Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0A0AE48F728FCD2DC9FBE93F7EC322A9DFD445DF79F9AE17913B5D15E39CB51D/0/3230302e33362e3135372e302f32342d3234203d3e20323731383636.roa
File: 3230302e33362e3135372e302f32342d3234203d3e20323731383636.roa (raw, json)
Hash identifier: +YJk3El8k+VRvclq37pLf5s6GfC/WVBgMBvypVtov5g=
Subject key identifier: 56:6A:F8:58:F2:BF:BA:30:3F:A7:D1:A7:91:5F:95:3C:6D:47:C5:CE
Certificate issuer: /CN=BBCA603806A413EA387A2C7FF72A6366E56F516B
Certificate serial: 5200DFA1DFCE914EE8B1C4A72A25CA2B0B93AF9E
Authority key identifier: BB:CA:60:38:06:A4:13:EA:38:7A:2C:7F:F7:2A:63:66:E5:6F:51:6B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BBCA603806A413EA387A2C7FF72A6366E56F516B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0A0AE48F728FCD2DC9FBE93F7EC322A9DFD445DF79F9AE17913B5D15E39CB51D/0/3230302e33362e3135372e302f32342d3234203d3e20323731383636.roa
Signing time: Tue 04 Feb 2025 18:54:01 +0000
ROA not before: Tue 04 Feb 2025 18:49:01 +0000
ROA not after: Tue 03 Feb 2026 18:54:01 +0000
asID: 271866
IP address blocks: 200.36.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:00:df:a1:df:ce:91:4e:e8:b1:c4:a7:2a:25:ca:2b:0b:93:af:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBCA603806A413EA387A2C7FF72A6366E56F516B
Validity
Not Before: Feb 4 18:49:01 2025 GMT
Not After : Feb 3 18:54:01 2026 GMT
Subject: CN=566AF858F2BFBA303FA7D1A7915F953C6D47C5CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:eb:cf:84:4a:ca:b7:cb:6d:45:45:a5:f5:39:
7e:03:9b:03:00:57:42:b0:e1:dc:06:ac:2e:6a:49:
74:1f:2b:bc:a7:8d:e8:92:26:fe:3d:5a:60:9e:34:
a0:1a:b3:f6:e0:2b:e3:71:24:fc:67:a5:61:f5:3b:
3d:23:df:32:c8:f8:c7:14:19:ac:85:70:29:4d:0f:
5c:cd:c4:d7:d4:8c:58:66:66:c9:4a:10:dd:2f:a3:
6d:cc:8e:8a:16:53:e4:2d:7c:b7:87:41:5e:9c:06:
a1:0d:14:a9:a8:0f:7e:ef:01:bf:dd:7b:84:17:bd:
51:4a:1b:3f:1a:3b:7e:ee:fe:b5:38:1c:2f:3d:93:
cd:83:f3:af:66:90:57:ba:0e:f8:ec:df:ab:55:6a:
12:73:72:cc:a9:23:5b:59:7a:b6:3b:fd:61:0a:14:
45:07:a4:17:64:0e:60:85:86:17:80:15:91:fe:ff:
40:55:0a:20:5d:ee:0a:7e:57:ae:52:cc:0f:6b:02:
73:7a:9a:5b:e7:47:ba:50:34:bd:a7:dc:59:9c:df:
10:54:a2:69:13:f2:60:37:85:3f:60:77:b0:eb:96:
90:f3:c8:8e:e6:75:c3:cf:73:e6:b2:de:54:3b:03:
c8:e4:76:1f:19:8e:f3:6f:83:64:cd:ba:a8:e3:a4:
df:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6A:F8:58:F2:BF:BA:30:3F:A7:D1:A7:91:5F:95:3C:6D:47:C5:CE
X509v3 Authority Key Identifier:
keyid:BB:CA:60:38:06:A4:13:EA:38:7A:2C:7F:F7:2A:63:66:E5:6F:51:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0A0AE48F728FCD2DC9FBE93F7EC322A9DFD445DF79F9AE17913B5D15E39CB51D/0/BBCA603806A413EA387A2C7FF72A6366E56F516B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BBCA603806A413EA387A2C7FF72A6366E56F516B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0A0AE48F728FCD2DC9FBE93F7EC322A9DFD445DF79F9AE17913B5D15E39CB51D/0/3230302e33362e3135372e302f32342d3234203d3e20323731383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.36.157.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:d2:6a:4f:d5:ae:95:3e:d0:09:19:d0:31:02:82:8e:63:24:
46:c3:e7:58:cf:c6:ac:2e:4c:fc:b9:f1:14:84:22:a9:9b:84:
c3:85:e1:3d:31:0a:ff:aa:df:44:1a:a4:e3:7d:2c:56:2f:ae:
07:62:1c:ab:ad:91:aa:79:f4:cf:85:2b:78:cf:fa:9f:1e:ff:
2b:cf:5a:4c:84:3b:25:ad:dd:a0:d8:54:0f:0c:d8:c5:a7:03:
1b:0a:05:14:de:17:51:b0:f5:f7:94:36:8b:fd:f7:02:7c:24:
69:52:4d:ee:11:5c:a7:76:c6:9d:e2:09:b7:6f:ef:b1:cc:73:
b1:0a:cd:7b:58:70:04:33:12:c5:b4:62:f9:15:a0:58:d1:97:
94:65:b9:bb:c7:4f:52:71:48:80:97:97:18:ad:81:9d:28:38:
00:38:b0:90:ec:08:22:f2:15:a7:57:f8:de:4a:6f:34:c1:e3:
5d:46:5b:da:ba:c3:41:9a:4d:f9:39:57:86:6f:d1:91:cc:7b:
fe:0e:20:78:48:9e:32:9a:df:8b:07:a4:d7:4f:c1:ce:88:0d:
11:ee:1b:a3:85:57:7a:40:b0:bb:69:ce:14:2a:53:e2:4a:ee:
12:87:e5:10:10:da:80:31:dd:b4:9d:4b:2d:4f:f2:27:8f:04:
8e:7f:4a:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:09 2025 by rpki-client