Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/043AB499951B36E16D8E3D104BFD77ABCB7CBE3C9D9DE5A1686B504C3C457ED4/0/3230312e3232302e36342e302f31392d3234203d3e2038313633.roa
File: 3230312e3232302e36342e302f31392d3234203d3e2038313633.roa (raw, json)
Hash identifier: fkd1O/SUiADAhUgY4hvXzZU9SfiUCbZ2WtxJG/OxXF8=
Subject key identifier: BE:7D:35:5A:26:9A:0C:D7:C5:23:22:1C:30:BA:7E:33:D4:71:17:2F
Certificate issuer: /CN=27020461E106FA1939A7955F19E1F8ED82AE8589
Certificate serial: 521C1497A50FA05BACC6D75ECD61911DE736E0F4
Authority key identifier: 27:02:04:61:E1:06:FA:19:39:A7:95:5F:19:E1:F8:ED:82:AE:85:89
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/27020461E106FA1939A7955F19E1F8ED82AE8589.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/043AB499951B36E16D8E3D104BFD77ABCB7CBE3C9D9DE5A1686B504C3C457ED4/0/3230312e3232302e36342e302f31392d3234203d3e2038313633.roa
Signing time: Tue 04 Feb 2025 18:46:47 +0000
ROA not before: Tue 04 Feb 2025 18:41:47 +0000
ROA not after: Tue 03 Feb 2026 18:46:47 +0000
asID: 8163
IP address blocks: 201.220.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:1c:14:97:a5:0f:a0:5b:ac:c6:d7:5e:cd:61:91:1d:e7:36:e0:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27020461E106FA1939A7955F19E1F8ED82AE8589
Validity
Not Before: Feb 4 18:41:47 2025 GMT
Not After : Feb 3 18:46:47 2026 GMT
Subject: CN=BE7D355A269A0CD7C523221C30BA7E33D471172F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e4:33:be:c1:a8:8e:0e:67:08:a5:fb:aa:ea:
68:b9:15:53:74:1c:4d:e8:6e:87:f2:38:61:f8:8e:
ea:3a:99:cb:84:4c:0f:ff:fc:80:1a:8f:e0:dc:24:
e3:7e:da:66:ad:9b:3c:6a:1c:7e:ed:c2:73:25:8a:
b7:0d:a3:cf:11:20:14:63:11:0d:7d:a9:f1:a7:7f:
ae:b5:31:01:26:5f:f1:cb:d7:49:be:09:19:f4:dd:
40:f1:32:05:9a:6a:aa:14:17:f1:71:57:f0:ca:92:
ad:f4:7b:08:de:98:1f:82:50:09:8e:b3:5a:d0:53:
2c:ef:aa:26:91:36:0c:4d:7c:0d:2f:c1:58:f1:55:
a3:92:6e:ef:50:65:cd:50:ea:14:63:6c:42:aa:8f:
21:51:2e:37:41:b8:34:ec:d2:b6:47:87:eb:64:98:
f8:83:16:b0:3a:d8:f9:c7:ea:0e:f0:05:cf:c4:c3:
bd:12:d9:14:80:c6:be:9e:83:c3:e0:44:fa:8d:3e:
10:b3:0c:b5:da:cd:89:30:d1:a0:9c:af:0c:53:21:
95:2d:28:67:62:4b:55:82:70:72:09:e8:05:aa:aa:
80:b2:fd:12:fe:6c:ea:42:53:0d:56:b3:11:fe:0d:
e7:9a:ec:2a:d6:f6:f0:9c:95:c4:cb:19:cd:a9:34:
08:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7D:35:5A:26:9A:0C:D7:C5:23:22:1C:30:BA:7E:33:D4:71:17:2F
X509v3 Authority Key Identifier:
keyid:27:02:04:61:E1:06:FA:19:39:A7:95:5F:19:E1:F8:ED:82:AE:85:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/043AB499951B36E16D8E3D104BFD77ABCB7CBE3C9D9DE5A1686B504C3C457ED4/0/27020461E106FA1939A7955F19E1F8ED82AE8589.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/27020461E106FA1939A7955F19E1F8ED82AE8589.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/043AB499951B36E16D8E3D104BFD77ABCB7CBE3C9D9DE5A1686B504C3C457ED4/0/3230312e3232302e36342e302f31392d3234203d3e2038313633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.220.64.0/19
Signature Algorithm: sha256WithRSAEncryption
3e:ed:ec:38:f2:10:bd:13:72:f0:d5:e0:3e:0d:00:29:64:f2:
1d:8d:59:d4:3f:9a:e5:67:b6:d3:9c:06:c9:2e:31:a5:2f:e3:
c7:ca:8d:31:63:06:74:cb:94:5b:ab:cf:73:1c:7c:74:86:22:
1c:63:c8:0a:a5:dd:e8:57:e8:d4:eb:64:e0:5d:bf:d4:b9:08:
01:b0:70:6b:80:55:8b:de:3a:e2:47:55:c8:1c:cc:72:5d:dc:
df:28:0e:69:75:33:57:a3:5f:6e:b0:d5:ea:7d:64:3e:94:ab:
41:84:23:b4:23:6d:b2:65:35:50:31:3d:16:e0:8a:99:a3:bb:
e9:32:4c:83:11:e9:58:6e:d6:73:e6:cf:aa:be:08:9d:80:87:
5f:e6:3c:c1:2a:72:c7:42:b8:79:43:a8:1e:fe:da:b0:52:bb:
8b:45:5b:a2:de:8e:17:8a:45:73:59:6e:37:c3:ac:46:96:2c:
c2:ef:05:bd:cf:80:03:ff:a4:75:c7:bb:16:f5:5e:6b:53:8c:
46:95:c5:6e:c4:4b:61:0d:64:02:ab:54:b7:bf:00:b9:3f:d3:
9f:0a:b5:b4:16:ab:0c:28:47:88:5f:68:44:b2:1e:12:52:78:
3e:48:f3:28:e7:34:7b:fe:5f:a8:6f:c5:68:dc:3f:86:cd:ff:
b1:f0:92:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:27:30 2025 by rpki-client