Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3134332e3230322e3135362e302f32322d3234203d3e203131313732.roa
File: 3134332e3230322e3135362e302f32322d3234203d3e203131313732.roa (raw, json)
Hash identifier: mV0Q0f+/JbvHnG2xsUDr3RV4vR4I1IlEsEUNS1ItWgo=
Subject key identifier: 33:03:C7:00:76:D8:FC:90:04:1C:D6:D7:D9:77:3F:8A:4C:0D:86:62
Certificate issuer: /CN=E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15
Certificate serial: 4A84C87446239BF1A9B5C89EB0F8D67E462DC7DC
Authority key identifier: E3:5D:D2:93:E1:C3:BC:5F:4D:E1:53:18:FA:C5:96:7E:7D:55:BF:15
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3134332e3230322e3135362e302f32322d3234203d3e203131313732.roa
Signing time: Tue 04 Feb 2025 18:52:50 +0000
ROA not before: Tue 04 Feb 2025 18:47:50 +0000
ROA not after: Tue 03 Feb 2026 18:52:50 +0000
asID: 11172
IP address blocks: 143.202.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:84:c8:74:46:23:9b:f1:a9:b5:c8:9e:b0:f8:d6:7e:46:2d:c7:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15
Validity
Not Before: Feb 4 18:47:50 2025 GMT
Not After : Feb 3 18:52:50 2026 GMT
Subject: CN=3303C70076D8FC90041CD6D7D9773F8A4C0D8662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5b:24:04:73:8f:92:bf:5b:43:96:bc:3a:14:
f0:97:04:5a:41:21:57:74:73:88:fc:6c:52:28:eb:
18:27:98:6e:c8:6b:64:18:48:d3:db:4e:a3:9e:53:
15:39:4a:e5:32:27:b8:ae:9d:3c:33:f2:95:c5:78:
c1:68:9f:61:4c:d4:f5:86:92:d0:4f:06:a2:01:2b:
8a:2c:c2:5a:45:96:07:ad:be:fa:5e:90:93:03:85:
14:db:6d:68:8c:84:af:a0:a5:b8:ea:42:3a:b4:56:
f4:25:69:73:69:86:74:1e:22:fb:81:82:94:6a:f9:
bc:ea:bf:7f:e0:56:95:64:10:7f:ee:ae:95:53:5a:
27:37:67:da:76:bd:61:3c:41:fb:88:c6:9a:aa:4d:
c5:c4:97:26:ed:34:2d:07:56:dc:dd:ed:2c:15:35:
34:e1:e2:35:6e:5a:73:ad:09:c6:e7:1f:e6:3e:97:
57:43:04:f8:00:02:83:e8:d6:d4:72:c5:80:a3:00:
5b:37:4a:a2:26:3f:af:e0:09:2c:39:2b:b2:9d:0b:
c9:25:e3:37:eb:09:55:39:53:28:6b:60:f1:e5:01:
33:d1:83:16:3d:34:29:9f:c2:4a:b6:99:be:13:07:
a0:cd:4d:2a:74:3d:89:ed:ba:21:86:f4:2c:80:16:
88:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:03:C7:00:76:D8:FC:90:04:1C:D6:D7:D9:77:3F:8A:4C:0D:86:62
X509v3 Authority Key Identifier:
keyid:E3:5D:D2:93:E1:C3:BC:5F:4D:E1:53:18:FA:C5:96:7E:7D:55:BF:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3134332e3230322e3135362e302f32322d3234203d3e203131313732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.202.156.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:b4:7f:d6:fc:35:20:4c:8c:e2:29:1f:9d:75:a6:df:c4:62:
59:01:fa:a8:7a:0b:2c:65:ad:a6:71:9d:f7:0e:f3:2a:7f:30:
9e:42:55:36:cd:93:b2:1f:07:c3:47:38:01:0d:b7:87:30:16:
de:0a:b1:43:4b:e3:f7:eb:4f:9a:96:64:c6:8e:8d:83:d1:33:
8a:13:7b:d0:99:9f:b4:74:ef:92:4d:bd:6d:80:56:b4:cd:76:
27:25:b4:96:45:9c:26:0e:f2:12:93:59:b7:22:aa:90:df:01:
02:51:a5:ab:61:6e:c5:0b:a9:60:aa:06:64:ec:8f:56:2d:98:
36:5b:a8:de:8e:21:63:69:b5:a5:90:cb:59:4f:97:e0:b7:fe:
5e:e9:bc:28:96:ae:6e:96:75:44:cd:31:7a:de:d4:73:25:74:
de:35:89:05:09:38:0d:c7:ba:7a:8b:fe:ff:55:fd:1a:ed:51:
7e:c7:42:df:0a:52:4b:6a:63:cd:ed:50:99:94:57:df:64:d3:
fd:95:b2:e9:8a:8c:f0:d0:3c:45:ae:21:7e:2e:21:40:fe:df:
35:b9:7c:d3:0a:66:84:4d:06:fd:6e:c7:59:be:38:1b:8c:5f:
0f:83:17:44:4a:9f:8a:9d:57:1a:44:a8:11:19:c5:ff:60:0a:
57:98:f9:87
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUSoTIdEYjm/GptciesPjWfkYtx9wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTM1REQyOTNFMUMzQkM1RjRERTE1MzE4RkFDNTk2N0U3
RDU1QkYxNTAeFw0yNTAyMDQxODQ3NTBaFw0yNjAyMDMxODUyNTBaMDMxMTAvBgNV
BAMTKDMzMDNDNzAwNzZEOEZDOTAwNDFDRDZEN0Q5NzczRjhBNEMwRDg2NjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLWyQEc4+Sv1tDlrw6FPCXBFpB
IVd0c4j8bFIo6xgnmG7Ia2QYSNPbTqOeUxU5SuUyJ7iunTwz8pXFeMFon2FM1PWG
ktBPBqIBK4oswlpFlgetvvpekJMDhRTbbWiMhK+gpbjqQjq0VvQlaXNphnQeIvuB
gpRq+bzqv3/gVpVkEH/urpVTWic3Z9p2vWE8QfuIxpqqTcXElybtNC0HVtzd7SwV
NTTh4jVuWnOtCcbnH+Y+l1dDBPgAAoPo1tRyxYCjAFs3SqImP6/gCSw5K7KdC8kl
4zfrCVU5UyhrYPHlATPRgxY9NCmfwkq2mb4TB6DNTSp0PYntuiGG9CyAFojFAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUMwPHAHbY/JAEHNbX2Xc/ikwNhmIwHwYDVR0j
BBgwFoAU413Sk+HDvF9N4VMY+sWWfn1VvxUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9ERjY0OTVERkU1NTdBOTY1NkFGRDkzNDYzN0U5NjYzNEQz
RDI3MzlENTA3MkQxN0YxMDgwNThGMEE5Q0E5OTM4LzAvRTM1REQyOTNFMUMzQkM1
RjRERTE1MzE4RkFDNTk2N0U3RDU1QkYxNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FMzVERDI5M0UxQzNCQzVGNERF
MTUzMThGQUM1OTY3RTdENTVCRjE1LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvREY2NDk1REZFNTU3QTk2NTZBRkQ5MzQ2MzdFOTY2MzREM0QyNzM5RDUw
NzJEMTdGMTA4MDU4RjBBOUNBOTkzOC8wLzMxMzQzMzJlMzIzMDMyMmUzMTM1MzYy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMTMxMzEzNzMyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCj8qc
MA0GCSqGSIb3DQEBCwUAA4IBAQBftH/W/DUgTIziKR+ddabfxGJZAfqoegssZa2m
cZ33DvMqfzCeQlU2zZOyHwfDRzgBDbeHMBbeCrFDS+P360+almTGjo2D0TOKE3vQ
mZ+0dO+STb1tgFa0zXYnJbSWRZwmDvISk1m3IqqQ3wECUaWrYW7FC6lgqgZk7I9W
LZg2W6jejiFjabWlkMtZT5fgt/5e6bwolq5ulnVEzTF63tRzJXTeNYkFCTgNx7p6
i/7/Vf0a7VF+x0LfClJLamPN7VCZlFffZNP9lbLpiozw0DxFriF+LiFA/t81uXzT
CmaETQb9bsdZvjgbjF8PgxdESp+KnVcaRKgRGcX/YApXmPmH
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:23:47 2025 by rpki-client