Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230342e3230382e302f32342d3234203d3e20323635353431.roa
File: 3138392e3230342e3230382e302f32342d3234203d3e20323635353431.roa (raw, json)
Hash identifier: AjP/Z+6MunBOzjuomuk2swGl+/ckq3p3ZRHQO9YDQcE=
Subject key identifier: 41:28:25:F1:25:F3:9F:AD:77:FA:42:64:52:85:A7:94:7C:72:48:48
Certificate issuer: /CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Certificate serial: 592EF08C3E0AB14895FEC89D650E54AB595D0178
Authority key identifier: 79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230342e3230382e302f32342d3234203d3e20323635353431.roa
Signing time: Tue 04 Feb 2025 18:06:51 +0000
ROA not before: Tue 04 Feb 2025 18:01:51 +0000
ROA not after: Tue 03 Feb 2026 18:06:51 +0000
asID: 265541
IP address blocks: 189.204.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:2e:f0:8c:3e:0a:b1:48:95:fe:c8:9d:65:0e:54:ab:59:5d:01:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Validity
Not Before: Feb 4 18:01:51 2025 GMT
Not After : Feb 3 18:06:51 2026 GMT
Subject: CN=412825F125F39FAD77FA42645285A7947C724848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:98:24:ad:b8:e2:51:bc:dd:1e:8e:9b:3c:14:
2d:ba:78:17:15:22:c2:51:19:37:94:dc:79:9b:a3:
70:6f:71:ac:c7:66:98:5e:95:07:51:b1:a6:1f:c2:
7f:04:1b:0c:f0:d2:c8:cc:46:51:37:a1:04:07:80:
d0:29:96:de:ac:13:9d:79:6e:fd:93:a9:75:70:fe:
9f:71:52:21:12:aa:14:ef:36:03:75:16:62:0a:68:
9a:83:3d:b9:62:57:91:2a:95:e9:e1:d9:28:f3:a3:
50:97:e6:39:60:d0:32:d8:a2:17:f4:2e:dc:5d:15:
0a:d0:9a:ff:a5:3b:50:b2:5b:90:4f:38:2a:65:fa:
37:a0:75:b9:7b:16:37:d1:7c:82:06:01:12:02:b1:
71:af:e9:76:06:a8:10:31:8a:ba:bd:c2:a5:de:e4:
59:d2:b6:f0:58:20:bc:4d:b6:90:df:d7:61:4b:7c:
89:bc:9f:8e:0b:8d:4c:e2:98:bf:31:6b:bd:ec:2c:
e8:db:bc:8b:20:37:be:eb:8a:6e:6f:45:79:72:63:
df:3d:ad:3a:9e:6b:59:2f:63:f6:25:a3:23:62:69:
f4:43:a6:47:b3:8f:b3:54:f0:d5:d0:ce:0c:66:d9:
69:ab:63:81:16:c3:f5:36:57:17:8c:cb:df:f8:d4:
79:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:28:25:F1:25:F3:9F:AD:77:FA:42:64:52:85:A7:94:7C:72:48:48
X509v3 Authority Key Identifier:
keyid:79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230342e3230382e302f32342d3234203d3e20323635353431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.204.208.0/24
Signature Algorithm: sha256WithRSAEncryption
99:31:43:bc:d5:f0:98:9e:ad:2b:3e:7a:ec:87:67:5b:7c:9d:
7c:b8:88:98:13:dd:d0:65:37:9b:aa:31:7f:4b:a2:cf:86:d2:
e1:80:76:8e:31:bc:cc:fc:29:f7:b0:b7:b6:fa:53:1f:02:c7:
2d:35:dd:eb:e6:51:8b:fa:84:f8:c0:0e:e9:d9:b5:bc:62:9a:
45:69:fb:36:71:05:b2:82:9c:d1:0a:df:04:c3:8d:d1:3f:fd:
ef:29:aa:a2:da:a2:6c:f7:7e:cc:87:db:d4:73:86:03:06:9f:
22:1b:a8:05:21:5f:23:14:f7:c5:10:fe:01:65:49:03:aa:96:
0e:ee:6a:0e:2f:37:3f:b5:f8:24:6f:cc:bd:89:8d:22:2c:8d:
d4:03:d3:63:e0:6b:07:33:b7:2a:14:4c:d6:82:e6:c8:ee:46:
9a:4c:43:c2:6e:f9:91:c2:00:3e:3c:62:c0:25:c5:ba:e5:ca:
17:df:2d:74:db:1e:85:20:70:04:85:41:fc:d7:03:98:5f:36:
96:66:8b:dc:fa:a8:57:ca:9e:64:da:5e:c7:aa:97:7c:df:38:
df:14:7e:db:51:84:b0:62:cd:50:55:f8:cf:62:af:9a:f1:16:
42:ad:0a:3d:b9:8f:b8:aa:65:72:f1:6a:aa:ce:09:04:6e:3e:
72:f2:43:6f
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUWS7wjD4KsUiV/sidZQ5Uq1ldAXgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5N0EyNTgzNkI0MjlFOUU2RDE1NTE4REM3Mzk3MDBC
NkM5QzRGRDAeFw0yNTAyMDQxODAxNTFaFw0yNjAyMDMxODA2NTFaMDMxMTAvBgNV
BAMTKDQxMjgyNUYxMjVGMzlGQUQ3N0ZBNDI2NDUyODVBNzk0N0M3MjQ4NDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCumCStuOJRvN0ejps8FC26eBcV
IsJRGTeU3Hmbo3BvcazHZphelQdRsaYfwn8EGwzw0sjMRlE3oQQHgNAplt6sE515
bv2TqXVw/p9xUiESqhTvNgN1FmIKaJqDPbliV5Eqlenh2Sjzo1CX5jlg0DLYohf0
LtxdFQrQmv+lO1CyW5BPOCpl+jegdbl7FjfRfIIGARICsXGv6XYGqBAxirq9wqXe
5FnStvBYILxNtpDf12FLfIm8n44LjUzimL8xa73sLOjbvIsgN77rim5vRXlyY989
rTqea1kvY/YloyNiafRDpkezj7NU8NXQzgxm2WmrY4EWw/U2VxeMy9/41HkVAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUQSgl8SXzn613+kJkUoWnlHxySEgwHwYDVR0j
BBgwFoAUeZeiWDa0Kenm0VUY3HOXALbJxP0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy80RjJGRkZCMEIzODM0MDQ1RjdDNDI4MkFFQjRDNjQ1REQ5
NDYxNzUwQ0NENTMzOEY4Q0M2RkQ2NUY1QUUxQ0NBLzAvNzk5N0EyNTgzNkI0MjlF
OUU2RDE1NTE4REM3Mzk3MDBCNkM5QzRGRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83OTk3QTI1ODM2QjQyOUU5RTZE
MTU1MThEQzczOTcwMEI2QzlDNEZELmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNEYyRkZGQjBCMzgzNDA0NUY3QzQyODJBRUI0QzY0NUREOTQ2MTc1MEND
RDUzMzhGOENDNkZENjVGNUFFMUNDQS8wLzMxMzgzOTJlMzIzMDM0MmUzMjMwMzgy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2MzUzNTM0MzEucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC9
zNAwDQYJKoZIhvcNAQELBQADggEBAJkxQ7zV8JierSs+euyHZ1t8nXy4iJgT3dBl
N5uqMX9Los+G0uGAdo4xvMz8Kfewt7b6Ux8Cxy013evmUYv6hPjADunZtbximkVp
+zZxBbKCnNEK3wTDjdE//e8pqqLaomz3fsyH29RzhgMGnyIbqAUhXyMU98UQ/gFl
SQOqlg7uag4vNz+1+CRvzL2JjSIsjdQD02PgawcztyoUTNaC5sjuRppMQ8Ju+ZHC
AD48YsAlxbrlyhffLXTbHoUgcASFQfzXA5hfNpZmi9z6qFfKnmTaXseql3zfON8U
fttRhLBizVBV+M9ir5rxFkKtCj25j7iqZXLxaqrOCQRuPnLyQ28=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:43 2025 by rpki-client