Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS27813.roa
File: AS27813.roa (raw, json)
Hash identifier: eHobZv8zpIkuSopm/p3T2RX5bved+9eYV/T+kCy3HeE=
Subject key identifier: 39:1C:E5:A4:06:1A:EF:8C:1C:87:5B:92:59:F5:D8:75:D1:8F:2F:17
Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial: 2C18C789256918F0138EF013653DB1D21803679F
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS27813.roa
Signing time: Tue 04 Feb 2025 18:13:38 +0000
ROA not before: Tue 04 Feb 2025 18:08:38 +0000
ROA not after: Tue 03 Feb 2026 18:13:38 +0000
asID: 27813
IP address blocks: 201.254.236.0/24 maxlen: 24
201.254.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:18:c7:89:25:69:18:f0:13:8e:f0:13:65:3d:b1:d2:18:03:67:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Validity
Not Before: Feb 4 18:08:38 2025 GMT
Not After : Feb 3 18:13:38 2026 GMT
Subject: CN=391CE5A4061AEF8C1C875B9259F5D875D18F2F17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:15:d3:d8:ee:d9:e3:0e:76:c3:8b:36:a1:2c:
9e:19:a5:a6:fc:5e:d3:03:c3:a2:73:24:62:41:59:
ee:fe:46:59:d3:6a:44:90:28:fb:9e:dd:3a:73:b9:
46:b4:27:a7:65:2c:9b:12:13:c6:d7:63:48:cb:7a:
37:f2:74:09:ef:8a:e5:28:d7:92:36:9c:41:d7:7b:
b9:ec:56:04:f6:52:0d:b4:a8:8b:db:96:44:aa:b3:
59:92:e1:f4:e1:fb:87:7f:b2:2b:12:9a:e5:55:27:
5d:9e:62:ea:5a:82:b4:43:3b:a0:33:08:09:48:f3:
d4:88:72:e4:13:2a:4b:58:ab:d3:0a:a4:ac:20:53:
c6:7a:f7:4a:33:6e:f8:9d:4d:a4:79:9c:a7:88:9a:
7c:4a:c9:1b:a2:74:4d:9b:cd:f5:5c:de:b3:14:ad:
3f:ec:51:d5:b4:54:6a:64:de:23:35:7f:a6:af:ca:
b7:34:b9:54:c6:f7:23:25:82:67:5b:09:47:39:15:
6c:76:61:5b:e5:1e:35:cf:92:24:29:9b:06:0a:e0:
b6:88:c9:68:1c:e7:24:90:97:50:df:7c:8b:05:df:
48:86:45:7e:55:ba:3d:9b:30:dd:24:d7:ae:30:6e:
2e:ac:48:68:f2:20:cf:43:59:e6:6a:16:9c:d8:14:
0b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:1C:E5:A4:06:1A:EF:8C:1C:87:5B:92:59:F5:D8:75:D1:8F:2F:17
X509v3 Authority Key Identifier:
keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS27813.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.254.236.0/24
201.254.238.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:9d:cd:b8:25:30:a8:05:cb:bb:9c:f0:9a:3f:37:1f:9b:90:
52:40:59:b6:15:dd:bd:75:6d:0d:5b:1b:88:6e:4c:1c:28:63:
d9:6b:62:82:83:75:d7:d2:ec:c3:3a:18:95:12:32:46:db:de:
52:30:46:8c:fb:c3:98:82:d6:8e:fe:cf:17:b1:72:bf:24:a2:
68:8e:ae:d2:4b:7b:0d:11:f9:fe:3d:6d:ac:b6:93:01:ae:c6:
ca:8e:d8:92:6f:bf:7e:2a:5b:60:73:a1:99:24:01:8d:66:96:
16:ba:96:24:fa:44:de:02:ab:c4:a6:42:c0:f2:4b:42:dc:24:
5f:28:05:ee:c1:6b:b1:d2:70:2b:b7:43:94:80:d8:ec:bf:6f:
4e:99:d1:58:55:53:f0:26:f2:7b:05:51:d5:ff:44:c4:0a:f7:
aa:97:f4:6f:8e:62:df:9a:d6:87:35:e8:04:d2:8f:7c:6d:30:
f0:46:68:7f:d6:1e:c0:41:60:c9:a7:05:21:d4:b0:ac:01:61:
ff:ed:a8:8d:bc:b5:ed:bd:6b:06:24:4e:d5:25:c0:90:35:84:
2a:08:21:41:ef:20:d2:25:32:9b:77:76:4c:ae:cc:07:2c:e6:
53:ba:4e:75:da:f8:37:f7:34:21:89:c6:db:d6:ae:97:7f:3a:
e4:66:5b:c4
-----BEGIN CERTIFICATE-----
MIIFlDCCBHygAwIBAgIULBjHiSVpGPATjvATZT2x0hgDZ58wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDEwODE5QzdDOUI0Qzg1Q0UwQjFEMjI3NDFCRTVFNDBB
MUYwRTdCMTAeFw0yNTAyMDQxODA4MzhaFw0yNjAyMDMxODEzMzhaMDMxMTAvBgNV
BAMTKDM5MUNFNUE0MDYxQUVGOEMxQzg3NUI5MjU5RjVEODc1RDE4RjJGMTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0FdPY7tnjDnbDizahLJ4Zpab8
XtMDw6JzJGJBWe7+RlnTakSQKPue3TpzuUa0J6dlLJsSE8bXY0jLejfydAnviuUo
15I2nEHXe7nsVgT2Ug20qIvblkSqs1mS4fTh+4d/sisSmuVVJ12eYupagrRDO6Az
CAlI89SIcuQTKktYq9MKpKwgU8Z690ozbvidTaR5nKeImnxKyRuidE2bzfVc3rMU
rT/sUdW0VGpk3iM1f6avyrc0uVTG9yMlgmdbCUc5FWx2YVvlHjXPkiQpmwYK4LaI
yWgc5ySQl1DffIsF30iGRX5Vuj2bMN0k164wbi6sSGjyIM9DWeZqFpzYFAvLAgMB
AAGjggKeMIICmjAdBgNVHQ4EFgQUORzlpAYa74wch1uSWfXYddGPLxcwHwYDVR0j
BBgwFoAUQQgZx8m0yFzgsdInQb5eQKHw57EwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81RDFBNUU2NUFDQjQxNzMzOTg1NUFEQTVBNkM1NDE2REMw
NDFDQ0YwNjQwODAzODQzODk4QkU1NkM0REY2QzMyLzAvNDEwODE5QzdDOUI0Qzg1
Q0UwQjFEMjI3NDFCRTVFNDBBMUYwRTdCMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80MTA4MTlDN0M5QjRDODVDRTBC
MUQyMjc0MUJFNUU0MEExRjBFN0IxLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG
CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy81RDFBNUU2NUFDQjQxNzMzOTg1NUFEQTVBNkM1NDE2REMwNDFDQ0YwNjQw
ODAzODQzODk4QkU1NkM0REY2QzMyLzAvQVMyNzgxMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMn+7AME
AMn+7jANBgkqhkiG9w0BAQsFAAOCAQEAzJ3NuCUwqAXLu5zwmj83H5uQUkBZthXd
vXVtDVsbiG5MHChj2WtigoN119LswzoYlRIyRtveUjBGjPvDmILWjv7PF7FyvySi
aI6u0kt7DRH5/j1trLaTAa7Gyo7Ykm+/fipbYHOhmSQBjWaWFrqWJPpE3gKrxKZC
wPJLQtwkXygF7sFrsdJwK7dDlIDY7L9vTpnRWFVT8CbyewVR1f9ExAr3qpf0b45i
35rWhzXoBNKPfG0w8EZof9YewEFgyacFIdSwrAFh/+2ojby17b1rBiRO1SXAkDWE
KgghQe8g0iUym3d2TK7MByzmU7pOddr4N/c0IYnG29aul3865GZbxA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:17:06 2025 by rpki-client