Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/3230302e32392e3139312e302f32342d3234203d3e2036343239.roa
File: 3230302e32392e3139312e302f32342d3234203d3e2036343239.roa (raw, json)
Hash identifier: efNuVt3sDW/QH7gE5chSZXSIzypa7fuc/K2ymC3aXaM=
Subject key identifier: D1:B3:0E:2E:2C:91:37:52:2E:E6:99:0F:3D:9C:30:4A:3B:47:0B:C2
Certificate issuer: /CN=CACAD70CF58B172E6D319A83D97EE37DB5B43E8B
Certificate serial: 074F7A99F082792CDB48A9A3F0D09B695CC134AA
Authority key identifier: CA:CA:D7:0C:F5:8B:17:2E:6D:31:9A:83:D9:7E:E3:7D:B5:B4:3E:8B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CACAD70CF58B172E6D319A83D97EE37DB5B43E8B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/3230302e32392e3139312e302f32342d3234203d3e2036343239.roa
Signing time: Tue 04 Feb 2025 20:03:24 +0000
ROA not before: Tue 04 Feb 2025 19:58:24 +0000
ROA not after: Tue 03 Feb 2026 20:03:24 +0000
asID: 6429
IP address blocks: 200.29.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:4f:7a:99:f0:82:79:2c:db:48:a9:a3:f0:d0:9b:69:5c:c1:34:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CACAD70CF58B172E6D319A83D97EE37DB5B43E8B
Validity
Not Before: Feb 4 19:58:24 2025 GMT
Not After : Feb 3 20:03:24 2026 GMT
Subject: CN=D1B30E2E2C9137522EE6990F3D9C304A3B470BC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d6:e5:d1:4b:0e:ab:28:d8:9d:cb:36:ae:24:
74:ce:f1:bf:c8:c8:bf:ca:c8:f3:5e:53:c8:a6:50:
92:4d:31:4f:54:74:e7:79:f4:35:42:4c:cf:50:8f:
29:df:5e:1f:b3:7f:b5:9b:cf:7f:63:cd:86:8a:5e:
fe:55:f8:b6:54:b9:64:f6:df:2d:c4:5d:38:4f:a7:
4c:55:bf:10:08:00:f0:18:1a:82:2a:14:df:e6:ea:
0e:d8:c6:73:28:da:9f:fc:9e:9a:8d:ae:ed:dd:e2:
5e:7c:cf:d5:c6:4b:2e:84:81:ca:9f:76:12:78:a9:
59:94:1f:56:54:2a:2d:ca:24:e2:59:5a:8a:94:f1:
d3:54:03:aa:68:5e:29:03:e1:a7:32:60:81:ee:35:
3a:e8:b5:87:6c:26:26:21:84:c3:d8:4f:e3:42:16:
5d:c4:c4:e5:d9:85:06:63:48:a4:e5:b6:55:9d:5a:
dd:26:25:4d:18:b5:a4:f3:36:b9:51:f9:75:d7:76:
71:03:8b:04:53:4a:ab:a1:ef:6b:9d:1a:79:6d:9a:
a0:93:32:d0:13:71:70:95:be:40:84:04:c8:3a:61:
c6:25:68:b6:a6:61:44:0e:0d:8d:f0:fd:7e:07:34:
58:f0:57:8f:7d:98:4a:6f:ae:f5:93:14:6a:e3:89:
ad:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:B3:0E:2E:2C:91:37:52:2E:E6:99:0F:3D:9C:30:4A:3B:47:0B:C2
X509v3 Authority Key Identifier:
keyid:CA:CA:D7:0C:F5:8B:17:2E:6D:31:9A:83:D9:7E:E3:7D:B5:B4:3E:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/CACAD70CF58B172E6D319A83D97EE37DB5B43E8B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CACAD70CF58B172E6D319A83D97EE37DB5B43E8B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1707840DCF59A833F5F9735ABB7DAB9A31BC3A36A388719B238E79CBD285869B/0/3230302e32392e3139312e302f32342d3234203d3e2036343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.191.0/24
Signature Algorithm: sha256WithRSAEncryption
26:5c:6d:45:4b:fe:f3:f9:b4:40:d4:7c:c0:e1:92:18:ab:22:
37:12:8e:4b:a7:14:74:00:bd:fc:eb:5e:81:45:d1:56:92:60:
02:5b:7d:9b:c2:df:ce:8d:50:c9:ff:2d:33:79:ec:c3:9f:39:
4b:50:96:3c:a0:d0:ba:a2:3d:f7:3c:d1:08:40:d1:1f:66:d3:
94:94:7a:c9:c5:55:82:3d:e6:15:af:5d:39:ba:d6:45:d2:c2:
52:8e:2c:fc:34:a2:95:75:09:47:a1:07:e7:11:ee:86:2a:c5:
1c:1f:72:bd:83:30:01:88:17:98:61:37:21:17:12:f8:88:d3:
7d:29:1b:41:b9:16:f4:36:b9:0b:22:1c:12:b6:cc:69:fb:5a:
1a:70:03:fb:a6:8d:05:ec:9c:57:16:63:0a:c3:c9:38:0d:7d:
7c:47:ad:d7:fc:da:f4:31:d6:39:54:d0:4c:82:0a:42:04:c5:
73:2a:b7:d3:7e:fb:2b:48:a3:26:a4:6b:de:ac:aa:40:2d:8a:
9e:5f:02:62:85:4f:9e:2b:2f:bc:c0:7c:5f:02:4f:36:e4:cc:
76:b9:87:c6:77:69:00:a6:f2:d8:0a:bf:2c:b3:ee:e2:73:a5:
f9:96:a9:08:35:bc:3e:c4:5d:89:59:2a:98:c6:f4:00:12:05:
e3:79:7b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:18 2025 by rpki-client