Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3230302e35382e39362e302f32302d3234203d3e203237383233.roa
File: 3230302e35382e39362e302f32302d3234203d3e203237383233.roa (raw, json)
Hash identifier: NHSLt3TRKtiY59qFr/COC6spkHmLSA4jap+kNK/XRuo=
Subject key identifier: B1:D2:96:E1:76:B0:2A:A2:9B:1C:BA:C1:FA:40:FC:82:55:6A:1F:6C
Certificate issuer: /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Certificate serial: 734A9E5149B114F29F8EE6289C9A39A19AD7EE47
Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3230302e35382e39362e302f32302d3234203d3e203237383233.roa
Signing time: Tue 04 Feb 2025 18:08:24 +0000
ROA not before: Tue 04 Feb 2025 18:03:24 +0000
ROA not after: Tue 03 Feb 2026 18:08:24 +0000
asID: 27823
IP address blocks: 200.58.96.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:4a:9e:51:49:b1:14:f2:9f:8e:e6:28:9c:9a:39:a1:9a:d7:ee:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Validity
Not Before: Feb 4 18:03:24 2025 GMT
Not After : Feb 3 18:08:24 2026 GMT
Subject: CN=B1D296E176B02AA29B1CBAC1FA40FC82556A1F6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:2a:d2:54:26:bf:f8:57:4c:25:87:dc:b6:67:
91:df:38:ab:1e:9f:76:db:0a:7f:0a:34:1f:ec:96:
eb:9f:e6:de:fb:7d:db:21:76:0b:60:67:01:76:62:
ee:10:47:cf:cc:5b:e0:d3:31:ab:49:be:88:75:4c:
cf:14:56:0f:f9:be:18:bf:e6:55:9e:cb:ce:63:06:
90:db:3e:97:20:f6:40:b8:93:d9:c1:a9:ba:73:64:
e0:81:64:ee:39:c2:0d:d0:15:a6:50:41:6f:58:55:
64:81:d4:92:2e:14:6f:67:52:5f:9b:68:8e:27:91:
a1:15:e9:61:aa:5d:07:37:bc:67:de:11:fa:94:e0:
4d:e8:83:1b:d2:72:fc:4a:74:58:d8:58:59:8b:1a:
1c:fe:4a:e1:5f:52:af:e3:c0:83:68:86:96:b8:0c:
53:41:95:17:d6:14:ad:4a:c9:71:b7:31:45:be:5e:
ae:22:be:83:e0:34:1a:6b:a5:5b:5b:15:7f:c5:9e:
38:88:f8:c6:53:8e:ea:6a:01:6b:44:fe:b7:15:ac:
a0:08:d1:cf:e2:7f:63:7f:4a:17:9b:87:b3:a6:49:
8c:d8:38:73:b8:22:69:50:af:88:2e:5c:0f:8d:f0:
03:1f:60:41:b6:9a:fd:c2:05:f2:e0:5e:ef:bb:f3:
1e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D2:96:E1:76:B0:2A:A2:9B:1C:BA:C1:FA:40:FC:82:55:6A:1F:6C
X509v3 Authority Key Identifier:
keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3230302e35382e39362e302f32302d3234203d3e203237383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.58.96.0/20
Signature Algorithm: sha256WithRSAEncryption
cb:fb:58:0a:21:7e:02:51:88:93:2b:13:2d:f1:f0:e3:dc:a6:
00:fd:fa:75:89:77:df:c9:2a:01:e1:1b:6b:f8:86:3f:c4:9a:
45:ef:b2:4d:c4:5b:43:ff:cb:3d:f5:9a:3a:91:1e:a8:c1:62:
31:ae:13:e8:75:85:cd:84:b2:cb:db:aa:3b:a3:ce:a3:20:64:
1d:38:f2:53:77:c7:6d:7c:7d:ef:be:2e:43:26:d6:c6:29:02:
5b:db:8c:a4:fb:e8:43:4d:6e:fe:65:71:ca:95:3e:3f:99:71:
64:f6:22:28:b2:ea:38:d5:11:88:5d:b2:58:84:03:02:5e:f3:
94:72:bd:30:76:a7:28:58:6f:7c:05:0e:3b:f5:e5:ab:a5:27:
54:ca:16:a0:fe:a0:5b:05:26:00:7b:9c:c4:dc:2e:d0:4f:28:
5a:0b:3b:47:f9:0b:b3:78:ee:bc:22:a3:fd:61:8a:6b:28:f6:
8b:f0:db:2f:a5:57:20:d8:35:af:dd:9a:59:b9:4f:35:8d:f7:
f1:f9:d8:cf:68:5c:62:6a:5e:86:23:91:77:9a:2e:76:f0:73:
c3:c1:18:f7:e1:44:21:55:dc:a7:67:d8:b9:02:c9:5b:d7:d6:
5f:eb:da:3d:3f:08:e4:f4:6e:25:74:d8:35:d4:8d:35:c4:3e:
d4:39:d2:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:51:15 2025 by rpki-client