Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/09BA4188BF43656013680C793F6A4846A561718EFC7F97B2FC105BF504A867AD/0/3230302e3232392e3134382e302f32322d3234203d3e203230323037.roa
File: 3230302e3232392e3134382e302f32322d3234203d3e203230323037.roa (raw, json)
Hash identifier: TBlrgGzQbcJ6WQjS4C3Gd24UXujkT1nZp0y0aKRFjmY=
Subject key identifier: F0:04:4A:48:62:97:9F:18:FE:37:66:32:F8:6E:8E:A7:32:B6:45:84
Certificate issuer: /CN=4F99A2A558BEB359E92AC3908E9098C384DE72F7
Certificate serial: 1049CCEE2C5D576A171A5A4C15DDE3239FE7B2F9
Authority key identifier: 4F:99:A2:A5:58:BE:B3:59:E9:2A:C3:90:8E:90:98:C3:84:DE:72:F7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4F99A2A558BEB359E92AC3908E9098C384DE72F7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/09BA4188BF43656013680C793F6A4846A561718EFC7F97B2FC105BF504A867AD/0/3230302e3232392e3134382e302f32322d3234203d3e203230323037.roa
Signing time: Tue 04 Feb 2025 20:00:38 +0000
ROA not before: Tue 04 Feb 2025 19:55:38 +0000
ROA not after: Tue 03 Feb 2026 20:00:38 +0000
asID: 20207
IP address blocks: 200.229.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:49:cc:ee:2c:5d:57:6a:17:1a:5a:4c:15:dd:e3:23:9f:e7:b2:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4F99A2A558BEB359E92AC3908E9098C384DE72F7
Validity
Not Before: Feb 4 19:55:38 2025 GMT
Not After : Feb 3 20:00:38 2026 GMT
Subject: CN=F0044A4862979F18FE376632F86E8EA732B64584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4b:f4:6b:97:1c:5b:86:9f:fa:09:45:53:9f:
a0:ab:75:6a:3a:84:cb:24:46:0e:d0:51:10:c0:cf:
4f:97:07:55:a7:fb:99:a6:68:23:4f:6c:32:21:2d:
29:37:05:0e:64:92:3f:1a:89:9c:79:fe:64:f6:64:
89:cf:b8:ac:01:ac:3c:75:ee:88:6c:c2:ad:89:ef:
58:ae:12:f8:84:3d:b2:90:71:08:c7:51:01:14:4e:
16:78:f9:58:cc:29:9f:0f:23:79:1c:70:93:3a:3a:
5d:b3:8a:d1:79:75:66:77:3b:af:9e:e3:0a:cc:4d:
9d:c3:0f:44:ac:42:9e:8d:88:df:72:e1:bd:9b:8d:
1c:40:9f:a2:50:09:9f:92:8e:9c:d2:2c:7f:b9:4d:
95:c4:9a:06:53:e7:9f:68:c9:1c:89:d0:70:80:28:
4a:d5:6e:3f:b7:d0:78:0a:75:42:a1:26:30:de:00:
10:f5:a8:d6:71:15:96:bb:6e:a6:ca:73:b8:43:ce:
96:2c:21:26:c1:f7:cd:63:b9:ce:5e:9d:82:a7:86:
5f:9b:e4:15:b0:d1:8e:a3:b3:5a:aa:42:e2:c3:ab:
d9:27:3a:f4:fe:b3:30:e6:bb:d1:c7:17:40:ca:1f:
70:2f:41:cb:93:ea:53:ce:92:fc:bd:41:30:70:05:
ec:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:04:4A:48:62:97:9F:18:FE:37:66:32:F8:6E:8E:A7:32:B6:45:84
X509v3 Authority Key Identifier:
keyid:4F:99:A2:A5:58:BE:B3:59:E9:2A:C3:90:8E:90:98:C3:84:DE:72:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/09BA4188BF43656013680C793F6A4846A561718EFC7F97B2FC105BF504A867AD/0/4F99A2A558BEB359E92AC3908E9098C384DE72F7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4F99A2A558BEB359E92AC3908E9098C384DE72F7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/09BA4188BF43656013680C793F6A4846A561718EFC7F97B2FC105BF504A867AD/0/3230302e3232392e3134382e302f32322d3234203d3e203230323037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.229.148.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:09:cd:46:af:53:0a:45:91:9d:ea:55:e0:21:45:c4:a8:ac:
e6:9e:08:e6:a0:9f:a3:56:12:28:ac:44:5d:84:1b:ea:35:b8:
6e:58:f7:ab:5b:29:8c:67:9c:b7:a7:ab:4f:ec:bd:1a:6c:32:
0b:50:61:aa:84:64:a5:b2:63:13:14:30:d5:fb:3c:1a:eb:27:
d1:10:5a:41:4f:8f:99:3e:d5:ca:85:db:94:2a:a6:91:35:3e:
cd:1b:ec:48:d4:2f:2f:9b:45:e5:94:d1:ce:d4:8f:ae:0f:e2:
26:1e:7b:b4:90:80:51:e9:46:99:f2:75:9e:de:2c:4e:53:2d:
83:9e:91:24:c9:63:31:47:f6:31:51:a7:17:c3:b9:c2:2f:5b:
6a:09:53:e1:ba:ca:94:64:cc:45:5c:41:a4:67:e6:87:c7:e4:
44:a8:21:f1:cc:c4:19:b1:f0:b2:73:34:68:15:5c:b0:6f:b6:
c0:f4:fa:e2:32:7a:98:ac:ab:5a:6b:0d:d6:33:36:cf:8b:7b:
52:0e:7b:14:96:f5:eb:4b:fe:3e:23:81:9e:e8:6a:4f:1f:fa:
1d:7f:a4:a6:3a:c3:43:2f:e5:6b:8e:d4:30:14:21:ca:16:c9:
de:b5:01:04:2c:8c:15:16:30:16:ff:65:f4:62:cf:b7:df:a2:
71:e2:bd:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:37 2025 by rpki-client