Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/3137302e3234372e3136382e302f32322d3234203d3e203238303030.roa
File: 3137302e3234372e3136382e302f32322d3234203d3e203238303030.roa (raw, json)
Hash identifier: ShkYw9/8OkEndBSep1N0uO4RCQyGJYF5YlHKIi2vvyo=
Subject key identifier: 80:8C:8D:2C:FC:52:0E:5F:F7:81:F6:0D:DB:BC:DC:95:38:06:96:B0
Certificate issuer: /CN=1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE
Certificate serial: 2E1A9A25B54C3DF2FF81B444B1C98ECE954A4265
Authority key identifier: 1F:56:B9:01:1A:E8:C9:AD:DD:96:80:3D:EC:E1:D1:F9:30:6D:81:DE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/3137302e3234372e3136382e302f32322d3234203d3e203238303030.roa
Signing time: Tue 04 Feb 2025 18:19:36 +0000
ROA not before: Tue 04 Feb 2025 18:14:36 +0000
ROA not after: Tue 03 Feb 2026 18:19:36 +0000
asID: 28000
IP address blocks: 170.247.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:1a:9a:25:b5:4c:3d:f2:ff:81:b4:44:b1:c9:8e:ce:95:4a:42:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE
Validity
Not Before: Feb 4 18:14:36 2025 GMT
Not After : Feb 3 18:19:36 2026 GMT
Subject: CN=808C8D2CFC520E5FF781F60DDBBCDC95380696B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:40:a1:c0:a0:01:89:23:09:0d:11:ae:fe:67:
c5:53:9a:c0:11:ec:0e:9d:f1:cb:47:3d:87:6a:67:
79:de:da:74:47:3b:4d:01:b6:71:ff:bd:e0:6e:17:
13:e4:2b:7f:97:bb:ea:d1:f3:a7:48:0e:2a:11:44:
f4:0e:bf:1f:36:94:7e:e6:2e:11:f4:a7:d2:19:7d:
49:0e:b6:26:57:ea:44:c1:b4:52:01:e7:c3:58:0f:
36:2a:2e:51:c4:40:95:4f:ad:2e:f1:66:3b:a9:64:
41:d0:bd:a9:71:94:8f:d1:09:ea:57:e0:6f:60:13:
08:fe:ca:c0:ad:6c:1c:f8:ea:8b:28:02:9e:af:30:
bf:86:f4:b8:16:e6:77:6b:2a:3d:ec:8e:04:05:ad:
69:5b:08:31:d7:47:74:d5:12:0c:c4:ec:b9:38:5a:
15:ea:8f:9e:f7:a4:75:d9:a3:0d:ce:e4:22:a6:35:
a3:fa:9f:8b:67:23:47:0d:9f:32:30:29:7e:96:05:
db:8c:5e:37:dd:dd:f6:d9:e3:e5:92:e5:db:08:0d:
f4:52:3a:65:de:48:e9:d0:a0:5f:42:b7:84:dd:64:
af:43:e5:82:e0:1b:a1:ae:35:51:04:e6:04:6a:2d:
49:fa:7e:a8:e8:45:7b:8b:52:e0:b8:46:39:21:b7:
ec:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8C:8D:2C:FC:52:0E:5F:F7:81:F6:0D:DB:BC:DC:95:38:06:96:B0
X509v3 Authority Key Identifier:
keyid:1F:56:B9:01:1A:E8:C9:AD:DD:96:80:3D:EC:E1:D1:F9:30:6D:81:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/3137302e3234372e3136382e302f32322d3234203d3e203238303030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.247.168.0/22
Signature Algorithm: sha256WithRSAEncryption
67:da:94:be:ac:f8:eb:88:7a:0d:3f:89:b7:ae:d2:35:bb:e2:
35:b1:05:d8:c7:a6:2e:30:ed:2b:9f:17:e9:91:b4:71:67:5c:
4c:fd:cf:d8:c3:24:45:dd:85:31:6e:53:5d:f2:b4:84:33:5f:
94:0e:ca:d6:24:30:2c:c1:6c:58:bd:32:4b:4a:a9:c1:ac:88:
57:26:a9:20:da:c0:c1:40:62:e7:4e:4b:e6:5d:9b:c6:00:ad:
fd:19:8c:d1:60:60:c8:ae:70:68:58:63:33:1b:50:4d:4e:f6:
1e:75:eb:1c:03:aa:ab:af:43:6d:5d:35:a7:49:1a:d2:76:f9:
65:2e:f3:54:d5:c2:a2:0a:fb:64:d6:4a:f3:9d:f9:a7:88:26:
76:53:3a:21:d3:cf:41:85:4d:f4:61:cc:a3:17:10:96:f2:53:
1d:67:4e:dc:f2:31:c4:a2:48:d9:9d:5f:9b:d9:ce:9a:49:22:
3a:cf:d9:3c:3f:04:d8:5f:b7:45:95:ab:0a:f9:68:a6:cd:a4:
40:c1:e9:86:23:b5:88:5f:08:12:f6:9f:4c:e2:4a:3b:74:76:
6c:71:5d:25:f7:81:fd:2e:73:71:49:d6:d5:cf:46:d0:3e:6a:
ba:22:3e:fe:79:d6:30:b3:36:58:75:4e:76:f0:82:6d:5a:e4:
51:fc:82:7a
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIULhqaJbVMPfL/gbREscmOzpVKQmUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUY1NkI5MDExQUU4QzlBREREOTY4MDNERUNFMUQxRjkz
MDZEODFERTAeFw0yNTAyMDQxODE0MzZaFw0yNjAyMDMxODE5MzZaMDMxMTAvBgNV
BAMTKDgwOEM4RDJDRkM1MjBFNUZGNzgxRjYwRERCQkNEQzk1MzgwNjk2QjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQKHAoAGJIwkNEa7+Z8VTmsAR
7A6d8ctHPYdqZ3ne2nRHO00BtnH/veBuFxPkK3+Xu+rR86dIDioRRPQOvx82lH7m
LhH0p9IZfUkOtiZX6kTBtFIB58NYDzYqLlHEQJVPrS7xZjupZEHQvalxlI/RCepX
4G9gEwj+ysCtbBz46osoAp6vML+G9LgW5ndrKj3sjgQFrWlbCDHXR3TVEgzE7Lk4
WhXqj573pHXZow3O5CKmNaP6n4tnI0cNnzIwKX6WBduMXjfd3fbZ4+WS5dsIDfRS
OmXeSOnQoF9Ct4TdZK9D5YLgG6GuNVEE5gRqLUn6fqjoRXuLUuC4Rjkht+xPAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUgIyNLPxSDl/3gfYN27zclTgGlrAwHwYDVR0j
BBgwFoAUH1a5ARroya3dloA97OHR+TBtgd4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81QUMzM0Q0QUM4NDQ0MzlEOTQ1RjJGQTlGN0JCNzhGMDY0
NjhFMjJDOEJGNTgzNEE1NjhDQzAwMDQ5QUMzQTdCLzAvMUY1NkI5MDExQUU4QzlB
REREOTY4MDNERUNFMUQxRjkzMDZEODFERS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8xRjU2QjkwMTFBRThDOUFEREQ5
NjgwM0RFQ0UxRDFGOTMwNkQ4MURFLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNUFDMzNENEFDODQ0NDM5RDk0NUYyRkE5RjdCQjc4RjA2NDY4RTIyQzhC
RjU4MzRBNTY4Q0MwMDA0OUFDM0E3Qi8wLzMxMzczMDJlMzIzNDM3MmUzMTM2Mzgy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM4MzAzMDMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqveo
MA0GCSqGSIb3DQEBCwUAA4IBAQBn2pS+rPjriHoNP4m3rtI1u+I1sQXYx6YuMO0r
nxfpkbRxZ1xM/c/YwyRF3YUxblNd8rSEM1+UDsrWJDAswWxYvTJLSqnBrIhXJqkg
2sDBQGLnTkvmXZvGAK39GYzRYGDIrnBoWGMzG1BNTvYedescA6qrr0NtXTWnSRrS
dvllLvNU1cKiCvtk1krznfmniCZ2Uzoh089BhU30YcyjFxCW8lMdZ07c8jHEokjZ
nV+b2c6aSSI6z9k8PwTYX7dFlasK+WimzaRAwemGI7WIXwgS9p9M4ko7dHZscV0l
94H9LnNxSdbVz0bQPmq6Ij7+edYwszZYdU528IJtWuRR/IJ6
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:15 2025 by rpki-client