Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33342e302f32342d3234203d3e2037303034.roa
File: 3230302e32392e33342e302f32342d3234203d3e2037303034.roa (raw, json)
Hash identifier: P9Uf/4ynRJBBfbiq5fwcY+3iKKW9H31TT7T5L5FHtd8=
Subject key identifier: A4:C2:8D:35:CF:A2:55:DB:04:D3:A7:85:29:98:9D:22:D4:61:FC:FF
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 5AD775521FB6081D5CBDB27B7F957CDD31CA254B
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33342e302f32342d3234203d3e2037303034.roa
Signing time: Tue 04 Feb 2025 18:29:43 +0000
ROA not before: Tue 04 Feb 2025 18:24:43 +0000
ROA not after: Tue 03 Feb 2026 18:29:43 +0000
asID: 7004
IP address blocks: 200.29.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:d7:75:52:1f:b6:08:1d:5c:bd:b2:7b:7f:95:7c:dd:31:ca:25:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:43 2025 GMT
Not After : Feb 3 18:29:43 2026 GMT
Subject: CN=A4C28D35CFA255DB04D3A78529989D22D461FCFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:56:93:37:0a:ef:13:45:4b:0d:48:ab:1a:08:
be:57:8e:c5:92:f4:3e:36:55:49:52:20:66:85:fe:
51:be:97:22:a6:15:16:83:9d:12:94:50:79:df:6d:
b9:40:85:be:65:d2:48:91:ec:8d:20:35:85:7a:8f:
cb:40:24:bc:87:ee:e2:63:42:83:5d:0f:3d:d0:18:
01:6b:1f:bc:1a:4d:9a:d3:d4:99:5c:7c:d6:64:01:
eb:bd:db:25:af:6e:79:64:20:09:a6:af:a0:82:c8:
a7:f3:61:89:01:3d:7c:91:92:a4:6a:92:9e:3b:97:
3f:02:9a:ad:60:de:a6:47:c8:c3:7c:da:f2:07:79:
80:34:eb:10:5b:79:0b:ca:1f:48:fc:35:04:5f:ca:
4c:8f:c7:a5:bb:f9:8b:4e:0d:c8:35:76:28:6b:5a:
be:b7:17:58:60:fe:12:c4:e9:d1:7b:95:ae:ca:df:
f2:ad:eb:b4:a7:56:f8:10:54:ea:f2:55:cf:0d:3b:
1b:5b:92:ef:63:cf:8a:6f:3d:09:2f:f4:67:11:c6:
78:39:47:86:01:f6:dd:f0:02:94:f3:96:c6:a1:d3:
92:db:56:da:da:c2:3e:fb:83:24:e5:16:8c:86:fe:
91:06:1b:aa:45:12:9b:cd:05:3d:08:58:e3:0c:3b:
57:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C2:8D:35:CF:A2:55:DB:04:D3:A7:85:29:98:9D:22:D4:61:FC:FF
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33342e302f32342d3234203d3e2037303034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.34.0/24
Signature Algorithm: sha256WithRSAEncryption
63:3b:b6:d3:f1:90:83:f8:e0:42:67:1d:f3:5f:98:cf:71:63:
bf:40:e3:8e:f7:63:36:87:9a:ed:3e:38:47:f4:d5:14:65:bb:
b5:83:d2:8e:f4:72:3a:63:44:37:f5:61:b3:b6:3d:ef:c0:75:
38:19:81:73:fe:84:41:96:4a:fe:27:e7:93:78:c5:97:32:0c:
8e:17:d0:06:fa:38:b2:13:76:e2:7e:3a:15:ce:00:2c:95:86:
37:0e:42:a2:a3:80:c6:28:62:1a:ad:75:70:53:22:ec:b6:e6:
e1:ac:37:7b:2e:77:d3:a3:f3:7c:97:9e:1e:26:b9:8f:cc:f9:
b0:bb:7e:64:12:81:81:85:39:65:16:65:f4:b6:10:9e:25:c7:
2d:85:60:b8:a4:21:35:f6:50:00:15:d5:eb:34:7b:2a:e2:00:
7d:be:ae:97:57:54:13:27:92:b6:a9:1d:9a:cf:6b:e1:d4:20:
b1:2e:65:91:30:1d:95:04:ad:92:cd:91:40:a7:e2:35:4e:05:
36:be:da:c0:38:13:9a:f9:09:71:23:85:18:f0:0f:f3:88:1f:
ce:be:48:ce:c4:c2:19:16:1c:61:ea:7d:47:15:f8:62:a8:ce:
3c:a0:e9:89:fc:38:9b:06:96:7e:a6:1e:0e:6b:12:63:1d:8e:
e2:f2:81:2e
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIUWtd1Uh+2CB1cvbJ7f5V83THKJUswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjVDRDZBNEZCQzhCRUUzNEEyREMzNzE3OTNBMDlFMjc0
RTBFMzY2MTAeFw0yNTAyMDQxODI0NDNaFw0yNjAyMDMxODI5NDNaMDMxMTAvBgNV
BAMTKEE0QzI4RDM1Q0ZBMjU1REIwNEQzQTc4NTI5OTg5RDIyRDQ2MUZDRkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuVpM3Cu8TRUsNSKsaCL5XjsWS
9D42VUlSIGaF/lG+lyKmFRaDnRKUUHnfbblAhb5l0kiR7I0gNYV6j8tAJLyH7uJj
QoNdDz3QGAFrH7waTZrT1JlcfNZkAeu92yWvbnlkIAmmr6CCyKfzYYkBPXyRkqRq
kp47lz8Cmq1g3qZHyMN82vIHeYA06xBbeQvKH0j8NQRfykyPx6W7+YtODcg1dihr
Wr63F1hg/hLE6dF7la7K3/Kt67SnVvgQVOryVc8NOxtbku9jz4pvPQkv9GcRxng5
R4YB9t3wApTzlsah05LbVtrawj77gyTlFoyG/pEGG6pFEpvNBT0IWOMMO1ehAgMB
AAGjggLEMIICwDAdBgNVHQ4EFgQUpMKNNc+iVdsE06eFKZidItRh/P8wHwYDVR0j
BBgwFoAUJc1qT7yL7jSi3DcXk6CeJ04ONmEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EOTUyQkFDQjZEMjdFNDgyNjcwMzZGN0NCRDZDQzRBREVF
NjBCQTFEMUNGRjVFRjU5NDgxQTkwQkEyMDcxREQ3LzAvMjVDRDZBNEZCQzhCRUUz
NEEyREMzNzE3OTNBMDlFMjc0RTBFMzY2MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUNENkE0RkJDOEJFRTM0QTJE
QzM3MTc5M0EwOUUyNzRFMEUzNjYxLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDk1MkJBQ0I2RDI3RTQ4MjY3MDM2RjdDQkQ2Q0M0QURFRTYwQkExRDFD
RkY1RUY1OTQ4MUE5MEJBMjA3MURENy8wLzMyMzAzMDJlMzIzOTJlMzMzNDJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDM3MzAzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyB0iMA0GCSqG
SIb3DQEBCwUAA4IBAQBjO7bT8ZCD+OBCZx3zX5jPcWO/QOOO92M2h5rtPjhH9NUU
Zbu1g9KO9HI6Y0Q39WGztj3vwHU4GYFz/oRBlkr+J+eTeMWXMgyOF9AG+jiyE3bi
fjoVzgAslYY3DkKio4DGKGIarXVwUyLstubhrDd7LnfTo/N8l54eJrmPzPmwu35k
EoGBhTllFmX0thCeJccthWC4pCE19lAAFdXrNHsq4gB9vq6XV1QTJ5K2qR2az2vh
1CCxLmWRMB2VBK2SzZFAp+I1TgU2vtrAOBOa+QlxI4UY8A/ziB/OvkjOxMIZFhxh
6n1HFfhiqM48oOmJ/DibBpZ+ph4OaxJjHY7i8oEu
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:05:51 2025 by rpki-client