Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS10834.roa
File: AS10834.roa (raw, json)
Hash identifier: p601Qb/yCxiaultTEeEQg+D4fnAQFjHtorgh5n1zq1o=
Subject key identifier: 8F:B5:57:DF:18:77:47:42:1F:35:15:20:39:F8:A9:87:25:51:15:93
Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial: 4E28124418C35BCCA911B4AD15F97F03466F502E
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS10834.roa
Signing time: Tue 04 Feb 2025 18:13:45 +0000
ROA not before: Tue 04 Feb 2025 18:08:45 +0000
ROA not after: Tue 03 Feb 2026 18:13:45 +0000
asID: 10834
IP address blocks: 200.0.193.0/24 maxlen: 24
200.0.224.0/19 maxlen: 24
200.5.64.0/18 maxlen: 24
200.5.192.0/18 maxlen: 24
200.9.235.0/24 maxlen: 24
200.10.96.0/19 maxlen: 24
200.16.128.0/17 maxlen: 24
200.32.32.0/19 maxlen: 24
200.41.128.0/17 maxlen: 24
200.51.0.0/16 maxlen: 24
200.63.128.0/18 maxlen: 24
200.70.0.0/16 maxlen: 24
209.13.0.0/16 maxlen: 24
2800:381::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:28:12:44:18:c3:5b:cc:a9:11:b4:ad:15:f9:7f:03:46:6f:50:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Validity
Not Before: Feb 4 18:08:45 2025 GMT
Not After : Feb 3 18:13:45 2026 GMT
Subject: CN=8FB557DF187747421F35152039F8A98725511593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0d:2e:87:91:c9:8e:57:92:bc:ed:a6:d7:35:
4b:b0:dd:7a:5b:1e:0d:56:af:be:b2:51:65:d6:42:
fc:89:c2:a1:df:13:d3:b7:13:09:53:50:9c:f3:58:
42:70:30:96:c5:7c:58:83:51:a1:e9:e3:7e:78:09:
fc:55:9d:15:c2:5d:fb:0d:96:20:5f:16:ca:5b:ee:
ea:59:f4:16:83:ab:77:d4:02:de:99:5e:0e:fb:8f:
5c:17:67:c7:38:94:f3:c6:44:e7:ef:8c:91:98:bd:
0f:76:88:bc:8c:f3:00:b7:e5:3a:c9:7e:38:7c:60:
2c:d8:b5:95:31:55:cb:63:19:40:ac:32:2f:d9:44:
0f:22:4e:59:f0:46:44:22:31:a3:20:31:59:16:4c:
ad:82:14:f9:d7:f6:74:ec:83:df:eb:e4:ed:90:d5:
62:83:37:fe:5d:ca:b8:b9:5f:d2:c9:49:53:bd:cb:
d3:21:13:7e:e3:88:9b:4d:2a:ae:5e:f9:71:f3:b7:
77:20:9a:bc:e0:e0:5a:89:18:a2:96:a2:7b:14:64:
9d:98:8f:03:83:df:f3:01:64:30:1f:fe:29:13:a5:
81:6d:77:48:f1:44:bd:52:1e:69:3c:74:89:43:4b:
21:34:5b:46:39:cb:9f:5a:bc:83:62:52:ee:bb:4b:
c7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B5:57:DF:18:77:47:42:1F:35:15:20:39:F8:A9:87:25:51:15:93
X509v3 Authority Key Identifier:
keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS10834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.0.193.0/24
200.0.224.0/19
200.5.64.0/18
200.5.192.0/18
200.9.235.0/24
200.10.96.0/19
200.16.128.0/17
200.32.32.0/19
200.41.128.0/17
200.51.0.0/16
200.63.128.0/18
200.70.0.0/16
209.13.0.0/16
IPv6:
2800:381::/32
Signature Algorithm: sha256WithRSAEncryption
8d:1b:5a:96:c5:8c:35:19:2e:2c:a2:f3:41:ef:74:79:eb:64:
39:82:cb:6a:cc:f2:30:d8:db:16:4b:7d:12:ab:46:f4:6c:9c:
06:cf:31:3d:7e:10:a0:c4:d0:8a:61:f1:74:43:f0:94:d4:49:
93:4c:32:7f:af:dd:99:72:4b:5c:90:af:c4:c0:da:4c:4c:d1:
59:73:ac:b0:16:46:88:65:bf:d9:73:01:67:33:55:21:2a:8f:
fa:50:78:96:6a:fc:b3:e9:d5:32:64:2b:37:e1:7e:0a:99:d4:
2f:35:12:49:47:03:21:9a:22:8d:96:66:f1:c3:3d:cb:a2:67:
e7:2c:72:c4:78:94:4d:74:55:c3:1b:06:ea:07:e3:4b:57:79:
67:6c:fc:42:28:59:4c:03:82:f9:67:73:d2:6e:88:c0:15:be:
bd:1b:8f:84:9f:8a:70:fe:87:73:a9:0e:68:b5:7e:60:10:a0:
06:82:a8:3f:da:25:6d:8c:81:50:40:5d:eb:65:01:5a:af:53:
94:17:20:1b:e2:78:55:45:18:fa:b1:d2:a4:14:f8:d8:f6:bb:
1c:e1:93:82:9f:16:d5:a0:64:fa:7e:ad:95:60:cc:69:df:5c:
f6:3c:37:59:0e:34:cc:ed:da:78:fd:e2:bf:e7:36:c0:6f:d0:
15:ec:2e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:36 2025 by rpki-client