Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e392e3134372e302f32342d3234203d3e203237383735.roa
File: 3230302e392e3134372e302f32342d3234203d3e203237383735.roa (raw, json)
Hash identifier: nvxUNYhQVdGJA1FBbX15dxVlZ2TpaQTeFe67bY7Ivss=
Subject key identifier: 8B:77:68:B1:FE:14:85:BB:39:45:10:AD:40:5D:59:89:72:88:1B:BA
Certificate issuer: /CN=D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC
Certificate serial: 53926B5AF21B42C77074490EEDF71EA3C345B41C
Authority key identifier: D0:53:F7:D4:2F:C9:FD:03:55:6A:9F:3D:2A:F9:E3:D2:22:1B:AD:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e392e3134372e302f32342d3234203d3e203237383735.roa
Signing time: Tue 04 Feb 2025 18:05:25 +0000
ROA not before: Tue 04 Feb 2025 18:00:25 +0000
ROA not after: Tue 03 Feb 2026 18:05:25 +0000
asID: 27875
IP address blocks: 200.9.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:92:6b:5a:f2:1b:42:c7:70:74:49:0e:ed:f7:1e:a3:c3:45:b4:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC
Validity
Not Before: Feb 4 18:00:25 2025 GMT
Not After : Feb 3 18:05:25 2026 GMT
Subject: CN=8B7768B1FE1485BB394510AD405D598972881BBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8c:75:65:f7:e5:e3:c1:30:a8:4c:e9:23:92:
c3:f1:03:34:24:5b:e0:45:39:75:74:2c:be:f0:8d:
85:ab:29:2d:0a:dc:77:a1:b2:1a:1c:2d:8b:ca:7c:
4a:c3:9d:ea:be:c9:60:09:1b:d8:dc:a4:72:c1:79:
d7:a0:1f:46:2b:74:aa:09:29:4a:62:79:9d:b6:d3:
8a:b0:fb:14:5b:16:9e:91:c7:5b:a3:0b:38:63:55:
03:67:c7:0a:9f:a9:e7:56:45:5a:b3:c6:65:95:77:
a9:12:a2:e9:f6:c1:09:b6:e8:20:a8:2f:69:56:23:
35:ea:e5:ac:92:1a:e2:7d:ec:80:84:e5:e2:a8:50:
e9:05:40:3c:10:a4:0a:66:4e:85:e8:e4:bb:84:bb:
9f:9b:f9:83:d1:8c:db:f0:ed:ea:04:05:6a:0f:a5:
fa:2d:d1:49:4d:5f:98:5f:e3:51:40:e0:60:c7:c6:
ae:4d:02:7a:e9:34:29:7e:19:20:66:ab:14:21:61:
84:0c:9c:2e:91:b2:c9:aa:3f:8f:31:1c:c3:50:48:
e3:26:85:7c:32:74:0f:55:4e:45:e1:bb:77:d7:82:
57:4d:51:ae:52:75:16:24:54:d8:87:f9:7d:3e:b5:
31:2c:77:42:ac:17:fa:ca:0b:d8:75:b9:72:ba:bb:
60:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:77:68:B1:FE:14:85:BB:39:45:10:AD:40:5D:59:89:72:88:1B:BA
X509v3 Authority Key Identifier:
keyid:D0:53:F7:D4:2F:C9:FD:03:55:6A:9F:3D:2A:F9:E3:D2:22:1B:AD:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e392e3134372e302f32342d3234203d3e203237383735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.9.147.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:07:60:09:07:bf:35:59:b8:75:39:a6:ad:ee:e1:ea:f2:c3:
df:3b:c0:4f:6a:e7:22:0a:f3:8b:6e:cc:68:d6:16:06:fe:5c:
dc:ab:02:d5:f9:6b:5d:1f:bb:89:82:df:fa:06:1a:48:7f:e5:
d3:5e:38:ed:cb:28:fa:76:2b:65:9e:68:38:e8:d2:ae:ee:d8:
bc:0d:d9:c3:7a:88:4b:13:24:34:ac:42:ef:7c:78:88:2b:83:
1d:5b:18:13:b3:6e:40:4c:41:9a:cb:5c:77:2b:e9:0f:c1:ff:
7f:74:96:74:0b:33:25:a7:e5:70:a2:9b:11:1c:5b:5a:0a:a8:
83:5a:54:e5:ab:e2:64:18:ef:99:ae:3f:dc:b0:83:fa:9b:a2:
f4:c5:0c:99:91:e4:e8:cd:2f:1f:1e:c1:3d:aa:11:64:d6:c8:
21:2c:89:a2:fc:dd:6c:a0:97:44:5e:53:0b:4e:0c:cf:d2:fe:
39:4a:4f:a3:a8:4c:61:84:94:a2:15:2b:56:2c:48:8b:6e:d5:
df:86:aa:3f:86:e4:68:a9:85:3d:b2:30:2e:ed:ec:5f:37:ea:
a4:67:17:29:1d:f0:e7:dc:ec:e0:e1:1e:19:20:64:02:6e:d3:
94:2f:ff:e6:e0:15:6c:93:32:15:49:88:3c:cd:02:ec:ae:18:
b9:40:6a:9d
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUU5JrWvIbQsdwdEkO7fceo8NFtBwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDA1M0Y3RDQyRkM5RkQwMzU1NkE5RjNEMkFGOUUzRDIy
MjFCQURGQzAeFw0yNTAyMDQxODAwMjVaFw0yNjAyMDMxODA1MjVaMDMxMTAvBgNV
BAMTKDhCNzc2OEIxRkUxNDg1QkIzOTQ1MTBBRDQwNUQ1OTg5NzI4ODFCQkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLjHVl9+XjwTCoTOkjksPxAzQk
W+BFOXV0LL7wjYWrKS0K3HehshocLYvKfErDneq+yWAJG9jcpHLBedegH0YrdKoJ
KUpieZ2204qw+xRbFp6Rx1ujCzhjVQNnxwqfqedWRVqzxmWVd6kSoun2wQm26CCo
L2lWIzXq5aySGuJ97ICE5eKoUOkFQDwQpApmToXo5LuEu5+b+YPRjNvw7eoEBWoP
pfot0UlNX5hf41FA4GDHxq5NAnrpNCl+GSBmqxQhYYQMnC6RssmqP48xHMNQSOMm
hXwydA9VTkXhu3fXgldNUa5SdRYkVNiH+X0+tTEsd0KsF/rKC9h1uXK6u2B/AgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUi3dosf4Uhbs5RRCtQF1ZiXKIG7owHwYDVR0j
BBgwFoAU0FP31C/J/QNVap89Kvnj0iIbrfwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83MUY5ODlGOEM1RkY5RTlFMTI2QzVGOTBGRUY5Rjk1QTEz
RjJGN0U4MTBGNjhEMEU0NDE2NjRCRTNGQTlDMDI0LzAvRDA1M0Y3RDQyRkM5RkQw
MzU1NkE5RjNEMkFGOUUzRDIyMjFCQURGQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EMDUzRjdENDJGQzlGRDAzNTU2
QTlGM0QyQUY5RTNEMjIyMUJBREZDLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNzFGOTg5RjhDNUZGOUU5RTEyNkM1RjkwRkVGOUY5NUExM0YyRjdFODEw
RjY4RDBFNDQxNjY0QkUzRkE5QzAyNC8wLzMyMzAzMDJlMzkyZTMxMzQzNzJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzczODM3MzUucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADICZMwDQYJ
KoZIhvcNAQELBQADggEBAJ0HYAkHvzVZuHU5pq3u4eryw987wE9q5yIK84tuzGjW
Fgb+XNyrAtX5a10fu4mC3/oGGkh/5dNeOO3LKPp2K2WeaDjo0q7u2LwN2cN6iEsT
JDSsQu98eIgrgx1bGBOzbkBMQZrLXHcr6Q/B/390lnQLMyWn5XCimxEcW1oKqINa
VOWr4mQY75muP9ywg/qbovTFDJmR5OjNLx8ewT2qEWTWyCEsiaL83Wygl0ReUwtO
DM/S/jlKT6OoTGGElKIVK1YsSItu1d+Gqj+G5GiphT2yMC7t7F836qRnFykd8Ofc
7ODhHhkgZAJu05Qv/+bgFWyTMhVJiDzNAuyuGLlAap0=
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:47:06 2025 by rpki-client