Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/794418365D334074A548836C11C067A312F99CA84C30CC293AFFA52625B3585D/0/3230302e38362e302e302f31362d3234203d3e203232303437.roa
File: 3230302e38362e302e302f31362d3234203d3e203232303437.roa (raw, json)
Hash identifier: nRdNDSn8IGfSZDMu7x5I9ce3DaciFvzty8KTFcyyl2s=
Subject key identifier: CF:5F:6F:CB:24:75:56:09:88:70:01:06:DF:5D:B5:18:31:6A:B9:5F
Certificate issuer: /CN=F5C85A7B72BB385E9CBD144A5858312E0797036F
Certificate serial: 2543EC7B19874DE2AC378568D9E8A255CAE543ED
Authority key identifier: F5:C8:5A:7B:72:BB:38:5E:9C:BD:14:4A:58:58:31:2E:07:97:03:6F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F5C85A7B72BB385E9CBD144A5858312E0797036F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/794418365D334074A548836C11C067A312F99CA84C30CC293AFFA52625B3585D/0/3230302e38362e302e302f31362d3234203d3e203232303437.roa
Signing time: Tue 04 Feb 2025 18:19:16 +0000
ROA not before: Tue 04 Feb 2025 18:14:16 +0000
ROA not after: Tue 03 Feb 2026 18:19:16 +0000
asID: 22047
IP address blocks: 200.86.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:43:ec:7b:19:87:4d:e2:ac:37:85:68:d9:e8:a2:55:ca:e5:43:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F5C85A7B72BB385E9CBD144A5858312E0797036F
Validity
Not Before: Feb 4 18:14:16 2025 GMT
Not After : Feb 3 18:19:16 2026 GMT
Subject: CN=CF5F6FCB2475560988700106DF5DB518316AB95F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0a:6c:4c:16:5b:3a:5d:be:4d:33:be:9b:1c:
b3:85:42:51:3e:2a:83:be:e9:54:b5:f9:a1:d2:c6:
f7:23:43:c3:67:13:00:6e:54:b4:57:ba:16:24:e7:
f4:bc:5d:8b:e3:86:94:1d:25:5a:41:d5:a5:08:0e:
2a:dd:7f:ed:53:51:5c:b3:20:97:f6:0a:5a:9a:e0:
e7:02:c8:d2:46:6a:59:e5:b5:63:81:98:d8:17:c6:
7b:07:d1:1b:ab:c7:93:bc:bc:f1:10:78:ab:b4:19:
97:50:a2:32:9c:44:64:7b:62:73:e8:13:2d:01:87:
8e:55:0b:f3:6d:eb:fb:91:88:85:f3:25:ff:97:80:
66:9f:80:10:46:a6:f3:96:36:aa:cb:95:45:c1:8a:
d1:bc:35:ab:a9:da:43:5a:47:f0:87:c3:dc:5a:5c:
7d:bc:0e:c8:c8:6d:e6:15:65:63:3b:98:df:b7:be:
72:22:36:28:c4:e2:b4:b0:a5:d2:be:71:ed:b9:a5:
bf:26:09:2e:65:f2:ae:70:a6:57:c8:8c:8c:d9:b7:
62:13:09:f2:4f:db:eb:55:99:3f:e4:16:0a:36:a8:
82:1a:12:d3:18:fc:3f:ad:34:75:9b:26:b1:3d:57:
e8:f4:96:e2:80:53:a1:aa:07:81:85:fd:bb:3f:d7:
28:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5F:6F:CB:24:75:56:09:88:70:01:06:DF:5D:B5:18:31:6A:B9:5F
X509v3 Authority Key Identifier:
keyid:F5:C8:5A:7B:72:BB:38:5E:9C:BD:14:4A:58:58:31:2E:07:97:03:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/794418365D334074A548836C11C067A312F99CA84C30CC293AFFA52625B3585D/0/F5C85A7B72BB385E9CBD144A5858312E0797036F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F5C85A7B72BB385E9CBD144A5858312E0797036F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/794418365D334074A548836C11C067A312F99CA84C30CC293AFFA52625B3585D/0/3230302e38362e302e302f31362d3234203d3e203232303437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.86.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b9:7f:40:c1:01:44:5a:d6:05:39:5d:b9:dd:c4:d0:92:31:32:
5e:2e:0f:77:c2:ef:a0:8f:1e:ab:18:08:b8:bf:d6:55:b6:b7:
bb:8b:28:ee:33:e7:92:69:88:6f:d1:47:81:31:42:c6:73:9a:
7f:ba:b5:16:6e:23:e5:34:1d:11:5e:7f:dc:cb:59:b9:93:c7:
4e:15:9f:61:b3:63:83:fa:08:2e:a4:3f:71:80:aa:44:92:e5:
66:3b:c0:8f:18:5e:f3:5d:0e:94:29:65:ab:66:d0:68:67:ae:
b1:10:24:ae:5f:65:03:57:cb:41:b8:cc:e9:89:f7:a5:8d:7e:
fb:2c:83:96:df:22:e3:ad:b5:b1:06:09:32:4d:50:0e:b4:77:
23:b6:23:d8:c0:05:85:31:13:a5:96:68:da:7c:32:68:d9:eb:
21:53:d3:f3:b7:3f:64:ea:cc:f0:a1:14:70:e6:22:76:72:a9:
93:21:4b:b1:06:2b:18:b6:7d:9a:fc:1a:61:ec:42:dd:87:d0:
5f:1e:6e:2f:2b:10:1a:5c:63:90:9f:50:6c:62:eb:49:7c:2e:
fa:08:4b:8e:43:6a:82:32:3d:82:bc:38:43:46:65:5a:c8:9a:
3f:a6:19:c0:42:dc:dc:8f:27:b8:a3:b3:97:65:33:39:d5:00:
21:72:63:b0
-----BEGIN CERTIFICATE-----
MIIFuTCCBKGgAwIBAgIUJUPsexmHTeKsN4Vo2eiiVcrlQ+0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjVDODVBN0I3MkJCMzg1RTlDQkQxNDRBNTg1ODMxMkUw
Nzk3MDM2RjAeFw0yNTAyMDQxODE0MTZaFw0yNjAyMDMxODE5MTZaMDMxMTAvBgNV
BAMTKENGNUY2RkNCMjQ3NTU2MDk4ODcwMDEwNkRGNURCNTE4MzE2QUI5NUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoCmxMFls6Xb5NM76bHLOFQlE+
KoO+6VS1+aHSxvcjQ8NnEwBuVLRXuhYk5/S8XYvjhpQdJVpB1aUIDirdf+1TUVyz
IJf2Clqa4OcCyNJGalnltWOBmNgXxnsH0Rurx5O8vPEQeKu0GZdQojKcRGR7YnPo
Ey0Bh45VC/Nt6/uRiIXzJf+XgGafgBBGpvOWNqrLlUXBitG8Naup2kNaR/CHw9xa
XH28DsjIbeYVZWM7mN+3vnIiNijE4rSwpdK+ce25pb8mCS5l8q5wplfIjIzZt2IT
CfJP2+tVmT/kFgo2qIIaEtMY/D+tNHWbJrE9V+j0luKAU6GqB4GF/bs/1yj5AgMB
AAGjggLDMIICvzAdBgNVHQ4EFgQUz19vyyR1VgmIcAEG3121GDFquV8wHwYDVR0j
BBgwFoAU9chae3K7OF6cvRRKWFgxLgeXA28wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83OTQ0MTgzNjVEMzM0MDc0QTU0ODgzNkMxMUMwNjdBMzEy
Rjk5Q0E4NEMzMENDMjkzQUZGQTUyNjI1QjM1ODVELzAvRjVDODVBN0I3MkJCMzg1
RTlDQkQxNDRBNTg1ODMxMkUwNzk3MDM2Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GNUM4NUE3QjcyQkIzODVFOUNC
RDE0NEE1ODU4MzEyRTA3OTcwMzZGLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNzk0NDE4MzY1RDMzNDA3NEE1NDg4MzZDMTFDMDY3QTMxMkY5OUNBODRD
MzBDQzI5M0FGRkE1MjYyNUIzNTg1RC8wLzMyMzAzMDJlMzgzNjJlMzAyZTMwMmYz
MTM2MmQzMjM0MjAzZDNlMjAzMjMyMzAzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAyFYwDQYJKoZI
hvcNAQELBQADggEBALl/QMEBRFrWBTldud3E0JIxMl4uD3fC76CPHqsYCLi/1lW2
t7uLKO4z55JpiG/RR4ExQsZzmn+6tRZuI+U0HRFef9zLWbmTx04Vn2GzY4P6CC6k
P3GAqkSS5WY7wI8YXvNdDpQpZatm0GhnrrEQJK5fZQNXy0G4zOmJ96WNfvssg5bf
IuOttbEGCTJNUA60dyO2I9jABYUxE6WWaNp8MmjZ6yFT0/O3P2TqzPChFHDmInZy
qZMhS7EGKxi2fZr8GmHsQt2H0F8ebi8rEBpcY5CfUGxi60l8LvoIS45DaoIyPYK8
OENGZVrImj+mGcBC3NyPJ7ijs5dlMznVACFyY7A=
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:41 2025 by rpki-client