Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230342e3233352e302f32342d3234203d3e203138373334.roa
File: 3138392e3230342e3233352e302f32342d3234203d3e203138373334.roa (raw, json)
Hash identifier: Bg4aEdcTe8z544SoDZFZYY4FZWX4jtn5OBS5KtEC9gA=
Subject key identifier: 82:60:0F:EB:40:0A:A8:79:D6:D2:20:57:51:7B:A8:40:A0:9A:EE:0E
Certificate issuer: /CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Certificate serial: 3E46709B07586367C18EA6EEFA2F20594142E120
Authority key identifier: 79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230342e3233352e302f32342d3234203d3e203138373334.roa
Signing time: Tue 04 Feb 2025 18:06:44 +0000
ROA not before: Tue 04 Feb 2025 18:01:44 +0000
ROA not after: Tue 03 Feb 2026 18:06:44 +0000
asID: 18734
IP address blocks: 189.204.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:46:70:9b:07:58:63:67:c1:8e:a6:ee:fa:2f:20:59:41:42:e1:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Validity
Not Before: Feb 4 18:01:44 2025 GMT
Not After : Feb 3 18:06:44 2026 GMT
Subject: CN=82600FEB400AA879D6D22057517BA840A09AEE0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d2:d4:f3:9b:cb:16:71:c4:d6:df:39:d3:31:
28:89:ac:68:64:c6:89:ba:8e:ba:b0:17:93:17:e2:
1e:ce:5d:f4:ef:a8:94:03:b5:57:5c:c0:86:bb:ef:
7d:c3:0c:df:6c:f2:93:7c:c2:83:70:6e:62:77:1d:
11:a4:eb:1a:6a:d5:76:0f:63:c7:37:88:c5:53:84:
ed:a4:86:68:17:2c:f4:98:31:eb:35:67:67:99:f4:
b7:bf:ce:71:a0:c8:df:a5:a5:15:bc:17:66:36:7f:
15:c8:b6:80:07:26:62:1f:da:fa:86:66:a3:d0:c8:
d4:af:9d:67:29:f5:82:9d:95:88:9c:6f:5f:ca:eb:
c2:be:d5:59:f4:28:f5:23:15:bf:ba:34:fe:3a:85:
b2:c6:f7:d6:21:25:a8:64:80:ed:dc:bc:5c:a9:43:
84:3d:2e:21:41:5a:37:bf:25:fb:97:3f:14:f4:ad:
10:c9:5e:40:d7:81:87:e9:44:68:ed:90:a8:5d:bd:
03:80:8d:fc:16:fd:72:a3:d4:91:87:55:8f:49:cd:
bd:f0:72:ad:86:60:5f:08:52:ab:7d:0b:fb:27:49:
90:6e:96:f5:39:58:07:f5:6e:59:bf:a8:5e:7e:22:
10:66:e7:f6:e0:d8:5f:a5:ba:a2:1a:6c:60:ff:25:
55:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:60:0F:EB:40:0A:A8:79:D6:D2:20:57:51:7B:A8:40:A0:9A:EE:0E
X509v3 Authority Key Identifier:
keyid:79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230342e3233352e302f32342d3234203d3e203138373334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.204.235.0/24
Signature Algorithm: sha256WithRSAEncryption
31:91:31:dd:69:92:82:bd:2e:b0:0f:d9:ad:a5:5f:42:82:45:
0f:63:69:eb:f0:39:e1:8d:d2:31:2d:d0:71:4a:8e:06:38:8a:
46:b6:42:6b:7c:60:17:fe:1c:57:6c:cf:ec:50:b7:42:20:44:
31:bb:c5:60:cd:13:8b:6b:4e:cd:0f:9a:dd:8d:d5:d0:59:51:
cf:97:4d:a9:e1:08:cf:2c:89:54:cb:1a:e1:27:3e:17:15:7e:
19:47:3e:03:5e:d1:93:4e:0a:ed:ac:47:8a:2d:13:e3:c2:c1:
a6:29:69:f1:48:ca:ad:a2:2e:90:d8:60:6c:c5:32:7c:4d:02:
5d:81:f0:87:03:d0:7a:f2:36:22:04:a6:80:9f:66:7d:ab:30:
ae:c7:09:1b:12:50:1e:03:80:4a:0b:d8:ff:6d:43:e9:60:80:
69:78:b8:2b:5d:7f:21:38:20:0e:ba:2e:9c:e9:62:37:be:c3:
a0:b1:11:6a:1f:06:6e:2a:a3:f8:cb:6c:c2:ed:c2:d6:48:4a:
bc:08:44:ea:c9:d2:77:39:fd:40:2a:ce:ee:07:70:6a:65:dd:
31:e5:75:1d:54:3c:97:c3:e4:97:90:43:bc:48:59:34:06:3f:
e5:4c:10:c1:77:bd:b1:3c:b3:b0:4a:bc:44:cd:0a:a0:96:e5:
e7:d3:73:04
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUPkZwmwdYY2fBjqbu+i8gWUFC4SAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5N0EyNTgzNkI0MjlFOUU2RDE1NTE4REM3Mzk3MDBC
NkM5QzRGRDAeFw0yNTAyMDQxODAxNDRaFw0yNjAyMDMxODA2NDRaMDMxMTAvBgNV
BAMTKDgyNjAwRkVCNDAwQUE4NzlENkQyMjA1NzUxN0JBODQwQTA5QUVFMEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU0tTzm8sWccTW3znTMSiJrGhk
xom6jrqwF5MX4h7OXfTvqJQDtVdcwIa7733DDN9s8pN8woNwbmJ3HRGk6xpq1XYP
Y8c3iMVThO2khmgXLPSYMes1Z2eZ9Le/znGgyN+lpRW8F2Y2fxXItoAHJmIf2vqG
ZqPQyNSvnWcp9YKdlYicb1/K68K+1Vn0KPUjFb+6NP46hbLG99YhJahkgO3cvFyp
Q4Q9LiFBWje/JfuXPxT0rRDJXkDXgYfpRGjtkKhdvQOAjfwW/XKj1JGHVY9Jzb3w
cq2GYF8IUqt9C/snSZBulvU5WAf1blm/qF5+IhBm5/bg2F+luqIabGD/JVVrAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUgmAP60AKqHnW0iBXUXuoQKCa7g4wHwYDVR0j
BBgwFoAUeZeiWDa0Kenm0VUY3HOXALbJxP0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy80RjJGRkZCMEIzODM0MDQ1RjdDNDI4MkFFQjRDNjQ1REQ5
NDYxNzUwQ0NENTMzOEY4Q0M2RkQ2NUY1QUUxQ0NBLzAvNzk5N0EyNTgzNkI0MjlF
OUU2RDE1NTE4REM3Mzk3MDBCNkM5QzRGRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83OTk3QTI1ODM2QjQyOUU5RTZE
MTU1MThEQzczOTcwMEI2QzlDNEZELmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNEYyRkZGQjBCMzgzNDA0NUY3QzQyODJBRUI0QzY0NUREOTQ2MTc1MEND
RDUzMzhGOENDNkZENjVGNUFFMUNDQS8wLzMxMzgzOTJlMzIzMDM0MmUzMjMzMzUy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM4MzczMzM0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvczr
MA0GCSqGSIb3DQEBCwUAA4IBAQAxkTHdaZKCvS6wD9mtpV9CgkUPY2nr8DnhjdIx
LdBxSo4GOIpGtkJrfGAX/hxXbM/sULdCIEQxu8VgzROLa07ND5rdjdXQWVHPl02p
4QjPLIlUyxrhJz4XFX4ZRz4DXtGTTgrtrEeKLRPjwsGmKWnxSMqtoi6Q2GBsxTJ8
TQJdgfCHA9B68jYiBKaAn2Z9qzCuxwkbElAeA4BKC9j/bUPpYIBpeLgrXX8hOCAO
ui6c6WI3vsOgsRFqHwZuKqP4y2zC7cLWSEq8CETqydJ3Of1AKs7uB3BqZd0x5XUd
VDyXw+SXkEO8SFk0Bj/lTBDBd72xPLOwSrxEzQqgluXn03ME
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:05 2025 by rpki-client