Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/05eb0511-bfcc-4f43-8c71-906df7993882/697326cdd1701ebc3685861d8b9f640d2b2f9077.roa
File: 697326cdd1701ebc3685861d8b9f640d2b2f9077.roa (raw, json)
Hash identifier: +RDqzMbR3t2aSEo8w2ew20oYelRTqVii6QNHFs2qh3k=
Subject key identifier: B2:B9:4A:38:06:E7:A5:79:E0:B7:D9:CB:7C:D9:28:2B:BF:09:94:6B
Certificate issuer: /CN=c355af2587e04fcb2db519de3ca0af885d613b77
Certificate serial: 23FF52
Authority key identifier: BB:CB:68:E2:69:EA:41:9E:58:D5:D8:99:EF:09:D0:88:D0:94:A9:97
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c355af2587e04fcb2db519de3ca0af885d613b77.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/05eb0511-bfcc-4f43-8c71-906df7993882/697326cdd1701ebc3685861d8b9f640d2b2f9077.roa
Signing time: Mon 02 Oct 2023 20:04:49 +0000
ROA not before: Sun 01 Oct 2023 20:04:49 +0000
ROA not after: Thu 02 Oct 2025 21:04:49 +0000
asID: 0
IP address blocks: 168.227.20.0/24 maxlen: 24
168.227.22.0/24 maxlen: 24
168.227.23.0/24 maxlen: 24
2803:fd40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2359122 (0x23ff52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c355af2587e04fcb2db519de3ca0af885d613b77
Validity
Not Before: Oct 1 20:04:49 2023 GMT
Not After : Oct 2 21:04:49 2025 GMT
Subject: CN=697326cdd1701ebc3685861d8b9f640d2b2f9077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5e:87:42:57:d0:d5:49:c0:36:ee:f1:bf:60:
49:3f:68:21:e6:d8:7a:1e:b2:d6:f4:14:0a:b3:fa:
e3:a0:a3:a3:24:fc:90:a1:9d:80:f4:82:61:87:f4:
5f:b5:e2:0c:68:60:35:85:8f:17:01:32:3f:c3:65:
f2:45:8d:de:d0:d7:37:8c:08:86:47:d5:45:f3:e5:
30:45:45:f9:98:38:92:c8:bf:7f:de:df:2b:d1:81:
0a:53:6b:47:6e:c9:c2:2d:19:4f:31:46:80:90:f7:
60:03:7e:64:d7:39:bd:0e:d8:78:3a:06:cc:bc:e2:
51:34:f1:1c:6d:d0:72:00:9c:4b:0f:02:a8:74:ea:
81:53:ba:9a:45:bf:d1:79:ff:5c:61:7f:50:85:85:
6d:a5:76:46:e0:67:99:97:c9:94:ce:0f:14:41:f1:
aa:82:48:00:96:29:93:9f:77:76:2b:3f:cf:30:36:
14:c1:67:49:cd:1e:e7:5d:84:c3:ba:1a:ea:48:a5:
2e:47:0a:7b:f2:5b:c1:6a:dc:03:65:96:7e:60:4f:
c4:97:6f:bb:29:74:71:c7:21:41:2f:03:66:bf:33:
83:24:7b:42:b8:c0:d7:2a:0e:7d:66:e4:1e:62:b7:
47:64:52:19:dd:a4:6f:5d:ec:79:7e:b4:de:4d:c6:
4a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:B9:4A:38:06:E7:A5:79:E0:B7:D9:CB:7C:D9:28:2B:BF:09:94:6B
X509v3 Authority Key Identifier:
keyid:BB:CB:68:E2:69:EA:41:9E:58:D5:D8:99:EF:09:D0:88:D0:94:A9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c355af2587e04fcb2db519de3ca0af885d613b77.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/05eb0511-bfcc-4f43-8c71-906df7993882/697326cdd1701ebc3685861d8b9f640d2b2f9077.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/05eb0511-bfcc-4f43-8c71-906df7993882/c355af2587e04fcb2db519de3ca0af885d613b77.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.227.20.0/24
168.227.22.0/23
IPv6:
2803:fd40::/32
Signature Algorithm: sha256WithRSAEncryption
cd:a8:f6:8c:80:7b:8d:33:81:20:e4:e3:1b:3a:99:9f:a2:3a:
db:34:f2:43:4a:54:cf:6a:37:c6:57:d0:f4:7c:09:c0:e1:e6:
64:13:79:8b:a8:5b:55:5e:4c:72:3a:38:3e:5a:2a:9e:99:91:
aa:9b:c4:29:4f:f9:82:1e:24:f8:be:aa:3a:ab:a9:d6:05:be:
83:45:70:6a:1e:4c:ec:da:88:75:09:d1:81:e3:3f:9d:dd:b2:
b9:cb:cd:de:69:e3:02:13:b4:6f:aa:c9:58:4e:e9:9d:72:fe:
f2:be:4f:49:2e:73:a9:a1:d3:02:75:d9:74:7f:50:4c:bd:ff:
12:9c:67:00:94:cc:dd:eb:5d:11:b3:ef:bb:eb:8d:02:38:45:
ef:e0:52:94:ed:a6:8a:d6:3c:0b:74:73:a5:72:d5:7e:aa:4d:
74:52:a1:42:b1:71:bc:28:d1:10:5c:02:53:4b:0e:a2:00:79:
a8:34:39:91:44:d1:0a:7e:c8:60:aa:75:52:33:8d:77:39:9b:
a9:c8:d0:64:1b:e7:38:14:7a:61:14:d8:45:c7:c8:a9:b6:b5:
12:9f:de:ab:57:7c:a3:e4:5e:ee:40:a5:6a:c8:d2:5b:83:f4:
0d:38:82:32:73:72:1e:d2:13:ff:75:80:7b:51:0a:17:8c:0b:
c7:f0:9b:ab
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgIDI/9SMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGMz
NTVhZjI1ODdlMDRmY2IyZGI1MTlkZTNjYTBhZjg4NWQ2MTNiNzcwHhcNMjMxMDAx
MjAwNDQ5WhcNMjUxMDAyMjEwNDQ5WjAzMTEwLwYDVQQDEyg2OTczMjZjZGQxNzAx
ZWJjMzY4NTg2MWQ4YjlmNjQwZDJiMmY5MDc3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArV6HQlfQ1UnANu7xv2BJP2gh5th6HrLW9BQKs/rjoKOjJPyQ
oZ2A9IJhh/RfteIMaGA1hY8XATI/w2XyRY3e0Nc3jAiGR9VF8+UwRUX5mDiSyL9/
3t8r0YEKU2tHbsnCLRlPMUaAkPdgA35k1zm9Dth4OgbMvOJRNPEcbdByAJxLDwKo
dOqBU7qaRb/Ref9cYX9QhYVtpXZG4GeZl8mUzg8UQfGqgkgAlimTn3d2Kz/PMDYU
wWdJzR7nXYTDuhrqSKUuRwp78lvBatwDZZZ+YE/El2+7KXRxxyFBLwNmvzODJHtC
uMDXKg59ZuQeYrdHZFIZ3aRvXex5frTeTcZKvwIDAQABo4ICcDCCAmwwHQYDVR0O
BBYEFLK5SjgG56V54LfZy3zZKCu/CZRrMB8GA1UdIwQYMBaAFLvLaOJp6kGeWNXY
me8J0IjQlKmXMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYzM1NWFm
MjU4N2UwNGZjYjJkYjUxOWRlM2NhMGFmODg1ZDYxM2I3Ny5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMDVlYjA1MTEtYmZjYy00ZjQzLThjNzEtOTA2ZGY3
OTkzODgyLzY5NzMyNmNkZDE3MDFlYmMzNjg1ODYxZDhiOWY2NDBkMmIyZjkwNzcu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8wNWViMDUxMS1iZmNjLTRmNDMtOGM3MS05MDZk
Zjc5OTM4ODIvYzM1NWFmMjU4N2UwNGZjYjJkYjUxOWRlM2NhMGFmODg1ZDYxM2I3
Ny5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEFBQcBBwEB/wQl
MCMwEgQCAAEwDAMEAKjjFAMEAajjFjANBAIAAjAHAwUAKAP9QDANBgkqhkiG9w0B
AQsFAAOCAQEAzaj2jIB7jTOBIOTjGzqZn6I62zTyQ0pUz2o3xlfQ9HwJwOHmZBN5
i6hbVV5Mcjo4PloqnpmRqpvEKU/5gh4k+L6qOqup1gW+g0Vwah5M7NqIdQnRgeM/
nd2yucvN3mnjAhO0b6rJWE7pnXL+8r5PSS5zqaHTAnXZdH9QTL3/EpxnAJTM3etd
EbPvu+uNAjhF7+BSlO2mitY8C3RzpXLVfqpNdFKhQrFxvCjREFwCU0sOogB5qDQ5
kUTRCn7IYKp1UjONdzmbqcjQZBvnOBR6YRTYRcfIqba1Ep/eq1d8o+Re7kClasjS
W4P0DTiCMnNyHtIT/3WAe1EKF4wLx/Cbqw==
-----END CERTIFICATE-----
Generated at Sat May 17 02:35:05 2025 by rpki-client