Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3139362e302f32342d3234203d3e203230303135.roa
File: 3230302e37312e3139362e302f32342d3234203d3e203230303135.roa (raw, json)
Hash identifier: xhMg82ov1o51eUXusM3cBwyQFw7bWvV/mhAAnmslx1c=
Subject key identifier: 54:22:B1:4B:87:1A:27:B6:F2:16:1C:08:61:07:D3:A4:4B:6D:69:25
Certificate issuer: /CN=D6368A1CCA4398AC245E8096FFF2D9BD515D42F3
Certificate serial: 34D03830D7EBEA27D657F655713BE4DDF6B86F34
Authority key identifier: D6:36:8A:1C:CA:43:98:AC:24:5E:80:96:FF:F2:D9:BD:51:5D:42:F3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3139362e302f32342d3234203d3e203230303135.roa
Signing time: Tue 04 Feb 2025 18:52:15 +0000
ROA not before: Tue 04 Feb 2025 18:47:15 +0000
ROA not after: Tue 03 Feb 2026 18:52:15 +0000
asID: 20015
IP address blocks: 200.71.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:d0:38:30:d7:eb:ea:27:d6:57:f6:55:71:3b:e4:dd:f6:b8:6f:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D6368A1CCA4398AC245E8096FFF2D9BD515D42F3
Validity
Not Before: Feb 4 18:47:15 2025 GMT
Not After : Feb 3 18:52:15 2026 GMT
Subject: CN=5422B14B871A27B6F2161C086107D3A44B6D6925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:10:e1:de:4a:71:71:c7:97:2f:9b:53:7b:3e:
99:5f:27:b6:1c:04:24:8b:5b:54:fd:16:9d:cc:07:
08:c6:66:7a:40:4b:fd:98:89:64:71:70:79:48:ae:
98:79:60:47:08:82:1c:7e:c6:3e:2a:ca:97:3c:d0:
db:73:64:84:fd:db:45:cc:b6:eb:1a:6f:48:e7:63:
fc:b0:ee:09:bf:47:b6:99:46:e2:1b:ed:da:8b:98:
87:ab:0f:1c:20:0c:42:1a:57:23:f5:2f:6b:04:99:
98:5a:f7:2d:ad:19:31:19:96:31:ed:28:76:63:d5:
77:0a:d4:fc:09:16:af:c8:1d:d0:10:52:29:af:b4:
b5:b6:04:55:de:d3:75:7a:1e:5c:0e:29:5a:8d:b9:
26:3d:41:76:4b:92:f1:b5:c8:16:05:ef:3c:7d:c7:
28:48:41:cf:4a:ac:50:5b:b4:00:a0:6e:6a:9d:d5:
05:be:10:75:b4:62:df:5e:42:b7:a5:d9:6d:5b:2f:
cf:b2:c7:e5:ca:05:a6:09:2c:8e:74:5f:b9:b1:56:
e2:29:ed:7c:a4:e8:91:03:f4:d0:22:2c:c0:71:91:
9c:b8:22:0a:fa:0b:a8:26:6e:45:9b:05:f7:94:1f:
99:df:9a:86:3b:58:21:3f:38:a9:e6:83:25:dd:11:
f5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:22:B1:4B:87:1A:27:B6:F2:16:1C:08:61:07:D3:A4:4B:6D:69:25
X509v3 Authority Key Identifier:
keyid:D6:36:8A:1C:CA:43:98:AC:24:5E:80:96:FF:F2:D9:BD:51:5D:42:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3139362e302f32342d3234203d3e203230303135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.71.196.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:fe:6d:0e:e3:d0:a3:6a:86:ce:52:51:35:d6:aa:65:fe:ff:
d2:7f:5c:e4:e8:7c:9c:bb:37:bc:14:b7:b2:d2:70:2e:04:2f:
32:0d:e7:4c:d8:2e:ea:4d:94:b7:19:21:18:9b:92:00:87:b0:
7d:5e:d0:a6:54:b5:9a:c9:01:76:0c:8e:eb:6f:df:a8:7e:09:
46:fa:a5:21:f5:1c:cb:3f:8e:dd:32:0a:91:b2:bf:ed:01:ab:
28:ba:7c:aa:82:fd:97:55:4a:20:82:de:05:ad:b1:2d:fc:6b:
f7:17:13:6c:37:77:b6:f9:00:d6:7e:a7:d8:3f:87:5f:1a:0a:
40:c9:df:6e:9a:bb:c1:42:e5:8d:9f:ab:c6:0c:1c:50:b5:ac:
fc:f4:57:7a:80:0f:6d:77:db:a4:11:d7:9c:05:e8:a2:4c:9b:
1f:6c:65:c8:57:27:aa:8b:bc:80:35:7f:73:92:04:9c:21:9f:
5b:3c:3a:e9:72:07:bb:af:3d:f8:ef:b0:c3:09:d0:ba:de:7e:
0f:11:b3:7c:5d:0b:d1:fc:03:a5:74:db:1c:0f:7e:9c:ad:35:
30:d9:9b:17:ff:b0:14:19:a1:6f:fd:32:54:6a:85:20:56:09:
47:8b:5d:ed:72:c8:23:c9:dd:94:1a:9c:ca:c3:20:a7:12:40:
3b:f7:e4:96
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUNNA4MNfr6ifWV/ZVcTvk3fa4bzQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDYzNjhBMUNDQTQzOThBQzI0NUU4MDk2RkZGMkQ5QkQ1
MTVENDJGMzAeFw0yNTAyMDQxODQ3MTVaFw0yNjAyMDMxODUyMTVaMDMxMTAvBgNV
BAMTKDU0MjJCMTRCODcxQTI3QjZGMjE2MUMwODYxMDdEM0E0NEI2RDY5MjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPEOHeSnFxx5cvm1N7PplfJ7Yc
BCSLW1T9Fp3MBwjGZnpAS/2YiWRxcHlIrph5YEcIghx+xj4qypc80NtzZIT920XM
tusab0jnY/yw7gm/R7aZRuIb7dqLmIerDxwgDEIaVyP1L2sEmZha9y2tGTEZljHt
KHZj1XcK1PwJFq/IHdAQUimvtLW2BFXe03V6HlwOKVqNuSY9QXZLkvG1yBYF7zx9
xyhIQc9KrFBbtACgbmqd1QW+EHW0Yt9eQrel2W1bL8+yx+XKBaYJLI50X7mxVuIp
7Xyk6JED9NAiLMBxkZy4Igr6C6gmbkWbBfeUH5nfmoY7WCE/OKnmgyXdEfXPAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUVCKxS4caJ7byFhwIYQfTpEttaSUwHwYDVR0j
BBgwFoAU1jaKHMpDmKwkXoCW//LZvVFdQvMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BMzAwQkNGMzdDQzdFQjNBMzE5RTdDOTJBM0Y4OUIyM0My
QjY1Q0VFNkUxRjE2QUUwN0VFRDcxMENDQzQwQ0ZFLzAvRDYzNjhBMUNDQTQzOThB
QzI0NUU4MDk2RkZGMkQ5QkQ1MTVENDJGMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ENjM2OEExQ0NBNDM5OEFDMjQ1
RTgwOTZGRkYyRDlCRDUxNUQ0MkYzLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQTMwMEJDRjM3Q0M3RUIzQTMxOUU3QzkyQTNGODlCMjNDMkI2NUNFRTZF
MUYxNkFFMDdFRUQ3MTBDQ0M0MENGRS8wLzMyMzAzMDJlMzczMTJlMzEzOTM2MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDMwMzEzNS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMhHxDAN
BgkqhkiG9w0BAQsFAAOCAQEAyf5tDuPQo2qGzlJRNdaqZf7/0n9c5Oh8nLs3vBS3
stJwLgQvMg3nTNgu6k2UtxkhGJuSAIewfV7QplS1mskBdgyO62/fqH4JRvqlIfUc
yz+O3TIKkbK/7QGrKLp8qoL9l1VKIILeBa2xLfxr9xcTbDd3tvkA1n6n2D+HXxoK
QMnfbpq7wULljZ+rxgwcULWs/PRXeoAPbXfbpBHXnAXookybH2xlyFcnqou8gDV/
c5IEnCGfWzw66XIHu689+O+wwwnQut5+DxGzfF0L0fwDpXTbHA9+nK01MNmbF/+w
FBmhb/0yVGqFIFYJR4td7XLII8ndlBqcysMgpxJAO/fklg==
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:24:08 2025 by rpki-client