Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/05FDF64B617FCE0E4515EBFA80E41D8F6BF5D8CFE78F2BEA3A7C93E43F0E5D40/0/3230302e33352e3135322e302f32342d3234203d3e203132313839.roa
File: 3230302e33352e3135322e302f32342d3234203d3e203132313839.roa (raw, json)
Hash identifier: 6X85KodRn+de7IY44mpY2YwiFlTlYZ/X6rsCyhRWbU4=
Subject key identifier: 23:D3:94:58:1F:D1:F1:73:55:D4:2B:77:6E:D2:C9:6E:E3:B3:0D:55
Certificate issuer: /CN=B62E719F360BF9C9EE89EC2E25CF0DE228B6EBFC
Certificate serial: A776878D6178698B58C78CB1EEA9C2A01F6DCB
Authority key identifier: B6:2E:71:9F:36:0B:F9:C9:EE:89:EC:2E:25:CF:0D:E2:28:B6:EB:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B62E719F360BF9C9EE89EC2E25CF0DE228B6EBFC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/05FDF64B617FCE0E4515EBFA80E41D8F6BF5D8CFE78F2BEA3A7C93E43F0E5D40/0/3230302e33352e3135322e302f32342d3234203d3e203132313839.roa
Signing time: Tue 04 Feb 2025 18:33:15 +0000
ROA not before: Tue 04 Feb 2025 18:28:15 +0000
ROA not after: Tue 03 Feb 2026 18:33:15 +0000
asID: 12189
IP address blocks: 200.35.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
a7:76:87:8d:61:78:69:8b:58:c7:8c:b1:ee:a9:c2:a0:1f:6d:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B62E719F360BF9C9EE89EC2E25CF0DE228B6EBFC
Validity
Not Before: Feb 4 18:28:15 2025 GMT
Not After : Feb 3 18:33:15 2026 GMT
Subject: CN=23D394581FD1F17355D42B776ED2C96EE3B30D55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e1:c4:60:3d:60:af:d7:db:b4:78:80:7f:23:
e4:b9:40:4c:57:13:72:b8:ff:5d:b6:8e:02:ad:c5:
f3:0a:6a:4c:25:16:50:3b:81:52:c7:88:ef:2a:ec:
ed:ec:75:83:ee:f0:9a:4b:b2:e5:8e:eb:ef:45:34:
d6:75:50:27:53:a2:01:de:62:24:70:30:b0:f7:72:
06:a3:54:17:0c:7f:9b:23:46:3c:b0:0f:6d:31:78:
ce:a4:40:4b:e4:20:e3:5e:76:f5:2e:c4:b6:46:8a:
a7:41:1d:5e:08:bc:56:ad:db:77:b3:62:1c:41:c0:
21:dc:de:aa:92:67:59:e0:b9:0a:d5:bf:0d:0d:90:
48:36:2c:15:b9:34:3b:03:cd:cb:45:c3:c6:b9:66:
e9:a0:d7:fa:86:5c:12:44:69:e7:82:b1:e8:02:3a:
df:a4:45:28:e7:12:7c:4e:88:3b:36:2a:05:89:f2:
30:dd:af:62:b7:d1:3a:ab:64:e1:9a:bf:98:af:1a:
55:32:83:e1:0f:e2:84:2f:3d:7d:5f:45:2a:27:b1:
72:e8:31:16:bf:aa:97:c5:f2:9f:11:9c:95:ff:50:
54:e5:69:bc:c6:e2:8c:9b:cc:17:c0:85:11:97:5f:
2a:c1:f8:50:84:ce:89:46:7f:ae:70:bd:0d:74:26:
05:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D3:94:58:1F:D1:F1:73:55:D4:2B:77:6E:D2:C9:6E:E3:B3:0D:55
X509v3 Authority Key Identifier:
keyid:B6:2E:71:9F:36:0B:F9:C9:EE:89:EC:2E:25:CF:0D:E2:28:B6:EB:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/05FDF64B617FCE0E4515EBFA80E41D8F6BF5D8CFE78F2BEA3A7C93E43F0E5D40/0/B62E719F360BF9C9EE89EC2E25CF0DE228B6EBFC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B62E719F360BF9C9EE89EC2E25CF0DE228B6EBFC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/05FDF64B617FCE0E4515EBFA80E41D8F6BF5D8CFE78F2BEA3A7C93E43F0E5D40/0/3230302e33352e3135322e302f32342d3234203d3e203132313839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.35.152.0/24
Signature Algorithm: sha256WithRSAEncryption
84:c0:fe:a4:78:1a:57:cb:3f:d7:fd:e2:31:8a:a7:7c:53:07:
13:92:5f:b9:4a:36:58:44:26:a5:c6:16:46:be:03:60:c4:52:
fd:12:dc:72:7a:19:8c:1f:b9:d2:72:b5:db:2c:31:1f:bc:ca:
8f:a2:21:30:d5:8b:00:79:9d:ee:7f:c0:7e:24:8c:d2:ad:b0:
e9:34:2e:e0:3a:9e:37:8e:38:17:be:84:c8:f6:27:6d:b7:39:
a3:ed:d9:0b:e6:f8:30:de:0d:21:9c:2d:e2:f2:45:2d:53:b4:
cf:3f:57:ab:2c:be:ef:d3:99:2d:af:34:f8:42:64:a3:5e:96:
cc:e8:ea:0c:6f:99:e7:07:cc:7b:d4:03:c6:91:47:10:26:5b:
b7:62:fd:45:39:30:e1:ff:cc:e9:37:0d:71:69:8a:fd:26:f7:
b0:62:0a:c9:23:30:e1:9d:03:b8:11:4b:86:e8:0e:2d:88:13:
e2:ed:c4:04:eb:35:c4:fb:b9:26:c7:64:89:80:99:a9:ad:dc:
25:da:2d:27:26:46:c2:40:32:a2:b6:57:82:38:3a:ba:02:a4:
a0:35:55:45:1e:d3:2a:ce:cc:81:2c:df:13:39:82:0e:73:d4:
51:8c:16:bf:2e:bc:94:82:30:3b:29:5b:2a:92:f5:e1:36:fa:
db:c3:0f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:11:27 2025 by rpki-client