Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e36352e302f32342d3234203d3e20323730303439.roa
File: 36362e3233312e36352e302f32342d3234203d3e20323730303439.roa (raw, json)
Hash identifier: jsqRXTrNUurZUnxyIPjwt7leWh0tAA+gKTzb2CctmkY=
Subject key identifier: 18:C6:2B:FD:2B:C9:2C:DE:01:E0:77:E8:23:4C:5F:D1:20:DE:38:4E
Certificate issuer: /CN=C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0
Certificate serial: 47440E672D3065366FB344C3BC3DD8FCCD483DAB
Authority key identifier: C2:96:7F:F3:10:9E:0A:A7:EE:5E:C1:C6:40:30:0D:5A:00:FF:41:B0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e36352e302f32342d3234203d3e20323730303439.roa
Signing time: Tue 04 Feb 2025 18:39:39 +0000
ROA not before: Tue 04 Feb 2025 18:34:39 +0000
ROA not after: Tue 03 Feb 2026 18:39:39 +0000
asID: 270049
IP address blocks: 66.231.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:44:0e:67:2d:30:65:36:6f:b3:44:c3:bc:3d:d8:fc:cd:48:3d:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0
Validity
Not Before: Feb 4 18:34:39 2025 GMT
Not After : Feb 3 18:39:39 2026 GMT
Subject: CN=18C62BFD2BC92CDE01E077E8234C5FD120DE384E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b4:1b:1f:ea:eb:06:cf:54:9f:1c:17:b9:3a:
d5:f7:e8:6b:1c:df:54:66:f4:6b:49:66:14:30:78:
67:df:6b:af:4c:39:8a:cc:da:9c:f9:f9:ea:4e:26:
2c:23:22:29:00:1b:f7:b5:35:50:fd:f6:2d:cd:06:
e2:8e:d8:6d:3d:c4:04:a7:44:96:12:8e:ab:7d:2a:
d2:81:22:e6:8f:8a:99:d9:e5:0e:1f:d1:08:a4:65:
29:53:3f:b8:3f:56:4b:36:c2:75:4a:a6:94:01:37:
44:83:b8:b2:04:17:37:ad:1c:fd:96:0f:a6:33:3e:
bd:51:dd:18:c8:55:72:22:da:26:29:c1:32:61:8e:
59:d4:d5:02:f2:3c:ae:9c:21:42:c3:17:dc:2d:a0:
78:fc:a8:6d:76:1f:2a:f0:83:0f:0d:4b:f3:0a:ee:
d8:28:09:07:02:2e:9c:71:0c:3b:c3:c4:cb:88:da:
ea:3e:2c:83:25:61:bb:03:fe:a4:10:5f:2a:36:af:
63:bc:db:06:7b:67:a5:3d:3a:ec:13:58:08:53:3f:
1e:2f:0e:98:a8:eb:60:09:29:c8:cd:90:c6:61:ad:
f0:21:9f:ef:72:c6:c3:ca:d4:9c:14:bc:40:91:6b:
fd:cd:7d:3f:e7:97:8c:65:ce:96:8f:69:fb:53:ea:
bc:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:C6:2B:FD:2B:C9:2C:DE:01:E0:77:E8:23:4C:5F:D1:20:DE:38:4E
X509v3 Authority Key Identifier:
keyid:C2:96:7F:F3:10:9E:0A:A7:EE:5E:C1:C6:40:30:0D:5A:00:FF:41:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e36352e302f32342d3234203d3e20323730303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.231.65.0/24
Signature Algorithm: sha256WithRSAEncryption
87:d9:88:89:ca:e5:3e:1b:71:8e:c6:4a:59:c1:fc:5e:03:56:
cb:e7:87:fc:37:19:1a:0a:b9:7c:1c:60:73:87:0d:f6:bf:ca:
26:2e:de:db:07:4b:22:c8:9d:d8:5c:f5:fb:ed:fc:1a:f8:27:
56:dc:0f:fa:5c:1f:ce:e9:a7:63:04:26:f8:85:69:68:92:32:
88:d0:df:f0:23:4c:03:56:d4:27:9b:5f:07:e5:c7:d7:1d:be:
e1:14:58:04:16:90:18:a0:31:16:fc:a0:81:b4:a1:0e:1f:3e:
46:1f:8a:e1:0e:d2:9d:8d:98:df:e9:c2:a0:cf:48:77:71:7a:
80:8a:73:01:80:c4:28:c9:e7:c4:8c:4c:42:c1:84:b0:04:e7:
6f:25:a1:c9:00:e6:a3:55:82:bd:e7:df:8f:1b:5c:38:e2:21:
c8:02:9b:71:bc:35:78:4e:e5:44:a7:9e:80:65:5f:7b:63:d0:
b0:82:66:23:85:ac:fc:04:17:49:5d:2b:a5:c7:8a:4b:6f:cb:
0b:e4:f0:09:79:d4:1d:3b:c8:72:05:72:10:a4:5f:9f:18:e1:
ea:ba:bd:41:7a:68:c2:2c:1f:39:48:62:30:a4:13:34:9f:e2:
ce:67:b3:25:c0:d2:2c:f4:e5:9f:97:50:28:2d:42:13:3c:19:
b8:f7:97:09
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUR0QOZy0wZTZvs0TDvD3Y/M1IPaswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzI5NjdGRjMxMDlFMEFBN0VFNUVDMUM2NDAzMDBENUEw
MEZGNDFCMDAeFw0yNTAyMDQxODM0MzlaFw0yNjAyMDMxODM5MzlaMDMxMTAvBgNV
BAMTKDE4QzYyQkZEMkJDOTJDREUwMUUwNzdFODIzNEM1RkQxMjBERTM4NEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdtBsf6usGz1SfHBe5OtX36Gsc
31Rm9GtJZhQweGffa69MOYrM2pz5+epOJiwjIikAG/e1NVD99i3NBuKO2G09xASn
RJYSjqt9KtKBIuaPipnZ5Q4f0QikZSlTP7g/Vks2wnVKppQBN0SDuLIEFzetHP2W
D6YzPr1R3RjIVXIi2iYpwTJhjlnU1QLyPK6cIULDF9wtoHj8qG12Hyrwgw8NS/MK
7tgoCQcCLpxxDDvDxMuI2uo+LIMlYbsD/qQQXyo2r2O82wZ7Z6U9OuwTWAhTPx4v
Dpio62AJKcjNkMZhrfAhn+9yxsPK1JwUvECRa/3NfT/nl4xlzpaPaftT6rwZAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUGMYr/SvJLN4B4HfoI0xf0SDeOE4wHwYDVR0j
BBgwFoAUwpZ/8xCeCqfuXsHGQDANWgD/QbAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EQTEwNEQ3Nzc3QjAyOUVEQTc4MkRBQTZBNkY3NDM0RkRC
Nzc3Q0U2OEEwOTQ5Nzk3ODE0NjRFQzU5RkY4QTlBLzAvQzI5NjdGRjMxMDlFMEFB
N0VFNUVDMUM2NDAzMDBENUEwMEZGNDFCMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DMjk2N0ZGMzEwOUUwQUE3RUU1
RUMxQzY0MDMwMEQ1QTAwRkY0MUIwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvREExMDRENzc3N0IwMjlFREE3ODJEQUE2QTZGNzQzNEZEQjc3N0NFNjhB
MDk0OTc5NzgxNDY0RUM1OUZGOEE5QS8wLzM2MzYyZTMyMzMzMTJlMzYzNTJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzczMDMwMzQzOS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAELnQTAN
BgkqhkiG9w0BAQsFAAOCAQEAh9mIicrlPhtxjsZKWcH8XgNWy+eH/DcZGgq5fBxg
c4cN9r/KJi7e2wdLIsid2Fz1++38GvgnVtwP+lwfzumnYwQm+IVpaJIyiNDf8CNM
A1bUJ5tfB+XH1x2+4RRYBBaQGKAxFvyggbShDh8+Rh+K4Q7SnY2Y3+nCoM9Id3F6
gIpzAYDEKMnnxIxMQsGEsATnbyWhyQDmo1WCveffjxtcOOIhyAKbcbw1eE7lRKee
gGVfe2PQsIJmI4Ws/AQXSV0rpceKS2/LC+TwCXnUHTvIcgVyEKRfnxjh6rq9QXpo
wiwfOUhiMKQTNJ/izmezJcDSLPTln5dQKC1CEzwZuPeXCQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:32 2025 by rpki-client