Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/3230302e36382e3131342e302f32342d3234203d3e203233343536.roa
File: 3230302e36382e3131342e302f32342d3234203d3e203233343536.roa (raw, json)
Hash identifier: PoAcFLZj+hPELLBQiKqauyt2EmqmUpd3HOWNDNgPWzM=
Subject key identifier: FA:31:11:DB:0F:19:83:54:7A:5C:77:54:2F:6A:12:36:0B:DC:61:F0
Certificate issuer: /CN=171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7
Certificate serial: 5C4D9F938EA26C986B542872DAF7458384073B9F
Authority key identifier: 17:1F:14:D5:AE:EC:89:F4:AE:41:04:C0:F6:09:DE:27:7D:1D:3C:D7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/3230302e36382e3131342e302f32342d3234203d3e203233343536.roa
Signing time: Tue 04 Feb 2025 20:04:12 +0000
ROA not before: Tue 04 Feb 2025 19:59:12 +0000
ROA not after: Tue 03 Feb 2026 20:04:12 +0000
asID: 23456
IP address blocks: 200.68.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:4d:9f:93:8e:a2:6c:98:6b:54:28:72:da:f7:45:83:84:07:3b:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7
Validity
Not Before: Feb 4 19:59:12 2025 GMT
Not After : Feb 3 20:04:12 2026 GMT
Subject: CN=FA3111DB0F1983547A5C77542F6A12360BDC61F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5b:39:ec:09:1a:5e:15:91:09:ab:d2:a6:e0:
63:fa:1e:81:7f:f1:c4:70:e4:5b:5c:61:53:53:0a:
b3:bd:78:e2:fe:94:c7:12:32:07:21:bc:55:ac:1b:
96:1e:b0:52:a0:ec:c3:3a:73:5b:8e:ff:0d:08:fe:
91:97:74:73:fe:0e:17:1c:12:be:33:29:7e:92:3a:
8c:74:64:77:83:3a:c9:5a:69:ed:b0:e1:9c:1d:4f:
b0:00:da:a1:f8:a0:c8:0c:1e:57:01:a6:a1:c4:b2:
62:c4:b2:ee:7e:32:f9:01:44:02:77:a1:7a:36:81:
87:96:46:d4:0f:37:eb:70:a3:f4:9d:d1:fd:11:79:
39:b9:b9:f7:91:65:74:dd:9e:6f:af:9c:4d:53:b0:
1c:74:8d:8d:2d:ac:46:67:04:48:b1:6c:20:8d:96:
cd:89:03:c9:00:5d:79:4b:f5:d3:ba:86:86:50:8f:
3e:1d:3a:1e:6a:ed:54:8b:7b:71:6c:81:c8:6d:54:
5b:0c:97:51:8f:93:2e:f3:4d:a8:e8:d8:ec:2a:50:
7c:85:73:cb:ee:4c:d4:f7:d2:28:80:d6:cd:8a:9d:
70:2f:6d:68:67:f4:4b:85:69:cb:59:b4:5e:d5:1c:
d7:2c:64:56:31:f9:a8:54:6f:03:24:38:48:fd:ff:
92:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:31:11:DB:0F:19:83:54:7A:5C:77:54:2F:6A:12:36:0B:DC:61:F0
X509v3 Authority Key Identifier:
keyid:17:1F:14:D5:AE:EC:89:F4:AE:41:04:C0:F6:09:DE:27:7D:1D:3C:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/3230302e36382e3131342e302f32342d3234203d3e203233343536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.68.114.0/24
Signature Algorithm: sha256WithRSAEncryption
17:5b:5c:27:8b:88:55:82:19:c7:eb:04:54:53:10:5c:33:cb:
9f:4d:ef:c5:34:19:29:08:3a:6e:ed:33:54:ce:91:4c:5b:3a:
27:00:df:dc:03:cf:ef:2e:cb:57:c1:54:fb:f0:12:69:37:cc:
67:e4:74:9f:f2:e8:ab:b0:0c:f1:c1:d0:50:e3:5e:17:cc:26:
71:9a:91:6e:08:45:96:77:5e:b7:1b:f3:5a:2b:42:73:30:68:
2f:bb:a3:e9:13:2e:a8:a4:1a:f3:b1:47:7f:fc:0d:f8:d7:74:
1b:f8:3e:6f:32:49:7c:43:83:cb:76:6f:c6:2a:8f:63:f8:1f:
c6:ba:d0:e1:eb:70:95:c0:06:96:e2:3f:5a:ba:99:44:cc:08:
36:5e:66:bd:af:bc:b0:fb:31:b3:8c:e8:23:26:64:d8:28:54:
34:19:7f:15:96:3d:b9:ab:d5:d1:31:36:db:1a:e6:41:3e:7d:
12:4a:a0:f9:b8:99:9b:d1:39:18:7a:a9:55:a9:a0:ef:17:2f:
58:ca:0b:ec:d2:04:9b:43:6d:ed:35:89:9d:98:12:cd:4a:08:
4a:a7:19:ed:b4:53:09:d9:83:3f:f8:b8:d6:a2:34:59:c7:ac:
bd:f0:7d:0f:f3:2a:1f:0e:9e:60:ee:d6:de:32:7e:24:f1:bb:
b0:a9:05:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:23:29 2025 by rpki-client