Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/3230312e3233342e39312e302f32342d3234203d3e2033333536.roa
File: 3230312e3233342e39312e302f32342d3234203d3e2033333536.roa (raw, json)
Hash identifier: F4VFmdk8ZX88MA5dcVmdRrhRFD8zR8V0f87RHemo6/Q=
Subject key identifier: 27:B9:E7:9A:C0:8F:8F:07:D7:EF:15:D3:B9:2C:81:93:42:BE:30:AC
Certificate issuer: /CN=C87C55A4481F19C9B6184944B187B3813B7CEC56
Certificate serial: 2CDB3D68FFB4F9B25B1D0AE32B89FF3F743DB821
Authority key identifier: C8:7C:55:A4:48:1F:19:C9:B6:18:49:44:B1:87:B3:81:3B:7C:EC:56
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/3230312e3233342e39312e302f32342d3234203d3e2033333536.roa
Signing time: Tue 04 Feb 2025 18:41:28 +0000
ROA not before: Tue 04 Feb 2025 18:36:28 +0000
ROA not after: Tue 03 Feb 2026 18:41:28 +0000
asID: 3356
IP address blocks: 201.234.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:db:3d:68:ff:b4:f9:b2:5b:1d:0a:e3:2b:89:ff:3f:74:3d:b8:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C87C55A4481F19C9B6184944B187B3813B7CEC56
Validity
Not Before: Feb 4 18:36:28 2025 GMT
Not After : Feb 3 18:41:28 2026 GMT
Subject: CN=27B9E79AC08F8F07D7EF15D3B92C819342BE30AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:04:a3:26:15:b2:28:50:0f:91:45:6f:13:ae:
ac:7a:91:70:fe:7d:e6:d6:17:56:96:82:bf:e2:1c:
2b:16:98:37:52:45:13:31:b4:ca:c3:29:72:ab:66:
3b:18:76:28:da:e3:d2:34:34:2b:52:e0:3b:21:17:
e0:a6:d4:6a:78:ba:e0:5d:87:ae:9b:99:cc:58:c8:
58:fa:b1:56:56:99:35:65:b0:db:53:f1:49:29:ec:
43:75:51:db:2c:49:4a:e8:5f:7c:fd:1e:67:5d:fc:
0a:35:77:09:7c:4b:85:d0:0d:a1:02:ad:1e:70:5c:
d7:49:51:52:22:7d:e5:92:64:2a:87:c8:66:3c:c7:
16:fe:9d:62:82:ee:90:39:05:52:c9:7d:9a:6d:92:
59:66:24:4e:9b:e4:e6:9f:de:84:e2:cc:90:9b:71:
26:be:6d:dc:a9:18:4c:6a:c1:d4:b0:90:fd:d7:e9:
17:47:c4:c7:fe:1d:ad:54:2f:d3:53:71:c8:86:0e:
a1:2b:70:c1:a9:61:66:fa:e3:87:5e:5d:0f:64:59:
56:74:cf:52:7c:96:12:ab:aa:5c:e6:14:19:12:aa:
37:4c:80:67:47:eb:ff:ce:2c:9a:59:22:18:fe:58:
c4:be:37:81:82:3e:40:73:ea:ab:09:98:bd:7b:62:
6f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B9:E7:9A:C0:8F:8F:07:D7:EF:15:D3:B9:2C:81:93:42:BE:30:AC
X509v3 Authority Key Identifier:
keyid:C8:7C:55:A4:48:1F:19:C9:B6:18:49:44:B1:87:B3:81:3B:7C:EC:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/3230312e3233342e39312e302f32342d3234203d3e2033333536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.234.91.0/24
Signature Algorithm: sha256WithRSAEncryption
40:f4:67:fc:3f:94:ef:0c:3c:5b:38:3c:58:67:51:bd:ba:8e:
8b:dd:bf:30:97:69:b2:40:de:8c:2b:3a:99:28:e6:30:c6:ec:
02:a2:f9:d2:32:ab:b7:80:5a:bb:ec:5c:50:e8:f7:bb:49:ac:
5b:0e:d7:4c:99:b9:39:e9:03:20:81:f9:0f:f7:31:97:ef:39:
6d:e0:dd:f9:0c:0c:93:08:cf:a2:ac:a4:30:6c:7e:b0:f2:68:
44:9a:bb:f6:0a:12:49:71:8e:c9:36:22:21:ff:e4:ca:97:c4:
85:4e:cf:f9:af:90:6c:2d:1e:52:b5:4b:1b:c7:6c:09:2e:a9:
b0:87:00:e0:7a:14:1d:da:22:97:59:e8:84:53:96:82:88:4f:
97:3d:98:d1:d6:bd:15:3a:12:e1:17:f8:14:dc:b1:97:05:8e:
9b:ba:44:f8:9a:37:fa:73:b1:42:80:9a:7e:44:6f:58:42:31:
40:58:12:1c:f9:ad:5e:81:24:a7:ac:c2:1f:69:24:ed:85:2c:
11:82:3f:c8:0a:04:09:9f:dc:66:75:7e:11:d3:a9:4b:51:64:
d3:24:16:10:57:cb:83:85:ed:a3:53:5e:cc:c2:3e:c1:9a:c3:
42:0e:31:33:98:d0:d9:a2:a2:c0:bb:ef:67:39:4c:60:38:0e:
a5:08:ee:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:25:02 2025 by rpki-client