Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/88D7B05E68A363B604AA1DBA9B3665F8C3F55B13B2B284317471F87709EEA0D8/0/3132382e3230312e38322e302f32342d3234203d3e20323635373431.roa
File: 3132382e3230312e38322e302f32342d3234203d3e20323635373431.roa (raw, json)
Hash identifier: uhj4t8J4c1RSB78KB6BMoicKauuI0Jxjmsfg+xikves=
Subject key identifier: D1:11:9A:BC:52:E1:45:C2:3D:15:01:26:DD:99:70:A4:0A:09:6D:78
Certificate issuer: /CN=7116290D7EB961DBB2AE7C4F1070543D6F8030A9
Certificate serial: 011398421E34D3BC600FA2E04E465A6EA9E30B9E
Authority key identifier: 71:16:29:0D:7E:B9:61:DB:B2:AE:7C:4F:10:70:54:3D:6F:80:30:A9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7116290D7EB961DBB2AE7C4F1070543D6F8030A9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/88D7B05E68A363B604AA1DBA9B3665F8C3F55B13B2B284317471F87709EEA0D8/0/3132382e3230312e38322e302f32342d3234203d3e20323635373431.roa
Signing time: Sat 15 Feb 2025 00:09:51 +0000
ROA not before: Sat 15 Feb 2025 00:04:51 +0000
ROA not after: Sat 14 Feb 2026 00:09:51 +0000
asID: 265741
IP address blocks: 128.201.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:13:98:42:1e:34:d3:bc:60:0f:a2:e0:4e:46:5a:6e:a9:e3:0b:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7116290D7EB961DBB2AE7C4F1070543D6F8030A9
Validity
Not Before: Feb 15 00:04:51 2025 GMT
Not After : Feb 14 00:09:51 2026 GMT
Subject: CN=D1119ABC52E145C23D150126DD9970A40A096D78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:40:9e:89:73:1a:0c:96:dd:40:95:2c:1f:77:
66:c8:bd:0b:f6:8c:e2:69:6a:8a:97:31:00:19:13:
62:ff:3e:07:b4:6d:e4:27:03:0d:80:27:54:ac:a5:
68:10:f3:2a:1d:c8:68:bb:c0:24:d1:09:47:0a:f6:
9f:75:73:d1:a4:1b:43:59:df:4a:aa:62:86:09:34:
3f:c3:60:c3:ba:6b:8f:e7:9c:5f:14:46:53:ed:ef:
4f:16:56:37:c0:2a:c5:95:7b:75:14:32:4f:d8:ea:
93:9b:49:6a:25:97:d4:b2:ef:3a:18:09:8c:58:77:
79:3b:44:e3:16:c7:6d:a0:cc:43:75:21:ac:7c:ed:
fb:b3:40:cb:bb:6e:17:7b:c0:16:c2:0f:cb:72:21:
1f:d3:d5:1e:04:cd:09:94:d2:0b:7e:fb:b7:19:97:
c4:bf:54:62:3a:fd:8d:e6:1c:33:b6:5e:fe:c8:b2:
04:5b:ea:1b:63:38:1f:67:f4:24:8e:96:bd:51:df:
7f:2f:a3:a9:e2:12:63:0b:03:14:fa:df:d3:e0:4c:
85:1f:bf:07:1a:78:17:0b:41:09:65:8a:ec:55:9d:
36:a7:6e:74:c0:b0:d8:bc:07:f4:bc:6b:4f:3c:92:
a5:b4:98:cd:0e:e8:96:a5:74:5b:0b:fa:e3:1e:6d:
6a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:11:9A:BC:52:E1:45:C2:3D:15:01:26:DD:99:70:A4:0A:09:6D:78
X509v3 Authority Key Identifier:
keyid:71:16:29:0D:7E:B9:61:DB:B2:AE:7C:4F:10:70:54:3D:6F:80:30:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/88D7B05E68A363B604AA1DBA9B3665F8C3F55B13B2B284317471F87709EEA0D8/0/7116290D7EB961DBB2AE7C4F1070543D6F8030A9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7116290D7EB961DBB2AE7C4F1070543D6F8030A9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/88D7B05E68A363B604AA1DBA9B3665F8C3F55B13B2B284317471F87709EEA0D8/0/3132382e3230312e38322e302f32342d3234203d3e20323635373431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.201.82.0/24
Signature Algorithm: sha256WithRSAEncryption
92:de:4a:b5:83:c3:fc:db:21:dd:a7:2f:d0:60:8e:54:8f:e6:
bc:a8:f4:b6:61:5e:27:79:6a:58:fd:ee:29:c6:44:31:2e:47:
ed:6d:1e:c5:c1:a4:f4:a0:f4:58:7d:f1:f2:00:d0:35:41:e1:
a5:c0:10:82:9b:66:2d:f5:4c:e1:43:58:cf:18:d5:f2:28:40:
77:1f:87:90:fa:0e:37:cf:e3:88:0f:26:38:74:5d:9a:3a:30:
bc:fc:a8:09:7e:31:e2:fd:ae:c5:e3:96:97:49:c5:08:42:db:
f1:18:d3:fb:ca:09:7e:bc:7f:0e:ae:70:dc:b0:d3:56:dd:67:
10:b0:71:ce:f6:e8:5b:8e:e4:a5:d8:dd:6f:ee:59:01:1e:08:
d0:24:40:14:56:12:64:5a:22:16:11:ec:3d:48:dd:34:62:65:
56:37:fb:c8:ea:b8:b0:4b:73:1d:5b:77:a2:91:09:55:a1:3b:
33:ee:02:cb:6d:d9:af:9f:cc:39:f6:50:7d:6f:a7:84:e8:fa:
89:16:0e:71:bb:11:19:37:16:f8:cd:a0:e3:81:fd:ff:9c:c4:
95:2b:00:cc:7c:3b:c6:e9:f9:14:2d:c3:fa:00:18:22:15:c2:
6a:21:af:65:02:23:74:ad:2f:b7:fc:ac:b8:4d:93:3b:ab:d6:
6a:93:6e:67
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUAROYQh4007xgD6LgTkZabqnjC54wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzExNjI5MEQ3RUI5NjFEQkIyQUU3QzRGMTA3MDU0M0Q2
RjgwMzBBOTAeFw0yNTAyMTUwMDA0NTFaFw0yNjAyMTQwMDA5NTFaMDMxMTAvBgNV
BAMTKEQxMTE5QUJDNTJFMTQ1QzIzRDE1MDEyNkREOTk3MEE0MEEwOTZENzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0QJ6JcxoMlt1AlSwfd2bIvQv2
jOJpaoqXMQAZE2L/Pge0beQnAw2AJ1SspWgQ8yodyGi7wCTRCUcK9p91c9GkG0NZ
30qqYoYJND/DYMO6a4/nnF8URlPt708WVjfAKsWVe3UUMk/Y6pObSWoll9Sy7zoY
CYxYd3k7ROMWx22gzEN1Iax87fuzQMu7bhd7wBbCD8tyIR/T1R4EzQmU0gt++7cZ
l8S/VGI6/Y3mHDO2Xv7IsgRb6htjOB9n9CSOlr1R338vo6niEmMLAxT639PgTIUf
vwcaeBcLQQlliuxVnTanbnTAsNi8B/S8a088kqW0mM0O6JaldFsL+uMebWrBAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQU0RGavFLhRcI9FQEm3ZlwpAoJbXgwHwYDVR0j
BBgwFoAUcRYpDX65YduyrnxPEHBUPW+AMKkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy84OEQ3QjA1RTY4QTM2M0I2MDRBQTFEQkE5QjM2NjVGOEMz
RjU1QjEzQjJCMjg0MzE3NDcxRjg3NzA5RUVBMEQ4LzAvNzExNjI5MEQ3RUI5NjFE
QkIyQUU3QzRGMTA3MDU0M0Q2RjgwMzBBOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83MTE2MjkwRDdFQjk2MURCQjJB
RTdDNEYxMDcwNTQzRDZGODAzMEE5LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvODhEN0IwNUU2OEEzNjNCNjA0QUExREJBOUIzNjY1RjhDM0Y1NUIxM0Iy
QjI4NDMxNzQ3MUY4NzcwOUVFQTBEOC8wLzMxMzIzODJlMzIzMDMxMmUzODMyMmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM1MzczNDMxLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAgMlS
MA0GCSqGSIb3DQEBCwUAA4IBAQCS3kq1g8P82yHdpy/QYI5Uj+a8qPS2YV4neWpY
/e4pxkQxLkftbR7FwaT0oPRYffHyANA1QeGlwBCCm2Yt9UzhQ1jPGNXyKEB3H4eQ
+g43z+OIDyY4dF2aOjC8/KgJfjHi/a7F45aXScUIQtvxGNP7ygl+vH8OrnDcsNNW
3WcQsHHO9uhbjuSl2N1v7lkBHgjQJEAUVhJkWiIWEew9SN00YmVWN/vI6riwS3Md
W3eikQlVoTsz7gLLbdmvn8w59lB9b6eE6PqJFg5xuxEZNxb4zaDjgf3/nMSVKwDM
fDvG6fkULcP6ABgiFcJqIa9lAiN0rS+3/Ky4TZM7q9Zqk25n
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:56:37 2025 by rpki-client