Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS263221.roa
File: AS263221.roa (raw, json)
Hash identifier: 8RCUXM3bfwcnuhh9joHQdTobc/8IXoIivyGjv6dOnTg=
Subject key identifier: 30:CA:78:5F:E9:09:67:AE:49:30:F4:EF:D9:BA:8A:50:BE:08:5F:0F
Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial: 6E3A6ED6AF303B68C8AE92475AE941ED89084E2B
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS263221.roa
Signing time: Tue 04 Feb 2025 18:13:45 +0000
ROA not before: Tue 04 Feb 2025 18:08:45 +0000
ROA not after: Tue 03 Feb 2026 18:13:45 +0000
asID: 263221
IP address blocks: 201.251.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:3a:6e:d6:af:30:3b:68:c8:ae:92:47:5a:e9:41:ed:89:08:4e:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Validity
Not Before: Feb 4 18:08:45 2025 GMT
Not After : Feb 3 18:13:45 2026 GMT
Subject: CN=30CA785FE90967AE4930F4EFD9BA8A50BE085F0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f1:2e:7f:ab:bb:2f:10:a2:c7:71:4d:c1:34:
c6:a2:4c:bf:35:35:90:d8:a0:2e:02:e2:05:30:0c:
c5:48:95:81:40:18:8b:81:04:f9:52:7d:ac:9d:bf:
57:30:15:19:3c:a9:05:a4:6a:cf:fc:00:5f:b9:0e:
fe:a8:00:9a:69:fb:bf:77:55:e1:b1:75:7b:1d:96:
6a:b2:2d:13:3e:e2:5a:04:a2:0d:58:fa:06:0b:83:
fc:c9:5d:62:98:ee:d0:a2:d1:3b:f5:53:bf:c4:7d:
b3:9e:23:74:5c:29:64:45:86:6e:28:f7:c8:ca:39:
d8:12:63:8f:83:8c:a7:68:ed:00:4e:b8:05:1d:55:
59:39:e1:28:f9:c5:5f:fd:84:3b:0d:8a:d4:1b:d9:
01:fe:d4:57:0e:af:1c:8d:84:b3:26:40:8a:9f:ae:
5c:94:39:d7:68:09:31:52:9c:52:18:28:f4:ec:5e:
9e:b4:46:91:f5:b5:4d:9c:e7:18:59:9e:08:ed:51:
73:20:04:73:29:da:4c:e1:0b:9e:45:17:a8:f1:83:
98:1d:22:52:cc:02:fa:09:65:4b:c5:f6:f9:ab:b2:
b1:ff:80:67:72:ef:8e:a2:31:a9:0f:bd:79:8d:67:
a2:7d:48:2c:b1:b0:31:a3:fa:72:66:74:c3:61:8b:
a0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:CA:78:5F:E9:09:67:AE:49:30:F4:EF:D9:BA:8A:50:BE:08:5F:0F
X509v3 Authority Key Identifier:
keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS263221.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.251.40.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:02:47:c3:1b:c5:45:38:98:2b:a3:a3:fd:f6:fd:16:9d:07:
c9:21:29:76:40:96:23:53:41:ae:9a:41:20:6e:0f:78:1c:c6:
f5:7d:b2:2d:b7:4f:6b:b1:81:c2:39:9f:d0:dd:fd:c0:7c:86:
c2:ae:eb:e6:da:da:12:c0:e5:2d:26:00:e5:0c:6e:f0:4b:69:
5b:01:32:6d:de:8b:a8:d0:e3:a0:11:c9:10:b2:8f:e7:cd:9b:
c4:a4:8f:05:cb:33:1f:18:ab:cd:f3:6f:b7:d4:7e:df:30:18:
3f:1a:93:4c:f7:1e:8a:16:49:fc:28:74:ed:5a:4f:ae:7d:e5:
80:32:71:11:6f:4e:50:87:51:f7:bb:5b:e7:0c:8d:21:41:74:
e2:03:09:64:2d:4d:b7:23:73:20:7c:ef:8a:70:ae:02:b1:06:
b2:81:18:0d:2b:ba:66:e4:44:58:d7:87:a8:18:ef:eb:81:49:
ce:5e:7e:06:73:ba:d4:0b:86:88:e9:aa:9d:a6:18:5c:71:47:
72:7c:4f:09:f2:23:78:44:32:09:97:4e:83:bc:8d:8b:72:d1:
38:18:f4:95:6f:d3:c3:32:03:13:a1:56:ee:8d:e6:8c:2d:52:
76:7f:7e:54:f5:01:38:b9:e2:e9:df:36:f7:01:2f:52:e0:d0:
f9:29:01:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:08:59 2025 by rpki-client