Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1A3C227E19AA3716C777D495C59E5752560AD1D24ED9D2B6745C6DA5FB7FC311/0/3230302e32362e3138392e302f32342d3234203d3e203138373437.roa
File: 3230302e32362e3138392e302f32342d3234203d3e203138373437.roa (raw, json)
Hash identifier: d23utni53CayRraHk5tC6+X91gbvJdq5s6WjZzGLbCk=
Subject key identifier: 97:1E:6B:DC:DD:4F:86:56:1F:FE:A8:53:0C:9A:0B:F6:C7:1B:7A:27
Certificate issuer: /CN=CEC79BD3D4ACE7895836B5E42E6E5B5F6CA55994
Certificate serial: 25322BCF369F0C2FA11190AB182CFA1596F8739D
Authority key identifier: CE:C7:9B:D3:D4:AC:E7:89:58:36:B5:E4:2E:6E:5B:5F:6C:A5:59:94
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEC79BD3D4ACE7895836B5E42E6E5B5F6CA55994.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1A3C227E19AA3716C777D495C59E5752560AD1D24ED9D2B6745C6DA5FB7FC311/0/3230302e32362e3138392e302f32342d3234203d3e203138373437.roa
Signing time: Tue 04 Feb 2025 18:27:23 +0000
ROA not before: Tue 04 Feb 2025 18:22:23 +0000
ROA not after: Tue 03 Feb 2026 18:27:23 +0000
asID: 18747
IP address blocks: 200.26.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:32:2b:cf:36:9f:0c:2f:a1:11:90:ab:18:2c:fa:15:96:f8:73:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEC79BD3D4ACE7895836B5E42E6E5B5F6CA55994
Validity
Not Before: Feb 4 18:22:23 2025 GMT
Not After : Feb 3 18:27:23 2026 GMT
Subject: CN=971E6BDCDD4F86561FFEA8530C9A0BF6C71B7A27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b8:60:69:33:07:87:d5:0e:c2:18:c3:f4:43:
95:b1:f2:1c:a8:c6:13:c9:c5:b8:f2:ac:38:3e:da:
9e:c3:65:e0:2b:38:fd:e0:28:0e:2b:d2:f0:a9:7e:
bd:d5:4c:dc:e0:76:71:63:58:87:5d:54:12:1f:3d:
40:01:0f:6b:cf:78:8c:28:7b:37:ea:7d:6f:d3:f1:
6c:71:bf:cf:3a:2a:33:b1:4f:4f:a2:9f:95:d2:ba:
0d:26:57:24:6f:e6:30:31:25:a7:7c:e4:38:77:58:
d9:36:c0:5c:da:94:47:97:bb:ad:f2:b0:df:83:86:
5d:79:41:a2:d4:b0:78:14:60:c5:5d:e3:19:f8:1b:
32:92:70:a0:26:19:4f:34:93:65:06:0a:8b:1e:63:
47:cd:a3:03:34:b2:b6:cc:35:6b:93:7a:6f:80:64:
5b:f9:29:c6:43:08:1a:11:dc:a6:71:03:e1:ba:1b:
af:ec:88:9f:63:86:6e:bd:5c:d8:34:c2:e1:88:11:
b4:d1:da:8f:f2:b2:9c:01:ee:69:0b:a0:d2:86:6c:
0a:64:a4:1e:54:25:62:3a:5b:ef:dd:fc:69:e7:15:
c4:b6:1b:67:06:6c:64:d3:68:04:6e:07:5f:40:40:
09:52:0f:9c:b9:e6:f1:ac:83:9f:fe:3a:b8:3a:0e:
c6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1E:6B:DC:DD:4F:86:56:1F:FE:A8:53:0C:9A:0B:F6:C7:1B:7A:27
X509v3 Authority Key Identifier:
keyid:CE:C7:9B:D3:D4:AC:E7:89:58:36:B5:E4:2E:6E:5B:5F:6C:A5:59:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1A3C227E19AA3716C777D495C59E5752560AD1D24ED9D2B6745C6DA5FB7FC311/0/CEC79BD3D4ACE7895836B5E42E6E5B5F6CA55994.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEC79BD3D4ACE7895836B5E42E6E5B5F6CA55994.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1A3C227E19AA3716C777D495C59E5752560AD1D24ED9D2B6745C6DA5FB7FC311/0/3230302e32362e3138392e302f32342d3234203d3e203138373437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.26.189.0/24
Signature Algorithm: sha256WithRSAEncryption
67:48:ce:a3:8f:03:a1:da:ed:6d:67:dc:b0:8f:82:51:be:f8:
41:4b:75:bc:a7:e9:4a:d0:2b:33:c7:45:d5:07:4f:be:b6:cc:
75:a0:16:53:16:9e:89:8a:a5:2a:a9:08:74:3c:a4:b4:fe:04:
25:a4:25:fd:6f:b9:15:dc:ba:55:02:c2:79:3b:90:54:9e:bd:
cc:ed:dc:fa:ba:90:66:74:ee:70:f1:7a:d0:8a:f5:45:59:11:
f8:ca:d8:f6:d0:1c:a7:79:2e:b6:41:6c:b7:a1:68:42:e6:53:
32:d6:ee:69:75:7b:d3:ac:ae:cc:cb:8f:a7:af:1c:c1:6e:21:
57:7d:dd:e5:04:a8:69:6c:a8:bf:b9:a2:cb:53:b9:b7:d9:88:
57:a5:83:7e:45:6d:3c:d2:54:37:3c:f1:41:3d:66:b5:2e:84:
e2:ae:4f:ce:80:ea:a9:8a:1c:36:98:7e:f2:60:9b:c4:06:a8:
a2:67:fb:61:72:29:ef:43:a5:77:79:12:a0:15:b0:5e:43:f1:
33:39:e2:2d:22:de:a1:0e:83:fe:02:ef:f9:5f:f1:df:b6:0c:
86:24:e0:c7:3f:2b:f4:09:a2:59:d7:2d:48:c0:f1:4f:4b:de:
03:3a:f0:20:b2:88:e7:01:19:6f:1a:17:62:71:98:ef:ab:72:
58:cc:1c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:42 2025 by rpki-client