Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C71E9B6EEE78F12B15E3BEBF954942DBC0CDCA94DA317B83F0CD62B2FDB26ECE/0/3230312e3135302e3136302e302f31392d3234203d3e203237383339.roa
File: 3230312e3135302e3136302e302f31392d3234203d3e203237383339.roa (raw, json)
Hash identifier: dECGKGEMe4fsL58Z6fgHY9Fs1yFrmz3X59egXrUOjAA=
Subject key identifier: 47:A4:77:6F:59:0C:98:63:55:54:F5:8B:6A:95:05:7E:13:09:6C:F0
Certificate issuer: /CN=21B4A6594D293307A54FC67EA972CF9E807930DF
Certificate serial: 49B0364A88014E2F7BAAE9BD18F42DF26F5C9DC1
Authority key identifier: 21:B4:A6:59:4D:29:33:07:A5:4F:C6:7E:A9:72:CF:9E:80:79:30:DF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/21B4A6594D293307A54FC67EA972CF9E807930DF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C71E9B6EEE78F12B15E3BEBF954942DBC0CDCA94DA317B83F0CD62B2FDB26ECE/0/3230312e3135302e3136302e302f31392d3234203d3e203237383339.roa
Signing time: Tue 04 Feb 2025 18:16:41 +0000
ROA not before: Tue 04 Feb 2025 18:11:41 +0000
ROA not after: Tue 03 Feb 2026 18:16:41 +0000
asID: 27839
IP address blocks: 201.150.160.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:b0:36:4a:88:01:4e:2f:7b:aa:e9:bd:18:f4:2d:f2:6f:5c:9d:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21B4A6594D293307A54FC67EA972CF9E807930DF
Validity
Not Before: Feb 4 18:11:41 2025 GMT
Not After : Feb 3 18:16:41 2026 GMT
Subject: CN=47A4776F590C98635554F58B6A95057E13096CF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:aa:6e:91:65:68:88:b6:42:bf:9e:30:41:2c:
d3:fa:57:2c:12:d9:79:5a:65:5a:82:bb:df:d5:dc:
fa:dc:44:d2:cf:c6:ae:2a:c1:51:38:d3:f3:c7:69:
d3:e5:89:85:d5:6e:21:ab:82:60:aa:38:e6:77:69:
28:ef:b1:5e:7e:44:46:9e:13:22:57:a9:b2:09:82:
d4:66:7e:35:59:53:a2:b2:42:33:24:ee:82:d9:0b:
db:b1:27:b1:ba:44:da:6e:10:3a:fd:c7:ef:fe:ad:
2b:ee:ed:73:53:c7:f0:a1:e5:85:fd:e1:cf:e6:80:
3d:cc:cf:1f:22:49:9e:d1:08:a5:77:32:1c:b2:c0:
bc:f6:80:31:bf:a9:c7:09:97:67:c2:48:39:e4:b1:
ca:f2:8f:75:50:63:a9:c3:3f:ba:b2:c3:a1:59:6e:
84:d6:aa:c7:d2:38:3d:23:c9:a6:77:f9:91:38:bc:
3c:63:a7:04:86:f2:c5:58:d7:5c:2e:07:81:a6:f2:
2a:16:21:44:98:b3:e3:bb:1c:e1:76:e8:e1:e2:01:
bd:44:76:50:a3:62:4a:f7:65:0b:78:b2:d2:a2:49:
29:18:a6:d1:d5:c2:54:0c:3a:49:ce:96:cb:09:21:
f5:fb:cc:ff:b6:d3:08:fa:b5:c7:d6:7a:ee:f3:26:
83:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A4:77:6F:59:0C:98:63:55:54:F5:8B:6A:95:05:7E:13:09:6C:F0
X509v3 Authority Key Identifier:
keyid:21:B4:A6:59:4D:29:33:07:A5:4F:C6:7E:A9:72:CF:9E:80:79:30:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C71E9B6EEE78F12B15E3BEBF954942DBC0CDCA94DA317B83F0CD62B2FDB26ECE/0/21B4A6594D293307A54FC67EA972CF9E807930DF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/21B4A6594D293307A54FC67EA972CF9E807930DF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C71E9B6EEE78F12B15E3BEBF954942DBC0CDCA94DA317B83F0CD62B2FDB26ECE/0/3230312e3135302e3136302e302f31392d3234203d3e203237383339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.150.160.0/19
Signature Algorithm: sha256WithRSAEncryption
a8:a2:1c:18:a5:50:3a:16:fd:87:52:87:7a:3f:e1:a8:28:f3:
d3:0a:7e:43:4a:0b:ca:b3:c7:b2:b8:15:03:b2:80:16:e9:93:
f0:69:99:39:9c:69:89:55:36:f0:25:68:f0:12:33:57:04:4d:
5a:6c:33:84:8a:f6:3b:3e:dd:17:bd:91:19:7f:36:66:e1:f5:
fb:7e:e1:49:25:1b:45:ec:1a:90:0e:ec:d4:10:a6:9d:30:56:
90:ad:c4:3d:d9:a9:36:52:b2:66:b3:c3:19:5d:36:ac:c7:94:
78:bd:de:ac:c0:f3:b3:e9:a9:39:47:b6:23:7b:5f:0e:05:53:
a6:06:52:a2:60:3b:ef:aa:24:69:98:18:77:25:29:87:d6:46:
e4:8d:5e:46:74:2f:1e:85:c8:9a:71:49:4e:44:a0:a1:c7:e8:
e2:0e:6c:04:96:53:23:53:f0:e2:4d:a1:42:b0:bb:fd:d4:36:
4e:af:67:3e:bf:ff:e7:04:db:2a:0e:d2:7f:02:6b:61:06:c4:
5d:a5:2f:b5:c2:d4:59:dd:bf:49:84:9e:ce:88:94:3a:1b:43:
fe:7f:ae:c8:f8:4b:e2:7d:18:40:aa:39:fb:57:d7:42:ff:5d:
b3:27:8b:34:3e:1a:a1:da:f4:4a:93:5c:51:f0:01:78:3b:2c:
ac:88:c8:fb
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUSbA2SogBTi97qum9GPQt8m9cncEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjFCNEE2NTk0RDI5MzMwN0E1NEZDNjdFQTk3MkNGOUU4
MDc5MzBERjAeFw0yNTAyMDQxODExNDFaFw0yNjAyMDMxODE2NDFaMDMxMTAvBgNV
BAMTKDQ3QTQ3NzZGNTkwQzk4NjM1NTU0RjU4QjZBOTUwNTdFMTMwOTZDRjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnqm6RZWiItkK/njBBLNP6VywS
2XlaZVqCu9/V3PrcRNLPxq4qwVE40/PHadPliYXVbiGrgmCqOOZ3aSjvsV5+REae
EyJXqbIJgtRmfjVZU6KyQjMk7oLZC9uxJ7G6RNpuEDr9x+/+rSvu7XNTx/Ch5YX9
4c/mgD3Mzx8iSZ7RCKV3MhyywLz2gDG/qccJl2fCSDnkscryj3VQY6nDP7qyw6FZ
boTWqsfSOD0jyaZ3+ZE4vDxjpwSG8sVY11wuB4Gm8ioWIUSYs+O7HOF26OHiAb1E
dlCjYkr3ZQt4stKiSSkYptHVwlQMOknOlssJIfX7zP+20wj6tcfWeu7zJoPvAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUR6R3b1kMmGNVVPWLapUFfhMJbPAwHwYDVR0j
BBgwFoAUIbSmWU0pMwelT8Z+qXLPnoB5MN8wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9DNzFFOUI2RUVFNzhGMTJCMTVFM0JFQkY5NTQ5NDJEQkMw
Q0RDQTk0REEzMTdCODNGMENENjJCMkZEQjI2RUNFLzAvMjFCNEE2NTk0RDI5MzMw
N0E1NEZDNjdFQTk3MkNGOUU4MDc5MzBERi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yMUI0QTY1OTREMjkzMzA3QTU0
RkM2N0VBOTcyQ0Y5RTgwNzkzMERGLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQzcxRTlCNkVFRTc4RjEyQjE1RTNCRUJGOTU0OTQyREJDMENEQ0E5NERB
MzE3QjgzRjBDRDYyQjJGREIyNkVDRS8wLzMyMzAzMTJlMzEzNTMwMmUzMTM2MzAy
ZTMwMmYzMTM5MmQzMjM0MjAzZDNlMjAzMjM3MzgzMzM5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFyZag
MA0GCSqGSIb3DQEBCwUAA4IBAQCoohwYpVA6Fv2HUod6P+GoKPPTCn5DSgvKs8ey
uBUDsoAW6ZPwaZk5nGmJVTbwJWjwEjNXBE1abDOEivY7Pt0XvZEZfzZm4fX7fuFJ
JRtF7BqQDuzUEKadMFaQrcQ92ak2UrJms8MZXTasx5R4vd6swPOz6ak5R7Yje18O
BVOmBlKiYDvvqiRpmBh3JSmH1kbkjV5GdC8ehciacUlORKChx+jiDmwEllMjU/Di
TaFCsLv91DZOr2c+v//nBNsqDtJ/AmthBsRdpS+1wtRZ3b9JhJ7OiJQ6G0P+f67I
+EvifRhAqjn7V9dC/12zJ4s0Phqh2vRKk1xR8AF4OyysiMj7
-----END CERTIFICATE-----
Generated at Sun Apr 6 02:51:39 2025 by rpki-client