Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/3133322e3235352e3131322e302f32322d3234203d3e203532343336.roa
File: 3133322e3235352e3131322e302f32322d3234203d3e203532343336.roa (raw, json)
Hash identifier: vilPhjpWobw1+/KwRBWuZSTGkb8aCYaeQ3On8u3t/TQ=
Subject key identifier: F2:70:44:03:78:ED:AE:28:7E:C5:5B:D1:DE:7F:D1:A9:64:AC:54:D8
Certificate issuer: /CN=0DD8C886E7D641E553703DC5E196957F1368902C
Certificate serial: 18949167A57BD5AB4779BF3B71FF488C84379E7D
Authority key identifier: 0D:D8:C8:86:E7:D6:41:E5:53:70:3D:C5:E1:96:95:7F:13:68:90:2C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0DD8C886E7D641E553703DC5E196957F1368902C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/3133322e3235352e3131322e302f32322d3234203d3e203532343336.roa
Signing time: Tue 04 Feb 2025 18:34:35 +0000
ROA not before: Tue 04 Feb 2025 18:29:35 +0000
ROA not after: Tue 03 Feb 2026 18:34:35 +0000
asID: 52436
IP address blocks: 132.255.112.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:94:91:67:a5:7b:d5:ab:47:79:bf:3b:71:ff:48:8c:84:37:9e:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DD8C886E7D641E553703DC5E196957F1368902C
Validity
Not Before: Feb 4 18:29:35 2025 GMT
Not After : Feb 3 18:34:35 2026 GMT
Subject: CN=F270440378EDAE287EC55BD1DE7FD1A964AC54D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:97:9c:96:d1:5e:5e:56:65:87:56:35:c5:c2:
37:ca:8f:61:72:97:b0:5f:98:ee:c6:69:11:a2:25:
fe:ff:26:84:e3:d1:ec:0c:a6:bc:d4:14:56:38:33:
11:04:7f:98:99:d5:f1:1e:49:bc:45:fb:84:b1:96:
71:45:14:88:af:26:04:41:72:cd:7a:05:58:1e:99:
c8:d2:45:51:50:53:87:c9:5d:c0:6b:ac:64:f2:90:
aa:7f:55:64:9d:68:be:74:a0:7a:36:c4:f6:37:ee:
0a:2a:5f:76:57:28:37:c3:2e:ec:97:ad:c4:37:d6:
0d:37:69:a0:bb:44:07:73:44:97:17:bd:6c:91:5f:
79:08:2f:e7:de:b8:07:d6:f6:75:be:ba:1a:7b:a0:
fb:b9:85:3f:0b:62:7b:dc:3c:54:92:48:f8:a7:a3:
aa:e7:61:31:a9:9e:33:dc:5a:35:d3:b9:a2:e7:d1:
92:c6:3a:f2:99:60:a7:92:6c:93:1f:7e:5d:f7:ed:
c7:c4:95:dd:0d:76:b9:c8:44:6d:59:bf:f3:1d:58:
e4:c9:eb:7d:d6:40:80:f3:d4:b0:63:54:d0:a6:f8:
a9:b0:02:92:99:ac:30:ff:8b:d7:db:60:f2:04:56:
24:8d:cf:3e:cb:68:a4:36:23:0c:39:11:41:2f:71:
44:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:70:44:03:78:ED:AE:28:7E:C5:5B:D1:DE:7F:D1:A9:64:AC:54:D8
X509v3 Authority Key Identifier:
keyid:0D:D8:C8:86:E7:D6:41:E5:53:70:3D:C5:E1:96:95:7F:13:68:90:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/0DD8C886E7D641E553703DC5E196957F1368902C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0DD8C886E7D641E553703DC5E196957F1368902C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/3133322e3235352e3131322e302f32322d3234203d3e203532343336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.255.112.0/22
Signature Algorithm: sha256WithRSAEncryption
21:67:a8:47:bc:e0:14:ac:a9:d9:fe:3b:47:bf:a7:e9:c8:76:
76:3e:38:ae:56:a2:64:58:af:67:ba:e1:e7:71:4f:d4:b3:25:
e9:50:b8:15:dd:91:22:9d:60:7f:9d:11:70:75:53:9d:64:37:
42:68:16:6f:87:af:2b:df:f0:65:63:88:5f:ef:fb:2c:66:ab:
1e:8d:df:86:07:d0:98:31:84:3f:75:b5:0a:37:e0:51:0d:18:
bd:90:cf:8d:4e:53:39:30:94:f8:a7:65:c3:50:80:6e:ac:32:
e9:fd:93:58:7e:98:f8:1f:51:51:10:f4:df:47:7f:1f:99:dc:
de:67:fe:b2:b7:de:57:41:79:59:41:64:6d:3c:31:00:04:9f:
b3:94:d1:9a:92:5f:31:66:1a:9f:e0:1e:31:32:f4:58:b5:3b:
bf:ae:2d:a3:c0:b1:54:81:37:01:96:ac:f6:2a:c5:cc:49:22:
03:ac:2c:9a:d9:6d:f2:4b:78:a7:10:97:08:1f:40:8e:18:d3:
0e:3a:56:27:b8:70:54:89:3c:9f:3f:7d:ba:20:26:20:ee:f8:
eb:8b:6d:a5:1b:cf:40:25:75:cf:68:fd:b4:48:35:bc:49:08:
65:2b:bf:bf:b4:8c:26:85:8a:30:41:7a:9a:cd:b5:73:67:bd:
a8:a8:54:21
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUGJSRZ6V71atHeb87cf9IjIQ3nn0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEREOEM4ODZFN0Q2NDFFNTUzNzAzREM1RTE5Njk1N0Yx
MzY4OTAyQzAeFw0yNTAyMDQxODI5MzVaFw0yNjAyMDMxODM0MzVaMDMxMTAvBgNV
BAMTKEYyNzA0NDAzNzhFREFFMjg3RUM1NUJEMURFN0ZEMUE5NjRBQzU0RDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbl5yW0V5eVmWHVjXFwjfKj2Fy
l7BfmO7GaRGiJf7/JoTj0ewMprzUFFY4MxEEf5iZ1fEeSbxF+4SxlnFFFIivJgRB
cs16BVgemcjSRVFQU4fJXcBrrGTykKp/VWSdaL50oHo2xPY37goqX3ZXKDfDLuyX
rcQ31g03aaC7RAdzRJcXvWyRX3kIL+feuAfW9nW+uhp7oPu5hT8LYnvcPFSSSPin
o6rnYTGpnjPcWjXTuaLn0ZLGOvKZYKeSbJMffl337cfEld0NdrnIRG1Zv/MdWOTJ
633WQIDz1LBjVNCm+KmwApKZrDD/i9fbYPIEViSNzz7LaKQ2Iww5EUEvcUSpAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQU8nBEA3jtrih+xVvR3n/RqWSsVNgwHwYDVR0j
BBgwFoAUDdjIhufWQeVTcD3F4ZaVfxNokCwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CQjU1NEM0NzFBNzBBQjczQjk2NUIxNTY5QUE0NTRGQTMy
MTFGRDE0MkM4MzFBRUUxRUFGODlGQTBGRDEyRUI4LzAvMEREOEM4ODZFN0Q2NDFF
NTUzNzAzREM1RTE5Njk1N0YxMzY4OTAyQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wREQ4Qzg4NkU3RDY0MUU1NTM3
MDNEQzVFMTk2OTU3RjEzNjg5MDJDLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQkI1NTRDNDcxQTcwQUI3M0I5NjVCMTU2OUFBNDU0RkEzMjExRkQxNDJD
ODMxQUVFMUVBRjg5RkEwRkQxMkVCOC8wLzMxMzMzMjJlMzIzNTM1MmUzMTMxMzIy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNTMyMzQzMzM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQChP9w
MA0GCSqGSIb3DQEBCwUAA4IBAQAhZ6hHvOAUrKnZ/jtHv6fpyHZ2PjiuVqJkWK9n
uuHncU/UsyXpULgV3ZEinWB/nRFwdVOdZDdCaBZvh68r3/BlY4hf7/ssZqsejd+G
B9CYMYQ/dbUKN+BRDRi9kM+NTlM5MJT4p2XDUIBurDLp/ZNYfpj4H1FREPTfR38f
mdzeZ/6yt95XQXlZQWRtPDEABJ+zlNGakl8xZhqf4B4xMvRYtTu/ri2jwLFUgTcB
lqz2KsXMSSIDrCya2W3yS3inEJcIH0COGNMOOlYnuHBUiTyfP326ICYg7vjri22l
G89AJXXPaP20SDW8SQhlK7+/tIwmhYowQXqazbVzZ72oqFQh
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:00:14 2025 by rpki-client