Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32382e302f32322d3234203d3e20323637363939.roa
File: 3137302e3235342e32382e302f32322d3234203d3e20323637363939.roa (raw, json)
Hash identifier: odWHN/MygW7xfc6Elir3gWuXLmnqIELTdanBtn3TSmc=
Subject key identifier: 2F:A4:C7:EE:1C:2F:2A:3A:DC:EF:47:A1:4E:2B:DE:21:DB:22:46:7D
Certificate issuer: /CN=DF4F03C5770C7BA39912813367B5E868005CCD99
Certificate serial: 5F7B9DA34566BFF4289B7F0D518A0A23FA7BC7BA
Authority key identifier: DF:4F:03:C5:77:0C:7B:A3:99:12:81:33:67:B5:E8:68:00:5C:CD:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF4F03C5770C7BA39912813367B5E868005CCD99.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32382e302f32322d3234203d3e20323637363939.roa
Signing time: Tue 04 Feb 2025 20:04:50 +0000
ROA not before: Tue 04 Feb 2025 19:59:50 +0000
ROA not after: Tue 03 Feb 2026 20:04:50 +0000
asID: 267699
IP address blocks: 170.254.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:7b:9d:a3:45:66:bf:f4:28:9b:7f:0d:51:8a:0a:23:fa:7b:c7:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF4F03C5770C7BA39912813367B5E868005CCD99
Validity
Not Before: Feb 4 19:59:50 2025 GMT
Not After : Feb 3 20:04:50 2026 GMT
Subject: CN=2FA4C7EE1C2F2A3ADCEF47A14E2BDE21DB22467D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:56:72:99:77:54:bd:54:fb:5e:bd:7d:9c:0f:
b2:58:e8:15:09:4a:9c:55:d0:d5:72:18:b9:0f:42:
d5:e1:7f:ae:08:b0:4f:45:68:3a:c1:ad:5a:42:bd:
4a:cf:fa:88:fd:9c:ec:be:0f:08:72:c0:fb:9a:e0:
47:c7:ef:c7:a3:ac:66:fa:7e:32:84:6f:23:9e:8d:
6f:a6:0f:01:68:4c:cb:27:f5:1a:8f:c8:a7:8a:b3:
e9:ca:78:a8:47:bd:52:d7:61:13:4d:2f:24:35:52:
36:29:9c:a6:76:fe:8b:aa:d8:b0:87:fa:ee:19:67:
5b:e7:1c:7e:8f:c3:0f:51:3a:aa:13:94:a6:90:ff:
f6:03:e4:a7:df:b8:00:85:6e:4a:da:cf:7e:fa:ab:
bc:67:80:de:f7:4c:87:c8:82:c2:e2:57:9b:b6:b9:
91:4e:e7:27:13:75:e0:ad:a2:96:0b:83:70:c2:e6:
54:47:1d:c6:26:0c:3c:f6:be:dc:67:78:26:6f:9e:
c7:06:86:b8:53:57:e4:80:3b:36:33:04:2c:8f:d4:
09:c4:6e:b3:ef:a6:36:24:48:a5:1f:4a:84:c8:1b:
d6:36:22:a0:98:5e:8c:8d:b9:a6:df:c4:86:88:0c:
2d:38:28:60:e4:d6:d5:cb:ae:d7:60:4f:dc:0d:a2:
61:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A4:C7:EE:1C:2F:2A:3A:DC:EF:47:A1:4E:2B:DE:21:DB:22:46:7D
X509v3 Authority Key Identifier:
keyid:DF:4F:03:C5:77:0C:7B:A3:99:12:81:33:67:B5:E8:68:00:5C:CD:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/DF4F03C5770C7BA39912813367B5E868005CCD99.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF4F03C5770C7BA39912813367B5E868005CCD99.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32382e302f32322d3234203d3e20323637363939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.254.28.0/22
Signature Algorithm: sha256WithRSAEncryption
85:3b:30:0e:03:a4:f5:7b:d8:50:2d:d6:b5:a6:ff:ff:79:ed:
fe:b8:11:7f:8d:e9:91:36:0a:74:76:e0:f4:ba:89:5c:e7:6d:
b2:f5:d8:83:76:8d:38:92:26:c1:f2:e1:69:cb:95:f9:18:ce:
f8:fb:2a:2b:d9:84:27:ab:04:59:0e:b1:f1:ff:ce:d4:1d:3c:
74:4b:83:10:1d:da:ec:9b:b6:83:12:3d:2b:d5:98:21:57:02:
d0:a4:0b:c2:0b:2a:c4:b6:df:19:71:cb:6a:1d:1c:7c:e2:f8:
24:07:c9:17:57:80:ed:a3:ab:fc:2a:2c:83:66:49:20:84:09:
31:64:80:75:33:7c:18:6f:36:5a:93:0d:f3:22:74:f8:ae:e9:
42:c8:b7:8b:c6:20:4c:c0:80:10:66:f6:71:6c:4b:b1:d4:7c:
0f:75:c5:a7:bd:39:d5:2f:0a:50:34:d1:2e:61:fb:d5:d7:19:
85:61:c6:e2:6b:5f:af:6c:05:bb:3f:f9:76:a0:3c:5c:18:0d:
36:b8:a2:9c:05:34:15:e3:13:34:91:ae:fc:54:06:ba:2d:18:
bb:c7:58:9d:63:59:77:6b:e0:9b:0b:7e:c9:6e:9c:67:fe:7c:
11:29:f2:76:5d:97:04:cd:3b:7a:2e:9f:f5:72:6f:b9:59:df:
84:35:4e:50
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUX3udo0Vmv/Qom38NUYoKI/p7x7owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREY0RjAzQzU3NzBDN0JBMzk5MTI4MTMzNjdCNUU4Njgw
MDVDQ0Q5OTAeFw0yNTAyMDQxOTU5NTBaFw0yNjAyMDMyMDA0NTBaMDMxMTAvBgNV
BAMTKDJGQTRDN0VFMUMyRjJBM0FEQ0VGNDdBMTRFMkJERTIxREIyMjQ2N0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSVnKZd1S9VPtevX2cD7JY6BUJ
SpxV0NVyGLkPQtXhf64IsE9FaDrBrVpCvUrP+oj9nOy+DwhywPua4EfH78ejrGb6
fjKEbyOejW+mDwFoTMsn9RqPyKeKs+nKeKhHvVLXYRNNLyQ1UjYpnKZ2/ouq2LCH
+u4ZZ1vnHH6Pww9ROqoTlKaQ//YD5KffuACFbkraz376q7xngN73TIfIgsLiV5u2
uZFO5ycTdeCtopYLg3DC5lRHHcYmDDz2vtxneCZvnscGhrhTV+SAOzYzBCyP1AnE
brPvpjYkSKUfSoTIG9Y2IqCYXoyNuabfxIaIDC04KGDk1tXLrtdgT9wNomHHAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUL6TH7hwvKjrc70ehTiveIdsiRn0wHwYDVR0j
BBgwFoAU308DxXcMe6OZEoEzZ7XoaABczZkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9FMDhEOTMzNjgyRjY4OEVEOEMzNkQwRkMxRjM0QjY4MzE1
MDUzRDNGMzcxRjY4NEI5QTM4N0E1RkE2NzA5RjE3LzAvREY0RjAzQzU3NzBDN0JB
Mzk5MTI4MTMzNjdCNUU4NjgwMDVDQ0Q5OS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ERjRGMDNDNTc3MEM3QkEzOTkx
MjgxMzM2N0I1RTg2ODAwNUNDRDk5LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRTA4RDkzMzY4MkY2ODhFRDhDMzZEMEZDMUYzNEI2ODMxNTA1M0QzRjM3
MUY2ODRCOUEzODdBNUZBNjcwOUYxNy8wLzMxMzczMDJlMzIzNTM0MmUzMjM4MmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM3MzYzOTM5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqv4c
MA0GCSqGSIb3DQEBCwUAA4IBAQCFOzAOA6T1e9hQLda1pv//ee3+uBF/jemRNgp0
duD0uolc522y9diDdo04kibB8uFpy5X5GM74+yor2YQnqwRZDrHx/87UHTx0S4MQ
Hdrsm7aDEj0r1ZghVwLQpAvCCyrEtt8ZcctqHRx84vgkB8kXV4Dto6v8KiyDZkkg
hAkxZIB1M3wYbzZakw3zInT4rulCyLeLxiBMwIAQZvZxbEux1HwPdcWnvTnVLwpQ
NNEuYfvV1xmFYcbia1+vbAW7P/l2oDxcGA02uKKcBTQV4xM0ka78VAa6LRi7x1id
Y1l3a+CbC37Jbpxn/nwRKfJ2XZcEzTt6Lp/1cm+5Wd+ENU5Q
-----END CERTIFICATE-----
Generated at Tue Apr 8 14:06:40 2025 by rpki-client