Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/83809FE0D97C80F8740EAD84EE758AA0C569B069AE6B49A656770F885F95DD08/0/3230312e3137342e3230302e302f32312d3234203d3e203238353039.roa
File: 3230312e3137342e3230302e302f32312d3234203d3e203238353039.roa (raw, json)
Hash identifier: NyR8ynF6PANa0kWVRz+lVz7SWeod8D6GFPHm0/aTkMk=
Subject key identifier: 1B:1D:3D:AF:16:E0:37:A5:2D:21:7E:C5:CC:77:BC:C9:61:82:CB:60
Certificate issuer: /CN=0D01CF02784E73C34A5AF36C6029E9464A070D38
Certificate serial: 645EB804B5C7214E068FCCCCEE74208CF4F5A7AB
Authority key identifier: 0D:01:CF:02:78:4E:73:C3:4A:5A:F3:6C:60:29:E9:46:4A:07:0D:38
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D01CF02784E73C34A5AF36C6029E9464A070D38.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/83809FE0D97C80F8740EAD84EE758AA0C569B069AE6B49A656770F885F95DD08/0/3230312e3137342e3230302e302f32312d3234203d3e203238353039.roa
Signing time: Tue 04 Feb 2025 18:47:59 +0000
ROA not before: Tue 04 Feb 2025 18:42:59 +0000
ROA not after: Tue 03 Feb 2026 18:47:59 +0000
asID: 28509
IP address blocks: 201.174.200.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:5e:b8:04:b5:c7:21:4e:06:8f:cc:cc:ee:74:20:8c:f4:f5:a7:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D01CF02784E73C34A5AF36C6029E9464A070D38
Validity
Not Before: Feb 4 18:42:59 2025 GMT
Not After : Feb 3 18:47:59 2026 GMT
Subject: CN=1B1D3DAF16E037A52D217EC5CC77BCC96182CB60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:43:15:19:d8:57:1f:4f:dc:48:88:66:24:6a:
f4:15:f3:6a:5c:d8:71:8c:45:db:1d:49:03:7d:5b:
18:d1:db:6e:54:d8:c0:6c:0b:d0:87:50:2c:d7:a0:
65:9e:61:38:2d:31:8d:de:80:82:e8:29:da:5f:0d:
39:ce:fc:93:95:76:ad:f2:dd:cb:de:a0:af:65:fa:
ba:54:7e:bd:4e:49:28:7a:00:22:fe:f9:97:2c:b8:
75:5b:84:b0:96:54:68:62:33:14:9f:eb:60:b3:5c:
11:6f:57:21:9e:a8:85:23:cd:e4:a7:b8:26:9e:69:
14:20:83:eb:e6:3e:31:c4:1e:52:76:54:f2:70:74:
c4:4e:6f:b0:97:22:ab:f0:33:72:66:7d:dc:4a:ef:
7d:6e:84:96:66:44:33:eb:50:08:62:d6:93:56:39:
77:49:85:c5:a5:48:06:e0:11:52:fd:b8:5b:f9:19:
93:a8:5b:df:d2:0c:07:c6:40:77:c7:c3:0e:66:80:
0c:6e:10:af:d7:66:f2:de:4f:ff:a8:58:c2:4b:68:
7b:30:6a:35:a6:17:81:e7:c1:97:43:c0:f9:e2:39:
f1:6f:ba:fa:ee:50:4a:85:7a:8d:53:65:21:76:69:
ef:d2:64:c1:df:23:9a:06:82:c6:87:d7:32:45:78:
35:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:1D:3D:AF:16:E0:37:A5:2D:21:7E:C5:CC:77:BC:C9:61:82:CB:60
X509v3 Authority Key Identifier:
keyid:0D:01:CF:02:78:4E:73:C3:4A:5A:F3:6C:60:29:E9:46:4A:07:0D:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/83809FE0D97C80F8740EAD84EE758AA0C569B069AE6B49A656770F885F95DD08/0/0D01CF02784E73C34A5AF36C6029E9464A070D38.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D01CF02784E73C34A5AF36C6029E9464A070D38.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/83809FE0D97C80F8740EAD84EE758AA0C569B069AE6B49A656770F885F95DD08/0/3230312e3137342e3230302e302f32312d3234203d3e203238353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.174.200.0/21
Signature Algorithm: sha256WithRSAEncryption
2e:35:ff:9f:c9:89:c8:5f:0a:26:f7:69:64:65:6a:4f:d5:19:
2e:e5:40:5d:8d:7d:55:ce:46:e3:00:30:3b:c2:f7:ae:49:fe:
cd:37:5f:db:ac:e5:f9:93:41:4f:93:cb:52:5a:98:88:00:74:
b7:dd:c5:eb:ba:16:01:13:61:6c:b3:d6:11:d5:1e:60:a3:f1:
b4:e2:8d:91:66:97:ca:58:04:33:2a:96:e6:74:74:2e:48:6c:
92:09:55:99:27:99:ad:14:b0:1e:01:d7:75:95:19:b7:e9:62:
ed:0c:f6:36:90:77:d8:bd:1c:f4:41:3f:57:55:6f:d0:cf:b6:
08:33:40:bc:8f:ed:01:12:bc:9e:c2:9a:43:a3:54:4f:8f:91:
8a:33:d0:6d:2b:0b:93:3b:fd:6e:ff:f1:2f:58:80:ed:85:bb:
07:d4:91:0e:dd:62:8b:b3:e7:48:6d:09:98:97:73:26:db:d4:
0b:22:1e:ad:df:48:a4:6c:c5:af:d6:f4:96:d0:73:23:12:3a:
20:5a:e1:ea:25:16:c6:20:c5:16:29:de:6e:1d:d8:0a:6e:c9:
a9:42:fc:c6:4b:13:22:80:74:6b:8b:89:4c:48:15:2c:24:1f:
50:7a:16:03:89:51:46:39:c4:65:3a:28:ab:9d:08:23:19:ad:
66:23:87:23
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUZF64BLXHIU4Gj8zM7nQgjPT1p6swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEQwMUNGMDI3ODRFNzNDMzRBNUFGMzZDNjAyOUU5NDY0
QTA3MEQzODAeFw0yNTAyMDQxODQyNTlaFw0yNjAyMDMxODQ3NTlaMDMxMTAvBgNV
BAMTKDFCMUQzREFGMTZFMDM3QTUyRDIxN0VDNUNDNzdCQ0M5NjE4MkNCNjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNQxUZ2FcfT9xIiGYkavQV82pc
2HGMRdsdSQN9WxjR225U2MBsC9CHUCzXoGWeYTgtMY3egILoKdpfDTnO/JOVdq3y
3cveoK9l+rpUfr1OSSh6ACL++ZcsuHVbhLCWVGhiMxSf62CzXBFvVyGeqIUjzeSn
uCaeaRQgg+vmPjHEHlJ2VPJwdMROb7CXIqvwM3JmfdxK731uhJZmRDPrUAhi1pNW
OXdJhcWlSAbgEVL9uFv5GZOoW9/SDAfGQHfHww5mgAxuEK/XZvLeT/+oWMJLaHsw
ajWmF4HnwZdDwPniOfFvuvruUEqFeo1TZSF2ae/SZMHfI5oGgsaH1zJFeDXlAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUGx09rxbgN6UtIX7FzHe8yWGCy2AwHwYDVR0j
BBgwFoAUDQHPAnhOc8NKWvNsYCnpRkoHDTgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy84MzgwOUZFMEQ5N0M4MEY4NzQwRUFEODRFRTc1OEFBMEM1
NjlCMDY5QUU2QjQ5QTY1Njc3MEY4ODVGOTVERDA4LzAvMEQwMUNGMDI3ODRFNzND
MzRBNUFGMzZDNjAyOUU5NDY0QTA3MEQzOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wRDAxQ0YwMjc4NEU3M0MzNEE1
QUYzNkM2MDI5RTk0NjRBMDcwRDM4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvODM4MDlGRTBEOTdDODBGODc0MEVBRDg0RUU3NThBQTBDNTY5QjA2OUFF
NkI0OUE2NTY3NzBGODg1Rjk1REQwOC8wLzMyMzAzMTJlMzEzNzM0MmUzMjMwMzAy
ZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzMjM4MzUzMDM5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDya7I
MA0GCSqGSIb3DQEBCwUAA4IBAQAuNf+fyYnIXwom92lkZWpP1Rku5UBdjX1Vzkbj
ADA7wveuSf7NN1/brOX5k0FPk8tSWpiIAHS33cXruhYBE2Fss9YR1R5go/G04o2R
ZpfKWAQzKpbmdHQuSGySCVWZJ5mtFLAeAdd1lRm36WLtDPY2kHfYvRz0QT9XVW/Q
z7YIM0C8j+0BEryewppDo1RPj5GKM9BtKwuTO/1u//EvWIDthbsH1JEO3WKLs+dI
bQmYl3Mm29QLIh6t30ikbMWv1vSW0HMjEjogWuHqJRbGIMUWKd5uHdgKbsmpQvzG
SxMigHRri4lMSBUsJB9QehYDiVFGOcRlOiirnQgjGa1mI4cj
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:09:06 2025 by rpki-client