Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ED05366333B154292E3D3D23E5072D9E3BF1081A4A465559BCADF710443AFC4D/0/3230312e3232302e3132382e302f32302d3234203d3e203237383834.roa
File: 3230312e3232302e3132382e302f32302d3234203d3e203237383834.roa (raw, json)
Hash identifier: VrF9QT/FahtTNBJC8fr2BETMhaXSrmhjNLNZ8fUgCp4=
Subject key identifier: B7:28:70:A0:0D:B4:6F:0B:20:F0:AB:74:B2:92:C4:73:8A:CA:9A:68
Certificate issuer: /CN=DC3731A45F327EDCD8C0847227CDEEEAE8376B9A
Certificate serial: 4D33A47AB73B9BF5A574D6D8011FCCD11C60CBA6
Authority key identifier: DC:37:31:A4:5F:32:7E:DC:D8:C0:84:72:27:CD:EE:EA:E8:37:6B:9A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DC3731A45F327EDCD8C0847227CDEEEAE8376B9A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ED05366333B154292E3D3D23E5072D9E3BF1081A4A465559BCADF710443AFC4D/0/3230312e3232302e3132382e302f32302d3234203d3e203237383834.roa
Signing time: Tue 04 Feb 2025 18:13:57 +0000
ROA not before: Tue 04 Feb 2025 18:08:57 +0000
ROA not after: Tue 03 Feb 2026 18:13:57 +0000
asID: 27884
IP address blocks: 201.220.128.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:33:a4:7a:b7:3b:9b:f5:a5:74:d6:d8:01:1f:cc:d1:1c:60:cb:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DC3731A45F327EDCD8C0847227CDEEEAE8376B9A
Validity
Not Before: Feb 4 18:08:57 2025 GMT
Not After : Feb 3 18:13:57 2026 GMT
Subject: CN=B72870A00DB46F0B20F0AB74B292C4738ACA9A68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2c:9c:2f:74:6a:92:ca:0a:74:67:fc:74:df:
e0:65:e0:98:6e:0f:a1:f8:90:9c:15:fb:23:4f:6b:
52:88:fa:d0:d2:f8:3c:11:72:de:2d:92:75:cb:e3:
c2:51:f0:09:59:9b:65:c5:5b:55:dd:58:20:e0:26:
e8:24:b3:56:5e:f8:ff:21:19:d7:93:5b:f9:be:f1:
0b:55:d2:ed:90:7a:a4:71:96:5d:69:a6:3f:1d:05:
44:06:f3:2d:54:7a:09:3a:8d:28:7b:11:69:1d:d5:
33:83:bf:6e:b2:35:55:ce:5a:2f:d8:4c:8c:50:91:
49:e0:bd:fc:08:4f:ef:df:b2:45:d8:d3:26:36:6d:
cb:37:eb:75:94:b9:75:55:14:92:a7:b6:4c:ad:d1:
68:e3:a0:05:7e:e9:85:86:69:95:fd:66:b6:37:ee:
69:50:6b:57:20:ad:bd:21:6c:5f:95:3b:42:40:5b:
ba:f9:75:bd:b2:1f:6f:e7:7a:ce:df:28:51:b8:e6:
29:4a:6f:dc:9c:cb:39:2c:1f:8c:3e:9e:63:14:9a:
e3:a0:93:78:f7:da:fb:07:c6:45:24:d1:84:a0:c3:
3f:a8:d0:f1:3a:43:45:60:4b:0b:36:f4:4f:f6:81:
34:3b:9a:83:1d:80:d4:5d:4a:44:ff:c5:a2:b9:d8:
bc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:28:70:A0:0D:B4:6F:0B:20:F0:AB:74:B2:92:C4:73:8A:CA:9A:68
X509v3 Authority Key Identifier:
keyid:DC:37:31:A4:5F:32:7E:DC:D8:C0:84:72:27:CD:EE:EA:E8:37:6B:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/ED05366333B154292E3D3D23E5072D9E3BF1081A4A465559BCADF710443AFC4D/0/DC3731A45F327EDCD8C0847227CDEEEAE8376B9A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DC3731A45F327EDCD8C0847227CDEEEAE8376B9A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ED05366333B154292E3D3D23E5072D9E3BF1081A4A465559BCADF710443AFC4D/0/3230312e3232302e3132382e302f32302d3234203d3e203237383834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.220.128.0/20
Signature Algorithm: sha256WithRSAEncryption
5e:90:68:51:3b:15:ba:b0:b8:26:b1:a0:18:fb:99:89:a9:47:
d0:2a:ae:19:39:f8:14:a0:6f:3d:24:41:38:9c:04:f6:28:3d:
7e:69:15:6c:a2:c3:21:9e:05:33:47:85:6a:f2:f0:69:68:e4:
91:fb:e1:f1:90:de:18:47:74:bc:03:65:95:dd:f8:5f:99:16:
a2:eb:70:ee:b0:01:1f:22:e2:ea:dc:2a:07:f6:47:55:32:14:
86:9b:ff:c2:27:6b:1d:2f:c1:76:cc:c2:05:f6:4a:08:5e:6b:
d4:2c:87:09:39:d9:dd:7f:c3:bb:59:83:4e:8c:a7:4b:45:65:
97:c1:60:b5:93:8f:69:c5:02:df:70:21:3c:6a:43:29:58:b1:
42:d0:71:42:25:eb:75:8c:73:16:f0:5c:ad:05:5f:b9:59:01:
ae:48:38:d6:03:80:5c:dc:98:be:57:50:4d:71:18:46:30:1d:
6d:20:26:44:d9:c5:ec:2d:34:4c:64:f3:cb:86:f2:57:31:19:
a6:72:b0:f4:8b:8e:c4:01:28:3f:e2:71:57:76:cb:f8:07:13:
5d:69:51:24:4e:3a:8a:68:cc:0e:91:96:95:22:1f:30:08:c0:
30:98:c8:50:c6:06:d5:1b:7d:b2:fd:b8:e0:49:8e:82:db:c2:
4a:81:87:9a
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUTTOkerc7m/WldNbYAR/M0Rxgy6YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREMzNzMxQTQ1RjMyN0VEQ0Q4QzA4NDcyMjdDREVFRUFF
ODM3NkI5QTAeFw0yNTAyMDQxODA4NTdaFw0yNjAyMDMxODEzNTdaMDMxMTAvBgNV
BAMTKEI3Mjg3MEEwMERCNDZGMEIyMEYwQUI3NEIyOTJDNDczOEFDQTlBNjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpLJwvdGqSygp0Z/x03+Bl4Jhu
D6H4kJwV+yNPa1KI+tDS+DwRct4tknXL48JR8AlZm2XFW1XdWCDgJugks1Ze+P8h
GdeTW/m+8QtV0u2QeqRxll1ppj8dBUQG8y1Uegk6jSh7EWkd1TODv26yNVXOWi/Y
TIxQkUngvfwIT+/fskXY0yY2bcs363WUuXVVFJKntkyt0WjjoAV+6YWGaZX9ZrY3
7mlQa1cgrb0hbF+VO0JAW7r5db2yH2/nes7fKFG45ilKb9ycyzksH4w+nmMUmuOg
k3j32vsHxkUk0YSgwz+o0PE6Q0VgSws29E/2gTQ7moMdgNRdSkT/xaK52LxpAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUtyhwoA20bwsg8Kt0spLEc4rKmmgwHwYDVR0j
BBgwFoAU3DcxpF8yftzYwIRyJ83u6ug3a5owDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9FRDA1MzY2MzMzQjE1NDI5MkUzRDNEMjNFNTA3MkQ5RTNC
RjEwODFBNEE0NjU1NTlCQ0FERjcxMDQ0M0FGQzRELzAvREMzNzMxQTQ1RjMyN0VE
Q0Q4QzA4NDcyMjdDREVFRUFFODM3NkI5QS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EQzM3MzFBNDVGMzI3RURDRDhD
MDg0NzIyN0NERUVFQUU4Mzc2QjlBLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRUQwNTM2NjMzM0IxNTQyOTJFM0QzRDIzRTUwNzJEOUUzQkYxMDgxQTRB
NDY1NTU5QkNBREY3MTA0NDNBRkM0RC8wLzMyMzAzMTJlMzIzMjMwMmUzMTMyMzgy
ZTMwMmYzMjMwMmQzMjM0MjAzZDNlMjAzMjM3MzgzODM0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEydyA
MA0GCSqGSIb3DQEBCwUAA4IBAQBekGhROxW6sLgmsaAY+5mJqUfQKq4ZOfgUoG89
JEE4nAT2KD1+aRVsosMhngUzR4Vq8vBpaOSR++HxkN4YR3S8A2WV3fhfmRai63Du
sAEfIuLq3CoH9kdVMhSGm//CJ2sdL8F2zMIF9koIXmvULIcJOdndf8O7WYNOjKdL
RWWXwWC1k49pxQLfcCE8akMpWLFC0HFCJet1jHMW8FytBV+5WQGuSDjWA4Bc3Ji+
V1BNcRhGMB1tICZE2cXsLTRMZPPLhvJXMRmmcrD0i47EASg/4nFXdsv4BxNdaVEk
TjqKaMwOkZaVIh8wCMAwmMhQxgbVG32y/bjgSY6C28JKgYea
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:10:38 2025 by rpki-client