Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230312e3232322e3139322e302f31382d3234203d3e2037343138.roa
File: 3230312e3232322e3139322e302f31382d3234203d3e2037343138.roa (raw, json)
Hash identifier: 2nF8CC6rwJNJSCYENsfVdgS/Y6erjCj9OzRPxWKTGHk=
Subject key identifier: DB:9E:3D:44:10:E8:F4:1D:E0:19:42:50:ED:8E:F2:17:C0:DB:7A:3B
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 6F24C897079699D8E863231AFAC9DBEDBFE8B53B
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230312e3232322e3139322e302f31382d3234203d3e2037343138.roa
Signing time: Tue 04 Feb 2025 18:29:59 +0000
ROA not before: Tue 04 Feb 2025 18:24:59 +0000
ROA not after: Tue 03 Feb 2026 18:29:59 +0000
asID: 7418
IP address blocks: 201.222.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:24:c8:97:07:96:99:d8:e8:63:23:1a:fa:c9:db:ed:bf:e8:b5:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:59 2025 GMT
Not After : Feb 3 18:29:59 2026 GMT
Subject: CN=DB9E3D4410E8F41DE0194250ED8EF217C0DB7A3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bc:d9:7b:87:81:bc:f3:9e:1e:f6:ce:a4:12:
97:bc:4d:5c:e5:1a:d6:e8:67:68:da:9b:81:0f:16:
90:f0:b2:2e:5c:c9:a3:b3:50:09:65:cf:4d:88:88:
98:65:9d:42:aa:49:22:6d:ba:d2:f8:fc:5d:df:c1:
12:01:0c:83:a9:83:e0:d1:48:31:b3:e8:6b:ad:c5:
60:a0:38:24:55:78:9b:24:db:66:9d:e9:5f:00:4a:
8e:97:33:c4:b5:e8:2d:24:59:06:8b:6f:e5:6e:39:
89:56:46:b9:07:aa:c9:98:0a:f7:84:56:ef:9b:52:
18:f2:de:8a:85:d4:41:e8:eb:bb:f1:ca:88:c2:02:
d3:d6:db:f1:83:62:13:ee:2f:b5:9c:d4:29:df:8f:
00:6f:3d:4b:08:5d:25:f9:b5:f9:69:a0:52:db:35:
11:e8:e0:09:8b:23:d0:ea:bc:e6:e7:57:bd:b1:5f:
eb:83:9d:c9:cb:42:1f:29:4d:da:3f:71:2b:05:bd:
ce:cf:20:ad:95:00:1e:e8:31:a2:d9:c9:2f:36:00:
23:76:49:1d:c2:11:82:d6:36:8c:25:c8:67:d1:93:
ef:49:6b:76:9d:58:55:a3:32:3a:88:c7:83:9b:cf:
12:84:39:66:6c:33:05:e5:6a:26:67:3c:3c:8e:e1:
7a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:9E:3D:44:10:E8:F4:1D:E0:19:42:50:ED:8E:F2:17:C0:DB:7A:3B
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230312e3232322e3139322e302f31382d3234203d3e2037343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.222.192.0/18
Signature Algorithm: sha256WithRSAEncryption
9b:44:7f:45:5d:4b:11:af:15:db:15:b1:d7:f5:01:90:d7:2b:
0f:75:3b:00:5c:3d:92:8f:92:b8:5a:b9:3d:1c:4f:eb:94:56:
46:c4:b2:cb:0a:23:4c:99:ef:62:d0:fb:82:e8:6c:d0:65:3b:
fd:10:c9:5b:24:97:4f:26:63:c9:8c:55:e8:4f:96:0e:da:ab:
99:2c:33:c8:bb:3f:3e:04:15:6d:dd:f8:f1:4d:3a:36:76:43:
8a:8c:a7:e0:42:2d:cd:8b:ee:2e:de:da:d3:b3:ac:06:cb:6d:
eb:01:28:ee:f2:9d:f1:55:ae:e1:87:ce:09:d0:97:0f:ab:32:
ea:ee:27:b3:a6:e0:cb:83:03:eb:e3:e7:97:78:8c:3d:0e:e8:
b3:f6:01:46:de:c6:97:10:3e:80:d0:af:75:d4:d2:e9:c5:12:
5a:dd:58:cb:45:9a:6a:63:5a:64:b2:14:8b:72:cc:9f:07:a2:
68:73:8b:0a:36:a8:d9:0b:a4:8e:8b:26:ba:13:e6:b9:5b:10:
ea:8a:16:cd:e7:34:6d:13:6a:e9:b3:51:e7:c8:39:14:f7:45:
2b:a1:62:e7:89:03:61:6f:19:5c:69:71:0d:59:65:a3:e5:b6:
2f:89:ba:e6:93:c8:25:de:45:82:62:ce:4b:ea:13:23:d2:ac:
35:d9:c5:3b
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUbyTIlweWmdjoYyMa+snb7b/otTswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjVDRDZBNEZCQzhCRUUzNEEyREMzNzE3OTNBMDlFMjc0
RTBFMzY2MTAeFw0yNTAyMDQxODI0NTlaFw0yNjAyMDMxODI5NTlaMDMxMTAvBgNV
BAMTKERCOUUzRDQ0MTBFOEY0MURFMDE5NDI1MEVEOEVGMjE3QzBEQjdBM0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwvNl7h4G8854e9s6kEpe8TVzl
GtboZ2jam4EPFpDwsi5cyaOzUAllz02IiJhlnUKqSSJtutL4/F3fwRIBDIOpg+DR
SDGz6GutxWCgOCRVeJsk22ad6V8ASo6XM8S16C0kWQaLb+VuOYlWRrkHqsmYCveE
Vu+bUhjy3oqF1EHo67vxyojCAtPW2/GDYhPuL7Wc1CnfjwBvPUsIXSX5tflpoFLb
NRHo4AmLI9DqvObnV72xX+uDncnLQh8pTdo/cSsFvc7PIK2VAB7oMaLZyS82ACN2
SR3CEYLWNowlyGfRk+9Ja3adWFWjMjqIx4ObzxKEOWZsMwXlaiZnPDyO4Xp/AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQU2549RBDo9B3gGUJQ7Y7yF8DbejswHwYDVR0j
BBgwFoAUJc1qT7yL7jSi3DcXk6CeJ04ONmEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EOTUyQkFDQjZEMjdFNDgyNjcwMzZGN0NCRDZDQzRBREVF
NjBCQTFEMUNGRjVFRjU5NDgxQTkwQkEyMDcxREQ3LzAvMjVDRDZBNEZCQzhCRUUz
NEEyREMzNzE3OTNBMDlFMjc0RTBFMzY2MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUNENkE0RkJDOEJFRTM0QTJE
QzM3MTc5M0EwOUUyNzRFMEUzNjYxLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDk1MkJBQ0I2RDI3RTQ4MjY3MDM2RjdDQkQ2Q0M0QURFRTYwQkExRDFD
RkY1RUY1OTQ4MUE5MEJBMjA3MURENy8wLzMyMzAzMTJlMzIzMjMyMmUzMTM5MzIy
ZTMwMmYzMTM4MmQzMjM0MjAzZDNlMjAzNzM0MzEzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBsnewDAN
BgkqhkiG9w0BAQsFAAOCAQEAm0R/RV1LEa8V2xWx1/UBkNcrD3U7AFw9ko+SuFq5
PRxP65RWRsSyywojTJnvYtD7guhs0GU7/RDJWySXTyZjyYxV6E+WDtqrmSwzyLs/
PgQVbd348U06NnZDioyn4EItzYvuLt7a07OsBstt6wEo7vKd8VWu4YfOCdCXD6sy
6u4ns6bgy4MD6+Pnl3iMPQ7os/YBRt7GlxA+gNCvddTS6cUSWt1Yy0WaamNaZLIU
i3LMnweiaHOLCjao2QukjosmuhPmuVsQ6ooWzec0bRNq6bNR58g5FPdFK6Fi54kD
YW8ZXGlxDVllo+W2L4m65pPIJd5FgmLOS+oTI9KsNdnFOw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:44:43 2025 by rpki-client