXayIDpyxKOjyMDff4z
0+f/T+0Twg6mTlnrtp3z9t+C7LjElPJRAzZC40f3HUOp5qQKzit8X9I98btiskkH
hy+2kl+0fzRxZ81yvnl/GRwTYdUyMlrffOO/xXtB50vL36UqpmLL3Y0D72GgPadz
/2BUUguqDeev4Wqe5iChmQjg+3USUlHIQa/cHHUbjjX+2f9JIjrUwShyLgI9pApk
+utOHUO9oXzmkeuoOrlXNTmwaAiTre1Q1GhdqjFICyPnLaQ/t7Ox+35ydb5SkHyq
Wq8o98huA9iNJV1FO07q5ABKkCf2iS5e6oiML2SeEoEiZpRebJNk8BdUAlfrAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUDH19uUpekP0w3t6vRnjRzxO0L90wHwYDVR0j
BBgwFoAUeZeiWDa0Kenm0VUY3HOXALbJxP0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy80RjJGRkZCMEIzODM0MDQ1RjdDNDI4MkFFQjRDNjQ1REQ5
NDYxNzUwQ0NENTMzOEY4Q0M2RkQ2NUY1QUUxQ0NBLzAvNzk5N0EyNTgzNkI0MjlF
OUU2RDE1NTE4REM3Mzk3MDBCNkM5QzRGRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83OTk3QTI1ODM2QjQyOUU5RTZE
MTU1MThEQzczOTcwMEI2QzlDNEZELmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNEYyRkZGQjBCMzgzNDA0NUY3QzQyODJBRUI0QzY0NUREOTQ2MTc1MEND
RDUzMzhGOENDNkZENjVGNUFFMUNDQS8wLzMxMzgzOTJlMzIzMDMyMmUzMjM1MzIy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM4MzczMzM0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvcr8
MA0GCSqGSIb3DQEBCwUAA4IBAQAMuNDBUxCackU+gVj2n1P7Ie7xlUbU0pJIfnuG
9G07fgrTbhtSs7zr5UWMdJeuPXJl4rBzYW7u+RzaHnglKAhRltUat5KyAm3MycYc
2TuXkj1yB7ocFS+iKLLoiy2QXP0ZxQkRdlOKoon6nnj7oxajc4JLxInf+9kuAzLA
H+Gauh5lYEf+1EzZKupR4bgDp8uAmFmKY6DKQO+55v4poGa62RVcTQP01J2ZgRRX
+eORVINgiXF6qbkfhNTagwvSUP7QcU3/7/g25+O6sLqPz8yn2f4ycFOyj6boBoEH
pDBPK7I38Ai3rG8EHm5lfv31lhzt2GlRu48Ug6fErZkTO0CZ
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:06 2025 by rpki-client