Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/197755D50927C6B2F7F5C79484CFBA9D38D2650D628BED80526C685DEB1DEB94/0/3230312e3232312e3132342e302f32332d3234203d3e203237393839.roa
File: 3230312e3232312e3132342e302f32332d3234203d3e203237393839.roa (raw, json)
Hash identifier: KeN5u7zRHLKVowYxoOqJllolF5WUH0lwzl2nbSg2MDM=
Subject key identifier: 1C:2F:6A:E9:49:52:69:49:A4:58:01:8E:26:4E:42:5C:76:24:56:E0
Certificate issuer: /CN=14330EF1B751531E7A503086E1572BCE2E37D0CC
Certificate serial: 6F014EDD5C54E8C6D4CB398A6FC212DBF27B64CE
Authority key identifier: 14:33:0E:F1:B7:51:53:1E:7A:50:30:86:E1:57:2B:CE:2E:37:D0:CC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/14330EF1B751531E7A503086E1572BCE2E37D0CC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/197755D50927C6B2F7F5C79484CFBA9D38D2650D628BED80526C685DEB1DEB94/0/3230312e3232312e3132342e302f32332d3234203d3e203237393839.roa
Signing time: Tue 04 Feb 2025 18:07:17 +0000
ROA not before: Tue 04 Feb 2025 18:02:17 +0000
ROA not after: Tue 03 Feb 2026 18:07:17 +0000
asID: 27989
IP address blocks: 201.221.124.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:01:4e:dd:5c:54:e8:c6:d4:cb:39:8a:6f:c2:12:db:f2:7b:64:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14330EF1B751531E7A503086E1572BCE2E37D0CC
Validity
Not Before: Feb 4 18:02:17 2025 GMT
Not After : Feb 3 18:07:17 2026 GMT
Subject: CN=1C2F6AE949526949A458018E264E425C762456E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:80:41:6c:45:ff:fd:69:cd:71:e4:a3:45:95:
bc:02:77:53:00:97:2f:4c:bb:da:5f:ea:ff:71:df:
d1:eb:8b:4f:24:f0:97:ac:62:35:6f:e7:39:6b:86:
08:ff:bc:94:20:cc:6d:93:73:1f:af:83:ac:84:9e:
d3:fb:55:f6:a4:11:6d:58:2e:4a:54:a8:f4:27:3a:
fe:29:62:21:3b:84:53:94:42:d4:5c:dc:96:ee:87:
14:ca:4c:d0:81:5c:aa:f5:ad:93:59:09:e3:84:d6:
81:33:94:0b:60:2f:25:ff:65:86:0f:7c:d3:e5:76:
27:f6:2a:9b:df:1a:6b:d5:de:3b:a8:09:ed:d4:d9:
9c:29:07:5d:10:51:4d:35:32:ed:d9:b9:a4:0d:35:
3d:96:44:35:69:b0:c8:49:40:44:99:51:74:0a:bd:
be:c6:87:56:0b:1d:42:84:d6:d0:25:5c:e0:30:55:
ba:60:51:ed:bf:cd:f4:9d:5a:3f:41:33:02:0b:58:
10:5c:2c:ac:ef:96:8d:d3:b0:5f:59:73:fc:f3:e9:
7e:fe:b5:bb:67:5e:3e:e1:f3:83:cf:cb:a7:c6:c6:
a0:a0:1d:fa:ab:7e:07:b2:ad:f2:44:1f:20:44:2f:
03:61:d5:47:fe:da:87:bb:18:11:4c:2e:0e:ba:26:
07:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:2F:6A:E9:49:52:69:49:A4:58:01:8E:26:4E:42:5C:76:24:56:E0
X509v3 Authority Key Identifier:
keyid:14:33:0E:F1:B7:51:53:1E:7A:50:30:86:E1:57:2B:CE:2E:37:D0:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/197755D50927C6B2F7F5C79484CFBA9D38D2650D628BED80526C685DEB1DEB94/0/14330EF1B751531E7A503086E1572BCE2E37D0CC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/14330EF1B751531E7A503086E1572BCE2E37D0CC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/197755D50927C6B2F7F5C79484CFBA9D38D2650D628BED80526C685DEB1DEB94/0/3230312e3232312e3132342e302f32332d3234203d3e203237393839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.221.124.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:67:e5:a7:ab:69:74:fb:39:e6:c5:38:4c:ba:de:e4:cc:3d:
93:b8:e7:bc:85:45:9a:55:99:cd:07:ac:11:5f:60:9a:c4:bd:
9c:f5:2c:81:b1:da:90:ce:e5:69:9b:6e:a9:64:5b:c0:69:2c:
de:97:c0:f0:07:bc:63:56:b8:2b:3c:b3:18:12:e4:76:fd:0e:
bb:82:5d:e2:7b:e4:1f:f7:97:5e:e3:42:98:66:f2:ef:47:22:
e0:dc:e9:e8:9d:70:29:9f:d2:f1:89:af:85:42:68:1d:fb:4d:
7f:13:1a:f1:cf:02:ed:b4:eb:ca:85:49:90:cf:6c:ac:75:62:
0f:ec:17:f5:f3:9a:4e:ef:7e:3c:53:9b:a8:e9:86:2e:67:39:
6f:d2:b0:9d:24:bf:79:7d:07:82:80:c1:b1:28:a1:56:98:aa:
7d:30:ae:00:da:1f:83:12:f5:10:22:88:69:b5:45:47:aa:ad:
cf:e6:9a:47:7f:bf:8d:da:eb:e7:e9:43:e8:5b:76:fe:d4:c8:
78:59:c4:ef:1f:ce:9b:ff:d4:a7:de:af:2c:db:71:bf:3d:3f:
bf:74:4f:e9:30:0f:cf:b4:aa:66:68:10:41:f6:47:c2:b0:00:
43:35:87:e0:90:c6:aa:32:20:90:57:95:70:e4:27:17:e5:78:
64:99:56:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:30 2025 by rpki-client