Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AEC379831D2AE7A5D56AF6A90D9AF915FB6377EE9FF9B2A25FE909700E8A3C7F/0/3133312e3130382e3136382e302f32322d3234203d3e203130323939.roa
File: 3133312e3130382e3136382e302f32322d3234203d3e203130323939.roa (raw, json)
Hash identifier: 3Y406hbERfbjMtyvOcijV4C1Ekrju65EOp7gKsaIzP0=
Subject key identifier: 25:33:11:90:8D:72:27:62:F9:32:B0:CF:D9:44:85:4E:54:23:25:BB
Certificate issuer: /CN=9E552EDA3BF8A5B6CADC533E403537B6DC729938
Certificate serial: 58A3A969FFB5B36C5C4271E969CAF6DF6B388AB9
Authority key identifier: 9E:55:2E:DA:3B:F8:A5:B6:CA:DC:53:3E:40:35:37:B6:DC:72:99:38
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9E552EDA3BF8A5B6CADC533E403537B6DC729938.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AEC379831D2AE7A5D56AF6A90D9AF915FB6377EE9FF9B2A25FE909700E8A3C7F/0/3133312e3130382e3136382e302f32322d3234203d3e203130323939.roa
Signing time: Tue 04 Feb 2025 18:03:15 +0000
ROA not before: Tue 04 Feb 2025 17:58:15 +0000
ROA not after: Tue 03 Feb 2026 18:03:15 +0000
asID: 10299
IP address blocks: 131.108.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:a3:a9:69:ff:b5:b3:6c:5c:42:71:e9:69:ca:f6:df:6b:38:8a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E552EDA3BF8A5B6CADC533E403537B6DC729938
Validity
Not Before: Feb 4 17:58:15 2025 GMT
Not After : Feb 3 18:03:15 2026 GMT
Subject: CN=253311908D722762F932B0CFD944854E542325BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a8:84:63:35:cf:60:15:1e:91:5d:47:6b:9e:
98:88:2e:34:49:7c:e9:92:ee:99:36:d6:e2:8f:29:
41:33:51:ca:36:d3:ab:dc:e4:68:67:b4:0b:40:97:
77:df:c7:c7:50:5b:ab:f7:bb:e1:41:3d:66:bf:c4:
2c:bc:bb:c4:bf:e7:f8:9a:3c:6b:f5:17:08:cd:e9:
f7:97:9a:af:ee:96:09:54:a3:ce:a9:9f:db:cf:e6:
76:f9:72:d7:0b:4c:d3:93:71:41:20:88:be:05:81:
ea:05:f6:78:e5:03:b9:8f:81:2f:b8:76:e2:9c:f4:
c5:e1:86:5b:d0:47:ed:b2:76:d3:a9:20:f6:c7:fb:
cd:3e:3d:ac:6f:5f:b1:95:c7:12:da:63:45:13:2f:
5d:50:c6:9b:39:e4:09:e4:20:6d:0e:83:a7:0b:d4:
2c:03:be:27:ee:b6:ea:ee:eb:e8:75:b6:41:23:be:
6f:31:c3:2d:0d:1d:63:b4:ab:4b:2d:c8:84:5f:9c:
51:ac:33:92:0e:d5:51:03:34:05:ea:bd:bb:54:63:
95:fb:c5:3b:46:b5:b8:c7:a7:53:1a:cc:0b:39:32:
9b:85:25:8d:36:d9:41:34:ac:ad:18:42:e1:f6:1e:
0e:c1:17:a7:62:dd:23:10:9e:7b:f6:3d:fa:16:f9:
72:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:33:11:90:8D:72:27:62:F9:32:B0:CF:D9:44:85:4E:54:23:25:BB
X509v3 Authority Key Identifier:
keyid:9E:55:2E:DA:3B:F8:A5:B6:CA:DC:53:3E:40:35:37:B6:DC:72:99:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AEC379831D2AE7A5D56AF6A90D9AF915FB6377EE9FF9B2A25FE909700E8A3C7F/0/9E552EDA3BF8A5B6CADC533E403537B6DC729938.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9E552EDA3BF8A5B6CADC533E403537B6DC729938.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AEC379831D2AE7A5D56AF6A90D9AF915FB6377EE9FF9B2A25FE909700E8A3C7F/0/3133312e3130382e3136382e302f32322d3234203d3e203130323939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.108.168.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:f3:92:a9:94:85:d2:61:b6:15:99:f0:09:93:a3:e4:58:8a:
0d:78:2a:68:72:bd:79:35:fa:0e:56:6b:a0:e9:f4:4e:d2:83:
58:66:8d:17:a6:8b:5f:d3:ad:dc:90:66:43:b2:9c:8d:89:2d:
86:da:eb:72:5c:75:07:9b:ef:f7:4f:3d:69:ae:38:69:00:5e:
ce:15:0f:6a:f7:c7:72:5a:42:7a:0e:9c:14:f1:1f:db:d6:a6:
94:14:dd:72:a3:87:f5:a9:2b:8d:59:70:4c:e9:28:4a:4d:d9:
8c:7c:c3:68:af:30:75:7b:3e:08:41:63:25:e1:d6:db:35:36:
46:3f:a6:e2:5c:13:de:af:9c:71:97:3d:e5:e9:ec:12:39:5f:
57:29:94:00:7a:4b:e9:b1:13:85:fd:be:ab:24:6a:42:06:a2:
88:da:d8:6d:c4:b6:7d:21:e4:41:16:33:e0:40:08:22:30:2b:
c8:80:c4:bf:be:0d:74:6b:bd:a2:4c:99:1a:53:bc:ca:2c:00:
06:51:47:a7:7c:79:72:12:70:ca:89:a4:54:bb:fb:e8:a4:a3:
d4:00:83:af:11:01:42:95:83:93:13:25:bd:75:8a:c1:aa:4b:
f2:dc:1a:48:60:b5:3a:e4:03:73:c4:38:95:ff:17:a3:60:d1:
aa:cb:cc:83
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUWKOpaf+1s2xcQnHpacr232s4irkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUU1NTJFREEzQkY4QTVCNkNBREM1MzNFNDAzNTM3QjZE
QzcyOTkzODAeFw0yNTAyMDQxNzU4MTVaFw0yNjAyMDMxODAzMTVaMDMxMTAvBgNV
BAMTKDI1MzMxMTkwOEQ3MjI3NjJGOTMyQjBDRkQ5NDQ4NTRFNTQyMzI1QkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+qIRjNc9gFR6RXUdrnpiILjRJ
fOmS7pk21uKPKUEzUco206vc5GhntAtAl3ffx8dQW6v3u+FBPWa/xCy8u8S/5/ia
PGv1FwjN6feXmq/ulglUo86pn9vP5nb5ctcLTNOTcUEgiL4FgeoF9njlA7mPgS+4
duKc9MXhhlvQR+2ydtOpIPbH+80+PaxvX7GVxxLaY0UTL11Qxps55AnkIG0Og6cL
1CwDvifuturu6+h1tkEjvm8xwy0NHWO0q0styIRfnFGsM5IO1VEDNAXqvbtUY5X7
xTtGtbjHp1MazAs5MpuFJY022UE0rK0YQuH2Hg7BF6di3SMQnnv2PfoW+XJJAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUJTMRkI1yJ2L5MrDP2USFTlQjJbswHwYDVR0j
BBgwFoAUnlUu2jv4pbbK3FM+QDU3ttxymTgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BRUMzNzk4MzFEMkFFN0E1RDU2QUY2QTkwRDlBRjkxNUZC
NjM3N0VFOUZGOUIyQTI1RkU5MDk3MDBFOEEzQzdGLzAvOUU1NTJFREEzQkY4QTVC
NkNBREM1MzNFNDAzNTM3QjZEQzcyOTkzOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85RTU1MkVEQTNCRjhBNUI2Q0FE
QzUzM0U0MDM1MzdCNkRDNzI5OTM4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQUVDMzc5ODMxRDJBRTdBNUQ1NkFGNkE5MEQ5QUY5MTVGQjYzNzdFRTlG
RjlCMkEyNUZFOTA5NzAwRThBM0M3Ri8wLzMxMzMzMTJlMzEzMDM4MmUzMTM2Mzgy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMTMwMzIzOTM5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCg2yo
MA0GCSqGSIb3DQEBCwUAA4IBAQC485KplIXSYbYVmfAJk6PkWIoNeCpocr15NfoO
Vmug6fRO0oNYZo0Xpotf063ckGZDspyNiS2G2utyXHUHm+/3Tz1prjhpAF7OFQ9q
98dyWkJ6DpwU8R/b1qaUFN1yo4f1qSuNWXBM6ShKTdmMfMNorzB1ez4IQWMl4dbb
NTZGP6biXBPer5xxlz3l6ewSOV9XKZQAekvpsROF/b6rJGpCBqKI2thtxLZ9IeRB
FjPgQAgiMCvIgMS/vg10a72iTJkaU7zKLAAGUUenfHlyEnDKiaRUu/vopKPUAIOv
EQFClYOTEyW9dYrBqkvy3BpIYLU65ANzxDiV/xejYNGqy8yD
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:16:47 2025 by rpki-client