Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136302e302f32302d3234203d3e203232353431.roa
File: 3230302e37352e3136302e302f32302d3234203d3e203232353431.roa (raw, json)
Hash identifier: uwu21ES9Nahvw+7vXOfZt3lsa7Bn0/2NSZTNVw6yMC0=
Subject key identifier: F5:16:A4:AB:E0:68:4D:A9:09:3F:6E:0F:43:DF:F0:23:CC:0D:D8:83
Certificate issuer: /CN=620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D
Certificate serial: 1FA400518D4A55BC6B5D159DE7BE7E85D2333644
Authority key identifier: 62:0D:1F:DB:BD:45:7C:A0:F9:CC:FC:63:A8:B8:5C:99:A8:19:AF:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136302e302f32302d3234203d3e203232353431.roa
Signing time: Tue 04 Feb 2025 19:59:20 +0000
ROA not before: Tue 04 Feb 2025 19:54:20 +0000
ROA not after: Tue 03 Feb 2026 19:59:20 +0000
asID: 22541
IP address blocks: 200.75.160.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:a4:00:51:8d:4a:55:bc:6b:5d:15:9d:e7:be:7e:85:d2:33:36:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D
Validity
Not Before: Feb 4 19:54:20 2025 GMT
Not After : Feb 3 19:59:20 2026 GMT
Subject: CN=F516A4ABE0684DA9093F6E0F43DFF023CC0DD883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cf:47:a7:2f:61:08:b6:e7:52:d2:89:5a:0a:
87:25:13:06:79:ad:39:4f:ba:3a:75:0c:ed:89:74:
ab:70:3d:38:c1:ca:4a:a3:20:3d:29:be:81:bb:89:
1e:e2:eb:54:8b:1d:4b:45:4b:62:45:f1:bf:ba:2b:
b4:7f:33:93:4a:f4:77:7d:64:41:fe:e0:62:13:f6:
44:12:e4:28:6b:91:07:d2:b4:a5:74:04:55:52:51:
2f:1c:bb:56:70:63:8f:ce:6c:27:82:8b:ef:fc:75:
80:7b:bd:be:12:b3:44:e1:27:dc:6f:ce:55:58:72:
bf:32:24:a7:f5:d4:38:94:ce:e1:99:df:2e:35:1f:
27:6d:a9:78:4d:6e:1f:3f:b6:27:a5:0a:34:7c:60:
72:e1:87:8c:fd:2f:5c:da:d2:07:bf:03:bd:22:05:
7e:08:4a:06:2b:df:ee:93:77:e4:3a:1a:92:4a:14:
28:02:ae:25:93:29:d0:2f:8c:e6:cd:fb:ee:1f:c3:
0e:bd:7a:f5:c0:32:a4:7c:b4:5d:46:f9:b3:53:df:
c0:18:d5:66:54:fd:d9:be:fc:3d:1f:00:2b:a5:ad:
12:01:44:6f:e8:ee:6f:8f:b3:d0:0b:97:3b:69:4a:
09:87:d8:88:e9:e9:0e:75:3b:73:1b:ab:75:1a:b0:
32:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:16:A4:AB:E0:68:4D:A9:09:3F:6E:0F:43:DF:F0:23:CC:0D:D8:83
X509v3 Authority Key Identifier:
keyid:62:0D:1F:DB:BD:45:7C:A0:F9:CC:FC:63:A8:B8:5C:99:A8:19:AF:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136302e302f32302d3234203d3e203232353431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.75.160.0/20
Signature Algorithm: sha256WithRSAEncryption
38:0a:c3:a6:b4:e6:6e:89:e5:c5:ba:31:a5:34:d9:0a:9d:58:
cb:a9:13:38:fa:a9:1c:01:4e:24:fd:2e:8f:32:87:9b:d9:73:
42:93:75:3d:c3:b0:3b:f8:95:3a:12:cf:5a:3b:f1:9a:cb:8d:
27:fb:36:d8:2a:82:6d:d1:64:88:dc:e8:b7:a3:63:ba:12:bf:
aa:bf:bb:57:06:f0:77:8e:f4:1f:7f:20:aa:98:81:78:10:bd:
4e:9f:2d:c4:3d:fe:42:cb:e9:f9:3e:60:5e:65:ae:6f:4a:ff:
e7:19:5b:b1:b1:b6:c0:2b:fd:82:2e:d2:ad:d2:97:3e:de:df:
bf:41:ef:1c:eb:1b:1b:23:72:3f:59:4c:d8:54:49:64:b7:d3:
38:1c:20:d3:97:cf:1d:90:23:ae:78:00:ca:13:e0:cf:ad:20:
f0:43:26:c3:72:1a:24:03:8e:f2:8c:2f:32:0a:9e:24:2e:21:
4d:28:f1:17:f1:88:0b:f1:c7:14:e3:d0:42:78:3b:39:b7:dc:
25:a4:d5:f8:07:ff:77:99:fd:fb:34:a1:73:1e:10:ee:ab:cb:
41:43:00:58:43:03:02:b1:c9:13:32:65:e6:90:95:9e:17:69:
ea:1c:99:77:ed:a7:97:3c:dd:12:57:8a:e0:ea:76:2a:df:3b:
e4:b6:aa:f8
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUH6QAUY1KVbxrXRWd575+hdIzNkQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjIwRDFGREJCRDQ1N0NBMEY5Q0NGQzYzQThCODVDOTlB
ODE5QUYzRDAeFw0yNTAyMDQxOTU0MjBaFw0yNjAyMDMxOTU5MjBaMDMxMTAvBgNV
BAMTKEY1MTZBNEFCRTA2ODREQTkwOTNGNkUwRjQzREZGMDIzQ0MwREQ4ODMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMz0enL2EItudS0olaCoclEwZ5
rTlPujp1DO2JdKtwPTjBykqjID0pvoG7iR7i61SLHUtFS2JF8b+6K7R/M5NK9Hd9
ZEH+4GIT9kQS5ChrkQfStKV0BFVSUS8cu1ZwY4/ObCeCi+/8dYB7vb4Ss0ThJ9xv
zlVYcr8yJKf11DiUzuGZ3y41HydtqXhNbh8/tielCjR8YHLhh4z9L1za0ge/A70i
BX4ISgYr3+6Td+Q6GpJKFCgCriWTKdAvjObN++4fww69evXAMqR8tF1G+bNT38AY
1WZU/dm+/D0fACulrRIBRG/o7m+Ps9ALlztpSgmH2Ijp6Q51O3Mbq3UasDJjAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQU9Rakq+BoTakJP24PQ9/wI8wN2IMwHwYDVR0j
BBgwFoAUYg0f271FfKD5zPxjqLhcmagZrz0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BMUZBMDM5QjlFQUYxM0FERTgxNzg4MkRENEJCRkZBMkJF
MUQ0OTE3NjRCRjkzODNFQ0VFOTA4QkQyM0Y0Q0YwLzAvNjIwRDFGREJCRDQ1N0NB
MEY5Q0NGQzYzQThCODVDOTlBODE5QUYzRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC82MjBEMUZEQkJENDU3Q0EwRjlD
Q0ZDNjNBOEI4NUM5OUE4MTlBRjNELmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQTFGQTAzOUI5RUFGMTNBREU4MTc4ODJERDRCQkZGQTJCRTFENDkxNzY0
QkY5MzgzRUNFRTkwOEJEMjNGNENGMC8wLzMyMzAzMDJlMzczNTJlMzEzNjMwMmUz
MDJmMzIzMDJkMzIzNDIwM2QzZTIwMzIzMjM1MzQzMS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMhLoDAN
BgkqhkiG9w0BAQsFAAOCAQEAOArDprTmbonlxboxpTTZCp1Yy6kTOPqpHAFOJP0u
jzKHm9lzQpN1PcOwO/iVOhLPWjvxmsuNJ/s22CqCbdFkiNzot6NjuhK/qr+7Vwbw
d470H38gqpiBeBC9Tp8txD3+Qsvp+T5gXmWub0r/5xlbsbG2wCv9gi7SrdKXPt7f
v0HvHOsbGyNyP1lM2FRJZLfTOBwg05fPHZAjrngAyhPgz60g8EMmw3IaJAOO8owv
MgqeJC4hTSjxF/GIC/HHFOPQQng7ObfcJaTV+Af/d5n9+zShcx4Q7qvLQUMAWEMD
ArHJEzJl5pCVnhdp6hyZd+2nlzzdEleK4Op2Kt875Laq+A==
-----END CERTIFICATE-----
Generated at Sun Apr 6 16:39:15 2025 by rpki-client