Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/3230302e3139322e3233362e302f32322d3234203d3e20323633323438.roa
File: 3230302e3139322e3233362e302f32322d3234203d3e20323633323438.roa (raw, json)
Hash identifier: ApMxyCo98U4w0jeRfA0aqySI7EO6TXGKz36oU4QMkVo=
Subject key identifier: 82:B3:5E:D3:F7:4B:64:FC:37:47:FF:E0:F9:28:70:E5:C9:78:39:86
Certificate issuer: /CN=A4EC8475F98014B965F34B25A2A68F58AAEE199B
Certificate serial: 20414E80A084EB71B051B0AA2522D7FCCC1D17B9
Authority key identifier: A4:EC:84:75:F9:80:14:B9:65:F3:4B:25:A2:A6:8F:58:AA:EE:19:9B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A4EC8475F98014B965F34B25A2A68F58AAEE199B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/3230302e3139322e3233362e302f32322d3234203d3e20323633323438.roa
Signing time: Tue 04 Feb 2025 18:14:13 +0000
ROA not before: Tue 04 Feb 2025 18:09:13 +0000
ROA not after: Tue 03 Feb 2026 18:14:13 +0000
asID: 263248
IP address blocks: 200.192.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:41:4e:80:a0:84:eb:71:b0:51:b0:aa:25:22:d7:fc:cc:1d:17:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A4EC8475F98014B965F34B25A2A68F58AAEE199B
Validity
Not Before: Feb 4 18:09:13 2025 GMT
Not After : Feb 3 18:14:13 2026 GMT
Subject: CN=82B35ED3F74B64FC3747FFE0F92870E5C9783986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a1:0c:0a:f2:80:53:27:b3:35:49:39:3b:5e:
f3:52:7f:4a:00:dd:ec:de:0d:d8:ec:c3:b2:41:a1:
c4:bc:66:1d:74:91:74:e3:d1:c7:22:7c:f6:22:53:
5e:15:6a:f5:ca:e4:12:62:55:3d:f9:e3:6c:81:d4:
93:8d:13:dd:62:e5:c4:9e:48:9b:91:19:16:d0:94:
40:ae:bf:13:ba:f9:c5:6f:6a:49:2b:5a:f2:e0:85:
be:7c:e8:a1:4e:8c:51:f5:9e:c3:f3:f1:5a:ae:52:
4d:fa:b5:ee:6c:32:b8:a0:35:37:91:e9:3a:3c:30:
3d:87:e6:78:89:88:45:ab:3a:f0:ef:df:7a:eb:fe:
d4:b3:23:c0:49:62:09:57:b5:ae:d4:d1:93:46:5e:
0e:1a:66:d5:40:09:d3:94:12:ca:d3:67:05:fe:52:
fa:8e:dc:25:d6:27:12:dd:54:3b:01:f9:49:ff:14:
59:3c:07:65:cb:a8:9b:f9:16:d2:f6:b8:79:e8:c7:
3f:01:d9:1d:fe:f4:48:ea:69:cc:54:2f:93:43:22:
51:9f:85:4d:b9:7a:4e:fd:bc:0f:4b:65:18:87:4d:
c1:71:35:5b:85:15:48:d9:b7:9a:87:c3:d1:a8:82:
d9:48:13:36:4e:ac:d4:c6:71:57:b8:4c:01:ae:de:
5b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:B3:5E:D3:F7:4B:64:FC:37:47:FF:E0:F9:28:70:E5:C9:78:39:86
X509v3 Authority Key Identifier:
keyid:A4:EC:84:75:F9:80:14:B9:65:F3:4B:25:A2:A6:8F:58:AA:EE:19:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/A4EC8475F98014B965F34B25A2A68F58AAEE199B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A4EC8475F98014B965F34B25A2A68F58AAEE199B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/3230302e3139322e3233362e302f32322d3234203d3e20323633323438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.192.236.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:ed:d8:9f:05:20:42:fb:2f:fa:50:f5:93:d4:e4:30:be:30:
02:a6:7e:4a:01:e8:fa:44:3f:c2:14:3e:51:86:ad:65:43:64:
c1:44:35:14:4b:3b:e7:5d:29:70:87:27:a4:cf:57:2f:61:ba:
4f:15:aa:23:d5:c9:74:fc:37:be:a4:69:f2:32:a4:60:f5:11:
eb:6a:96:73:c1:ca:94:3a:70:24:c4:77:ec:f7:b8:91:2e:9e:
8f:7a:c6:fc:c2:3a:45:d6:82:24:8d:68:5a:99:02:5a:17:0c:
ba:36:2c:c0:c6:84:61:d0:26:9d:07:8c:de:f4:25:dc:3a:2b:
c7:22:74:28:1a:3d:ab:82:69:41:07:20:07:26:af:bc:3a:6d:
c4:03:3d:6d:4d:2d:f8:11:89:0d:ff:39:a0:78:2d:b7:df:13:
e9:5b:1c:2d:d0:b9:19:a9:0a:d4:29:07:0d:fd:41:7f:e0:68:
3f:ca:0f:56:4f:6e:65:2f:6b:3d:af:4c:1b:2d:a0:ec:e9:6a:
c7:38:77:e1:70:94:30:0c:7b:1f:6b:26:0d:71:66:a9:b8:4a:
cf:92:7a:e5:10:79:38:67:8f:0f:35:79:7a:c8:f8:f2:00:ca:
97:ab:43:f6:0d:81:f6:fe:1a:db:a7:87:de:a7:65:05:f3:f2:
12:4b:bc:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:12:49 2025 by rpki-client