Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/103C4FFE8F3FFFA4F8F3FBD4DED3EDD0D8232E29429547E80EDF1F23E23C0D1A/0/3230302e31342e34312e302f32342d3234203d3e203237383130.roa
File: 3230302e31342e34312e302f32342d3234203d3e203237383130.roa (raw, json)
Hash identifier: l3B5s9oioR8eLQ4vcDkJ5HPj4r4uCFti62fX30RsrFQ=
Subject key identifier: 40:5B:D2:2C:CA:38:98:75:60:C1:13:08:80:58:44:F3:5D:33:D2:22
Certificate issuer: /CN=ACFD9D629DD7DC5504C90BEB82187223A99FEEA7
Certificate serial: 510728E1850BFCDF61602A9F6495CE167BA6E21D
Authority key identifier: AC:FD:9D:62:9D:D7:DC:55:04:C9:0B:EB:82:18:72:23:A9:9F:EE:A7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ACFD9D629DD7DC5504C90BEB82187223A99FEEA7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/103C4FFE8F3FFFA4F8F3FBD4DED3EDD0D8232E29429547E80EDF1F23E23C0D1A/0/3230302e31342e34312e302f32342d3234203d3e203237383130.roa
Signing time: Tue 04 Feb 2025 18:19:42 +0000
ROA not before: Tue 04 Feb 2025 18:14:42 +0000
ROA not after: Tue 03 Feb 2026 18:19:42 +0000
asID: 27810
IP address blocks: 200.14.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:07:28:e1:85:0b:fc:df:61:60:2a:9f:64:95:ce:16:7b:a6:e2:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ACFD9D629DD7DC5504C90BEB82187223A99FEEA7
Validity
Not Before: Feb 4 18:14:42 2025 GMT
Not After : Feb 3 18:19:42 2026 GMT
Subject: CN=405BD22CCA38987560C11308805844F35D33D222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:92:51:10:e9:3b:7d:2e:40:90:42:35:61:b1:
ff:d1:9d:a6:25:f0:5f:7c:98:6e:e8:0a:18:bb:7f:
7b:00:c3:ef:82:3f:16:ad:b4:bc:19:04:05:59:dc:
c6:99:5b:db:60:f7:74:81:70:6d:a8:5d:a3:1f:e2:
4d:23:f6:42:c7:a5:9b:46:66:49:31:86:4c:1e:ac:
04:d3:f8:6b:0b:c6:43:2d:7a:a0:70:d7:23:bf:90:
34:0a:99:5b:a4:a5:8e:ee:e9:d6:21:94:8b:55:59:
2e:f7:f4:31:ac:c8:69:e9:88:a1:ed:0a:67:01:fc:
2a:40:90:0f:89:af:ae:73:55:fa:5e:c2:86:0f:10:
82:6f:c5:e4:4d:de:5b:a2:cb:66:da:86:d0:87:9f:
e5:03:4f:c4:02:7e:36:bb:2b:e8:8c:5e:d3:95:6b:
5d:4c:64:4b:cc:7b:fa:d3:8d:e9:91:dc:00:79:f0:
1b:89:cd:6a:65:b9:9a:d6:47:1f:d5:4c:60:ae:8b:
28:a5:59:cf:a9:07:b8:25:14:88:86:4d:a5:e8:89:
28:36:33:c3:77:a3:01:26:5f:d7:50:31:aa:ec:11:
3b:0b:74:40:fd:36:3e:7a:b1:6e:53:64:8f:cc:60:
85:11:d5:61:59:ab:98:9e:be:86:ef:9e:45:5e:1b:
18:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5B:D2:2C:CA:38:98:75:60:C1:13:08:80:58:44:F3:5D:33:D2:22
X509v3 Authority Key Identifier:
keyid:AC:FD:9D:62:9D:D7:DC:55:04:C9:0B:EB:82:18:72:23:A9:9F:EE:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/103C4FFE8F3FFFA4F8F3FBD4DED3EDD0D8232E29429547E80EDF1F23E23C0D1A/0/ACFD9D629DD7DC5504C90BEB82187223A99FEEA7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ACFD9D629DD7DC5504C90BEB82187223A99FEEA7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/103C4FFE8F3FFFA4F8F3FBD4DED3EDD0D8232E29429547E80EDF1F23E23C0D1A/0/3230302e31342e34312e302f32342d3234203d3e203237383130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.14.41.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a1:43:df:21:46:66:93:33:63:27:cf:7b:f2:6e:13:93:28:
68:56:79:c8:18:ac:16:83:3f:fb:ce:02:16:09:81:3c:1c:ad:
3a:2a:9b:29:ff:b3:0f:c6:ab:95:27:58:be:41:d5:41:f8:1d:
e6:c6:6c:01:f9:94:17:12:69:0b:5c:79:35:e2:76:9d:4f:f2:
e7:74:4d:41:d5:1d:63:9f:ea:f6:84:8f:25:24:5c:f8:00:b9:
3d:5f:e5:ed:85:d5:84:0b:56:fd:52:5b:24:82:1c:4c:d5:07:
5b:c7:f1:81:99:62:31:3e:62:94:05:d0:8a:05:0e:a4:15:6f:
60:c8:e3:ab:94:1e:04:aa:a1:ed:99:3e:5b:28:17:97:42:e3:
5d:4f:3e:1f:f2:f8:e6:00:2d:5a:cf:55:94:56:8f:20:12:cf:
b8:17:a8:2c:91:af:39:5e:f5:95:d3:07:68:90:02:b6:e1:9f:
2f:24:46:25:2b:d0:d5:f3:40:e9:05:b0:ea:8f:80:5f:d4:d5:
37:76:5c:45:41:b1:1b:80:e5:49:c4:e4:90:fe:20:fb:a9:e4:
86:f6:6a:f3:ce:f2:98:59:58:91:96:95:93:5d:1f:95:8d:fd:
12:25:ab:c2:07:6e:59:bd:86:3f:f7:1b:3a:45:a9:f7:bc:d8:
8d:1e:0b:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:25 2025 by rpki-client