Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9396B23AF8705DC1F1A135270234432ABA016775C17819F67D69BF39C1BE97A8/0/3230302e38392e36342e302f32302d3230203d3e203233313430.roa
File: 3230302e38392e36342e302f32302d3230203d3e203233313430.roa (raw, json)
Hash identifier: MuVkrksN6Nndojm+zBAMSGOH0xql9EWRLP4tu/OiPK8=
Subject key identifier: 89:E3:AD:1C:4C:F6:25:13:93:3B:03:11:E8:3E:23:1A:A3:DE:6B:6F
Certificate issuer: /CN=396E808C913B9F4BFC950B4F1DDEB1159E5C9B5C
Certificate serial: 4F152B4C7CC2E2134D690407F50FADB0C1608D1F
Authority key identifier: 39:6E:80:8C:91:3B:9F:4B:FC:95:0B:4F:1D:DE:B1:15:9E:5C:9B:5C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/396E808C913B9F4BFC950B4F1DDEB1159E5C9B5C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9396B23AF8705DC1F1A135270234432ABA016775C17819F67D69BF39C1BE97A8/0/3230302e38392e36342e302f32302d3230203d3e203233313430.roa
Signing time: Tue 04 Feb 2025 18:42:54 +0000
ROA not before: Tue 04 Feb 2025 18:37:54 +0000
ROA not after: Tue 03 Feb 2026 18:42:54 +0000
asID: 23140
IP address blocks: 200.89.64.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:15:2b:4c:7c:c2:e2:13:4d:69:04:07:f5:0f:ad:b0:c1:60:8d:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=396E808C913B9F4BFC950B4F1DDEB1159E5C9B5C
Validity
Not Before: Feb 4 18:37:54 2025 GMT
Not After : Feb 3 18:42:54 2026 GMT
Subject: CN=89E3AD1C4CF62513933B0311E83E231AA3DE6B6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e7:52:7d:2d:ed:31:32:e6:60:28:54:6e:68:
b3:f0:0f:34:f3:ed:7f:f5:00:19:a5:b0:cc:e1:06:
4f:03:2b:ce:25:a1:99:b4:64:4b:e3:12:d6:04:6e:
b2:f0:04:b4:4c:d3:a5:7a:4a:ec:9b:40:2f:08:a4:
21:1b:b2:38:b2:f1:b7:6b:87:a8:0b:64:bb:58:93:
5e:37:ec:8a:b8:ec:28:1f:49:87:58:d3:da:85:e4:
17:49:ce:51:29:29:65:f7:69:6e:c4:55:e9:ed:bf:
71:d4:83:5d:20:8b:2c:e0:54:40:9c:e8:83:1f:9b:
43:a4:62:8a:29:44:bb:ec:8e:be:59:c2:8d:c0:4c:
a8:33:b8:49:5a:0f:01:26:ab:fb:16:ea:ee:9d:8e:
b9:9e:08:70:49:0e:42:09:61:c3:2d:7c:07:4e:58:
1c:be:25:c9:c6:cf:d4:b5:3c:8b:35:a7:04:ca:98:
58:4e:aa:a6:36:a0:50:f0:43:3f:76:7f:d0:7d:d4:
bd:57:f0:2f:ff:a4:75:87:99:ed:6a:3d:a6:bb:97:
32:95:c3:d6:43:08:4f:d4:e7:42:bf:4e:8a:1d:5a:
d1:ce:51:81:05:29:9a:d4:16:97:85:46:71:b6:86:
f3:9a:27:4a:bc:71:31:ba:e8:12:ed:a1:30:86:92:
71:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E3:AD:1C:4C:F6:25:13:93:3B:03:11:E8:3E:23:1A:A3:DE:6B:6F
X509v3 Authority Key Identifier:
keyid:39:6E:80:8C:91:3B:9F:4B:FC:95:0B:4F:1D:DE:B1:15:9E:5C:9B:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9396B23AF8705DC1F1A135270234432ABA016775C17819F67D69BF39C1BE97A8/0/396E808C913B9F4BFC950B4F1DDEB1159E5C9B5C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/396E808C913B9F4BFC950B4F1DDEB1159E5C9B5C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9396B23AF8705DC1F1A135270234432ABA016775C17819F67D69BF39C1BE97A8/0/3230302e38392e36342e302f32302d3230203d3e203233313430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.89.64.0/20
Signature Algorithm: sha256WithRSAEncryption
28:d8:1e:f8:1d:5b:d9:b4:02:0b:61:96:e4:43:64:2b:be:19:
73:32:00:38:cc:71:fd:5b:c2:81:9e:05:e5:49:c3:84:4b:9b:
41:9f:ec:40:74:b1:b5:65:24:57:3c:b1:3d:d1:1f:2d:96:14:
43:60:3c:24:6b:5a:bd:ca:5a:19:58:02:58:97:27:5b:39:8b:
dd:c4:9b:3a:2d:d0:4e:d8:1c:37:ab:76:93:56:33:99:de:1a:
66:a6:9f:f5:78:78:56:24:20:9e:d1:95:30:90:ca:15:5b:76:
91:fe:d9:db:b4:16:ef:33:ed:2e:48:8c:6e:c7:fd:04:38:f6:
89:a5:03:8e:24:d7:da:25:c4:ae:ac:b8:cf:ee:e9:1a:b8:76:
95:c4:9b:c8:fe:9c:82:ed:9d:2d:3f:c8:76:e0:e9:78:91:15:
50:c1:19:73:17:fc:4b:0a:7e:f6:80:58:26:af:84:9c:2a:0b:
c8:d2:aa:9b:99:65:59:6c:09:c4:ee:48:c7:e5:7e:cf:32:50:
cd:8b:85:64:fa:82:c9:03:51:2d:d6:76:7a:07:3f:de:55:e9:
4e:72:fa:fa:da:16:3b:ff:14:46:4a:53:28:60:7d:8e:ee:37:
92:cf:b4:d6:8c:c4:9b:6e:e3:c2:7b:c3:0f:ee:43:44:67:93:
ba:71:d8:f8
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUTxUrTHzC4hNNaQQH9Q+tsMFgjR8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzk2RTgwOEM5MTNCOUY0QkZDOTUwQjRGMURERUIxMTU5
RTVDOUI1QzAeFw0yNTAyMDQxODM3NTRaFw0yNjAyMDMxODQyNTRaMDMxMTAvBgNV
BAMTKDg5RTNBRDFDNENGNjI1MTM5MzNCMDMxMUU4M0UyMzFBQTNERTZCNkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs51J9Le0xMuZgKFRuaLPwDzTz
7X/1ABmlsMzhBk8DK84loZm0ZEvjEtYEbrLwBLRM06V6SuybQC8IpCEbsjiy8bdr
h6gLZLtYk1437Iq47CgfSYdY09qF5BdJzlEpKWX3aW7EVentv3HUg10giyzgVECc
6IMfm0OkYoopRLvsjr5Zwo3ATKgzuElaDwEmq/sW6u6djrmeCHBJDkIJYcMtfAdO
WBy+JcnGz9S1PIs1pwTKmFhOqqY2oFDwQz92f9B91L1X8C//pHWHme1qPaa7lzKV
w9ZDCE/U50K/ToodWtHOUYEFKZrUFpeFRnG2hvOaJ0q8cTG66BLtoTCGknHDAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUieOtHEz2JROTOwMR6D4jGqPea28wHwYDVR0j
BBgwFoAUOW6AjJE7n0v8lQtPHd6xFZ5cm1wwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85Mzk2QjIzQUY4NzA1REMxRjFBMTM1MjcwMjM0NDMyQUJB
MDE2Nzc1QzE3ODE5RjY3RDY5QkYzOUMxQkU5N0E4LzAvMzk2RTgwOEM5MTNCOUY0
QkZDOTUwQjRGMURERUIxMTU5RTVDOUI1Qy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zOTZFODA4QzkxM0I5RjRCRkM5
NTBCNEYxRERFQjExNTlFNUM5QjVDLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOTM5NkIyM0FGODcwNURDMUYxQTEzNTI3MDIzNDQzMkFCQTAxNjc3NUMx
NzgxOUY2N0Q2OUJGMzlDMUJFOTdBOC8wLzMyMzAzMDJlMzgzOTJlMzYzNDJlMzAy
ZjMyMzAyZDMyMzAyMDNkM2UyMDMyMzMzMTM0MzAucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATIWUAwDQYJ
KoZIhvcNAQELBQADggEBACjYHvgdW9m0AgthluRDZCu+GXMyADjMcf1bwoGeBeVJ
w4RLm0Gf7EB0sbVlJFc8sT3RHy2WFENgPCRrWr3KWhlYAliXJ1s5i93Emzot0E7Y
HDerdpNWM5neGmamn/V4eFYkIJ7RlTCQyhVbdpH+2du0Fu8z7S5IjG7H/QQ49oml
A44k19olxK6suM/u6Rq4dpXEm8j+nILtnS0/yHbg6XiRFVDBGXMX/EsKfvaAWCav
hJwqC8jSqpuZZVlsCcTuSMflfs8yUM2LhWT6gskDUS3WdnoHP95V6U5y+vraFjv/
FEZKUyhgfY7uN5LPtNaMxJtu48J7ww/uQ0Rnk7px2Pg=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:16 2025 by rpki-client