Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234372e302f32342d3234203d3e203238353532.roa
File: 3230312e3135392e3234372e302f32342d3234203d3e203238353532.roa (raw, json)
Hash identifier: 2PhEjcPhwDdHZEb7GOQHsbwgacz8zCerEGVMqGCT4Qg=
Subject key identifier: 14:0C:91:18:5A:E7:4C:97:1B:81:3E:42:E5:81:8D:CB:22:24:C3:CE
Certificate issuer: /CN=BD43B3A76583426984FFC51B907F3FD29E2F3BB0
Certificate serial: 3CB9CDE0E15B03E458BDA1D549201C14ECB88D95
Authority key identifier: BD:43:B3:A7:65:83:42:69:84:FF:C5:1B:90:7F:3F:D2:9E:2F:3B:B0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234372e302f32342d3234203d3e203238353532.roa
Signing time: Tue 04 Feb 2025 14:25:00 +0000
ROA not before: Tue 04 Feb 2025 14:20:00 +0000
ROA not after: Tue 03 Feb 2026 14:25:00 +0000
asID: 28552
IP address blocks: 201.159.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:b9:cd:e0:e1:5b:03:e4:58:bd:a1:d5:49:20:1c:14:ec:b8:8d:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD43B3A76583426984FFC51B907F3FD29E2F3BB0
Validity
Not Before: Feb 4 14:20:00 2025 GMT
Not After : Feb 3 14:25:00 2026 GMT
Subject: CN=140C91185AE74C971B813E42E5818DCB2224C3CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:53:2e:7f:67:7d:70:f1:d2:ac:f1:7a:34:9f:
df:99:bb:88:a1:f1:97:d6:ea:13:c9:80:ef:2e:d6:
68:06:cd:99:24:cd:e4:a6:d5:b9:ca:1b:bf:31:48:
04:aa:ae:d6:c3:8d:17:84:82:21:fe:83:5e:e3:37:
b5:06:d5:1b:58:43:b1:a5:da:30:12:b6:e7:b8:8b:
53:ae:83:55:77:9e:62:64:bf:a4:d4:3c:bf:b4:70:
d1:59:f6:a9:18:b6:8b:1d:23:9b:a4:92:25:be:d4:
03:cd:f6:0b:3a:15:ad:71:97:b5:4e:bb:af:26:45:
26:1e:79:44:d8:ab:9d:08:6b:51:20:3a:58:33:eb:
5a:9a:ba:5b:21:c4:36:e0:43:ca:50:7b:98:10:de:
0d:b2:91:72:0a:a6:49:ff:77:b1:4a:33:81:8b:25:
a7:ec:a0:ee:78:53:3b:78:86:2c:64:14:29:94:31:
e1:18:1a:2f:c4:ef:97:5f:cd:12:e4:28:fd:b0:22:
3e:33:07:38:ce:ec:36:3c:c3:f2:84:11:23:70:2e:
3a:88:9e:4a:3e:9e:e7:2b:36:0f:96:ff:55:e7:4f:
fd:9d:0a:5c:be:2b:86:49:db:45:cc:f6:3b:e0:ca:
de:49:1a:3e:d7:fe:b2:a2:ed:b1:20:85:3d:37:af:
42:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:0C:91:18:5A:E7:4C:97:1B:81:3E:42:E5:81:8D:CB:22:24:C3:CE
X509v3 Authority Key Identifier:
keyid:BD:43:B3:A7:65:83:42:69:84:FF:C5:1B:90:7F:3F:D2:9E:2F:3B:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234372e302f32342d3234203d3e203238353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.159.247.0/24
Signature Algorithm: sha256WithRSAEncryption
01:e8:55:1e:bb:61:ad:cc:74:3e:b6:94:84:29:78:cd:2d:b7:
fd:6b:6e:c1:cb:22:35:cd:15:a4:dc:33:7c:69:58:f5:95:ae:
40:2a:ac:6f:36:14:c6:6c:83:72:c9:11:89:9d:d6:d0:b2:5d:
50:39:fc:38:fd:33:73:85:b4:c2:83:bb:b4:df:cd:3a:b3:a0:
e5:89:cc:dc:93:01:b6:53:1f:9b:e9:bc:19:0e:49:24:d7:66:
1b:ab:71:c9:05:62:9c:66:0a:6e:91:b9:df:14:0e:02:25:3a:
51:ae:74:20:7e:44:0e:0d:00:dd:77:2c:65:bf:6a:29:17:57:
f5:62:95:81:cb:8b:53:f0:17:d0:67:ed:b3:0d:4f:b3:91:b2:
d9:63:50:db:1e:4b:ae:5f:77:9c:fd:d2:e1:d1:8e:92:70:be:
57:8f:d4:e4:ad:6c:37:98:f0:11:51:4d:bf:c1:28:38:a9:fa:
62:a7:03:9b:b3:85:09:56:17:26:90:6e:ea:97:0f:65:83:5e:
e7:ee:d1:05:49:cd:4a:a1:a4:bd:e9:45:3b:bb:99:7f:5b:20:
1d:e2:fc:70:e1:a9:4b:55:8e:06:19:58:94:7b:10:ca:a6:62:
d3:99:6c:07:aa:e1:d2:a0:00:7e:d3:d5:21:68:d7:27:8b:d5:
fe:84:ae:9c
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUPLnN4OFbA+RYvaHVSSAcFOy4jZUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkQ0M0IzQTc2NTgzNDI2OTg0RkZDNTFCOTA3RjNGRDI5
RTJGM0JCMDAeFw0yNTAyMDQxNDIwMDBaFw0yNjAyMDMxNDI1MDBaMDMxMTAvBgNV
BAMTKDE0MEM5MTE4NUFFNzRDOTcxQjgxM0U0MkU1ODE4RENCMjIyNEMzQ0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpUy5/Z31w8dKs8Xo0n9+Zu4ih
8ZfW6hPJgO8u1mgGzZkkzeSm1bnKG78xSASqrtbDjReEgiH+g17jN7UG1RtYQ7Gl
2jAStue4i1Oug1V3nmJkv6TUPL+0cNFZ9qkYtosdI5ukkiW+1APN9gs6Fa1xl7VO
u68mRSYeeUTYq50Ia1EgOlgz61qaulshxDbgQ8pQe5gQ3g2ykXIKpkn/d7FKM4GL
JafsoO54Uzt4hixkFCmUMeEYGi/E75dfzRLkKP2wIj4zBzjO7DY8w/KEESNwLjqI
nko+nucrNg+W/1XnT/2dCly+K4ZJ20XM9jvgyt5JGj7X/rKi7bEghT03r0KZAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUFAyRGFrnTJcbgT5C5YGNyyIkw84wHwYDVR0j
BBgwFoAUvUOzp2WDQmmE/8UbkH8/0p4vO7AwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9FNjczMTgyQjg4QkY2MTFDMjE5QjhBQUFBQUJGQTA3MEQ1
RDIyOUQ5NEI1QzM5NTlENjVFMEQyN0FDMDJDMDQzLzAvQkQ0M0IzQTc2NTgzNDI2
OTg0RkZDNTFCOTA3RjNGRDI5RTJGM0JCMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CRDQzQjNBNzY1ODM0MjY5ODRG
RkM1MUI5MDdGM0ZEMjlFMkYzQkIwLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRTY3MzE4MkI4OEJGNjExQzIxOUI4QUFBQUFCRkEwNzBENUQyMjlEOTRC
NUMzOTU5RDY1RTBEMjdBQzAyQzA0My8wLzMyMzAzMTJlMzEzNTM5MmUzMjM0Mzcy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM4MzUzNTMyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyZ/3
MA0GCSqGSIb3DQEBCwUAA4IBAQAB6FUeu2GtzHQ+tpSEKXjNLbf9a27ByyI1zRWk
3DN8aVj1la5AKqxvNhTGbINyyRGJndbQsl1QOfw4/TNzhbTCg7u03806s6Dliczc
kwG2Ux+b6bwZDkkk12Ybq3HJBWKcZgpukbnfFA4CJTpRrnQgfkQODQDddyxlv2op
F1f1YpWBy4tT8BfQZ+2zDU+zkbLZY1DbHkuuX3ec/dLh0Y6ScL5Xj9TkrWw3mPAR
UU2/wSg4qfpipwObs4UJVhcmkG7qlw9lg17n7tEFSc1KoaS96UU7u5l/WyAd4vxw
4alLVY4GGViUexDKpmLTmWwHquHSoAB+09UhaNcni9X+hK6c
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:04:34 2025 by rpki-client