Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F060645F94748832A65DAB54A01A729A0208E4446C8232A17BA6FE073CD465C5/0/3230312e3232312e3134302e302f32332d3234203d3e203232333638.roa
File: 3230312e3232312e3134302e302f32332d3234203d3e203232333638.roa (raw, json)
Hash identifier: YCc26Z++TlwFXdY2YM54DiZ5ddVMF4SW5rBuiRBo6Kw=
Subject key identifier: 09:2D:96:62:6D:9C:3C:A2:14:A7:74:BB:76:3F:CA:1F:6F:D2:88:39
Certificate issuer: /CN=DA5A371FC01989AA596FE268CE70A3C4DCAA7A9B
Certificate serial: 7E05448A4C6C0E02748C0F79C437FFFF75541D34
Authority key identifier: DA:5A:37:1F:C0:19:89:AA:59:6F:E2:68:CE:70:A3:C4:DC:AA:7A:9B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DA5A371FC01989AA596FE268CE70A3C4DCAA7A9B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F060645F94748832A65DAB54A01A729A0208E4446C8232A17BA6FE073CD465C5/0/3230312e3232312e3134302e302f32332d3234203d3e203232333638.roa
Signing time: Tue 04 Feb 2025 18:22:22 +0000
ROA not before: Tue 04 Feb 2025 18:17:22 +0000
ROA not after: Tue 03 Feb 2026 18:22:22 +0000
asID: 22368
IP address blocks: 201.221.140.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:05:44:8a:4c:6c:0e:02:74:8c:0f:79:c4:37:ff:ff:75:54:1d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DA5A371FC01989AA596FE268CE70A3C4DCAA7A9B
Validity
Not Before: Feb 4 18:17:22 2025 GMT
Not After : Feb 3 18:22:22 2026 GMT
Subject: CN=092D96626D9C3CA214A774BB763FCA1F6FD28839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:72:f1:ea:2e:56:a7:cb:31:ca:09:38:80:74:
a9:1e:5c:8b:9d:02:f6:14:d0:27:9d:0e:27:9e:6d:
4f:bf:b7:3d:5a:a9:3c:c9:fe:11:d9:aa:0c:ad:51:
a8:79:02:13:96:78:e8:66:e0:22:6b:1f:56:71:76:
0c:c8:02:9c:fa:6c:82:86:f4:86:17:89:ca:bb:16:
81:f9:30:e0:df:79:ce:8c:88:d5:2b:e3:5a:b3:e8:
ea:c7:40:7e:c6:d1:85:17:0b:84:08:e4:24:4a:c0:
af:ae:c6:72:6d:29:23:a8:f5:85:60:68:78:14:0c:
61:a8:7d:1f:92:5d:d6:41:17:80:16:4b:ed:9c:75:
e4:28:5e:a2:c2:cb:db:7c:41:12:e0:73:e3:7d:e0:
a1:50:b5:02:f2:7d:a8:8d:1a:a2:57:71:36:59:30:
ba:64:73:0f:4e:01:c7:0a:0d:4f:c6:4d:08:e3:17:
88:b4:33:61:9d:79:d0:f9:95:d8:c8:b3:d9:65:e2:
18:5a:d3:a5:06:60:c1:d3:22:31:f5:b0:16:ad:39:
dc:56:66:9e:af:91:ec:32:12:1d:9c:43:5d:b3:0d:
e5:af:63:91:2b:67:31:6d:a7:8e:f8:9b:17:5c:7e:
07:9c:23:31:54:c9:f2:72:e0:4a:d7:bf:68:7c:71:
41:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:2D:96:62:6D:9C:3C:A2:14:A7:74:BB:76:3F:CA:1F:6F:D2:88:39
X509v3 Authority Key Identifier:
keyid:DA:5A:37:1F:C0:19:89:AA:59:6F:E2:68:CE:70:A3:C4:DC:AA:7A:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F060645F94748832A65DAB54A01A729A0208E4446C8232A17BA6FE073CD465C5/0/DA5A371FC01989AA596FE268CE70A3C4DCAA7A9B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DA5A371FC01989AA596FE268CE70A3C4DCAA7A9B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F060645F94748832A65DAB54A01A729A0208E4446C8232A17BA6FE073CD465C5/0/3230312e3232312e3134302e302f32332d3234203d3e203232333638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.221.140.0/23
Signature Algorithm: sha256WithRSAEncryption
37:fc:2b:40:88:64:74:dd:25:91:0d:62:59:9c:62:b2:c5:c8:
62:a1:03:ec:bd:72:ec:7f:1b:fe:e1:49:19:88:92:62:00:bf:
ab:48:09:f1:21:a4:0f:02:9a:b5:34:bd:47:af:13:45:21:00:
1c:92:e7:1c:5b:60:0b:e7:0e:23:d3:98:7c:3a:28:60:5f:f1:
f3:32:bf:40:53:11:a1:de:42:4a:5a:cf:e7:d7:40:c4:c4:63:
a2:35:1f:c5:9c:40:8f:3a:9e:74:31:12:6a:85:21:c4:09:f6:
1e:77:61:ed:82:21:ac:12:82:bb:25:e7:28:5c:09:4d:36:f1:
8b:11:26:e6:0f:9d:64:cd:34:f7:af:6b:34:56:13:2f:cf:a6:
fd:16:01:1e:19:0f:ec:35:9b:aa:2c:c1:9a:c6:70:58:bc:b1:
5b:7d:23:09:c4:da:92:b2:73:5f:3f:41:d9:95:18:df:e9:05:
ba:d3:1f:9c:5d:4a:2f:5a:21:87:6d:52:2b:13:68:bc:dc:48:
64:8e:66:b4:47:75:a9:6b:ed:a7:e9:3f:eb:74:0d:b5:ef:d7:
82:41:d9:7e:90:40:78:76:f8:8f:42:1e:ab:78:04:d7:b0:0a:
ad:e9:9c:28:42:ef:49:24:c3:8a:0b:69:03:5c:95:44:34:20:
6b:a4:f5:26
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUfgVEikxsDgJ0jA95xDf//3VUHTQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREE1QTM3MUZDMDE5ODlBQTU5NkZFMjY4Q0U3MEEzQzRE
Q0FBN0E5QjAeFw0yNTAyMDQxODE3MjJaFw0yNjAyMDMxODIyMjJaMDMxMTAvBgNV
BAMTKDA5MkQ5NjYyNkQ5QzNDQTIxNEE3NzRCQjc2M0ZDQTFGNkZEMjg4MzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCscvHqLlanyzHKCTiAdKkeXIud
AvYU0CedDieebU+/tz1aqTzJ/hHZqgytUah5AhOWeOhm4CJrH1ZxdgzIApz6bIKG
9IYXicq7FoH5MODfec6MiNUr41qz6OrHQH7G0YUXC4QI5CRKwK+uxnJtKSOo9YVg
aHgUDGGofR+SXdZBF4AWS+2cdeQoXqLCy9t8QRLgc+N94KFQtQLyfaiNGqJXcTZZ
MLpkcw9OAccKDU/GTQjjF4i0M2GdedD5ldjIs9ll4hha06UGYMHTIjH1sBatOdxW
Zp6vkewyEh2cQ12zDeWvY5ErZzFtp474mxdcfgecIzFUyfJy4ErXv2h8cUG3AgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUCS2WYm2cPKIUp3S7dj/KH2/SiDkwHwYDVR0j
BBgwFoAU2lo3H8AZiapZb+JoznCjxNyqepswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9GMDYwNjQ1Rjk0NzQ4ODMyQTY1REFCNTRBMDFBNzI5QTAy
MDhFNDQ0NkM4MjMyQTE3QkE2RkUwNzNDRDQ2NUM1LzAvREE1QTM3MUZDMDE5ODlB
QTU5NkZFMjY4Q0U3MEEzQzREQ0FBN0E5Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EQTVBMzcxRkMwMTk4OUFBNTk2
RkUyNjhDRTcwQTNDNERDQUE3QTlCLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRjA2MDY0NUY5NDc0ODgzMkE2NURBQjU0QTAxQTcyOUEwMjA4RTQ0NDZD
ODIzMkExN0JBNkZFMDczQ0Q0NjVDNS8wLzMyMzAzMTJlMzIzMjMxMmUzMTM0MzAy
ZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMjMyMzMzNjM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByd2M
MA0GCSqGSIb3DQEBCwUAA4IBAQA3/CtAiGR03SWRDWJZnGKyxchioQPsvXLsfxv+
4UkZiJJiAL+rSAnxIaQPApq1NL1HrxNFIQAckuccW2AL5w4j05h8OihgX/HzMr9A
UxGh3kJKWs/n10DExGOiNR/FnECPOp50MRJqhSHECfYed2HtgiGsEoK7JecoXAlN
NvGLESbmD51kzTT3r2s0VhMvz6b9FgEeGQ/sNZuqLMGaxnBYvLFbfSMJxNqSsnNf
P0HZlRjf6QW60x+cXUovWiGHbVIrE2i83Ehkjma0R3Wpa+2n6T/rdA2179eCQdl+
kEB4dviPQh6reATXsAqt6ZwoQu9JJMOKC2kDXJVENCBrpPUm
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:14 2025 by rpki-client