Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BF2A1BACC04548FD2E125A6E9A7E1F0B21FD5C86D68699704DDAA76D5262199D/0/3230302e312e372e302f32342d3234203d3e203237393830.roa
File: 3230302e312e372e302f32342d3234203d3e203237393830.roa (raw, json)
Hash identifier: +EckyaFxYApGso61Fqh8ybYmrkTKrBYBoM4EqLsmhS8=
Subject key identifier: 58:11:82:38:CA:FC:7B:DA:74:35:36:D4:20:10:C8:FC:22:7B:D5:5A
Certificate issuer: /CN=9F47A28FF4E2972DB0D8108C83B03F641B3CF1A6
Certificate serial: 6B5D279C21ED9CCEEA5A2CE7F59E4EE1FBA274
Authority key identifier: 9F:47:A2:8F:F4:E2:97:2D:B0:D8:10:8C:83:B0:3F:64:1B:3C:F1:A6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F47A28FF4E2972DB0D8108C83B03F641B3CF1A6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BF2A1BACC04548FD2E125A6E9A7E1F0B21FD5C86D68699704DDAA76D5262199D/0/3230302e312e372e302f32342d3234203d3e203237393830.roa
Signing time: Tue 04 Feb 2025 18:04:41 +0000
ROA not before: Tue 04 Feb 2025 17:59:41 +0000
ROA not after: Tue 03 Feb 2026 18:04:41 +0000
asID: 27980
IP address blocks: 200.1.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:5d:27:9c:21:ed:9c:ce:ea:5a:2c:e7:f5:9e:4e:e1:fb:a2:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F47A28FF4E2972DB0D8108C83B03F641B3CF1A6
Validity
Not Before: Feb 4 17:59:41 2025 GMT
Not After : Feb 3 18:04:41 2026 GMT
Subject: CN=58118238CAFC7BDA743536D42010C8FC227BD55A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e1:b4:4a:20:7c:11:08:55:8e:29:a5:ad:da:
db:bb:68:ed:12:9d:44:49:17:d8:c9:54:ae:6b:a3:
58:63:4a:80:3c:7a:45:81:f2:be:68:b5:b7:f3:2f:
c3:10:49:4c:58:fd:ec:1a:7f:f5:61:1f:b1:26:4b:
92:b7:82:99:1c:2c:48:dd:41:4b:e3:4e:20:44:81:
56:cd:53:27:df:9a:8f:f2:dd:9d:b6:45:cf:a9:34:
68:d2:6a:9a:ce:c1:63:1a:45:c0:fa:ed:86:3b:07:
2e:ce:60:77:98:1a:14:fd:1a:8b:29:4e:08:35:92:
b5:37:ae:0e:d5:a5:31:b1:d3:e0:e4:52:bd:13:b2:
1b:2f:3b:27:2f:e8:4d:66:f3:8f:17:ce:9a:82:19:
93:5d:24:ee:36:8d:22:cb:61:5d:0a:d6:c1:ea:80:
1b:28:fc:91:2f:d2:42:df:92:df:2d:62:5a:97:64:
a2:d7:9b:e1:bf:20:1d:e3:31:6e:22:ab:9a:8e:6a:
8c:70:ba:c8:7f:d7:ab:d3:d3:23:57:cd:a1:6a:cd:
c4:e4:a3:29:b9:cb:87:b3:89:81:1b:41:44:af:8b:
d6:0b:e7:c0:d2:00:90:9c:99:68:d8:c3:28:d2:06:
a6:cc:b3:35:b1:ef:5b:a7:3a:67:67:1a:c3:50:0c:
52:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:11:82:38:CA:FC:7B:DA:74:35:36:D4:20:10:C8:FC:22:7B:D5:5A
X509v3 Authority Key Identifier:
keyid:9F:47:A2:8F:F4:E2:97:2D:B0:D8:10:8C:83:B0:3F:64:1B:3C:F1:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BF2A1BACC04548FD2E125A6E9A7E1F0B21FD5C86D68699704DDAA76D5262199D/0/9F47A28FF4E2972DB0D8108C83B03F641B3CF1A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F47A28FF4E2972DB0D8108C83B03F641B3CF1A6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BF2A1BACC04548FD2E125A6E9A7E1F0B21FD5C86D68699704DDAA76D5262199D/0/3230302e312e372e302f32342d3234203d3e203237393830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.1.7.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:8f:27:eb:b9:28:2d:02:81:d9:4b:bc:f9:e0:47:d2:8a:ea:
50:ef:51:2b:3e:8b:a5:d3:1e:03:48:7c:3c:d9:b2:48:33:dc:
87:c0:ad:bc:3b:fd:d9:54:23:94:aa:30:fc:13:ac:99:9e:6e:
7e:02:c2:e9:e0:c3:1c:9a:3e:c7:1f:55:13:a0:b6:93:ea:40:
7c:1a:8c:26:8f:52:a6:ad:b7:ae:9b:41:a2:fb:96:5f:ed:4a:
ef:9c:79:39:5e:76:97:bd:52:26:03:d6:2f:39:49:cd:2a:03:
69:66:94:63:a3:27:ab:f0:06:1a:fd:c8:ac:f9:a8:82:c0:86:
e8:fd:c9:5b:c7:ee:5a:93:d9:79:f2:58:2d:70:18:e0:01:03:
37:99:da:e5:0e:a6:44:a7:65:2b:5d:54:2c:4e:e1:7f:c7:1c:
e0:73:4b:93:4a:3c:33:9c:f3:47:b2:da:f9:55:cc:f9:01:62:
9b:91:7c:8c:dc:75:a4:2c:60:95:b6:e2:2b:7d:4c:69:d2:51:
84:a6:cd:e6:5d:9e:12:92:7f:ca:4f:00:f8:ff:7a:43:27:14:
b8:ca:ee:74:fb:97:d2:db:fd:7f:e9:ec:75:dd:5b:e5:c0:13:
81:26:76:83:73:b5:e2:d6:ed:9c:11:f2:e1:09:a4:e2:ca:12:
1e:6b:41:ea
-----BEGIN CERTIFICATE-----
MIIFtzCCBJ+gAwIBAgITa10nnCHtnM7qWizn9Z5O4fuidDANBgkqhkiG9w0BAQsF
ADAzMTEwLwYDVQQDEyg5RjQ3QTI4RkY0RTI5NzJEQjBEODEwOEM4M0IwM0Y2NDFC
M0NGMUE2MB4XDTI1MDIwNDE3NTk0MVoXDTI2MDIwMzE4MDQ0MVowMzExMC8GA1UE
AxMoNTgxMTgyMzhDQUZDN0JEQTc0MzUzNkQ0MjAxMEM4RkMyMjdCRDU1QTCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJPhtEogfBEIVY4ppa3a27to7RKd
REkX2MlUrmujWGNKgDx6RYHyvmi1t/MvwxBJTFj97Bp/9WEfsSZLkreCmRwsSN1B
S+NOIESBVs1TJ9+aj/LdnbZFz6k0aNJqms7BYxpFwPrthjsHLs5gd5gaFP0aiylO
CDWStTeuDtWlMbHT4ORSvROyGy87Jy/oTWbzjxfOmoIZk10k7jaNIsthXQrWweqA
Gyj8kS/SQt+S3y1iWpdkoteb4b8gHeMxbiKrmo5qjHC6yH/Xq9PTI1fNoWrNxOSj
KbnLh7OJgRtBRK+L1gvnwNIAkJyZaNjDKNIGpsyzNbHvW6c6Z2caw1AMUisCAwEA
AaOCAsIwggK+MB0GA1UdDgQWBBRYEYI4yvx72nQ1NtQgEMj8InvVWjAfBgNVHSME
GDAWgBSfR6KP9OKXLbDYEIyDsD9kGzzxpjAOBgNVHQ8BAf8EBAMCB4AwgbAGA1Ud
HwSBqDCBpTCBoqCBn6CBnIaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0
L3Jwa2kvbGFjbmljL0JGMkExQkFDQzA0NTQ4RkQyRTEyNUE2RTlBN0UxRjBCMjFG
RDVDODZENjg2OTk3MDREREFBNzZENTI2MjE5OUQvMC85RjQ3QTI4RkY0RTI5NzJE
QjBEODEwOEM4M0IwM0Y2NDFCM0NGMUE2LmNybDCBuQYIKwYBBQUHAQEEgawwgakw
gaYGCCsGAQUFBzAChoGZcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBr
aS9sYWNuaWMvRkRDMzU5NERENEU1NEJBREU3MDlBQzBEMjU1Q0YyNzlDNDc3MTZE
MkU4QjNGNEQ0NURDNDYzNTU4OTlCMzZENC8wLzlGNDdBMjhGRjRFMjk3MkRCMEQ4
MTA4QzgzQjAzRjY0MUIzQ0YxQTYuY2VyMIHBBggrBgEFBQcBCwSBtDCBsTCBrgYI
KwYBBQUHMAuGgaFyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy9CRjJBMUJBQ0MwNDU0OEZEMkUxMjVBNkU5QTdFMUYwQjIxRkQ1Qzg2RDY4
Njk5NzA0RERBQTc2RDUyNjIxOTlELzAvMzIzMDMwMmUzMTJlMzcyZTMwMmYzMjM0
MmQzMjM0MjAzZDNlMjAzMjM3MzkzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG
AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyAEHMA0GCSqGSIb3
DQEBCwUAA4IBAQArjyfruSgtAoHZS7z54EfSiupQ71ErPoul0x4DSHw82bJIM9yH
wK28O/3ZVCOUqjD8E6yZnm5+AsLp4MMcmj7HH1UToLaT6kB8Gowmj1Kmrbeum0Gi
+5Zf7UrvnHk5XnaXvVImA9YvOUnNKgNpZpRjoyer8AYa/cis+aiCwIbo/clbx+5a
k9l58lgtcBjgAQM3mdrlDqZEp2UrXVQsTuF/xxzgc0uTSjwznPNHstr5Vcz5AWKb
kXyM3HWkLGCVtuIrfUxp0lGEps3mXZ4Skn/KTwD4/3pDJxS4yu50+5fS2/1/6ex1
3VvlwBOBJnaDc7Xi1u2cEfLhCaTiyhIea0Hq
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:25:38 2025 by rpki-client