Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A3A4E0D18D97D39C5390FFDE26FC78BE4AB5068967B888AD988E4BB0D48F9819/0/3230312e3231372e382e302f32322d3234203d3e203237373638.roa
File: 3230312e3231372e382e302f32322d3234203d3e203237373638.roa (raw, json)
Hash identifier: druId3cG7XSGnIlfVxa4lrZPZe+OF1oAnYn44MOaBqQ=
Subject key identifier: D4:0C:98:FA:3B:02:F4:1F:D9:43:17:E5:13:E0:54:E5:E3:70:C7:7A
Certificate issuer: /CN=EC2EAE5BF883D3DFD8B270D082FF89DD81090C53
Certificate serial: 5430AD49B93FF56C6296EDD04690297D6B517454
Authority key identifier: EC:2E:AE:5B:F8:83:D3:DF:D8:B2:70:D0:82:FF:89:DD:81:09:0C:53
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EC2EAE5BF883D3DFD8B270D082FF89DD81090C53.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A3A4E0D18D97D39C5390FFDE26FC78BE4AB5068967B888AD988E4BB0D48F9819/0/3230312e3231372e382e302f32322d3234203d3e203237373638.roa
Signing time: Tue 04 Feb 2025 18:31:15 +0000
ROA not before: Tue 04 Feb 2025 18:26:15 +0000
ROA not after: Tue 03 Feb 2026 18:31:15 +0000
asID: 27768
IP address blocks: 201.217.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:30:ad:49:b9:3f:f5:6c:62:96:ed:d0:46:90:29:7d:6b:51:74:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EC2EAE5BF883D3DFD8B270D082FF89DD81090C53
Validity
Not Before: Feb 4 18:26:15 2025 GMT
Not After : Feb 3 18:31:15 2026 GMT
Subject: CN=D40C98FA3B02F41FD94317E513E054E5E370C77A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:51:4d:6a:a9:83:a3:e4:5f:06:f6:b2:0b:95:
8d:59:3d:fe:53:5a:a2:24:74:78:f2:8b:7a:93:07:
83:7f:44:20:1c:3b:d7:4c:d9:58:0f:5c:56:ba:49:
6e:e0:5e:22:07:df:5e:e2:7c:58:d0:2b:ee:ba:b0:
06:64:89:34:a8:bf:38:b1:86:46:a6:76:4f:7e:5d:
9d:93:fe:5e:74:4c:f5:70:6c:43:59:2e:f7:6e:f0:
8f:40:cc:36:8f:7e:d8:15:91:21:04:5e:b4:52:8c:
74:88:f6:9a:b4:c8:6d:b2:8f:51:d3:c3:26:a1:1c:
c7:17:6e:1c:85:93:06:c0:db:bf:10:ce:13:47:22:
6e:cc:c0:49:ad:fa:4e:99:f3:6f:e5:04:95:fa:3a:
db:10:3c:2d:44:56:5d:80:31:6f:ae:c1:d0:a4:15:
29:a9:42:b5:20:bd:f6:a2:b1:a9:be:37:f6:24:83:
c5:ca:ec:ae:d9:96:74:a6:ab:c6:ed:46:d4:2a:4b:
13:a7:1f:07:10:61:d5:07:b5:ca:ac:d5:54:5a:8f:
db:5a:be:2d:b1:33:a0:7f:ef:bf:cf:b7:c1:65:71:
68:da:6e:28:76:46:54:f7:f4:2b:42:86:9a:7f:ac:
92:2d:d8:67:d8:1c:dd:d6:d5:71:f1:79:59:ed:5a:
63:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:0C:98:FA:3B:02:F4:1F:D9:43:17:E5:13:E0:54:E5:E3:70:C7:7A
X509v3 Authority Key Identifier:
keyid:EC:2E:AE:5B:F8:83:D3:DF:D8:B2:70:D0:82:FF:89:DD:81:09:0C:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A3A4E0D18D97D39C5390FFDE26FC78BE4AB5068967B888AD988E4BB0D48F9819/0/EC2EAE5BF883D3DFD8B270D082FF89DD81090C53.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EC2EAE5BF883D3DFD8B270D082FF89DD81090C53.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A3A4E0D18D97D39C5390FFDE26FC78BE4AB5068967B888AD988E4BB0D48F9819/0/3230312e3231372e382e302f32322d3234203d3e203237373638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.217.8.0/22
Signature Algorithm: sha256WithRSAEncryption
37:75:a3:be:e0:9e:5c:40:11:dd:10:30:13:54:1b:92:81:6a:
a3:e2:9e:64:06:ab:d8:fc:f2:8d:d4:5e:56:91:4c:f8:a1:6d:
5d:a7:8c:e7:70:9f:09:c3:51:87:f6:9b:bf:da:59:6b:27:0c:
e0:8a:fb:de:58:c7:49:f1:c3:7b:10:4b:83:74:f3:5f:a4:0c:
62:a9:1b:ec:cc:c9:17:2b:4a:49:04:f9:45:24:24:2b:d8:48:
41:68:da:ac:38:1b:8f:57:be:33:31:38:9f:9d:4c:29:f9:74:
2e:32:1e:e8:f3:e5:c7:46:39:f4:90:4e:89:a5:14:4f:73:62:
92:94:11:b2:75:e7:9c:b7:d8:4b:5d:4c:4f:98:9c:73:db:cb:
57:b3:e3:14:c1:2d:18:34:fb:7d:d1:ab:9d:cb:db:18:52:2c:
2b:08:62:d9:e9:f3:d4:cf:65:0d:8e:60:87:76:70:a3:78:64:
41:6f:84:c5:23:df:ba:69:b3:01:be:c9:b7:f1:e4:f5:3e:b6:
66:29:6c:b3:8e:81:d9:26:ec:6e:44:a8:d5:e1:d9:ec:2f:ed:
48:e7:ca:4a:ed:69:7f:f3:16:ef:60:cc:75:dd:32:72:ec:c9:
52:29:c4:2c:cf:95:19:b4:b1:30:1e:7f:51:46:29:fb:75:2b:
09:c7:7f:30
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUVDCtSbk/9Wxilu3QRpApfWtRdFQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUMyRUFFNUJGODgzRDNERkQ4QjI3MEQwODJGRjg5REQ4
MTA5MEM1MzAeFw0yNTAyMDQxODI2MTVaFw0yNjAyMDMxODMxMTVaMDMxMTAvBgNV
BAMTKEQ0MEM5OEZBM0IwMkY0MUZEOTQzMTdFNTEzRTA1NEU1RTM3MEM3N0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6UU1qqYOj5F8G9rILlY1ZPf5T
WqIkdHjyi3qTB4N/RCAcO9dM2VgPXFa6SW7gXiIH317ifFjQK+66sAZkiTSovzix
hkamdk9+XZ2T/l50TPVwbENZLvdu8I9AzDaPftgVkSEEXrRSjHSI9pq0yG2yj1HT
wyahHMcXbhyFkwbA278QzhNHIm7MwEmt+k6Z82/lBJX6OtsQPC1EVl2AMW+uwdCk
FSmpQrUgvfaisam+N/Ykg8XK7K7ZlnSmq8btRtQqSxOnHwcQYdUHtcqs1VRaj9ta
vi2xM6B/77/Pt8FlcWjabih2RlT39CtChpp/rJIt2GfYHN3W1XHxeVntWmOtAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQU1AyY+jsC9B/ZQxflE+BU5eNwx3owHwYDVR0j
BBgwFoAU7C6uW/iD09/YsnDQgv+J3YEJDFMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BM0E0RTBEMThEOTdEMzlDNTM5MEZGREUyNkZDNzhCRTRB
QjUwNjg5NjdCODg4QUQ5ODhFNEJCMEQ0OEY5ODE5LzAvRUMyRUFFNUJGODgzRDNE
RkQ4QjI3MEQwODJGRjg5REQ4MTA5MEM1My5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FQzJFQUU1QkY4ODNEM0RGRDhC
MjcwRDA4MkZGODlERDgxMDkwQzUzLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQTNBNEUwRDE4RDk3RDM5QzUzOTBGRkRFMjZGQzc4QkU0QUI1MDY4OTY3
Qjg4OEFEOTg4RTRCQjBENDhGOTgxOS8wLzMyMzAzMTJlMzIzMTM3MmUzODJlMzAy
ZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzczNzM2Mzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALJ2QgwDQYJ
KoZIhvcNAQELBQADggEBADd1o77gnlxAEd0QMBNUG5KBaqPinmQGq9j88o3UXlaR
TPihbV2njOdwnwnDUYf2m7/aWWsnDOCK+95Yx0nxw3sQS4N081+kDGKpG+zMyRcr
SkkE+UUkJCvYSEFo2qw4G49XvjMxOJ+dTCn5dC4yHujz5cdGOfSQTomlFE9zYpKU
EbJ155y32EtdTE+YnHPby1ez4xTBLRg0+33Rq53L2xhSLCsIYtnp89TPZQ2OYId2
cKN4ZEFvhMUj37ppswG+ybfx5PU+tmYpbLOOgdkm7G5EqNXh2ewv7UjnykrtaX/z
Fu9gzHXdMnLsyVIpxCzPlRm0sTAef1FGKft1KwnHfzA=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:42:40 2025 by rpki-client