Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7E0C5237EAA1E378E05F33F4BC7C4CC9B6643AB4B34891E382A882779FDF81D7/0/3230302e33302e3135372e302f32342d3234203d3e203233333833.roa
File: 3230302e33302e3135372e302f32342d3234203d3e203233333833.roa (raw, json)
Hash identifier: N0AY3fgITymOMmWuko0PJG+2tuRQoyUw4nozIAK44x0=
Subject key identifier: BD:5E:1D:80:EC:3F:5D:95:6E:41:75:11:F4:31:46:D1:56:27:7B:B7
Certificate issuer: /CN=FB90888D9D0C05658464274F626D1462AAA70399
Certificate serial: 22EB1CFFACB4A90CDAB0B34701065272C25355EE
Authority key identifier: FB:90:88:8D:9D:0C:05:65:84:64:27:4F:62:6D:14:62:AA:A7:03:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FB90888D9D0C05658464274F626D1462AAA70399.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7E0C5237EAA1E378E05F33F4BC7C4CC9B6643AB4B34891E382A882779FDF81D7/0/3230302e33302e3135372e302f32342d3234203d3e203233333833.roa
Signing time: Tue 04 Feb 2025 18:38:38 +0000
ROA not before: Tue 04 Feb 2025 18:33:38 +0000
ROA not after: Tue 03 Feb 2026 18:38:38 +0000
asID: 23383
IP address blocks: 200.30.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:eb:1c:ff:ac:b4:a9:0c:da:b0:b3:47:01:06:52:72:c2:53:55:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB90888D9D0C05658464274F626D1462AAA70399
Validity
Not Before: Feb 4 18:33:38 2025 GMT
Not After : Feb 3 18:38:38 2026 GMT
Subject: CN=BD5E1D80EC3F5D956E417511F43146D156277BB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2d:ac:62:96:f3:c0:ba:8c:54:d5:9e:f0:a8:
24:24:7c:06:c7:5d:82:94:05:64:b5:04:90:53:dc:
fd:8f:2f:99:32:89:73:0d:f6:e9:a6:4b:3c:b9:8c:
0d:14:09:f2:7a:5d:1b:cd:fb:79:6f:45:c3:eb:d5:
b7:19:c4:dc:e0:c5:ae:65:12:a5:be:1a:1e:50:dd:
8c:e8:a5:61:f9:ec:8b:ba:81:86:a1:60:7f:6c:40:
3e:d8:66:95:2c:3d:56:a9:38:07:d3:7c:05:0b:28:
64:aa:e1:01:8a:84:5b:9d:e9:ec:e5:91:e9:eb:5a:
fa:0b:87:0a:c2:6b:88:66:15:ec:f7:e0:dc:f3:79:
53:5b:42:85:85:89:28:ac:d4:9e:85:81:65:0d:c7:
8e:9f:bf:e7:9b:d4:af:1b:63:70:35:37:53:6a:e2:
9d:6e:0c:e7:d3:ff:e9:13:41:75:05:c6:32:8f:ff:
b3:94:cf:29:49:cd:08:6b:76:25:55:08:77:5e:19:
f9:5a:18:1b:66:b9:73:e9:75:71:ce:12:95:02:c5:
d1:ee:a2:39:ae:e9:87:5a:33:da:ed:b6:08:03:76:
d5:62:3f:9b:45:e8:7f:a2:8e:63:1c:94:ac:f5:a5:
29:86:23:82:00:87:7c:de:cf:34:03:cd:49:62:07:
ed:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:5E:1D:80:EC:3F:5D:95:6E:41:75:11:F4:31:46:D1:56:27:7B:B7
X509v3 Authority Key Identifier:
keyid:FB:90:88:8D:9D:0C:05:65:84:64:27:4F:62:6D:14:62:AA:A7:03:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7E0C5237EAA1E378E05F33F4BC7C4CC9B6643AB4B34891E382A882779FDF81D7/0/FB90888D9D0C05658464274F626D1462AAA70399.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FB90888D9D0C05658464274F626D1462AAA70399.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7E0C5237EAA1E378E05F33F4BC7C4CC9B6643AB4B34891E382A882779FDF81D7/0/3230302e33302e3135372e302f32342d3234203d3e203233333833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.30.157.0/24
Signature Algorithm: sha256WithRSAEncryption
49:d3:be:03:a9:49:3a:34:15:46:9e:dd:98:4b:e5:b6:be:16:
3d:81:2d:63:31:42:d8:55:40:60:3e:26:e4:d0:27:c7:bf:10:
93:ef:fc:70:ca:cc:cb:f0:7b:fc:bc:8a:39:be:64:53:df:9c:
8b:5b:20:3e:08:bd:75:7d:63:03:5d:1e:39:5e:ab:9d:be:ae:
f5:57:49:00:96:50:59:b9:ad:b8:0d:68:ae:4a:0e:c7:4f:1d:
1f:88:cc:8c:03:ad:fd:da:61:30:86:a7:c1:d1:03:93:49:49:
ac:cf:5c:50:84:a5:56:c1:6e:d5:66:3e:24:3b:0c:6c:cb:5f:
a2:71:ed:f0:61:80:b3:58:30:66:be:09:5c:f9:88:c6:ba:ef:
93:51:be:64:49:44:61:e8:20:be:e3:3b:bb:0c:f0:5c:4d:67:
bb:8d:be:5c:e3:4e:a8:96:51:52:11:44:f1:fd:94:5b:21:bb:
83:bd:6e:35:1a:92:20:71:45:7b:bb:47:35:8e:2f:0e:cc:1c:
f3:33:16:be:fd:e2:50:0d:81:a3:ef:df:e9:96:54:0c:ba:4c:
9b:d5:a1:64:ca:e5:9c:51:0a:b3:e1:79:07:90:1c:59:18:3e:
ae:d9:7b:3f:7c:04:b5:f1:9d:ed:d8:5d:8b:b7:c7:36:4e:df:
25:5a:8f:d3
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUIusc/6y0qQzasLNHAQZScsJTVe4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRkI5MDg4OEQ5RDBDMDU2NTg0NjQyNzRGNjI2RDE0NjJB
QUE3MDM5OTAeFw0yNTAyMDQxODMzMzhaFw0yNjAyMDMxODM4MzhaMDMxMTAvBgNV
BAMTKEJENUUxRDgwRUMzRjVEOTU2RTQxNzUxMUY0MzE0NkQxNTYyNzdCQjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcLaxilvPAuoxU1Z7wqCQkfAbH
XYKUBWS1BJBT3P2PL5kyiXMN9ummSzy5jA0UCfJ6XRvN+3lvRcPr1bcZxNzgxa5l
EqW+Gh5Q3YzopWH57Iu6gYahYH9sQD7YZpUsPVapOAfTfAULKGSq4QGKhFud6ezl
kenrWvoLhwrCa4hmFez34NzzeVNbQoWFiSis1J6FgWUNx46fv+eb1K8bY3A1N1Nq
4p1uDOfT/+kTQXUFxjKP/7OUzylJzQhrdiVVCHdeGflaGBtmuXPpdXHOEpUCxdHu
ojmu6YdaM9rttggDdtViP5tF6H+ijmMclKz1pSmGI4IAh3zezzQDzUliB+0VAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUvV4dgOw/XZVuQXUR9DFG0VYne7cwHwYDVR0j
BBgwFoAU+5CIjZ0MBWWEZCdPYm0UYqqnA5kwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83RTBDNTIzN0VBQTFFMzc4RTA1RjMzRjRCQzdDNENDOUI2
NjQzQUI0QjM0ODkxRTM4MkE4ODI3NzlGREY4MUQ3LzAvRkI5MDg4OEQ5RDBDMDU2
NTg0NjQyNzRGNjI2RDE0NjJBQUE3MDM5OS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GQjkwODg4RDlEMEMwNTY1ODQ2
NDI3NEY2MjZEMTQ2MkFBQTcwMzk5LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvN0UwQzUyMzdFQUExRTM3OEUwNUYzM0Y0QkM3QzRDQzlCNjY0M0FCNEIz
NDg5MUUzODJBODgyNzc5RkRGODFENy8wLzMyMzAzMDJlMzMzMDJlMzEzNTM3MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMzMzMzgzMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMgenTAN
BgkqhkiG9w0BAQsFAAOCAQEASdO+A6lJOjQVRp7dmEvltr4WPYEtYzFC2FVAYD4m
5NAnx78Qk+/8cMrMy/B7/LyKOb5kU9+ci1sgPgi9dX1jA10eOV6rnb6u9VdJAJZQ
WbmtuA1orkoOx08dH4jMjAOt/dphMIanwdEDk0lJrM9cUISlVsFu1WY+JDsMbMtf
onHt8GGAs1gwZr4JXPmIxrrvk1G+ZElEYeggvuM7uwzwXE1nu42+XONOqJZRUhFE
8f2UWyG7g71uNRqSIHFFe7tHNY4vDswc8zMWvv3iUA2Bo+/f6ZZUDLpMm9WhZMrl
nFEKs+F5B5AcWRg+rtl7P3wEtfGd7dhdi7fHNk7fJVqP0w==
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:25 2025 by rpki-client