Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27938.roa
File: AS27938.roa (raw, json)
Hash identifier: E4ZqiixQVjudQaOSYtPNWJawKEk3TbsEmay+qfqOtZc=
Subject key identifier: 0B:DB:62:A3:32:FF:75:28:00:68:55:6E:F6:2A:F4:8F:69:CC:E0:B1
Certificate issuer: /CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Certificate serial: 44AF94BE57807666F83C4BA8A8F5DA2E9161FD40
Authority key identifier: 5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27938.roa
Signing time: Tue 04 Feb 2025 18:02:47 +0000
ROA not before: Tue 04 Feb 2025 17:57:47 +0000
ROA not after: Tue 03 Feb 2026 18:02:47 +0000
asID: 27938
IP address blocks: 201.218.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:af:94:be:57:80:76:66:f8:3c:4b:a8:a8:f5:da:2e:91:61:fd:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Validity
Not Before: Feb 4 17:57:47 2025 GMT
Not After : Feb 3 18:02:47 2026 GMT
Subject: CN=0BDB62A332FF75280068556EF62AF48F69CCE0B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:dd:7d:99:34:b0:06:e0:1c:a8:22:a0:b4:2a:
32:3f:cc:db:15:be:aa:1b:48:3c:89:ce:87:cd:1a:
f1:6a:54:88:6f:dd:75:cf:5b:fe:0f:e9:7e:27:5f:
4c:95:d1:94:ac:8e:84:4b:96:56:c8:ae:7f:f4:2f:
8f:fe:db:b5:f1:2e:fe:7c:43:35:84:5d:7e:88:e4:
f2:e6:26:47:97:88:e3:10:22:b9:5b:13:81:ca:93:
d7:88:42:e0:54:23:20:18:2e:9b:b3:20:83:ff:da:
c4:f8:6e:c4:93:db:a5:42:01:06:2a:fe:49:6c:b2:
e5:cc:c9:ed:92:7f:6c:de:53:38:e9:d6:85:75:cd:
e8:c6:3a:e6:4d:cc:9b:1b:55:54:a2:10:8f:ec:7b:
7d:29:8d:0e:82:fb:0b:28:cf:73:fa:9a:81:4d:b2:
d8:dc:38:e8:96:99:42:b0:95:56:83:f6:de:17:03:
f8:d7:eb:d0:e8:6e:e2:aa:9a:f4:69:b0:49:b6:60:
87:dc:26:83:b5:4c:42:86:81:17:6f:3d:fd:49:65:
8c:f1:5a:d1:6c:7c:94:5b:0b:5b:92:be:dd:e1:76:
f1:17:8d:2e:fb:15:35:30:1c:13:96:0e:45:59:ca:
e3:d8:4d:ef:77:eb:c4:4d:af:16:ff:f9:11:b3:89:
09:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:DB:62:A3:32:FF:75:28:00:68:55:6E:F6:2A:F4:8F:69:CC:E0:B1
X509v3 Authority Key Identifier:
keyid:5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.218.242.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:bd:64:63:82:e7:25:99:f2:0a:99:d1:f5:32:7e:2b:db:c8:
7d:2d:92:c7:ad:35:30:ef:4c:35:01:3d:d0:cf:55:be:05:07:
af:b8:73:21:80:f9:f4:38:51:bb:9f:8b:15:f0:c4:04:a3:75:
f1:65:b4:79:f2:83:66:0e:19:95:5b:6c:46:22:d7:fd:82:db:
45:c9:74:a3:50:fe:f3:bc:68:51:2b:88:1a:22:1f:7a:51:c5:
2a:33:56:de:5d:03:05:03:20:dc:21:00:1e:7a:f2:63:9b:6b:
d9:e0:f1:ee:ae:2d:2e:97:47:ac:cd:65:48:5f:e3:22:bb:b8:
df:ff:02:ba:25:47:ff:f7:b8:f5:8f:d6:28:81:1b:fa:b6:06:
b8:00:9d:44:2c:37:a5:fb:23:7d:d0:b1:6f:6a:4c:96:df:7e:
54:c8:73:7e:77:92:a7:27:6d:94:b6:fa:d3:12:6c:db:0a:10:
31:b3:81:f9:51:d1:b8:e3:4c:22:f4:c8:2f:17:31:86:1c:3b:
27:75:9c:d8:47:64:dc:f9:a2:15:12:23:41:b4:a8:58:81:68:
fd:63:87:12:e6:d2:85:57:c3:e9:52:ec:c0:af:b8:73:2a:fa:
c3:7b:d0:d1:87:5c:0e:3e:95:f3:98:e9:e2:c8:14:8b:2d:02:
57:ad:14:19
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgIURK+UvleAdmb4PEuoqPXaLpFh/UAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNUQxNThCRTYxQ0E5MTFCQzM0QTg4NzAwNUI5NjA1NkY0
QzQ3NEIxRTAeFw0yNTAyMDQxNzU3NDdaFw0yNjAyMDMxODAyNDdaMDMxMTAvBgNV
BAMTKDBCREI2MkEzMzJGRjc1MjgwMDY4NTU2RUY2MkFGNDhGNjlDQ0UwQjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL3X2ZNLAG4ByoIqC0KjI/zNsV
vqobSDyJzofNGvFqVIhv3XXPW/4P6X4nX0yV0ZSsjoRLllbIrn/0L4/+27XxLv58
QzWEXX6I5PLmJkeXiOMQIrlbE4HKk9eIQuBUIyAYLpuzIIP/2sT4bsST26VCAQYq
/klssuXMye2Sf2zeUzjp1oV1zejGOuZNzJsbVVSiEI/se30pjQ6C+wsoz3P6moFN
stjcOOiWmUKwlVaD9t4XA/jX69DobuKqmvRpsEm2YIfcJoO1TEKGgRdvPf1JZYzx
WtFsfJRbC1uSvt3hdvEXjS77FTUwHBOWDkVZyuPYTe9368RNrxb/+RGziQnHAgMB
AAGjggKYMIIClDAdBgNVHQ4EFgQUC9tiozL/dSgAaFVu9ir0j2nM4LEwHwYDVR0j
BBgwFoAUXRWL5hypEbw0qIcAW5YFb0xHSx4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9ENTcyRUEyNjU5NzE1QjNCMDAyQjkyMjVBMTUyOTYwOEZD
MjkzMjhCMEJGRUQ3OTU4Mzc5QThFRjlEMDA2RUY1LzAvNUQxNThCRTYxQ0E5MTFC
QzM0QTg4NzAwNUI5NjA1NkY0QzQ3NEIxRS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81RDE1OEJFNjFDQTkxMUJDMzRB
ODg3MDA1Qjk2MDU2RjRDNDc0QjFFLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG
CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy9ENTcyRUEyNjU5NzE1QjNCMDAyQjkyMjVBMTUyOTYwOEZDMjkzMjhCMEJG
RUQ3OTU4Mzc5QThFRjlEMDA2RUY1LzAvQVMyNzkzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMna8jAN
BgkqhkiG9w0BAQsFAAOCAQEAL71kY4LnJZnyCpnR9TJ+K9vIfS2Sx601MO9MNQE9
0M9VvgUHr7hzIYD59DhRu5+LFfDEBKN18WW0efKDZg4ZlVtsRiLX/YLbRcl0o1D+
87xoUSuIGiIfelHFKjNW3l0DBQMg3CEAHnryY5tr2eDx7q4tLpdHrM1lSF/jIru4
3/8CuiVH//e49Y/WKIEb+rYGuACdRCw3pfsjfdCxb2pMlt9+VMhzfneSpydtlLb6
0xJs2woQMbOB+VHRuONMIvTILxcxhhw7J3Wc2Edk3PmiFRIjQbSoWIFo/WOHEubS
hVfD6VLswK+4cyr6w3vQ0YdcDj6V85jp4sgUiy0CV60UGQ==
-----END CERTIFICATE-----
Generated at Mon Apr 7 12:59:35 2025 by rpki-client