Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e33352e302f32342d3234203d3e20323732303937.roa
File: 3135372e3130302e33352e302f32342d3234203d3e20323732303937.roa (raw, json)
Hash identifier: gj/d6NO0zf7TBiiLhbyOYlGuC4aY82mmyPpOHmZDB4o=
Subject key identifier: 0A:C8:1E:2A:61:2A:62:FF:E8:D8:C0:6E:CD:BD:0E:15:AC:EA:2C:71
Certificate issuer: /CN=77570511D6CF51E3ABAFB2F756FE17F5291D8648
Certificate serial: 2DC614904627FC6E7BCEBE0BD34F9C00666AB086
Authority key identifier: 77:57:05:11:D6:CF:51:E3:AB:AF:B2:F7:56:FE:17:F5:29:1D:86:48
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e33352e302f32342d3234203d3e20323732303937.roa
Signing time: Tue 04 Feb 2025 20:08:29 +0000
ROA not before: Tue 04 Feb 2025 20:03:29 +0000
ROA not after: Tue 03 Feb 2026 20:08:29 +0000
asID: 272097
IP address blocks: 157.100.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:c6:14:90:46:27:fc:6e:7b:ce:be:0b:d3:4f:9c:00:66:6a:b0:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77570511D6CF51E3ABAFB2F756FE17F5291D8648
Validity
Not Before: Feb 4 20:03:29 2025 GMT
Not After : Feb 3 20:08:29 2026 GMT
Subject: CN=0AC81E2A612A62FFE8D8C06ECDBD0E15ACEA2C71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b7:1e:2f:e2:80:64:a2:6e:ba:07:94:09:5e:
9a:5c:e7:b1:dd:ef:d6:48:35:89:47:3e:d6:84:29:
04:6a:de:45:bc:78:b6:ba:26:4e:f9:ae:1b:22:87:
d5:f2:b4:4c:5e:86:45:45:c2:a8:0a:4f:d9:06:2e:
d7:d1:c4:34:b0:b6:9a:d0:6e:f9:a9:c0:68:0f:cd:
1e:9c:e2:63:d6:27:dd:5b:ea:ee:e3:77:8a:f6:d5:
9b:98:2d:8e:73:9b:7e:39:34:1e:77:e9:b4:7a:5b:
8b:31:6b:43:5b:e5:59:f7:a0:e6:fb:11:ff:37:5b:
b2:d9:3b:1d:f7:fd:ca:53:d9:d0:7f:94:67:2a:fc:
30:d2:48:04:0f:08:98:83:d1:54:29:ad:b7:f1:a4:
65:b0:8f:ab:5c:39:f3:68:49:cb:21:f7:9d:bd:7a:
08:b4:d4:fc:34:4a:06:7e:bf:a8:7a:d8:61:40:6b:
b7:6b:a4:07:d4:c4:32:40:96:bf:1c:f9:64:0c:7b:
78:f3:ab:80:7c:cf:56:ed:47:60:fb:e6:d0:1a:67:
65:83:64:ec:ef:31:0b:4a:c9:88:bd:7b:d7:5e:5a:
41:0c:d5:f1:76:3b:9e:59:38:65:a5:9a:a6:e8:e9:
76:2a:b2:08:84:a0:30:b3:71:d0:63:44:3e:cf:81:
37:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C8:1E:2A:61:2A:62:FF:E8:D8:C0:6E:CD:BD:0E:15:AC:EA:2C:71
X509v3 Authority Key Identifier:
keyid:77:57:05:11:D6:CF:51:E3:AB:AF:B2:F7:56:FE:17:F5:29:1D:86:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e33352e302f32342d3234203d3e20323732303937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.100.35.0/24
Signature Algorithm: sha256WithRSAEncryption
03:ad:71:92:43:63:f7:87:11:66:7b:fb:8e:3e:c5:17:16:bd:
1a:ac:ab:cb:ec:44:7d:0a:60:4b:1a:52:9e:ca:5c:71:75:e8:
a9:3b:e3:a5:5c:51:00:62:3b:0f:d0:16:2b:61:67:aa:7b:8b:
43:fd:4b:e8:b3:2d:8e:b2:5a:5c:d0:31:b6:01:6b:f7:f9:b3:
e9:a2:0d:6b:55:62:c4:8f:7a:a2:0b:02:54:bf:c0:59:2a:00:
a9:1d:3f:84:fb:1e:c4:14:08:ea:e3:23:f1:b2:3d:98:3a:89:
37:28:ee:f1:8c:93:bc:9c:ac:91:b6:5a:45:1d:61:a3:e3:f5:
2d:00:43:0c:29:d5:41:21:9d:4a:88:b3:09:9f:91:29:8d:af:
c4:82:7f:09:cc:8a:4f:34:10:86:16:d9:97:e0:68:d5:af:80:
65:0f:5a:c2:1a:24:0c:5a:37:e5:ba:7a:aa:4c:b9:a6:fd:04:
d0:eb:97:34:e9:26:45:07:e2:55:74:a1:15:28:0a:26:1d:3e:
e5:85:fd:94:99:dd:62:34:d4:b0:33:c7:bd:81:e1:16:14:2f:
83:a9:84:78:bc:ce:75:39:86:98:b1:8d:fa:e5:64:3a:92:0b:
e8:45:ec:fd:0e:73:a5:2e:d1:7a:7b:3f:04:3a:f0:45:a8:5d:
25:d6:26:b8
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIULcYUkEYn/G57zr4L00+cAGZqsIYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzc1NzA1MTFENkNGNTFFM0FCQUZCMkY3NTZGRTE3RjUy
OTFEODY0ODAeFw0yNTAyMDQyMDAzMjlaFw0yNjAyMDMyMDA4MjlaMDMxMTAvBgNV
BAMTKDBBQzgxRTJBNjEyQTYyRkZFOEQ4QzA2RUNEQkQwRTE1QUNFQTJDNzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDatx4v4oBkom66B5QJXppc57Hd
79ZINYlHPtaEKQRq3kW8eLa6Jk75rhsih9XytExehkVFwqgKT9kGLtfRxDSwtprQ
bvmpwGgPzR6c4mPWJ91b6u7jd4r21ZuYLY5zm345NB536bR6W4sxa0Nb5Vn3oOb7
Ef83W7LZOx33/cpT2dB/lGcq/DDSSAQPCJiD0VQprbfxpGWwj6tcOfNoScsh9529
egi01Pw0SgZ+v6h62GFAa7drpAfUxDJAlr8c+WQMe3jzq4B8z1btR2D75tAaZ2WD
ZOzvMQtKyYi9e9deWkEM1fF2O55ZOGWlmqbo6XYqsgiEoDCzcdBjRD7PgTcrAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUCsgeKmEqYv/o2MBuzb0OFazqLHEwHwYDVR0j
BBgwFoAUd1cFEdbPUeOrr7L3Vv4X9SkdhkgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81ODM4NjlERjlENkE4Q0Q2Njg2RjExQzJBMTA0MEY3RkU4
QUI2ODZBQjI2N0QyODcxQkU5NzI5MUIzOThGMUNBLzAvNzc1NzA1MTFENkNGNTFF
M0FCQUZCMkY3NTZGRTE3RjUyOTFEODY0OC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83NzU3MDUxMUQ2Q0Y1MUUzQUJB
RkIyRjc1NkZFMTdGNTI5MUQ4NjQ4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTgzODY5REY5RDZBOENENjY4NkYxMUMyQTEwNDBGN0ZFOEFCNjg2QUIy
NjdEMjg3MUJFOTcyOTFCMzk4RjFDQS8wLzMxMzUzNzJlMzEzMDMwMmUzMzM1MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzMyMzAzOTM3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnWQj
MA0GCSqGSIb3DQEBCwUAA4IBAQADrXGSQ2P3hxFme/uOPsUXFr0arKvL7ER9CmBL
GlKeylxxdeipO+OlXFEAYjsP0BYrYWeqe4tD/Uvosy2Oslpc0DG2AWv3+bPpog1r
VWLEj3qiCwJUv8BZKgCpHT+E+x7EFAjq4yPxsj2YOok3KO7xjJO8nKyRtlpFHWGj
4/UtAEMMKdVBIZ1KiLMJn5Epja/Egn8JzIpPNBCGFtmX4GjVr4BlD1rCGiQMWjfl
unqqTLmm/QTQ65c06SZFB+JVdKEVKAomHT7lhf2Umd1iNNSwM8e9geEWFC+DqYR4
vM51OYaYsY365WQ6kgvoRez9DnOlLtF6ez8EOvBFqF0l1ia4
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:59:00 2025 by rpki-client