Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3230302e35382e3131312e302f32342d3234203d3e203237383233.roa
File: 3230302e35382e3131312e302f32342d3234203d3e203237383233.roa (raw, json)
Hash identifier: sxVN0O0hKDsnDrjxv9bDtfeC92/Q+LyYDs4z2mSGhBk=
Subject key identifier: 81:46:41:1F:EB:44:3D:51:04:F0:6F:17:F2:B8:52:D5:E3:1F:01:9F
Certificate issuer: /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Certificate serial: 1B610C3987B3E4C9139990080965D37DB6138681
Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3230302e35382e3131312e302f32342d3234203d3e203237383233.roa
Signing time: Tue 04 Feb 2025 18:08:09 +0000
ROA not before: Tue 04 Feb 2025 18:03:09 +0000
ROA not after: Tue 03 Feb 2026 18:08:09 +0000
asID: 27823
IP address blocks: 200.58.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:61:0c:39:87:b3:e4:c9:13:99:90:08:09:65:d3:7d:b6:13:86:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Validity
Not Before: Feb 4 18:03:09 2025 GMT
Not After : Feb 3 18:08:09 2026 GMT
Subject: CN=8146411FEB443D5104F06F17F2B852D5E31F019F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:56:ef:51:0b:8d:8a:78:a3:43:df:2d:3f:8c:
b1:1d:70:fe:61:35:74:14:7c:af:5a:41:b3:9c:2e:
9c:7e:3d:40:72:78:a1:70:8b:93:c9:a4:a6:d7:4f:
bc:fc:68:b8:6d:e0:50:8d:41:80:07:99:1d:c3:ad:
7f:0e:cd:b9:73:e0:0c:cf:49:38:5e:7a:ba:3c:3b:
53:e2:40:0d:e4:7b:2a:c5:22:3c:87:76:b1:fe:9b:
9a:b5:d8:2e:8f:da:55:d6:25:e5:5e:23:aa:25:92:
0e:ba:ec:39:8d:09:55:9d:12:30:e4:c0:19:ab:ff:
69:d9:24:15:52:b5:4e:47:fa:02:32:d7:ca:b8:ec:
29:46:0d:62:20:e5:0e:a2:ac:9a:37:4c:0e:45:48:
5c:82:51:46:a5:bf:6d:fd:b5:e7:52:ca:06:d0:8e:
7d:ad:8b:26:b1:ba:11:54:87:58:34:3f:f0:15:41:
ec:b6:f4:4a:bc:ef:c2:47:ab:9d:86:0f:34:d4:94:
3a:7a:8d:02:d3:8a:e0:87:b8:15:35:bc:bb:65:bb:
88:59:f4:4f:2e:b0:8c:3f:9f:7a:af:f0:22:a2:d1:
e0:68:ec:0f:0e:4c:07:64:e4:e3:54:bb:6d:68:54:
fe:4d:d2:27:67:8f:22:1a:d4:9c:98:58:73:16:f3:
88:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:46:41:1F:EB:44:3D:51:04:F0:6F:17:F2:B8:52:D5:E3:1F:01:9F
X509v3 Authority Key Identifier:
keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3230302e35382e3131312e302f32342d3234203d3e203237383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.58.111.0/24
Signature Algorithm: sha256WithRSAEncryption
72:9a:fc:93:4c:38:87:f2:d6:72:0e:6f:56:25:ad:3a:e0:35:
8a:b8:7c:41:8e:24:92:66:23:b0:12:e4:42:1e:01:4b:0a:2d:
3c:94:9e:2c:b6:27:46:32:ec:94:3a:d8:6c:1f:88:a6:c3:a8:
a3:7a:2d:e9:eb:54:94:63:c6:58:84:c6:b8:38:8e:ad:00:12:
2a:18:1e:a4:46:04:db:97:ab:14:0c:b3:9e:32:e5:bf:b7:17:
5b:2b:e0:a5:5c:8a:70:e7:d6:23:98:c8:4a:c0:70:d2:b0:f5:
df:a7:38:e1:87:14:76:21:51:1c:9f:0c:ed:79:1a:f2:8d:9c:
1c:ec:4b:a4:1f:ec:e2:fa:28:fa:8a:a0:a7:08:19:90:98:57:
9e:df:30:02:b1:88:ce:a9:dd:b1:f6:39:a6:1e:b9:34:84:c0:
44:86:16:e8:83:6f:11:39:8b:95:cb:97:68:b5:b4:b1:d1:1b:
3a:91:19:e3:0a:ed:6d:f0:df:67:b3:8e:4b:03:ae:da:eb:bb:
54:5a:7a:96:44:f2:3a:cc:3b:45:05:d8:63:10:ae:c2:0c:d5:
f9:47:29:9c:0a:55:71:9f:d4:76:5c:94:a9:0e:93:d6:48:23:
49:d8:da:95:c8:bd:42:55:6f:a6:9d:2b:1d:eb:62:3d:9d:13:
f0:5b:4f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:50:34 2025 by rpki-client