Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230312e3232332e3132382e302f31372d3234203d3e2037343138.roa
File: 3230312e3232332e3132382e302f31372d3234203d3e2037343138.roa (raw, json)
Hash identifier: oE9u0CleKqSrg0mGUrFhPpCeCkdCsDBOcJJpI5DRD78=
Subject key identifier: 6E:4B:97:C4:21:90:CE:1D:FF:A0:8B:2F:BD:3B:93:4E:89:A1:43:02
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 7CADBABF515A6250EE5BCB870C17B5B54AC9B2BC
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230312e3232332e3132382e302f31372d3234203d3e2037343138.roa
Signing time: Tue 04 Feb 2025 18:30:04 +0000
ROA not before: Tue 04 Feb 2025 18:25:04 +0000
ROA not after: Tue 03 Feb 2026 18:30:04 +0000
asID: 7418
IP address blocks: 201.223.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:ad:ba:bf:51:5a:62:50:ee:5b:cb:87:0c:17:b5:b5:4a:c9:b2:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:25:04 2025 GMT
Not After : Feb 3 18:30:04 2026 GMT
Subject: CN=6E4B97C42190CE1DFFA08B2FBD3B934E89A14302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d2:2e:56:84:d9:94:7b:0b:46:2c:45:88:a2:
55:4a:6c:c8:29:8c:0c:dc:22:ab:da:b9:88:e2:21:
d5:11:2c:04:cd:2f:fc:81:8a:93:77:f0:27:81:fc:
f7:0a:54:9b:fa:42:e9:2b:cb:a5:1e:ac:70:08:af:
ce:7e:e8:e3:da:08:4a:b6:00:2f:79:40:50:6f:22:
a1:08:ce:aa:f6:4b:29:0e:e2:d5:4a:41:a9:80:6a:
b7:ae:6a:c0:39:b3:49:8c:4e:ba:54:08:3f:27:29:
f3:0d:41:17:c7:ad:71:3e:64:44:b3:55:53:fd:4a:
af:05:53:9e:3c:23:af:d5:0e:09:65:f7:aa:f4:83:
52:b6:4a:74:8c:18:3b:0f:3a:1c:39:fc:a4:1b:8a:
3b:41:fe:d2:06:47:88:4e:b8:8f:0f:a5:8b:30:f2:
5d:0b:b7:eb:22:d2:12:22:59:44:67:2b:bc:66:69:
9b:93:87:ac:52:65:fa:7e:ff:59:48:f5:c1:ee:51:
3d:46:93:e2:4d:71:ed:7d:7f:a4:23:07:eb:f6:31:
57:55:7e:17:cf:9e:eb:07:94:f7:e2:f7:f2:68:6c:
5c:e4:b7:c7:90:0b:d8:27:19:53:5f:d8:70:5d:2f:
94:4f:ef:54:d1:74:aa:65:c8:95:4e:c0:ee:1f:0b:
fd:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:4B:97:C4:21:90:CE:1D:FF:A0:8B:2F:BD:3B:93:4E:89:A1:43:02
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230312e3232332e3132382e302f31372d3234203d3e2037343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.223.128.0/17
Signature Algorithm: sha256WithRSAEncryption
90:b5:ab:da:9b:e9:46:ad:fe:d8:d5:fc:7d:21:35:f8:9e:4e:
d7:31:be:2a:0b:51:d7:b7:11:a1:ab:e9:36:bd:82:1f:04:a8:
c1:4c:8b:a5:52:41:58:2b:e8:77:5d:6b:4b:40:32:78:78:b4:
95:3b:c2:61:36:43:f3:3c:b6:c7:e9:70:1a:2b:d0:99:60:90:
28:4d:90:07:fe:0b:e7:59:04:14:a7:6b:71:70:5c:3b:7c:23:
7b:65:3d:0e:a5:ca:48:cf:6e:0d:c2:e6:7e:c5:c8:42:4c:2f:
a9:3b:6f:99:92:bd:2d:21:8a:ec:5f:35:78:35:ba:b6:86:9a:
09:f5:ca:7f:7d:39:b2:a3:02:95:9d:69:8e:53:30:b3:82:fe:
94:33:d8:35:56:ff:ce:1c:a2:73:e0:47:96:da:b9:92:de:4c:
97:f6:72:d6:45:4a:ea:75:69:a0:c7:d9:2e:b3:35:76:8c:ca:
7c:59:62:4a:75:06:21:a6:0c:92:d9:34:ec:a5:42:b0:fb:9e:
5c:32:10:e2:e6:2e:0f:4a:1a:37:55:b7:ad:14:f4:0f:61:52:
2c:5d:47:16:b3:9c:1e:0c:de:99:fa:62:7e:c7:58:9a:dc:b9:
9c:14:dd:53:b7:39:da:29:93:d4:d7:b1:07:89:26:15:33:ba:
3c:f7:78:d8
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUfK26v1FaYlDuW8uHDBe1tUrJsrwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjVDRDZBNEZCQzhCRUUzNEEyREMzNzE3OTNBMDlFMjc0
RTBFMzY2MTAeFw0yNTAyMDQxODI1MDRaFw0yNjAyMDMxODMwMDRaMDMxMTAvBgNV
BAMTKDZFNEI5N0M0MjE5MENFMURGRkEwOEIyRkJEM0I5MzRFODlBMTQzMDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC40i5WhNmUewtGLEWIolVKbMgp
jAzcIqvauYjiIdURLATNL/yBipN38CeB/PcKVJv6Qukry6UerHAIr85+6OPaCEq2
AC95QFBvIqEIzqr2SykO4tVKQamAareuasA5s0mMTrpUCD8nKfMNQRfHrXE+ZESz
VVP9Sq8FU548I6/VDgll96r0g1K2SnSMGDsPOhw5/KQbijtB/tIGR4hOuI8PpYsw
8l0Lt+si0hIiWURnK7xmaZuTh6xSZfp+/1lI9cHuUT1Gk+JNce19f6QjB+v2MVdV
fhfPnusHlPfi9/JobFzkt8eQC9gnGVNf2HBdL5RP71TRdKplyJVOwO4fC/3ZAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUbkuXxCGQzh3/oIsvvTuTTomhQwIwHwYDVR0j
BBgwFoAUJc1qT7yL7jSi3DcXk6CeJ04ONmEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EOTUyQkFDQjZEMjdFNDgyNjcwMzZGN0NCRDZDQzRBREVF
NjBCQTFEMUNGRjVFRjU5NDgxQTkwQkEyMDcxREQ3LzAvMjVDRDZBNEZCQzhCRUUz
NEEyREMzNzE3OTNBMDlFMjc0RTBFMzY2MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNUNENkE0RkJDOEJFRTM0QTJE
QzM3MTc5M0EwOUUyNzRFMEUzNjYxLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDk1MkJBQ0I2RDI3RTQ4MjY3MDM2RjdDQkQ2Q0M0QURFRTYwQkExRDFD
RkY1RUY1OTQ4MUE5MEJBMjA3MURENy8wLzMyMzAzMTJlMzIzMjMzMmUzMTMyMzgy
ZTMwMmYzMTM3MmQzMjM0MjAzZDNlMjAzNzM0MzEzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB8nfgDAN
BgkqhkiG9w0BAQsFAAOCAQEAkLWr2pvpRq3+2NX8fSE1+J5O1zG+KgtR17cRoavp
Nr2CHwSowUyLpVJBWCvod11rS0AyeHi0lTvCYTZD8zy2x+lwGivQmWCQKE2QB/4L
51kEFKdrcXBcO3wje2U9DqXKSM9uDcLmfsXIQkwvqTtvmZK9LSGK7F81eDW6toaa
CfXKf305sqMClZ1pjlMws4L+lDPYNVb/zhyic+BHltq5kt5Ml/Zy1kVK6nVpoMfZ
LrM1dozKfFliSnUGIaYMktk07KVCsPueXDIQ4uYuD0oaN1W3rRT0D2FSLF1HFrOc
HgzemfpifsdYmty5nBTdU7c52imT1NexB4kmFTO6PPd42A==
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:26:51 2025 by rpki-client