Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/3230302e32392e3134332e302f32342d3234203d3e2036343239.roa
File: 3230302e32392e3134332e302f32342d3234203d3e2036343239.roa (raw, json)
Hash identifier: rD8qwbQjzlRmxdbSPVio0ecPLo+rfJDM9Wm9/Itn3bg=
Subject key identifier: 55:9A:46:67:88:FB:EA:3F:66:52:64:48:C8:2F:78:01:79:78:17:C4
Certificate issuer: /CN=CACAD70CF58B172E6D319A83D97EE37DB5B43E8B
Certificate serial: 063EBDB8995A1885E2E118C2B2956F89FFE25DBE
Authority key identifier: CA:CA:D7:0C:F5:8B:17:2E:6D:31:9A:83:D9:7E:E3:7D:B5:B4:3E:8B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CACAD70CF58B172E6D319A83D97EE37DB5B43E8B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/3230302e32392e3134332e302f32342d3234203d3e2036343239.roa
Signing time: Tue 04 Feb 2025 20:03:18 +0000
ROA not before: Tue 04 Feb 2025 19:58:18 +0000
ROA not after: Tue 03 Feb 2026 20:03:18 +0000
asID: 6429
IP address blocks: 200.29.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:3e:bd:b8:99:5a:18:85:e2:e1:18:c2:b2:95:6f:89:ff:e2:5d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CACAD70CF58B172E6D319A83D97EE37DB5B43E8B
Validity
Not Before: Feb 4 19:58:18 2025 GMT
Not After : Feb 3 20:03:18 2026 GMT
Subject: CN=559A466788FBEA3F66526448C82F7801797817C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:15:9b:fc:e1:5e:27:0c:37:d6:33:e3:1b:e5:
8d:70:9e:65:9b:e5:5d:0c:20:5d:b8:fa:df:a1:d5:
c6:99:8f:c7:17:64:b2:34:de:e2:b9:ef:4d:69:57:
9f:69:56:77:9e:7b:34:55:e4:15:f9:a0:e4:f9:ca:
4f:33:c6:64:07:7e:67:3d:35:71:ac:82:1b:e1:19:
72:4f:00:da:43:bf:3a:95:6b:9e:0d:4b:26:0e:80:
21:c2:8c:93:1a:0f:e4:94:d9:89:30:08:d0:df:85:
0f:ce:f5:6b:ed:8a:15:fa:eb:42:63:db:bc:98:9f:
0f:25:bc:b9:17:cd:e4:5d:52:2d:cb:24:77:a0:86:
27:87:bf:d7:b2:8b:50:33:30:99:44:36:68:e0:da:
01:f9:6e:4f:f2:03:51:bf:c6:84:e5:93:44:e2:f8:
0d:53:f7:00:d2:fd:c9:b7:6a:cc:85:ef:ca:59:1f:
f1:df:53:d1:f5:ac:58:5b:97:71:82:ff:ac:91:19:
19:08:fb:a4:62:14:8a:b4:18:3a:81:96:9d:be:03:
be:24:05:73:c8:da:4b:48:6e:96:50:10:09:93:dc:
53:bc:1a:c2:74:21:39:c0:0b:df:10:9e:00:d7:58:
9f:52:ea:25:d9:40:eb:af:8b:8f:b6:8e:c3:01:cd:
e7:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9A:46:67:88:FB:EA:3F:66:52:64:48:C8:2F:78:01:79:78:17:C4
X509v3 Authority Key Identifier:
keyid:CA:CA:D7:0C:F5:8B:17:2E:6D:31:9A:83:D9:7E:E3:7D:B5:B4:3E:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/CACAD70CF58B172E6D319A83D97EE37DB5B43E8B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CACAD70CF58B172E6D319A83D97EE37DB5B43E8B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/3230302e32392e3134332e302f32342d3234203d3e2036343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.143.0/24
Signature Algorithm: sha256WithRSAEncryption
53:04:ff:6a:d1:36:ca:99:45:5a:80:2c:91:94:88:83:30:87:
28:db:7f:3a:d1:03:65:50:c0:b6:c8:a0:72:46:f1:95:ec:c9:
d5:12:1d:35:b2:bf:0a:e7:3f:c9:fc:f5:59:15:3e:d3:92:b1:
8f:b3:d9:fd:52:2a:21:7d:7b:d9:2c:d0:91:7f:9a:60:3d:56:
05:32:33:3f:2f:0a:fb:d2:d8:7f:74:1b:37:25:1b:37:83:49:
12:07:42:e6:38:85:be:44:17:d3:60:0e:1b:10:04:07:0d:40:
29:a9:d6:8a:3d:8c:4c:53:36:89:9a:7e:fe:b5:48:2d:92:4a:
f7:68:92:9a:a9:ce:0f:d0:40:49:e0:7c:03:12:6c:b6:99:e0:
74:cd:32:2c:81:8a:22:a3:e7:09:75:d9:96:16:a8:48:02:5c:
92:04:83:08:66:b1:16:ac:ab:44:ff:57:54:44:8b:9d:09:ef:
2c:39:ad:15:e5:f3:0f:6d:53:74:52:f8:ff:05:4b:9a:17:a5:
20:d9:9e:ee:a8:57:a7:a8:72:33:f5:bd:dc:75:40:6d:98:c0:
f9:05:91:42:30:84:90:d7:1a:12:97:e6:5e:03:a5:74:73:c5:
04:48:54:f5:de:63:63:fe:f6:da:c0:62:62:0b:37:79:58:0c:
ec:69:f3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:11 2025 by rpki-client