Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/3230302e332e322e302f32332d3234203d3e203237393537.roa
File: 3230302e332e322e302f32332d3234203d3e203237393537.roa (raw, json)
Hash identifier: 9RGBVCC19Ae1crDMwX+2z5Jg1x4BIGiNiqxrxtXvkhE=
Subject key identifier: 09:1B:00:F0:47:79:0C:08:1C:8E:3D:8F:1D:EF:49:4F:B7:95:CA:A4
Certificate issuer: /CN=506320FB69AC1025178FC25AE58C93B0BA04A7B4
Certificate serial: 5A04AE79CDEF8E8D0146FBE115CAC91E2E911556
Authority key identifier: 50:63:20:FB:69:AC:10:25:17:8F:C2:5A:E5:8C:93:B0:BA:04:A7:B4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/506320FB69AC1025178FC25AE58C93B0BA04A7B4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/3230302e332e322e302f32332d3234203d3e203237393537.roa
Signing time: Tue 04 Feb 2025 18:47:55 +0000
ROA not before: Tue 04 Feb 2025 18:42:55 +0000
ROA not after: Tue 03 Feb 2026 18:47:55 +0000
asID: 27957
IP address blocks: 200.3.2.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:04:ae:79:cd:ef:8e:8d:01:46:fb:e1:15:ca:c9:1e:2e:91:15:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=506320FB69AC1025178FC25AE58C93B0BA04A7B4
Validity
Not Before: Feb 4 18:42:55 2025 GMT
Not After : Feb 3 18:47:55 2026 GMT
Subject: CN=091B00F047790C081C8E3D8F1DEF494FB795CAA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:88:30:bc:d9:16:2e:6e:af:83:30:bc:55:05:
ec:99:e1:5d:b8:b1:11:6d:df:78:7e:e4:b0:5f:2c:
37:38:e6:e3:c3:59:3b:c8:82:10:e4:ae:59:ae:94:
eb:fb:cf:f7:aa:7b:43:33:cb:83:d8:f7:8a:04:a1:
d2:19:4f:e4:f2:b0:32:db:99:59:c7:9f:c8:d4:0c:
78:e6:8b:96:64:c9:8f:36:ea:df:9c:b4:c6:70:6d:
52:07:e1:19:cb:e7:93:45:ed:dd:37:cc:c8:55:e6:
86:4f:73:81:76:a4:dc:32:3d:6c:f1:4e:d0:0a:aa:
9a:66:97:b3:2f:6e:6f:ce:94:5b:98:90:04:1c:94:
01:96:f4:7c:74:6c:09:72:c7:1d:4a:67:f5:22:f9:
11:be:22:3d:16:9e:76:7b:c8:11:4e:05:5e:20:c6:
3f:fb:2e:19:b5:71:1f:27:4f:20:15:da:4d:0c:c4:
7a:0d:cb:4b:00:72:27:f9:da:9e:68:a7:f6:9a:c6:
e1:64:24:83:91:26:e4:3c:aa:41:53:13:c6:67:d4:
d0:63:84:ed:d9:49:0a:3b:3f:cf:ab:61:df:c5:cb:
d0:8e:57:1e:21:1e:1d:7d:e5:5f:2a:30:97:bb:2b:
50:bc:92:84:a7:ad:05:48:dd:43:f7:a2:34:0e:a8:
f5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1B:00:F0:47:79:0C:08:1C:8E:3D:8F:1D:EF:49:4F:B7:95:CA:A4
X509v3 Authority Key Identifier:
keyid:50:63:20:FB:69:AC:10:25:17:8F:C2:5A:E5:8C:93:B0:BA:04:A7:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/506320FB69AC1025178FC25AE58C93B0BA04A7B4.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/506320FB69AC1025178FC25AE58C93B0BA04A7B4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/3230302e332e322e302f32332d3234203d3e203237393537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.3.2.0/23
Signature Algorithm: sha256WithRSAEncryption
75:7d:e8:0d:45:c3:87:cf:4c:57:92:b1:b0:09:6b:39:93:0d:
00:5d:f1:7c:ac:bb:26:c6:be:41:72:c9:25:8b:38:67:97:4f:
49:33:0b:81:b3:84:a6:35:50:6e:2d:6d:15:92:ab:d9:ae:15:
66:18:66:01:93:dc:01:18:f2:ac:55:75:b5:39:73:a1:f7:f0:
64:82:a7:5f:91:5d:3d:15:b8:31:7c:f7:7a:b7:2c:cd:15:61:
99:e2:de:36:67:6c:c1:05:0e:2e:cf:67:54:34:bf:fd:f7:4d:
ca:f0:57:8e:76:70:de:0e:d3:a8:78:d7:db:d2:08:29:73:ee:
64:2b:f5:59:13:c6:92:7e:a6:17:e6:55:01:89:9d:08:0f:ef:
1a:04:c2:7b:c7:9b:84:b5:0c:df:31:9b:33:f3:66:67:5d:a6:
09:95:20:3a:7d:52:79:71:3e:28:2d:eb:0a:2a:df:f3:f4:1f:
0e:a9:1e:13:08:82:4b:03:2a:30:44:10:23:9f:15:e2:22:f1:
cc:4a:f9:0e:0f:93:15:ea:f7:dc:13:0d:8a:d9:be:1f:7a:0a:
54:33:62:26:21:c9:76:5c:95:c5:53:fd:05:b1:9f:00:f5:b2:
ec:43:81:29:6e:a4:e6:ac:18:dd:c8:a2:87:ff:a1:ba:fc:a1:
7a:ac:da:f1
-----BEGIN CERTIFICATE-----
MIIFuDCCBKCgAwIBAgIUWgSuec3vjo0BRvvhFcrJHi6RFVYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTA2MzIwRkI2OUFDMTAyNTE3OEZDMjVBRTU4QzkzQjBC
QTA0QTdCNDAeFw0yNTAyMDQxODQyNTVaFw0yNjAyMDMxODQ3NTVaMDMxMTAvBgNV
BAMTKDA5MUIwMEYwNDc3OTBDMDgxQzhFM0Q4RjFERUY0OTRGQjc5NUNBQTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9iDC82RYubq+DMLxVBeyZ4V24
sRFt33h+5LBfLDc45uPDWTvIghDkrlmulOv7z/eqe0Mzy4PY94oEodIZT+TysDLb
mVnHn8jUDHjmi5ZkyY826t+ctMZwbVIH4RnL55NF7d03zMhV5oZPc4F2pNwyPWzx
TtAKqppml7Mvbm/OlFuYkAQclAGW9Hx0bAlyxx1KZ/Ui+RG+Ij0WnnZ7yBFOBV4g
xj/7Lhm1cR8nTyAV2k0MxHoNy0sAcif52p5op/aaxuFkJIORJuQ8qkFTE8Zn1NBj
hO3ZSQo7P8+rYd/Fy9COVx4hHh195V8qMJe7K1C8koSnrQVI3UP3ojQOqPXpAgMB
AAGjggLCMIICvjAdBgNVHQ4EFgQUCRsA8Ed5DAgcjj2PHe9JT7eVyqQwHwYDVR0j
BBgwFoAUUGMg+2msECUXj8Ja5YyTsLoEp7QwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83QjVDQTUwRUU2RjhEQjYxQzlFRkZENzJGMzBCN0IyQUYx
NzFEMkVFNjc0RjZBOTkxRkFBNzcwNzA3QjI3RjlDLzAvNTA2MzIwRkI2OUFDMTAy
NTE3OEZDMjVBRTU4QzkzQjBCQTA0QTdCNC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81MDYzMjBGQjY5QUMxMDI1MTc4
RkMyNUFFNThDOTNCMEJBMDRBN0I0LmNlcjCBwQYIKwYBBQUHAQsEgbQwgbEwga4G
CCsGAQUFBzALhoGhcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvN0I1Q0E1MEVFNkY4REI2MUM5RUZGRDcyRjMwQjdCMkFGMTcxRDJFRTY3
NEY2QTk5MUZBQTc3MDcwN0IyN0Y5Qy8wLzMyMzAzMDJlMzMyZTMyMmUzMDJmMzIz
MzJkMzIzNDIwM2QzZTIwMzIzNzM5MzUzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcgDAjANBgkqhkiG
9w0BAQsFAAOCAQEAdX3oDUXDh89MV5KxsAlrOZMNAF3xfKy7Jsa+QXLJJYs4Z5dP
STMLgbOEpjVQbi1tFZKr2a4VZhhmAZPcARjyrFV1tTlzoffwZIKnX5FdPRW4MXz3
ercszRVhmeLeNmdswQUOLs9nVDS//fdNyvBXjnZw3g7TqHjX29IIKXPuZCv1WRPG
kn6mF+ZVAYmdCA/vGgTCe8ebhLUM3zGbM/NmZ12mCZUgOn1SeXE+KC3rCirf8/Qf
DqkeEwiCSwMqMEQQI58V4iLxzEr5Dg+TFer33BMNitm+H3oKVDNiJiHJdlyVxVP9
BbGfAPWy7EOBKW6k5qwY3ciih/+huvyheqza8Q==
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:44:29 2025 by rpki-client