Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BDF923100830270002F3E5BA809E4883E186B19DAC6FAE0EF91ED4681D2E2121/0/3230302e3131352e3138352e302f32342d3234203d3e203532343036.roa
File: 3230302e3131352e3138352e302f32342d3234203d3e203532343036.roa (raw, json)
Hash identifier: il5FZNtl4kZyM88J+MRcVdhG8NJlgY7Zetz7BigkVQg=
Subject key identifier: 08:2A:49:AE:E2:82:39:52:AD:10:20:A8:A3:BF:BF:45:AB:86:73:A9
Certificate issuer: /CN=290266EC9678D57853C167C2CB1F29E5F25CCFB5
Certificate serial: 1C0094620A7BD41404BE38D30BF76AFC6C441117
Authority key identifier: 29:02:66:EC:96:78:D5:78:53:C1:67:C2:CB:1F:29:E5:F2:5C:CF:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/290266EC9678D57853C167C2CB1F29E5F25CCFB5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BDF923100830270002F3E5BA809E4883E186B19DAC6FAE0EF91ED4681D2E2121/0/3230302e3131352e3138352e302f32342d3234203d3e203532343036.roa
Signing time: Tue 04 Feb 2025 18:16:14 +0000
ROA not before: Tue 04 Feb 2025 18:11:14 +0000
ROA not after: Tue 03 Feb 2026 18:16:14 +0000
asID: 52406
IP address blocks: 200.115.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:00:94:62:0a:7b:d4:14:04:be:38:d3:0b:f7:6a:fc:6c:44:11:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290266EC9678D57853C167C2CB1F29E5F25CCFB5
Validity
Not Before: Feb 4 18:11:14 2025 GMT
Not After : Feb 3 18:16:14 2026 GMT
Subject: CN=082A49AEE2823952AD1020A8A3BFBF45AB8673A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cb:cc:0d:38:5f:f4:c2:95:45:ae:20:8b:03:
21:cb:34:e4:92:7a:bf:25:83:3c:08:ab:c3:1f:d0:
54:6e:7f:9b:50:33:0b:c0:6b:6e:09:8d:f3:0b:41:
16:30:1a:24:a2:35:d7:a0:29:de:7d:5e:fe:66:49:
57:b4:00:4d:05:54:c5:3e:91:02:96:40:81:cd:54:
6f:29:61:45:f0:7a:4b:4a:d3:91:83:44:df:de:25:
2f:f3:e5:d3:c4:6b:fb:cf:70:36:af:92:7f:b5:d1:
9d:d9:3f:22:2c:b7:67:4d:94:fa:31:48:77:06:9f:
c1:0f:b6:17:19:4b:2d:73:cc:f6:d5:09:14:0c:09:
10:7c:77:0e:e3:34:6d:3f:dd:41:33:27:b3:08:83:
f1:73:b7:59:8e:c2:fa:dc:0d:6c:e8:db:2c:5d:6b:
87:46:c1:9d:64:6e:d1:0a:25:ee:6e:a4:14:ee:34:
5e:cd:83:32:a0:d8:90:7c:40:14:8e:54:15:5d:7d:
27:6a:5c:59:f0:54:4e:74:8e:62:1b:fe:be:58:e4:
c4:cb:58:98:eb:95:4c:4a:79:9b:b3:9b:d1:e2:0a:
a6:5e:58:e9:2f:51:61:66:29:86:ab:4c:fe:86:e1:
33:b6:44:71:6a:c2:c4:6e:57:04:c3:5b:c3:11:9a:
bc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:2A:49:AE:E2:82:39:52:AD:10:20:A8:A3:BF:BF:45:AB:86:73:A9
X509v3 Authority Key Identifier:
keyid:29:02:66:EC:96:78:D5:78:53:C1:67:C2:CB:1F:29:E5:F2:5C:CF:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BDF923100830270002F3E5BA809E4883E186B19DAC6FAE0EF91ED4681D2E2121/0/290266EC9678D57853C167C2CB1F29E5F25CCFB5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/290266EC9678D57853C167C2CB1F29E5F25CCFB5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BDF923100830270002F3E5BA809E4883E186B19DAC6FAE0EF91ED4681D2E2121/0/3230302e3131352e3138352e302f32342d3234203d3e203532343036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.115.185.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:29:3a:c0:d4:90:75:f0:aa:65:e4:df:78:0d:6e:12:4e:6b:
e6:75:c3:aa:da:6a:f4:2c:80:ce:c6:69:c4:0d:62:36:ea:e4:
8f:b2:6c:6f:0c:f8:69:5a:21:c5:e9:c9:8a:0a:f9:35:bb:ac:
bf:1a:0b:cf:54:28:2f:0a:29:f8:2f:7a:2a:7b:e3:ae:d6:f2:
70:c8:22:ac:76:9f:c2:6b:5e:3e:72:2e:ff:bb:e8:06:64:fd:
d7:87:84:08:9d:5b:1b:86:7c:e0:31:ed:8d:23:57:3a:c6:cf:
b2:14:ce:77:23:97:fb:06:0b:75:6a:80:30:59:d8:b1:78:90:
2a:69:82:81:a2:c4:d3:61:57:92:ee:a6:af:6f:7c:49:fb:36:
22:b5:1c:aa:ce:0e:84:16:bd:4c:b4:e1:f0:29:89:3f:2d:b7:
fb:58:1f:62:2a:d9:38:00:60:1c:e4:c3:4e:f4:9e:2e:50:d9:
01:30:09:86:5d:2b:11:49:63:69:22:1b:9d:ab:c1:27:dd:9f:
27:6d:d6:d2:80:36:4e:9a:ec:92:87:62:c9:78:97:58:33:e5:
51:7c:32:63:82:22:50:01:74:e6:77:e1:53:9c:00:2f:cb:33:
36:e8:9f:4c:66:45:34:7f:60:e7:1d:28:04:b8:3b:29:7f:17:
91:e5:bc:10
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUHACUYgp71BQEvjjTC/dq/GxEERcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjkwMjY2RUM5Njc4RDU3ODUzQzE2N0MyQ0IxRjI5RTVG
MjVDQ0ZCNTAeFw0yNTAyMDQxODExMTRaFw0yNjAyMDMxODE2MTRaMDMxMTAvBgNV
BAMTKDA4MkE0OUFFRTI4MjM5NTJBRDEwMjBBOEEzQkZCRjQ1QUI4NjczQTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOy8wNOF/0wpVFriCLAyHLNOSS
er8lgzwIq8Mf0FRuf5tQMwvAa24JjfMLQRYwGiSiNdegKd59Xv5mSVe0AE0FVMU+
kQKWQIHNVG8pYUXwektK05GDRN/eJS/z5dPEa/vPcDavkn+10Z3ZPyIst2dNlPox
SHcGn8EPthcZSy1zzPbVCRQMCRB8dw7jNG0/3UEzJ7MIg/Fzt1mOwvrcDWzo2yxd
a4dGwZ1kbtEKJe5upBTuNF7NgzKg2JB8QBSOVBVdfSdqXFnwVE50jmIb/r5Y5MTL
WJjrlUxKeZuzm9HiCqZeWOkvUWFmKYarTP6G4TO2RHFqwsRuVwTDW8MRmrwnAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUCCpJruKCOVKtECCoo7+/RauGc6kwHwYDVR0j
BBgwFoAUKQJm7JZ41XhTwWfCyx8p5fJcz7UwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CREY5MjMxMDA4MzAyNzAwMDJGM0U1QkE4MDlFNDg4M0Ux
ODZCMTlEQUM2RkFFMEVGOTFFRDQ2ODFEMkUyMTIxLzAvMjkwMjY2RUM5Njc4RDU3
ODUzQzE2N0MyQ0IxRjI5RTVGMjVDQ0ZCNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yOTAyNjZFQzk2NzhENTc4NTND
MTY3QzJDQjFGMjlFNUYyNUNDRkI1LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQkRGOTIzMTAwODMwMjcwMDAyRjNFNUJBODA5RTQ4ODNFMTg2QjE5REFD
NkZBRTBFRjkxRUQ0NjgxRDJFMjEyMS8wLzMyMzAzMDJlMzEzMTM1MmUzMTM4MzUy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTMyMzQzMDM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyHO5
MA0GCSqGSIb3DQEBCwUAA4IBAQBfKTrA1JB18Kpl5N94DW4STmvmdcOq2mr0LIDO
xmnEDWI26uSPsmxvDPhpWiHF6cmKCvk1u6y/GgvPVCgvCin4L3oqe+Ou1vJwyCKs
dp/Ca14+ci7/u+gGZP3Xh4QInVsbhnzgMe2NI1c6xs+yFM53I5f7Bgt1aoAwWdix
eJAqaYKBosTTYVeS7qavb3xJ+zYitRyqzg6EFr1MtOHwKYk/Lbf7WB9iKtk4AGAc
5MNO9J4uUNkBMAmGXSsRSWNpIhudq8En3Z8nbdbSgDZOmuySh2LJeJdYM+VRfDJj
giJQAXTmd+FTnAAvyzM26J9MZkU0f2DnHSgEuDspfxeR5bwQ
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:31 2025 by rpki-client