Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/00C329626CCD6186E2E4B428F5A036887847FB4FA82BC22B45E6ADD4CAB2B7C1/0/3230302e33392e36302e302f32322d3234203d3e20323731383938.roa
File: 3230302e33392e36302e302f32322d3234203d3e20323731383938.roa (raw, json)
Hash identifier: /ktKORog7CA9q6Yc/rupdbJ6IWBBFejnOvwVnJ8B83g=
Subject key identifier: AA:20:60:38:32:09:FD:54:E5:4E:75:79:96:A0:26:BF:02:B5:FD:FB
Certificate issuer: /CN=15AE320A4DE21615CC1ABBF64113CDEFC2D255CA
Certificate serial: 727498BD5B04E78451D960E2A09C98FC0CEA91C0
Authority key identifier: 15:AE:32:0A:4D:E2:16:15:CC:1A:BB:F6:41:13:CD:EF:C2:D2:55:CA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/15AE320A4DE21615CC1ABBF64113CDEFC2D255CA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/00C329626CCD6186E2E4B428F5A036887847FB4FA82BC22B45E6ADD4CAB2B7C1/0/3230302e33392e36302e302f32322d3234203d3e20323731383938.roa
Signing time: Tue 04 Feb 2025 18:24:40 +0000
ROA not before: Tue 04 Feb 2025 18:19:40 +0000
ROA not after: Tue 03 Feb 2026 18:24:40 +0000
asID: 271898
IP address blocks: 200.39.60.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:74:98:bd:5b:04:e7:84:51:d9:60:e2:a0:9c:98:fc:0c:ea:91:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15AE320A4DE21615CC1ABBF64113CDEFC2D255CA
Validity
Not Before: Feb 4 18:19:40 2025 GMT
Not After : Feb 3 18:24:40 2026 GMT
Subject: CN=AA2060383209FD54E54E757996A026BF02B5FDFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:9b:c3:68:a2:e1:86:c9:81:77:5b:eb:89:10:
30:c1:54:36:87:a5:b1:8c:82:ec:c9:01:e6:df:a2:
f7:31:80:cd:2c:09:e8:60:f0:58:09:54:f9:80:98:
3e:d0:fe:b7:10:bd:6e:af:4d:7b:cc:68:30:73:68:
b6:75:af:e9:ac:6f:73:9c:a1:76:38:9e:40:9d:d8:
15:c4:ca:10:96:6b:08:8d:cd:09:a8:b8:f8:a6:0f:
3b:3f:b6:23:f1:52:b8:d8:ae:a5:f9:85:be:9b:f1:
8a:7f:7d:d4:cb:ac:c6:65:d6:7e:d7:22:91:ad:b6:
8b:6f:d5:22:9d:65:c2:7e:89:99:dd:31:1e:e2:7f:
a1:52:51:12:e6:6d:44:21:ed:97:62:a3:97:5f:4b:
cb:8f:e1:95:c3:d6:24:8e:53:9b:26:59:6b:6e:5e:
32:54:2c:c3:49:bf:42:a2:f0:af:b3:48:6d:e9:97:
48:fa:37:34:fa:87:4a:f7:c2:59:c5:51:53:41:dc:
17:5d:cb:41:8e:80:5f:02:42:c6:e7:6e:54:18:5c:
32:fa:a7:80:1f:50:7e:4b:60:d2:92:fa:9d:d3:ae:
37:39:e5:b4:e1:9e:b8:1d:ad:00:cd:a0:ab:d8:a9:
a7:13:61:11:52:c6:02:70:98:35:45:d0:f5:ac:8f:
cc:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:20:60:38:32:09:FD:54:E5:4E:75:79:96:A0:26:BF:02:B5:FD:FB
X509v3 Authority Key Identifier:
keyid:15:AE:32:0A:4D:E2:16:15:CC:1A:BB:F6:41:13:CD:EF:C2:D2:55:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/00C329626CCD6186E2E4B428F5A036887847FB4FA82BC22B45E6ADD4CAB2B7C1/0/15AE320A4DE21615CC1ABBF64113CDEFC2D255CA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/15AE320A4DE21615CC1ABBF64113CDEFC2D255CA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/00C329626CCD6186E2E4B428F5A036887847FB4FA82BC22B45E6ADD4CAB2B7C1/0/3230302e33392e36302e302f32322d3234203d3e20323731383938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.39.60.0/22
Signature Algorithm: sha256WithRSAEncryption
58:44:91:2f:68:d8:0e:64:c2:78:bb:d2:fc:2b:15:30:60:b4:
0c:af:fa:97:c8:e6:5f:49:8b:b7:ea:61:0b:3e:6c:4e:58:51:
6d:1b:5f:79:0e:08:78:a2:e7:5c:bc:c3:36:8c:56:9c:6f:8d:
a0:18:07:ae:10:0c:9d:d3:24:44:15:3d:7c:26:24:70:a9:ac:
2a:10:c3:b2:67:49:db:0b:27:19:d8:c5:7e:11:41:81:1a:6c:
91:0c:59:0f:07:d3:9e:52:ba:56:9e:64:a1:68:e7:6f:23:22:
09:5e:2d:cb:45:24:36:2f:c2:79:74:67:a8:e7:df:ba:11:b8:
da:7b:d0:4a:a3:3f:29:d7:4a:30:02:2f:3a:fc:35:7e:80:76:
f1:3a:4d:2d:6d:c6:4b:46:95:44:df:d9:83:cf:78:7c:b3:46:
76:94:5f:0a:44:04:f5:b5:43:d8:07:51:de:b6:d5:b3:12:97:
9b:f7:29:63:ba:70:5d:9d:99:ce:d8:f1:07:e7:cf:a3:19:f8:
92:f2:bc:7d:1d:e5:26:86:43:f8:14:cc:94:f1:44:1d:6f:a3:
88:8a:70:a9:27:55:a7:89:47:c3:19:6c:c7:55:55:0c:d8:34:
ab:83:3c:34:fd:00:e2:05:a3:fb:55:30:5e:df:9f:27:2a:e0:
83:a8:f8:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:32:52 2025 by rpki-client