Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6699EC6C7E3534FBE5924BD4393A1CCB4806FA2E55AECBEBB96E8CDE9DA995F8/0/3230372e3234382e3131342e302f32332d3233203d3e203238343538.roa
File: 3230372e3234382e3131342e302f32332d3233203d3e203238343538.roa (raw, json)
Hash identifier: ElCM03a8bON5NdnMN/hJXigSfaU5CplrF/7GpSF49wE=
Subject key identifier: 62:A7:72:AE:66:4B:A6:C6:D6:91:59:5F:0D:B5:6A:F9:43:FE:A3:55
Certificate issuer: /CN=03C9CC4EE8A51FF28A7D5811EFAB0F0C705F0DC9
Certificate serial: 4EC3FC13DC3CADECF42245BB360BBE63450ED88B
Authority key identifier: 03:C9:CC:4E:E8:A5:1F:F2:8A:7D:58:11:EF:AB:0F:0C:70:5F:0D:C9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/03C9CC4EE8A51FF28A7D5811EFAB0F0C705F0DC9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6699EC6C7E3534FBE5924BD4393A1CCB4806FA2E55AECBEBB96E8CDE9DA995F8/0/3230372e3234382e3131342e302f32332d3233203d3e203238343538.roa
Signing time: Tue 04 Feb 2025 18:47:17 +0000
ROA not before: Tue 04 Feb 2025 18:42:17 +0000
ROA not after: Tue 03 Feb 2026 18:47:17 +0000
asID: 28458
IP address blocks: 207.248.114.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:c3:fc:13:dc:3c:ad:ec:f4:22:45:bb:36:0b:be:63:45:0e:d8:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03C9CC4EE8A51FF28A7D5811EFAB0F0C705F0DC9
Validity
Not Before: Feb 4 18:42:17 2025 GMT
Not After : Feb 3 18:47:17 2026 GMT
Subject: CN=62A772AE664BA6C6D691595F0DB56AF943FEA355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c8:a2:b5:0f:4e:88:77:f2:20:19:6c:98:0d:
0f:6f:51:d9:cf:bf:6b:fa:60:8f:a6:c8:38:2a:fc:
d4:4b:95:c9:d1:7b:ff:ac:90:b3:42:1d:96:66:15:
a4:29:28:38:e4:ce:6f:b7:66:ea:bf:a5:21:e7:e9:
57:96:47:67:b4:04:b9:e1:58:f3:62:ab:b7:64:e4:
1f:99:bc:b5:a9:a9:f0:28:e9:88:5f:76:3d:b3:e6:
33:e2:7d:08:9f:e5:db:48:fb:27:06:01:10:87:45:
69:2a:36:d9:d3:97:83:37:ff:8a:08:58:2d:0d:01:
9e:6a:a1:3c:69:35:88:d3:ae:62:e3:80:11:32:e9:
60:02:b3:7c:25:0b:3b:8a:ec:d9:55:f2:74:0d:9c:
65:98:59:5b:5f:9c:12:4e:b5:aa:72:74:d5:13:7b:
7b:87:89:a7:23:a4:9e:c4:b9:50:2e:a6:17:93:61:
d9:01:d5:31:d9:45:0d:8a:b6:ce:2b:89:22:25:e5:
c6:18:30:c9:68:5e:65:69:ef:c2:59:10:ff:ce:e1:
55:0c:ee:c6:08:2b:57:44:65:63:bc:95:40:31:6b:
a6:52:9e:33:d1:4b:ba:e5:4e:a2:85:fd:a6:68:df:
69:67:14:cc:ec:a7:94:16:b1:d9:53:a6:6c:2e:ec:
34:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A7:72:AE:66:4B:A6:C6:D6:91:59:5F:0D:B5:6A:F9:43:FE:A3:55
X509v3 Authority Key Identifier:
keyid:03:C9:CC:4E:E8:A5:1F:F2:8A:7D:58:11:EF:AB:0F:0C:70:5F:0D:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6699EC6C7E3534FBE5924BD4393A1CCB4806FA2E55AECBEBB96E8CDE9DA995F8/0/03C9CC4EE8A51FF28A7D5811EFAB0F0C705F0DC9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/03C9CC4EE8A51FF28A7D5811EFAB0F0C705F0DC9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6699EC6C7E3534FBE5924BD4393A1CCB4806FA2E55AECBEBB96E8CDE9DA995F8/0/3230372e3234382e3131342e302f32332d3233203d3e203238343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.248.114.0/23
Signature Algorithm: sha256WithRSAEncryption
51:62:b0:90:79:19:58:5e:01:c3:5c:21:f1:1e:c7:0f:cf:f1:
59:f8:54:96:b5:5e:83:90:a2:eb:97:1f:3a:b5:c3:9b:10:2d:
ae:5d:a1:f6:b6:f1:a3:4a:08:f6:b1:13:08:36:c2:db:6c:46:
68:2c:8f:90:e6:24:d7:d3:ca:77:be:c0:e0:65:c7:ea:f2:e1:
93:03:a5:2f:d4:33:90:52:9e:b5:b3:01:da:aa:47:c0:9a:75:
48:7f:ae:e8:82:e9:95:29:ee:78:dc:99:74:9e:fa:cc:f9:5e:
68:2d:6c:24:e5:4a:20:c3:a5:b2:72:21:45:10:02:a5:b1:ed:
26:d0:da:fe:50:5f:01:7d:41:3e:cc:f5:1a:d8:6d:93:34:6a:
da:e1:8c:9a:bd:ba:fc:a8:d9:77:49:14:34:d5:bc:9e:69:74:
b0:f0:62:42:f8:00:2c:29:be:f4:99:9c:c5:ce:e9:e5:5e:3a:
ff:15:66:3f:91:64:e9:80:aa:2a:db:bc:e0:e5:f0:55:de:00:
35:3b:a4:63:23:3f:35:17:9e:8b:86:b0:0e:5a:3b:77:db:b6:
c9:67:39:bf:e5:9a:25:70:ab:fc:c1:38:f5:80:f2:99:bc:91:
9b:ed:54:b6:13:62:a4:e3:78:1a:8b:ad:7e:72:b4:ac:20:80:
8f:5e:5e:e0
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUTsP8E9w8rez0IkW7Ngu+Y0UO2IswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDNDOUNDNEVFOEE1MUZGMjhBN0Q1ODExRUZBQjBGMEM3
MDVGMERDOTAeFw0yNTAyMDQxODQyMTdaFw0yNjAyMDMxODQ3MTdaMDMxMTAvBgNV
BAMTKDYyQTc3MkFFNjY0QkE2QzZENjkxNTk1RjBEQjU2QUY5NDNGRUEzNTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcyKK1D06Id/IgGWyYDQ9vUdnP
v2v6YI+myDgq/NRLlcnRe/+skLNCHZZmFaQpKDjkzm+3Zuq/pSHn6VeWR2e0BLnh
WPNiq7dk5B+ZvLWpqfAo6Yhfdj2z5jPifQif5dtI+ycGARCHRWkqNtnTl4M3/4oI
WC0NAZ5qoTxpNYjTrmLjgBEy6WACs3wlCzuK7NlV8nQNnGWYWVtfnBJOtapydNUT
e3uHiacjpJ7EuVAupheTYdkB1THZRQ2Kts4riSIl5cYYMMloXmVp78JZEP/O4VUM
7sYIK1dEZWO8lUAxa6ZSnjPRS7rlTqKF/aZo32lnFMzsp5QWsdlTpmwu7DTJAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUYqdyrmZLpsbWkVlfDbVq+UP+o1UwHwYDVR0j
BBgwFoAUA8nMTuilH/KKfVgR76sPDHBfDckwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy82Njk5RUM2QzdFMzUzNEZCRTU5MjRCRDQzOTNBMUNDQjQ4
MDZGQTJFNTVBRUNCRUJCOTZFOENERTlEQTk5NUY4LzAvMDNDOUNDNEVFOEE1MUZG
MjhBN0Q1ODExRUZBQjBGMEM3MDVGMERDOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wM0M5Q0M0RUU4QTUxRkYyOEE3
RDU4MTFFRkFCMEYwQzcwNUYwREM5LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNjY5OUVDNkM3RTM1MzRGQkU1OTI0QkQ0MzkzQTFDQ0I0ODA2RkEyRTU1
QUVDQkVCQjk2RThDREU5REE5OTVGOC8wLzMyMzAzNzJlMzIzNDM4MmUzMTMxMzQy
ZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMjM4MzQzNTM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBz/hy
MA0GCSqGSIb3DQEBCwUAA4IBAQBRYrCQeRlYXgHDXCHxHscPz/FZ+FSWtV6DkKLr
lx86tcObEC2uXaH2tvGjSgj2sRMINsLbbEZoLI+Q5iTX08p3vsDgZcfq8uGTA6Uv
1DOQUp61swHaqkfAmnVIf67ogumVKe543Jl0nvrM+V5oLWwk5Uogw6WyciFFEAKl
se0m0Nr+UF8BfUE+zPUa2G2TNGra4Yyavbr8qNl3SRQ01byeaXSw8GJC+AAsKb70
mZzFzunlXjr/FWY/kWTpgKoq27zg5fBV3gA1O6RjIz81F56LhrAOWjt327bJZzm/
5ZolcKv8wTj1gPKZvJGb7VS2E2Kk43gai61+crSsIICPXl7g
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:23:16 2025 by rpki-client