Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CFCFD7625B49F7425D8ECF19F720BDB1F1A7228A81B472507D2397D4A6F99AA9/0/3230302e392e3136352e302f32342d3234203d3e203532323530.roa
File: 3230302e392e3136352e302f32342d3234203d3e203532323530.roa (raw, json)
Hash identifier: i9kSNa+VD459Q4Ox4XCuTjW0BeOJuZ1C5ugunujNhlM=
Subject key identifier: 50:8C:99:49:19:18:01:03:30:9A:FE:9B:32:E4:D4:84:53:57:1F:BD
Certificate issuer: /CN=E840769E201D72D7EA098EEE7538061FBEA58116
Certificate serial: 3DAB2CD98C352AAE852BA2A7C132D565CD5E33EF
Authority key identifier: E8:40:76:9E:20:1D:72:D7:EA:09:8E:EE:75:38:06:1F:BE:A5:81:16
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E840769E201D72D7EA098EEE7538061FBEA58116.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CFCFD7625B49F7425D8ECF19F720BDB1F1A7228A81B472507D2397D4A6F99AA9/0/3230302e392e3136352e302f32342d3234203d3e203532323530.roa
Signing time: Tue 04 Feb 2025 18:09:20 +0000
ROA not before: Tue 04 Feb 2025 18:04:20 +0000
ROA not after: Tue 03 Feb 2026 18:09:20 +0000
asID: 52250
IP address blocks: 200.9.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:ab:2c:d9:8c:35:2a:ae:85:2b:a2:a7:c1:32:d5:65:cd:5e:33:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E840769E201D72D7EA098EEE7538061FBEA58116
Validity
Not Before: Feb 4 18:04:20 2025 GMT
Not After : Feb 3 18:09:20 2026 GMT
Subject: CN=508C994919180103309AFE9B32E4D48453571FBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c0:9b:0c:4e:69:75:9e:82:d2:74:2e:e5:42:
49:05:01:38:7c:51:f7:99:e5:b9:20:83:73:14:ae:
a9:2e:6f:5a:23:9f:99:88:7a:bb:9e:91:9d:6c:74:
99:fa:68:4b:c2:85:9e:fa:23:05:68:5f:1a:fe:a3:
b0:f0:4c:c1:a4:3c:9c:d9:1e:93:99:6d:85:e7:f8:
b0:6e:9b:4e:49:43:dc:8c:82:77:d7:a4:ea:82:a8:
1c:e7:a7:96:35:10:20:86:70:d5:0e:d2:83:96:2a:
ae:f4:8a:79:f7:61:bb:34:53:32:06:90:6c:1d:95:
55:66:06:f5:66:71:71:a4:24:1c:7d:23:9d:03:39:
bd:24:49:12:c0:94:ef:3c:9c:fb:4d:f8:71:a6:c8:
33:77:6d:37:9c:d9:2c:93:36:e1:11:e0:8b:2a:1c:
19:2b:f7:0d:e3:9a:a3:f9:85:f1:a3:3d:70:14:63:
c3:4c:fc:7c:dd:33:62:48:3c:09:e2:bc:2d:15:3f:
be:13:b3:c3:cc:c2:34:07:22:4b:66:42:5d:37:30:
92:4e:90:20:eb:5d:78:c2:17:bf:7e:06:aa:eb:53:
0e:2d:3e:1b:23:81:8c:21:5d:ed:aa:c5:1a:24:b6:
6d:c6:15:4f:7c:65:d9:ed:7e:52:84:51:a4:ef:1b:
ed:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8C:99:49:19:18:01:03:30:9A:FE:9B:32:E4:D4:84:53:57:1F:BD
X509v3 Authority Key Identifier:
keyid:E8:40:76:9E:20:1D:72:D7:EA:09:8E:EE:75:38:06:1F:BE:A5:81:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CFCFD7625B49F7425D8ECF19F720BDB1F1A7228A81B472507D2397D4A6F99AA9/0/E840769E201D72D7EA098EEE7538061FBEA58116.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E840769E201D72D7EA098EEE7538061FBEA58116.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CFCFD7625B49F7425D8ECF19F720BDB1F1A7228A81B472507D2397D4A6F99AA9/0/3230302e392e3136352e302f32342d3234203d3e203532323530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.9.165.0/24
Signature Algorithm: sha256WithRSAEncryption
09:00:bc:06:d6:f9:96:44:fc:2d:6c:ae:07:93:27:56:f4:5c:
23:8a:88:11:a6:3b:89:f4:22:24:43:d9:af:b8:8a:b6:22:52:
b7:01:e0:22:f0:8e:58:fe:e2:41:21:60:91:c3:e9:0c:57:ac:
be:0e:9a:a3:d1:b0:39:da:9e:21:11:f1:e2:64:a2:d7:0f:fc:
27:03:6c:67:7b:42:d7:89:bb:e6:29:c1:d8:64:9a:27:a7:16:
c2:04:fa:89:82:e9:aa:4c:4a:bc:cc:3c:f6:92:0a:b7:21:7c:
53:a1:23:3e:54:c4:d0:f2:c3:f1:90:1e:fa:a5:66:5c:21:3d:
17:7c:e4:6c:26:18:a3:d6:c2:ec:02:b9:bd:a7:8f:7a:57:46:
d9:dd:86:63:f9:7a:e3:22:1d:86:7a:c5:07:c0:b8:2e:f8:e1:
ad:4f:d3:e8:77:6d:5e:29:d0:8a:66:8b:d7:41:e9:55:3a:c0:
88:1e:4d:78:e4:34:a7:b1:42:a8:a1:2a:f4:d8:8d:6b:a6:e2:
2b:1b:9f:4f:63:19:5b:15:2d:b0:a2:b1:54:b0:e8:41:7e:16:
b1:d5:61:9c:a7:6b:4c:bc:04:d6:65:d4:de:73:44:8a:78:37:
4f:a3:7e:2a:67:56:a4:8f:36:23:af:50:f2:ff:8a:cf:e5:36:
31:74:0c:46
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUPass2Yw1Kq6FK6KnwTLVZc1eM+8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTg0MDc2OUUyMDFENzJEN0VBMDk4RUVFNzUzODA2MUZC
RUE1ODExNjAeFw0yNTAyMDQxODA0MjBaFw0yNjAyMDMxODA5MjBaMDMxMTAvBgNV
BAMTKDUwOEM5OTQ5MTkxODAxMDMzMDlBRkU5QjMyRTRENDg0NTM1NzFGQkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6wJsMTml1noLSdC7lQkkFATh8
UfeZ5bkgg3MUrqkub1ojn5mIeruekZ1sdJn6aEvChZ76IwVoXxr+o7DwTMGkPJzZ
HpOZbYXn+LBum05JQ9yMgnfXpOqCqBznp5Y1ECCGcNUO0oOWKq70inn3Ybs0UzIG
kGwdlVVmBvVmcXGkJBx9I50DOb0kSRLAlO88nPtN+HGmyDN3bTec2SyTNuER4Isq
HBkr9w3jmqP5hfGjPXAUY8NM/HzdM2JIPAnivC0VP74Ts8PMwjQHIktmQl03MJJO
kCDrXXjCF79+BqrrUw4tPhsjgYwhXe2qxRoktm3GFU98ZdntflKEUaTvG+2nAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUUIyZSRkYAQMwmv6bMuTUhFNXH70wHwYDVR0j
BBgwFoAU6EB2niAdctfqCY7udTgGH76lgRYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9DRkNGRDc2MjVCNDlGNzQyNUQ4RUNGMTlGNzIwQkRCMUYx
QTcyMjhBODFCNDcyNTA3RDIzOTdENEE2Rjk5QUE5LzAvRTg0MDc2OUUyMDFENzJE
N0VBMDk4RUVFNzUzODA2MUZCRUE1ODExNi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FODQwNzY5RTIwMUQ3MkQ3RUEw
OThFRUU3NTM4MDYxRkJFQTU4MTE2LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQ0ZDRkQ3NjI1QjQ5Rjc0MjVEOEVDRjE5RjcyMEJEQjFGMUE3MjI4QTgx
QjQ3MjUwN0QyMzk3RDRBNkY5OUFBOS8wLzMyMzAzMDJlMzkyZTMxMzYzNTJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDM1MzIzMjM1MzAucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADICaUwDQYJ
KoZIhvcNAQELBQADggEBAAkAvAbW+ZZE/C1srgeTJ1b0XCOKiBGmO4n0IiRD2a+4
irYiUrcB4CLwjlj+4kEhYJHD6QxXrL4OmqPRsDnaniER8eJkotcP/CcDbGd7QteJ
u+YpwdhkmienFsIE+omC6apMSrzMPPaSCrchfFOhIz5UxNDyw/GQHvqlZlwhPRd8
5GwmGKPWwuwCub2nj3pXRtndhmP5euMiHYZ6xQfAuC744a1P0+h3bV4p0Ipmi9dB
6VU6wIgeTXjkNKexQqihKvTYjWum4isbn09jGVsVLbCisVSw6EF+FrHVYZyna0y8
BNZl1N5zRIp4N0+jfipnVqSPNiOvUPL/is/lNjF0DEY=
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:15:02 2025 by rpki-client