Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F207CCF97F44CDD65B7B130389FDBC9E32213F8E9E8671D59BAD81080264A6D1/0/3230302e31302e3135362e302f32342d3234203d3e20323634363930.roa
File: 3230302e31302e3135362e302f32342d3234203d3e20323634363930.roa (raw, json)
Hash identifier: FZ/51zNLl/FLdreyLVD1pY/OLyIgpCvENTzIyty2FGE=
Subject key identifier: D2:85:51:BB:D7:F3:4E:C0:F2:6A:36:83:91:FF:38:B6:99:36:B1:A1
Certificate issuer: /CN=D8B4C3626E6F6928DC3655F1ED05EB7827A4FBB9
Certificate serial: 3A1DF7CBA9FB05F8505E988739FB7B508A477353
Authority key identifier: D8:B4:C3:62:6E:6F:69:28:DC:36:55:F1:ED:05:EB:78:27:A4:FB:B9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B4C3626E6F6928DC3655F1ED05EB7827A4FBB9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F207CCF97F44CDD65B7B130389FDBC9E32213F8E9E8671D59BAD81080264A6D1/0/3230302e31302e3135362e302f32342d3234203d3e20323634363930.roa
Signing time: Tue 04 Feb 2025 20:07:48 +0000
ROA not before: Tue 04 Feb 2025 20:02:48 +0000
ROA not after: Tue 03 Feb 2026 20:07:48 +0000
asID: 264690
IP address blocks: 200.10.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:1d:f7:cb:a9:fb:05:f8:50:5e:98:87:39:fb:7b:50:8a:47:73:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8B4C3626E6F6928DC3655F1ED05EB7827A4FBB9
Validity
Not Before: Feb 4 20:02:48 2025 GMT
Not After : Feb 3 20:07:48 2026 GMT
Subject: CN=D28551BBD7F34EC0F26A368391FF38B69936B1A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cc:7a:c0:72:a3:fa:5a:13:a1:47:53:96:95:
16:9c:f4:7a:76:f3:86:12:27:ef:42:ee:50:e6:a8:
e7:e8:28:a7:b9:60:06:0a:b9:55:45:58:ab:70:80:
ee:2b:17:c9:0f:4d:34:cc:b1:d1:8a:97:dc:bf:c4:
17:ee:64:40:40:15:7e:3a:32:7d:49:b9:77:b1:0c:
d6:d3:a3:96:0c:00:bb:06:97:5f:d8:bb:3d:e1:23:
21:ae:f5:7a:5f:0e:ec:a2:cf:a7:8d:5a:6d:6d:62:
db:31:84:8c:7e:23:5d:ed:32:be:6c:00:b7:14:48:
5e:0b:37:3b:c0:e1:86:18:f7:06:eb:4e:b3:78:0e:
41:19:45:65:cd:cf:ba:2a:a4:2b:c6:b4:42:ee:2a:
3a:d0:4d:13:0f:44:cb:19:8d:77:01:10:5d:45:c4:
35:cc:7f:a4:3e:21:68:cb:56:27:d5:6b:d5:23:cb:
1f:a0:6f:05:88:e7:fb:4c:b8:ed:4b:4f:82:49:fd:
1c:51:0b:3a:1c:d4:8d:3b:f8:e2:40:f4:3f:26:13:
73:db:7c:c2:5a:24:be:37:90:ee:ba:bf:b7:51:27:
f8:f1:22:22:0c:74:74:71:9c:2d:f5:54:14:10:47:
cf:4d:0e:0c:51:9f:d2:ee:cb:b0:15:35:aa:82:99:
f2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:85:51:BB:D7:F3:4E:C0:F2:6A:36:83:91:FF:38:B6:99:36:B1:A1
X509v3 Authority Key Identifier:
keyid:D8:B4:C3:62:6E:6F:69:28:DC:36:55:F1:ED:05:EB:78:27:A4:FB:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F207CCF97F44CDD65B7B130389FDBC9E32213F8E9E8671D59BAD81080264A6D1/0/D8B4C3626E6F6928DC3655F1ED05EB7827A4FBB9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B4C3626E6F6928DC3655F1ED05EB7827A4FBB9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F207CCF97F44CDD65B7B130389FDBC9E32213F8E9E8671D59BAD81080264A6D1/0/3230302e31302e3135362e302f32342d3234203d3e20323634363930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.10.156.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:94:82:b7:9c:43:3a:73:a9:38:0f:1d:cd:30:88:dd:3d:85:
70:7a:2a:cb:ab:45:cb:cc:19:ca:e5:c8:d7:f8:96:c1:a9:b9:
18:df:cf:43:d9:58:85:02:3e:d0:6a:bf:1a:24:52:4c:57:2f:
66:20:1d:f7:d1:b8:15:f9:b6:8d:9f:d7:47:22:76:55:0e:cb:
4c:d3:94:d5:f1:2d:8e:28:94:fe:9c:25:04:f8:5d:14:c9:e4:
60:4d:a9:ed:50:05:f1:e6:8a:83:b9:ae:9b:e8:b7:86:27:cd:
ff:19:94:cb:ea:d7:7b:3b:ca:54:a9:70:49:52:f1:28:a2:c8:
d1:b1:f0:a6:04:33:db:71:2e:2c:f1:ce:28:e7:c9:35:1c:ed:
0f:91:18:19:d3:93:4f:7c:54:e1:9d:95:2b:49:1a:6b:83:2c:
41:a1:94:d3:b6:73:12:17:cf:29:bb:74:42:0f:d5:5c:c8:45:
ae:0d:13:85:b4:17:17:1c:ae:53:e1:69:dc:f5:49:df:8e:22:
98:ac:d7:ce:0f:8a:63:8f:1d:61:0b:5a:4f:3d:4a:2f:f8:79:
8a:99:5b:d1:4b:4f:5e:54:1a:df:f7:c7:72:90:d2:94:e9:94:
15:65:b1:f0:3d:18:a5:78:ca:19:6a:88:41:a4:b1:56:4e:58:
a8:ce:20:36
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUOh33y6n7BfhQXpiHOft7UIpHc1MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDhCNEMzNjI2RTZGNjkyOERDMzY1NUYxRUQwNUVCNzgy
N0E0RkJCOTAeFw0yNTAyMDQyMDAyNDhaFw0yNjAyMDMyMDA3NDhaMDMxMTAvBgNV
BAMTKEQyODU1MUJCRDdGMzRFQzBGMjZBMzY4MzkxRkYzOEI2OTkzNkIxQTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCLzHrAcqP6WhOhR1OWlRac9Hp2
84YSJ+9C7lDmqOfoKKe5YAYKuVVFWKtwgO4rF8kPTTTMsdGKl9y/xBfuZEBAFX46
Mn1JuXexDNbTo5YMALsGl1/Yuz3hIyGu9XpfDuyiz6eNWm1tYtsxhIx+I13tMr5s
ALcUSF4LNzvA4YYY9wbrTrN4DkEZRWXNz7oqpCvGtELuKjrQTRMPRMsZjXcBEF1F
xDXMf6Q+IWjLVifVa9Ujyx+gbwWI5/tMuO1LT4JJ/RxRCzoc1I07+OJA9D8mE3Pb
fMJaJL43kO66v7dRJ/jxIiIMdHRxnC31VBQQR89NDgxRn9Luy7AVNaqCmfKtAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQU0oVRu9fzTsDyajaDkf84tpk2saEwHwYDVR0j
BBgwFoAU2LTDYm5vaSjcNlXx7QXreCek+7kwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9GMjA3Q0NGOTdGNDRDREQ2NUI3QjEzMDM4OUZEQkM5RTMy
MjEzRjhFOUU4NjcxRDU5QkFEODEwODAyNjRBNkQxLzAvRDhCNEMzNjI2RTZGNjky
OERDMzY1NUYxRUQwNUVCNzgyN0E0RkJCOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EOEI0QzM2MjZFNkY2OTI4REMz
NjU1RjFFRDA1RUI3ODI3QTRGQkI5LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRjIwN0NDRjk3RjQ0Q0RENjVCN0IxMzAzODlGREJDOUUzMjIxM0Y4RTlF
ODY3MUQ1OUJBRDgxMDgwMjY0QTZEMS8wLzMyMzAzMDJlMzEzMDJlMzEzNTM2MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM0MzYzOTMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyAqc
MA0GCSqGSIb3DQEBCwUAA4IBAQBclIK3nEM6c6k4Dx3NMIjdPYVweirLq0XLzBnK
5cjX+JbBqbkY389D2ViFAj7Qar8aJFJMVy9mIB330bgV+baNn9dHInZVDstM05TV
8S2OKJT+nCUE+F0UyeRgTantUAXx5oqDua6b6LeGJ83/GZTL6td7O8pUqXBJUvEo
osjRsfCmBDPbcS4s8c4o58k1HO0PkRgZ05NPfFThnZUrSRprgyxBoZTTtnMSF88p
u3RCD9VcyEWuDROFtBcXHK5T4Wnc9UnfjiKYrNfOD4pjjx1hC1pPPUov+HmKmVvR
S09eVBrf98dykNKU6ZQVZbHwPRileMoZaohBpLFWTlioziA2
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:24 2025 by rpki-client