Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3132382e302f32312d3234203d3e20323731393036.roa
File: 3230302e38352e3132382e302f32312d3234203d3e20323731393036.roa (raw, json)
Hash identifier: uOHcKNXg5QJhaKC/+6pMfoV+Rm0Je7sIfFJVGMOaL9A=
Subject key identifier: 9A:8C:97:56:67:C9:50:67:30:5D:B6:DF:14:C9:2F:68:06:4C:FF:BC
Certificate issuer: /CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Certificate serial: 237E1A7AB141A1E466E60741C3AFA0860B13BA2B
Authority key identifier: AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3132382e302f32312d3234203d3e20323731393036.roa
Signing time: Tue 04 Feb 2025 18:40:03 +0000
ROA not before: Tue 04 Feb 2025 18:35:03 +0000
ROA not after: Tue 03 Feb 2026 18:40:03 +0000
asID: 271906
IP address blocks: 200.85.128.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:7e:1a:7a:b1:41:a1:e4:66:e6:07:41:c3:af:a0:86:0b:13:ba:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Validity
Not Before: Feb 4 18:35:03 2025 GMT
Not After : Feb 3 18:40:03 2026 GMT
Subject: CN=9A8C975667C95067305DB6DF14C92F68064CFFBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:44:17:9d:c4:bc:ae:3f:82:52:bb:a8:d4:33:
ae:86:52:af:db:cf:fb:af:d3:c2:28:2b:f7:e4:6a:
fe:3c:20:4b:d5:4e:c4:b3:75:43:1f:32:57:1e:92:
e0:06:a5:04:a9:60:04:85:fb:ed:d7:c1:19:88:39:
f3:d9:91:09:ff:eb:9b:89:f3:d1:19:45:da:bb:7e:
bd:eb:98:91:f3:67:38:af:3f:c1:f2:0b:4c:a2:b6:
a1:35:75:58:b9:b5:1a:41:5b:4b:5e:9d:7f:55:0e:
02:13:e0:43:c8:db:67:37:b5:08:74:21:a4:af:bb:
cb:a3:b2:eb:e4:99:9c:43:f9:89:88:77:ea:f0:54:
18:45:7c:cc:0c:89:a5:a1:ff:7a:d6:0c:62:55:01:
1f:ba:fb:2c:66:82:08:75:8d:11:77:b9:bb:ff:ab:
11:7d:e8:5d:e7:2a:ba:fa:28:29:d7:9d:c3:70:fb:
ba:0a:ad:fa:8f:cb:b1:2f:b8:0e:f8:10:4b:e1:54:
61:f0:1a:aa:ca:b2:ee:90:35:60:7c:3b:a0:38:69:
ac:62:e4:12:65:e3:31:02:1d:c3:9a:49:24:8e:f3:
f5:a0:64:45:5a:a7:48:60:02:4d:28:09:b9:27:b0:
b8:91:49:9b:f4:ef:91:87:19:fc:6a:7c:8b:de:d5:
b2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:8C:97:56:67:C9:50:67:30:5D:B6:DF:14:C9:2F:68:06:4C:FF:BC
X509v3 Authority Key Identifier:
keyid:AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3132382e302f32312d3234203d3e20323731393036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.85.128.0/21
Signature Algorithm: sha256WithRSAEncryption
82:3a:05:4d:6a:0e:83:da:dc:ab:dc:6f:af:fd:1f:a8:e8:98:
b6:0d:6a:89:62:5e:51:8c:9a:8b:77:f5:a8:95:dd:82:ee:c4:
fb:0e:45:2a:fc:0f:f2:5f:aa:4c:12:54:26:7c:4b:5f:90:4a:
79:18:ff:9a:6d:0a:6d:fa:af:61:17:64:92:09:07:ff:8c:fc:
40:6f:89:66:7b:d3:6b:0c:9f:a3:45:dd:44:0b:73:65:a4:88:
3f:46:be:44:af:14:6f:f5:ab:d5:03:dd:b7:c9:40:4b:96:44:
42:2e:5d:63:04:48:cf:c3:ba:64:8d:19:de:39:ee:70:b0:96:
5d:58:46:68:f8:db:7d:4e:4f:24:33:5e:67:9a:ba:e1:01:ab:
1d:b7:d5:a3:cf:d1:f2:46:f1:17:31:97:8f:d6:30:d7:5c:e5:
88:ff:46:0a:7d:2d:87:cc:9b:d3:ac:84:45:8f:69:98:e0:71:
9b:8b:ae:20:33:11:4a:19:64:50:a3:7d:1c:00:5f:d7:bb:07:
80:4d:a2:25:ee:64:2e:23:38:68:b3:ad:49:40:b1:7f:45:66:
0e:ae:bc:96:d2:03:eb:2e:c2:c1:24:de:af:80:7f:9f:49:30:
2c:30:08:57:d8:5f:59:59:5a:24:13:16:02:40:94:5c:1f:dc:
cf:7b:21:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:04:49 2025 by rpki-client