Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e39312e312e302f32342d3234203d3e203237363830.roa
File: 3230302e39312e312e302f32342d3234203d3e203237363830.roa (raw, json)
Hash identifier: 4jKgzVg9JgYzvVOTn6r9DdBWSnCnnWPFmE4pgNM+DbA=
Subject key identifier: 00:1E:3F:6E:E6:3A:8D:87:FD:4D:90:35:CA:D0:8B:D6:DF:BF:AB:E5
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 367A3725C73E02C8099E6748786B764CC75E3679
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e39312e312e302f32342d3234203d3e203237363830.roa
Signing time: Wed 22 Jan 2025 20:35:00 +0000
ROA not before: Wed 22 Jan 2025 20:30:00 +0000
ROA not after: Wed 21 Jan 2026 20:35:00 +0000
asID: 27680
IP address blocks: 200.91.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:7a:37:25:c7:3e:02:c8:09:9e:67:48:78:6b:76:4c:c7:5e:36:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Jan 22 20:30:00 2025 GMT
Not After : Jan 21 20:35:00 2026 GMT
Subject: CN=001E3F6EE63A8D87FD4D9035CAD08BD6DFBFABE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:6b:a6:8e:dd:5d:02:c2:69:eb:61:40:37:ab:
06:9c:e2:f9:aa:ce:50:3c:bd:93:bc:cc:64:29:22:
b1:5a:26:ec:ea:37:20:e7:29:e9:0c:4a:b8:ec:03:
eb:0a:17:02:f0:b7:c6:eb:74:3e:f3:5f:c3:6f:78:
bf:b0:07:5d:ac:07:dd:9e:19:4b:1e:58:3e:77:03:
61:4a:b6:04:1c:63:8c:c5:8c:5e:0a:47:87:aa:25:
c2:65:44:cb:61:0e:81:63:ba:29:f8:74:71:cc:7b:
3d:e1:45:46:ec:cb:7f:b2:5d:8f:26:4b:db:f0:79:
84:1f:29:31:41:76:e5:b7:76:2d:26:38:eb:92:61:
15:4d:8b:ab:ec:71:a4:53:ba:db:5c:73:5a:6c:bc:
96:cd:0c:54:d2:00:0a:b9:62:fc:be:a2:cc:d9:a2:
8f:b9:c4:f4:59:ed:16:4b:7f:51:01:9b:03:a0:e7:
3f:7e:99:22:d2:12:f1:99:c0:ed:c8:80:40:f0:64:
93:6d:fa:b5:09:e6:c3:df:e9:75:1e:f6:d4:e7:91:
37:3c:5e:a3:b0:36:66:5c:fc:96:d0:ea:77:91:6e:
5c:e7:b2:0c:98:07:42:08:8c:d8:a7:1b:fc:7b:e4:
c6:bb:31:87:7a:7f:03:60:b6:e7:24:48:ca:0f:2d:
e3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:1E:3F:6E:E6:3A:8D:87:FD:4D:90:35:CA:D0:8B:D6:DF:BF:AB:E5
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e39312e312e302f32342d3234203d3e203237363830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.91.1.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:82:45:88:40:dc:95:eb:2f:4f:d5:ab:e9:9b:88:82:4a:ea:
2f:da:6f:a1:9a:1c:19:75:f0:59:34:d4:b9:44:e6:d4:21:17:
4e:67:b4:6a:8e:cd:5b:6e:a9:23:b1:64:df:79:d5:50:9c:ed:
19:d7:59:3f:96:50:39:1b:c5:f3:ad:ae:e8:f7:b6:6f:42:24:
dc:65:3c:7d:89:53:d2:b3:06:7d:0d:5e:05:ac:c9:49:c0:52:
b6:0d:d3:f5:4a:31:23:e8:c8:c6:44:9a:4e:46:7c:71:7e:71:
0d:fa:84:00:2e:70:07:b7:c5:63:10:f3:3e:f8:09:49:2b:ba:
c2:be:01:c0:20:f3:3a:24:fb:8f:48:3c:75:23:86:9e:88:cd:
2d:be:44:b4:75:a5:09:71:64:00:2a:2d:29:f5:e2:38:7e:b0:
2c:04:1f:d8:0f:50:bc:4b:32:f7:48:68:35:38:a4:c2:33:53:
05:71:33:15:de:0a:55:9b:f9:c6:e0:dd:a6:a9:7b:92:18:63:
28:7f:19:2a:a9:8e:c8:8a:59:f9:54:bf:e4:03:97:4e:39:34:
2d:dc:83:8d:0d:8a:b9:c0:a2:c3:94:b7:da:55:bd:ba:a5:06:
a6:03:4b:06:1a:43:f0:1b:65:74:39:c3:df:a2:1e:a5:e2:49:
01:9c:a4:fb
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIUNno3Jcc+AsgJnmdIeGt2TMdeNnkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjVDRDZBNEZCQzhCRUUzNEEyREMzNzE3OTNBMDlFMjc0
RTBFMzY2MTAeFw0yNTAxMjIyMDMwMDBaFw0yNjAxMjEyMDM1MDBaMDMxMTAvBgNV
BAMTKDAwMUUzRjZFRTYzQThEODdGRDREOTAzNUNBRDA4QkQ2REZCRkFCRTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsa6aO3V0CwmnrYUA3qwac4vmq
zlA8vZO8zGQpIrFaJuzqNyDnKekMSrjsA+sKFwLwt8brdD7zX8NveL+wB12sB92e
GUseWD53A2FKtgQcY4zFjF4KR4eqJcJlRMthDoFjuin4dHHMez3hRUbsy3+yXY8m
S9vweYQfKTFBduW3di0mOOuSYRVNi6vscaRTuttcc1psvJbNDFTSAAq5Yvy+oszZ
oo+5xPRZ7RZLf1EBmwOg5z9+mSLSEvGZwO3IgEDwZJNt+rUJ5sPf6XUe9tTnkTc8
XqOwNmZc/JbQ6neRblznsgyYB0IIjNinG/x75Ma7MYd6fwNgtuckSMoPLeNNAgMB
AAGjggLEMIICwDAdBgNVHQ4EFgQUAB4/buY6jYf9TZA1ytCL1t+/q+UwHwYDVR0j
BBgwFoAUJc1qT7yL7jSi3DcXk6CeJ04ONmEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EOTUyQkFDQjZEMjdFNDgyNjcwMzZGN0NCRDZDQzRBREVF
NjBCQTFEMUNGRjVFRjU5NDgxQTkwQkEyMDcxREQ3LzAvMjVDRDZBNEZCQzhCRUUz
NEEyREMzNzE3OTNBMDlFMjc0RTBFMzY2MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUNENkE0RkJDOEJFRTM0QTJE
QzM3MTc5M0EwOUUyNzRFMEUzNjYxLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDk1MkJBQ0I2RDI3RTQ4MjY3MDM2RjdDQkQ2Q0M0QURFRTYwQkExRDFD
RkY1RUY1OTQ4MUE5MEJBMjA3MURENy8wLzMyMzAzMDJlMzkzMTJlMzEyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM3MzYzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyFsBMA0GCSqG
SIb3DQEBCwUAA4IBAQAqgkWIQNyV6y9P1avpm4iCSuov2m+hmhwZdfBZNNS5RObU
IRdOZ7Rqjs1bbqkjsWTfedVQnO0Z11k/llA5G8Xzra7o97ZvQiTcZTx9iVPSswZ9
DV4FrMlJwFK2DdP1SjEj6MjGRJpORnxxfnEN+oQALnAHt8VjEPM++AlJK7rCvgHA
IPM6JPuPSDx1I4aeiM0tvkS0daUJcWQAKi0p9eI4frAsBB/YD1C8SzL3SGg1OKTC
M1MFcTMV3gpVm/nG4N2mqXuSGGMofxkqqY7Iiln5VL/kA5dOOTQt3IONDYq5wKLD
lLfaVb26pQamA0sGGkPwG2V0OcPfoh6l4kkBnKT7
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:21 2025 by rpki-client