Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/3134332e3230322e3136302e302f32322d3234203d3e203532343233.roa
File: 3134332e3230322e3136302e302f32322d3234203d3e203532343233.roa (raw, json)
Hash identifier: F+w/Pd3O4sAWyP/TA1i5Xy6jA/q4vhG4NnILSEcKeSs=
Subject key identifier: 54:EB:66:D7:9E:0D:5D:A0:47:A9:7A:6A:07:92:91:B9:97:09:FF:02
Certificate issuer: /CN=522A19041F7AD8D0B4F97D6DDAFC99C2590276AB
Certificate serial: 79F83278B8F683C42A37C60E3754D728D2429558
Authority key identifier: 52:2A:19:04:1F:7A:D8:D0:B4:F9:7D:6D:DA:FC:99:C2:59:02:76:AB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/3134332e3230322e3136302e302f32322d3234203d3e203532343233.roa
Signing time: Tue 04 Feb 2025 18:20:42 +0000
ROA not before: Tue 04 Feb 2025 18:15:42 +0000
ROA not after: Tue 03 Feb 2026 18:20:42 +0000
asID: 52423
IP address blocks: 143.202.160.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:f8:32:78:b8:f6:83:c4:2a:37:c6:0e:37:54:d7:28:d2:42:95:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=522A19041F7AD8D0B4F97D6DDAFC99C2590276AB
Validity
Not Before: Feb 4 18:15:42 2025 GMT
Not After : Feb 3 18:20:42 2026 GMT
Subject: CN=54EB66D79E0D5DA047A97A6A079291B99709FF02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:57:af:9f:78:a8:66:6b:51:30:86:2a:3a:6b:
40:43:bc:9b:42:19:01:30:a5:07:bd:89:e1:3d:3b:
fc:8a:95:ea:7a:a8:03:72:b4:da:92:ac:cc:84:b1:
55:7f:22:b0:e4:11:a8:a3:ab:ea:b6:4a:cb:ec:ed:
ef:da:7b:b0:9e:0a:e3:f6:1f:ac:88:86:cd:71:c0:
61:f0:1a:10:0e:82:49:e2:07:8b:44:a9:c2:97:e3:
e7:bb:64:4f:e1:6b:ae:2c:e0:93:a1:7d:bd:2c:58:
9e:b2:0a:dc:57:f5:ec:fe:6f:93:0d:06:48:89:99:
14:b2:ed:e7:b0:e3:66:e0:40:b6:cb:78:c4:60:1a:
33:98:6b:3e:ab:0e:d4:37:61:c1:60:bd:e0:0e:b9:
43:f8:6c:17:6d:b2:36:14:3e:05:9a:54:dd:3f:35:
b8:dd:f7:3a:ff:e1:1b:39:a7:37:15:8f:e6:9b:df:
7d:9b:de:06:10:3c:5e:ea:a9:36:40:0f:f3:ae:7c:
93:d7:0f:2b:61:88:9f:f5:fb:a7:da:f1:1b:e5:76:
a6:80:b2:94:e7:cd:34:7d:45:87:ad:f6:91:f2:10:
d8:57:0b:a3:3d:b9:06:30:5e:aa:b0:5e:41:6a:d9:
da:2f:a8:0c:0b:18:94:00:2c:32:37:44:ed:ca:46:
e5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:EB:66:D7:9E:0D:5D:A0:47:A9:7A:6A:07:92:91:B9:97:09:FF:02
X509v3 Authority Key Identifier:
keyid:52:2A:19:04:1F:7A:D8:D0:B4:F9:7D:6D:DA:FC:99:C2:59:02:76:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/3134332e3230322e3136302e302f32322d3234203d3e203532343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.202.160.0/22
Signature Algorithm: sha256WithRSAEncryption
94:33:0c:4b:c6:eb:b4:4f:64:12:97:97:28:0e:04:cc:a6:40:
06:18:a0:ba:f9:f3:eb:46:9d:32:53:32:3b:c6:c6:87:5e:eb:
7f:91:3e:eb:98:22:92:4c:45:aa:54:0f:38:48:e1:6b:39:f9:
df:0e:28:69:da:7c:eb:ec:59:73:b9:32:4b:8b:b3:09:91:67:
69:72:31:22:19:26:c2:12:50:d0:33:d8:c8:e9:32:03:84:7c:
62:1d:67:ba:e5:bc:93:80:90:b2:3c:c0:66:61:0b:f7:4c:3e:
70:2e:a9:87:cb:21:ce:d3:70:a1:f7:24:37:1a:06:7b:83:10:
4a:7d:77:aa:e9:f9:8a:f4:09:68:76:cb:83:7b:e3:7c:36:fd:
b5:56:a4:3d:2f:3f:b0:db:1e:7d:58:bd:e9:5b:40:48:ab:d3:
d7:b2:e0:d8:a4:82:a6:f2:99:48:5c:9e:c6:4a:fd:ce:63:38:
d9:16:cb:74:bd:e3:a3:d7:c6:ca:07:4a:d0:6d:eb:86:ec:a0:
2e:0e:3d:ed:88:b2:07:b4:f7:81:05:0a:cb:ca:09:c7:99:77:
b0:51:23:e1:57:7e:96:e3:a8:ea:c3:c6:5e:a6:18:8f:1a:f4:
80:97:7e:d5:53:a1:04:02:5e:29:41:4b:b0:4e:b0:ca:e5:f6:
18:78:5f:b7
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUefgyeLj2g8QqN8YON1TXKNJClVgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTIyQTE5MDQxRjdBRDhEMEI0Rjk3RDZEREFGQzk5QzI1
OTAyNzZBQjAeFw0yNTAyMDQxODE1NDJaFw0yNjAyMDMxODIwNDJaMDMxMTAvBgNV
BAMTKDU0RUI2NkQ3OUUwRDVEQTA0N0E5N0E2QTA3OTI5MUI5OTcwOUZGMDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpV6+feKhma1Ewhio6a0BDvJtC
GQEwpQe9ieE9O/yKlep6qANytNqSrMyEsVV/IrDkEaijq+q2Ssvs7e/ae7CeCuP2
H6yIhs1xwGHwGhAOgkniB4tEqcKX4+e7ZE/ha64s4JOhfb0sWJ6yCtxX9ez+b5MN
BkiJmRSy7eew42bgQLbLeMRgGjOYaz6rDtQ3YcFgveAOuUP4bBdtsjYUPgWaVN0/
Nbjd9zr/4Rs5pzcVj+ab332b3gYQPF7qqTZAD/OufJPXDythiJ/1+6fa8RvldqaA
spTnzTR9RYet9pHyENhXC6M9uQYwXqqwXkFq2dovqAwLGJQALDI3RO3KRuVlAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUVOtm154NXaBHqXpqB5KRuZcJ/wIwHwYDVR0j
BBgwFoAUUioZBB962NC0+X1t2vyZwlkCdqswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85MDcyQ0M3QUM5OTM1QTk2QUVDREMzQjE1NkYwQkUyODVB
QzBEMkYzRTJCMjY0NjZGODdEN0MzOTYzOUZFN0M5LzAvNTIyQTE5MDQxRjdBRDhE
MEI0Rjk3RDZEREFGQzk5QzI1OTAyNzZBQi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81MjJBMTkwNDFGN0FEOEQwQjRG
OTdENkREQUZDOTlDMjU5MDI3NkFCLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOTA3MkNDN0FDOTkzNUE5NkFFQ0RDM0IxNTZGMEJFMjg1QUMwRDJGM0Uy
QjI2NDY2Rjg3RDdDMzk2MzlGRTdDOS8wLzMxMzQzMzJlMzIzMDMyMmUzMTM2MzAy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNTMyMzQzMjMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCj8qg
MA0GCSqGSIb3DQEBCwUAA4IBAQCUMwxLxuu0T2QSl5coDgTMpkAGGKC6+fPrRp0y
UzI7xsaHXut/kT7rmCKSTEWqVA84SOFrOfnfDihp2nzr7FlzuTJLi7MJkWdpcjEi
GSbCElDQM9jI6TIDhHxiHWe65byTgJCyPMBmYQv3TD5wLqmHyyHO03Ch9yQ3GgZ7
gxBKfXeq6fmK9AlodsuDe+N8Nv21VqQ9Lz+w2x59WL3pW0BIq9PXsuDYpIKm8plI
XJ7GSv3OYzjZFst0veOj18bKB0rQbeuG7KAuDj3tiLIHtPeBBQrLygnHmXewUSPh
V36W46jqw8ZephiPGvSAl37VU6EEAl4pQUuwTrDK5fYYeF+3
-----END CERTIFICATE-----
Generated at Sat Apr 5 19:59:38 2025 by rpki-client