Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E32009B6DA3BA40E0FCBAEEF9EF4AC50A1396CDB094D50FCFE00A66A41F34D70/0/3132382e3230312e3131362e302f32322d3234203d3e20323635373433.roa
File: 3132382e3230312e3131362e302f32322d3234203d3e20323635373433.roa (raw, json)
Hash identifier: bPuzOoJWRYtviSFYhcViAUC+HrAro+FzIveS1T5uREg=
Subject key identifier: A9:76:E1:0C:E6:DA:27:C4:32:20:19:24:43:22:5D:8D:14:6F:FD:9C
Certificate issuer: /CN=94CC4D51C9A67497406010FEC3E6B76316A62D52
Certificate serial: 38DBB566D61C59FCA40F712578FDE5B405BB1110
Authority key identifier: 94:CC:4D:51:C9:A6:74:97:40:60:10:FE:C3:E6:B7:63:16:A6:2D:52
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/94CC4D51C9A67497406010FEC3E6B76316A62D52.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E32009B6DA3BA40E0FCBAEEF9EF4AC50A1396CDB094D50FCFE00A66A41F34D70/0/3132382e3230312e3131362e302f32322d3234203d3e20323635373433.roa
Signing time: Tue 04 Feb 2025 20:03:14 +0000
ROA not before: Tue 04 Feb 2025 19:58:14 +0000
ROA not after: Tue 03 Feb 2026 20:03:14 +0000
asID: 265743
IP address blocks: 128.201.116.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:db:b5:66:d6:1c:59:fc:a4:0f:71:25:78:fd:e5:b4:05:bb:11:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94CC4D51C9A67497406010FEC3E6B76316A62D52
Validity
Not Before: Feb 4 19:58:14 2025 GMT
Not After : Feb 3 20:03:14 2026 GMT
Subject: CN=A976E10CE6DA27C43220192443225D8D146FFD9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d2:b0:b2:c3:27:97:22:66:f3:3c:46:a4:4f:
1c:35:80:2f:c3:7c:e1:02:a5:0a:ec:5d:da:42:b2:
dd:f7:88:fd:0f:ee:7d:0b:c0:04:b7:ba:8b:52:d0:
f1:2b:9a:f9:1e:bc:a8:23:dc:ca:15:b3:e8:07:fd:
cd:c5:5f:42:93:8b:ee:88:3b:e5:55:0d:bd:e2:95:
92:82:8f:e4:b1:3c:71:fc:9c:ec:41:15:dc:a7:94:
a3:38:c0:1c:92:61:b4:53:e6:42:47:e2:7c:ca:67:
e6:ef:0e:54:61:80:b9:ef:ed:c8:45:cc:0c:7b:29:
62:13:1d:fd:1a:25:31:d0:25:68:33:d0:bf:51:7c:
d1:fd:f4:73:8c:bb:78:a2:c3:2e:9d:bb:89:0f:d3:
43:a0:ff:7d:67:bc:5d:b9:78:24:9f:7c:b2:87:ae:
3b:36:31:62:3a:00:d8:9e:0e:ed:ad:8d:21:f9:d4:
7f:f2:17:eb:87:77:de:3c:69:e8:e3:97:81:a3:55:
e0:f2:70:c1:d7:e7:db:b9:7d:8c:a8:c9:dd:25:f6:
1c:ca:82:9c:77:43:dc:39:5b:b4:a2:2a:f3:b8:08:
2c:57:31:21:29:15:ec:d6:ac:e8:4d:6c:83:87:57:
88:3e:43:8f:ee:5c:29:d4:c4:4e:8a:d8:df:7b:d0:
67:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:76:E1:0C:E6:DA:27:C4:32:20:19:24:43:22:5D:8D:14:6F:FD:9C
X509v3 Authority Key Identifier:
keyid:94:CC:4D:51:C9:A6:74:97:40:60:10:FE:C3:E6:B7:63:16:A6:2D:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E32009B6DA3BA40E0FCBAEEF9EF4AC50A1396CDB094D50FCFE00A66A41F34D70/0/94CC4D51C9A67497406010FEC3E6B76316A62D52.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/94CC4D51C9A67497406010FEC3E6B76316A62D52.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E32009B6DA3BA40E0FCBAEEF9EF4AC50A1396CDB094D50FCFE00A66A41F34D70/0/3132382e3230312e3131362e302f32322d3234203d3e20323635373433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.201.116.0/22
Signature Algorithm: sha256WithRSAEncryption
95:dc:c2:16:0b:9d:b1:68:f2:80:d9:da:40:95:95:82:94:80:
c6:2b:7e:8f:37:de:27:d1:7b:a0:32:4e:8d:93:f6:22:06:29:
1c:18:46:d9:62:a9:8b:9c:2b:99:d0:b6:5e:2a:11:00:cc:b1:
02:73:f3:dd:76:18:3c:9c:0b:c5:40:54:0e:3a:44:6b:68:57:
b6:aa:72:5d:e4:c4:3f:66:a7:7a:82:59:81:51:c0:ea:50:b4:
a9:25:57:63:6f:2c:14:64:73:5e:9a:da:9a:65:c9:e3:59:c4:
5e:f5:d0:bd:9a:4e:74:7c:e5:0a:10:b3:95:b3:fa:0f:6b:a5:
33:31:6f:60:d8:e2:a8:3c:cb:83:b2:24:67:7f:9c:08:3e:be:
a8:2c:1b:cf:63:cb:7a:30:27:ef:06:c7:f6:3f:ca:b2:d6:be:
31:75:fd:9b:78:63:90:04:50:55:86:10:93:b9:be:22:94:b5:
4c:0c:28:1a:1c:ea:e5:52:0b:7c:78:92:81:ff:85:16:b5:9f:
52:81:c0:25:fa:d1:81:e6:bd:c7:a2:b8:e9:51:a2:b6:a8:f5:
a2:6b:ae:ad:14:5b:06:f4:d4:91:4a:1a:49:73:e4:cd:54:bf:
c7:eb:03:96:a2:fa:92:68:59:15:d6:57:c8:25:dc:e7:1a:0e:
56:d6:06:7c
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUONu1ZtYcWfykD3EleP3ltAW7ERAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTRDQzRENTFDOUE2NzQ5NzQwNjAxMEZFQzNFNkI3NjMx
NkE2MkQ1MjAeFw0yNTAyMDQxOTU4MTRaFw0yNjAyMDMyMDAzMTRaMDMxMTAvBgNV
BAMTKEE5NzZFMTBDRTZEQTI3QzQzMjIwMTkyNDQzMjI1RDhEMTQ2RkZEOUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC00rCywyeXImbzPEakTxw1gC/D
fOECpQrsXdpCst33iP0P7n0LwAS3uotS0PErmvkevKgj3MoVs+gH/c3FX0KTi+6I
O+VVDb3ilZKCj+SxPHH8nOxBFdynlKM4wBySYbRT5kJH4nzKZ+bvDlRhgLnv7chF
zAx7KWITHf0aJTHQJWgz0L9RfNH99HOMu3iiwy6du4kP00Og/31nvF25eCSffLKH
rjs2MWI6ANieDu2tjSH51H/yF+uHd948aejjl4GjVeDycMHX59u5fYyoyd0l9hzK
gpx3Q9w5W7SiKvO4CCxXMSEpFezWrOhNbIOHV4g+Q4/uXCnUxE6K2N970GeBAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUqXbhDObaJ8QyIBkkQyJdjRRv/ZwwHwYDVR0j
BBgwFoAUlMxNUcmmdJdAYBD+w+a3YxamLVIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9FMzIwMDlCNkRBM0JBNDBFMEZDQkFFRUY5RUY0QUM1MEEx
Mzk2Q0RCMDk0RDUwRkNGRTAwQTY2QTQxRjM0RDcwLzAvOTRDQzRENTFDOUE2NzQ5
NzQwNjAxMEZFQzNFNkI3NjMxNkE2MkQ1Mi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85NENDNEQ1MUM5QTY3NDk3NDA2
MDEwRkVDM0U2Qjc2MzE2QTYyRDUyLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRTMyMDA5QjZEQTNCQTQwRTBGQ0JBRUVGOUVGNEFDNTBBMTM5NkNEQjA5
NEQ1MEZDRkUwMEE2NkE0MUYzNEQ3MC8wLzMxMzIzODJlMzIzMDMxMmUzMTMxMzYy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM2MzUzNzM0MzMucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKA
yXQwDQYJKoZIhvcNAQELBQADggEBAJXcwhYLnbFo8oDZ2kCVlYKUgMYrfo833ifR
e6AyTo2T9iIGKRwYRtliqYucK5nQtl4qEQDMsQJz8912GDycC8VAVA46RGtoV7aq
cl3kxD9mp3qCWYFRwOpQtKklV2NvLBRkc16a2pplyeNZxF710L2aTnR85QoQs5Wz
+g9rpTMxb2DY4qg8y4OyJGd/nAg+vqgsG89jy3owJ+8Gx/Y/yrLWvjF1/Zt4Y5AE
UFWGEJO5viKUtUwMKBoc6uVSC3x4koH/hRa1n1KBwCX60YHmvceiuOlRorao9aJr
rq0UWwb01JFKGklz5M1Uv8frA5ai+pJoWRXWV8gl3OcaDlbWBnw=
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:46:05 2025 by rpki-client