Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/054C2197BCB4B91E6083BFB364323BAF11DE930F747439F1F624BCDF682C82AB/0/3230302e35392e31362e302f32332d3234203d3e20323632313439.roa
File: 3230302e35392e31362e302f32332d3234203d3e20323632313439.roa (raw, json)
Hash identifier: 98aOouejnY8jh9nKONS5UTFnXNipIKeajJhl5lrVf14=
Subject key identifier: A2:4B:54:E7:3A:8F:AC:98:3B:FA:D7:17:7C:4B:59:D7:8E:B1:77:7D
Certificate issuer: /CN=CAD42EC49F09199180FE63CB2419E2592F8E606F
Certificate serial: 31CB37C4581B355F799752FB8ED49289AE48474B
Authority key identifier: CA:D4:2E:C4:9F:09:19:91:80:FE:63:CB:24:19:E2:59:2F:8E:60:6F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CAD42EC49F09199180FE63CB2419E2592F8E606F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/054C2197BCB4B91E6083BFB364323BAF11DE930F747439F1F624BCDF682C82AB/0/3230302e35392e31362e302f32332d3234203d3e20323632313439.roa
Signing time: Tue 04 Feb 2025 18:35:42 +0000
ROA not before: Tue 04 Feb 2025 18:30:42 +0000
ROA not after: Tue 03 Feb 2026 18:35:42 +0000
asID: 262149
IP address blocks: 200.59.16.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:cb:37:c4:58:1b:35:5f:79:97:52:fb:8e:d4:92:89:ae:48:47:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD42EC49F09199180FE63CB2419E2592F8E606F
Validity
Not Before: Feb 4 18:30:42 2025 GMT
Not After : Feb 3 18:35:42 2026 GMT
Subject: CN=A24B54E73A8FAC983BFAD7177C4B59D78EB1777D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2e:3a:61:f1:92:93:01:69:6c:6c:79:03:43:
12:f4:c0:4d:fc:98:73:c5:1e:16:25:38:bb:04:a1:
4a:40:60:66:36:04:38:1a:4f:07:4b:37:1c:c5:53:
3b:2b:99:97:76:f6:f7:dc:b1:d0:e9:91:77:d6:be:
0f:b7:18:9e:4d:3c:5d:2f:5e:db:96:96:dc:d7:c0:
6c:4c:e2:2b:c5:f3:5a:9c:f7:34:23:00:4e:33:dd:
1c:3b:5f:2e:38:bb:b6:16:d0:23:88:74:c4:80:ff:
2d:16:ec:a1:64:56:49:ef:06:7a:f2:5c:d1:97:51:
18:21:15:3d:77:2c:d6:b8:33:e6:65:1a:00:9b:dc:
20:14:85:c0:3c:82:df:5f:c2:05:71:bc:93:a3:01:
94:30:f6:b0:50:67:77:82:8c:65:47:fe:58:1a:35:
10:c0:68:ad:49:27:e7:a1:a7:a5:63:fd:28:44:af:
14:e3:28:37:79:64:6d:50:a6:22:10:09:ef:23:21:
d6:e6:84:b3:af:59:ea:56:68:59:0f:cf:21:a9:aa:
7c:89:df:6a:cd:94:f8:21:21:72:f8:5a:68:57:a9:
41:2d:3c:8d:e8:48:5e:3a:1c:0e:e0:56:9d:74:1c:
46:50:b9:17:3c:1a:6e:6d:02:71:43:dc:b5:2e:68:
8b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:4B:54:E7:3A:8F:AC:98:3B:FA:D7:17:7C:4B:59:D7:8E:B1:77:7D
X509v3 Authority Key Identifier:
keyid:CA:D4:2E:C4:9F:09:19:91:80:FE:63:CB:24:19:E2:59:2F:8E:60:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/054C2197BCB4B91E6083BFB364323BAF11DE930F747439F1F624BCDF682C82AB/0/CAD42EC49F09199180FE63CB2419E2592F8E606F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CAD42EC49F09199180FE63CB2419E2592F8E606F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/054C2197BCB4B91E6083BFB364323BAF11DE930F747439F1F624BCDF682C82AB/0/3230302e35392e31362e302f32332d3234203d3e20323632313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.59.16.0/23
Signature Algorithm: sha256WithRSAEncryption
79:ad:52:4a:15:3b:26:92:8d:a0:b7:35:f6:e3:9e:41:cb:20:
dd:ad:dc:2f:df:e2:33:45:a4:18:8c:f8:8a:55:e0:51:a5:92:
cc:a7:b2:d4:c2:51:6d:51:ad:db:6a:b1:5c:1c:ac:bf:4f:09:
77:ce:f0:5c:2d:78:86:4f:da:73:6d:fa:d5:12:be:ba:ca:2b:
a8:bf:77:92:6e:c1:54:35:89:40:39:fc:3c:d1:79:46:b7:99:
56:7d:25:d4:1e:57:49:26:53:eb:e9:e0:eb:fd:ec:f0:d7:51:
e5:3c:26:08:61:af:55:65:f1:00:43:ae:32:82:41:6f:69:74:
67:f4:3f:cb:07:55:4b:3e:29:9b:5c:e9:af:a1:2b:f4:d8:62:
e8:0e:98:8f:d1:ef:97:4e:49:56:05:b3:ed:ac:d1:71:75:15:
ad:60:18:9f:74:27:c4:b5:b0:58:ce:f4:78:02:3e:7a:b1:e7:
0c:49:57:b7:84:58:cf:d9:05:2a:a0:89:ed:be:d3:15:2e:07:
76:06:13:a3:b1:af:27:66:c6:bc:ad:2c:f1:59:6c:5f:f6:64:
a8:97:98:d9:79:56:5a:8c:13:ad:d0:91:76:38:9b:ec:c3:b5:
f4:e5:63:b3:5b:25:d2:33:a7:18:0f:a0:66:f7:b9:59:0d:cc:
db:64:3d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:56:51 2025 by rpki-client