Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B5F255A001017B89E4755212415E4A07B50DEA0A9B93A7C0F8672EACC8951C47/0/3138312e3137342e3137322e302f32322d3234203d3e203230323037.roa
File: 3138312e3137342e3137322e302f32322d3234203d3e203230323037.roa (raw, json)
Hash identifier: ZfWY7rufyz+nPbs5aysySuwUFDdkQF3/SL2Dm0WTzyc=
Subject key identifier: 23:12:B3:F0:C4:EB:8B:2E:52:6A:25:4D:FB:43:60:6B:FC:EC:11:60
Certificate issuer: /CN=845FC621EC41AE7512D63082015413006FEF3E35
Certificate serial: DEA4E504E964DFEA5F11DA0149ED41BBE352BD
Authority key identifier: 84:5F:C6:21:EC:41:AE:75:12:D6:30:82:01:54:13:00:6F:EF:3E:35
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/845FC621EC41AE7512D63082015413006FEF3E35.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B5F255A001017B89E4755212415E4A07B50DEA0A9B93A7C0F8672EACC8951C47/0/3138312e3137342e3137322e302f32322d3234203d3e203230323037.roa
Signing time: Tue 04 Feb 2025 18:56:13 +0000
ROA not before: Tue 04 Feb 2025 18:51:13 +0000
ROA not after: Tue 03 Feb 2026 18:56:13 +0000
asID: 20207
IP address blocks: 181.174.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
de:a4:e5:04:e9:64:df:ea:5f:11:da:01:49:ed:41:bb:e3:52:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845FC621EC41AE7512D63082015413006FEF3E35
Validity
Not Before: Feb 4 18:51:13 2025 GMT
Not After : Feb 3 18:56:13 2026 GMT
Subject: CN=2312B3F0C4EB8B2E526A254DFB43606BFCEC1160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:10:83:0c:e8:61:bc:96:a1:30:85:19:fe:74:
9b:55:64:67:40:03:50:f7:7f:4b:db:a9:22:0e:aa:
a0:5f:17:cf:b1:ae:0f:de:6c:79:be:79:f8:22:07:
2f:87:9e:de:e5:0a:af:5a:d2:c6:b5:14:05:92:bc:
2f:af:d4:79:e2:80:fc:34:05:59:1c:33:b7:d8:e9:
10:f7:0f:db:1b:66:5a:ad:64:bb:0b:03:6d:d3:24:
a6:13:04:6d:2f:8b:72:08:b1:da:3f:48:bd:a3:26:
34:0f:de:a3:74:5e:c5:38:01:f4:f9:fc:3e:5a:66:
97:be:a7:eb:d9:aa:de:d4:a0:bc:66:8b:db:55:f8:
af:4a:df:e4:16:38:f1:ad:b8:88:4b:31:b8:90:8b:
45:24:79:9e:7d:8a:93:c8:aa:21:4f:13:c6:36:80:
27:2a:70:b1:cf:10:97:46:be:7d:24:98:7f:8c:85:
a8:2f:ac:a3:4c:1a:d1:34:ba:2a:29:f7:b4:fc:bd:
5f:cd:b6:09:af:48:8a:ee:41:d3:82:92:03:9b:06:
64:c3:0a:7c:77:60:ae:f8:e4:cd:4a:1c:9f:ad:7d:
82:b2:3f:dc:21:e8:5a:5a:3e:cf:47:dd:dd:d6:1c:
cb:0a:8e:f1:9c:9c:00:33:11:12:6d:d7:d3:6d:66:
ef:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:12:B3:F0:C4:EB:8B:2E:52:6A:25:4D:FB:43:60:6B:FC:EC:11:60
X509v3 Authority Key Identifier:
keyid:84:5F:C6:21:EC:41:AE:75:12:D6:30:82:01:54:13:00:6F:EF:3E:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B5F255A001017B89E4755212415E4A07B50DEA0A9B93A7C0F8672EACC8951C47/0/845FC621EC41AE7512D63082015413006FEF3E35.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/845FC621EC41AE7512D63082015413006FEF3E35.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B5F255A001017B89E4755212415E4A07B50DEA0A9B93A7C0F8672EACC8951C47/0/3138312e3137342e3137322e302f32322d3234203d3e203230323037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.174.172.0/22
Signature Algorithm: sha256WithRSAEncryption
09:44:b7:aa:bc:8b:55:cc:71:e7:bb:7e:67:2c:d0:87:fb:55:
f8:a5:51:8c:0d:b9:80:9e:f9:d5:75:64:83:4b:e9:9b:5d:9e:
1f:34:29:3c:93:2a:8d:c7:98:56:79:0a:e6:41:e8:5e:7f:c5:
9b:fb:9f:01:9b:8f:2e:cf:39:b0:39:25:8c:d6:8d:d2:82:e0:
e0:a5:18:20:df:ca:79:d9:bc:ad:52:83:a5:93:a4:e5:ed:53:
25:ac:91:d5:a5:1e:50:0f:c5:04:bf:2a:98:3d:38:29:5d:0a:
96:59:9f:ae:14:f4:2b:df:e1:40:75:73:54:20:0a:33:10:56:
5f:61:ee:86:8b:3a:53:fb:25:ed:70:76:95:b8:ea:23:0c:c0:
be:b1:f2:e9:81:37:eb:4b:9c:0e:1c:33:34:2a:94:d5:8b:f8:
39:f5:50:42:dd:27:c8:f2:91:04:b7:32:79:41:7f:a8:e7:84:
0c:c5:75:95:d6:a1:d2:38:10:46:58:7b:84:9c:9f:df:a9:84:
4c:58:a2:fc:a2:18:de:c8:52:b5:17:2e:c8:b0:57:fc:44:13:
45:e3:c4:c9:c1:db:87:25:41:88:6e:8b:f3:58:38:c1:9e:49:
dd:ed:ce:22:59:84:81:4a:10:0f:6b:6d:d4:ff:ac:cb:17:b7:
cf:4b:b0:91
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUAN6k5QTpZN/qXxHaAUntQbvjUr0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODQ1RkM2MjFFQzQxQUU3NTEyRDYzMDgyMDE1NDEzMDA2
RkVGM0UzNTAeFw0yNTAyMDQxODUxMTNaFw0yNjAyMDMxODU2MTNaMDMxMTAvBgNV
BAMTKDIzMTJCM0YwQzRFQjhCMkU1MjZBMjU0REZCNDM2MDZCRkNFQzExNjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4EIMM6GG8lqEwhRn+dJtVZGdA
A1D3f0vbqSIOqqBfF8+xrg/ebHm+efgiBy+Hnt7lCq9a0sa1FAWSvC+v1HnigPw0
BVkcM7fY6RD3D9sbZlqtZLsLA23TJKYTBG0vi3IIsdo/SL2jJjQP3qN0XsU4AfT5
/D5aZpe+p+vZqt7UoLxmi9tV+K9K3+QWOPGtuIhLMbiQi0UkeZ59ipPIqiFPE8Y2
gCcqcLHPEJdGvn0kmH+MhagvrKNMGtE0uiop97T8vV/NtgmvSIruQdOCkgObBmTD
Cnx3YK745M1KHJ+tfYKyP9wh6FpaPs9H3d3WHMsKjvGcnAAzERJt19NtZu8RAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUIxKz8MTriy5SaiVN+0Nga/zsEWAwHwYDVR0j
BBgwFoAUhF/GIexBrnUS1jCCAVQTAG/vPjUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CNUYyNTVBMDAxMDE3Qjg5RTQ3NTUyMTI0MTVFNEEwN0I1
MERFQTBBOUI5M0E3QzBGODY3MkVBQ0M4OTUxQzQ3LzAvODQ1RkM2MjFFQzQxQUU3
NTEyRDYzMDgyMDE1NDEzMDA2RkVGM0UzNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NDVGQzYyMUVDNDFBRTc1MTJE
NjMwODIwMTU0MTMwMDZGRUYzRTM1LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQjVGMjU1QTAwMTAxN0I4OUU0NzU1MjEyNDE1RTRBMDdCNTBERUEwQTlC
OTNBN0MwRjg2NzJFQUNDODk1MUM0Ny8wLzMxMzgzMTJlMzEzNzM0MmUzMTM3MzIy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjMwMzIzMDM3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCta6s
MA0GCSqGSIb3DQEBCwUAA4IBAQAJRLeqvItVzHHnu35nLNCH+1X4pVGMDbmAnvnV
dWSDS+mbXZ4fNCk8kyqNx5hWeQrmQehef8Wb+58Bm48uzzmwOSWM1o3SguDgpRgg
38p52bytUoOlk6Tl7VMlrJHVpR5QD8UEvyqYPTgpXQqWWZ+uFPQr3+FAdXNUIAoz
EFZfYe6GizpT+yXtcHaVuOojDMC+sfLpgTfrS5wOHDM0KpTVi/g59VBC3SfI8pEE
tzJ5QX+o54QMxXWV1qHSOBBGWHuEnJ/fqYRMWKL8ohjeyFK1Fy7IsFf8RBNF48TJ
wduHJUGIbovzWDjBnknd7c4iWYSBShAPa23U/6zLF7fPS7CR
-----END CERTIFICATE-----
Generated at Tue Apr 22 15:09:44 2025 by rpki-client