Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3134302e302f32342d3234203d3e20323732393133.roa
File: 3230302e38352e3134302e302f32342d3234203d3e20323732393133.roa (raw, json)
Hash identifier: HA0gPdWmlQ8NT29R5jO2MUUeo21fkCMBVrbV80IO4Gs=
Subject key identifier: 12:15:4C:E3:38:56:87:05:DE:0D:0E:C4:31:A9:62:A3:11:84:BB:A9
Certificate issuer: /CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Certificate serial: 74FE9158E1F812C8FD518B03773B3AC3C0A5E458
Authority key identifier: AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3134302e302f32342d3234203d3e20323732393133.roa
Signing time: Tue 04 Feb 2025 18:40:02 +0000
ROA not before: Tue 04 Feb 2025 18:35:02 +0000
ROA not after: Tue 03 Feb 2026 18:40:02 +0000
asID: 272913
IP address blocks: 200.85.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:fe:91:58:e1:f8:12:c8:fd:51:8b:03:77:3b:3a:c3:c0:a5:e4:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Validity
Not Before: Feb 4 18:35:02 2025 GMT
Not After : Feb 3 18:40:02 2026 GMT
Subject: CN=12154CE338568705DE0D0EC431A962A31184BBA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:33:b7:18:0c:97:cf:9c:a7:7b:d0:28:44:91:
c0:f0:e1:9b:f8:87:94:2a:e8:61:e2:bb:23:05:f2:
8f:bb:cf:44:c5:72:05:30:4e:48:71:68:63:de:61:
12:b7:01:12:ee:7d:b4:ab:7d:51:c2:34:2a:5b:9b:
36:f2:f4:89:d4:b1:31:71:cb:33:8d:15:62:e1:8b:
59:8c:81:49:17:b1:66:f1:43:1e:2f:7c:5c:14:cf:
65:da:63:11:9c:b9:46:5b:16:f3:82:a0:54:d1:c2:
fa:ed:2c:cd:19:dd:e5:c9:24:ca:7b:2c:52:64:99:
80:9d:06:74:fa:51:b2:8a:29:71:07:00:da:af:9d:
5c:f6:1a:e4:0c:ef:d1:1a:72:2e:8b:4b:b9:f7:db:
39:54:5d:62:cc:a6:6a:7f:38:3b:8e:78:9d:23:cc:
57:0c:4e:89:06:17:b8:ea:b9:9d:3d:15:07:7e:37:
16:ad:38:ae:3f:92:dd:fa:1a:33:13:ab:50:4a:f8:
61:4d:1f:ff:58:0a:0c:f1:e2:38:06:9c:5e:7b:9a:
dc:9c:43:2e:01:ba:c3:ca:97:d9:bb:ec:6e:2b:73:
e1:6c:51:76:d0:5d:db:a5:9f:2f:36:e8:f8:46:c3:
4b:cb:7b:cc:7f:d9:7d:4a:9f:a1:54:41:a9:ce:bb:
20:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:15:4C:E3:38:56:87:05:DE:0D:0E:C4:31:A9:62:A3:11:84:BB:A9
X509v3 Authority Key Identifier:
keyid:AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3134302e302f32342d3234203d3e20323732393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.85.140.0/24
Signature Algorithm: sha256WithRSAEncryption
be:93:d6:65:ab:a9:14:17:98:75:01:d2:ad:72:dd:9f:32:49:
74:26:38:60:f4:5d:ba:1c:3c:64:c8:1d:8c:52:79:8a:5e:14:
02:a8:f3:ee:08:e7:db:97:64:31:70:40:5c:d0:68:5f:d2:85:
5a:19:49:1d:09:a9:8f:2f:af:ed:b7:1f:d5:f4:c0:4a:47:84:
7a:91:38:43:0e:76:75:58:de:ee:0c:b0:7b:4d:00:0d:e7:b6:
7d:6b:3e:3d:02:2a:2a:f7:46:81:11:a9:19:4a:ff:65:42:19:
7a:58:73:f7:ee:3d:38:e4:21:3e:96:e5:b4:fd:25:ec:50:14:
dd:a5:0b:9b:95:e1:bf:0f:a0:fb:a5:a4:c9:24:b5:9e:a3:70:
58:df:fe:2e:ee:86:3a:ed:69:14:80:ac:60:6e:bb:47:01:00:
6b:3d:55:f8:c8:be:dc:6b:e6:db:96:b9:ec:38:8d:5f:76:eb:
48:52:0d:bc:a6:27:69:c5:a0:d3:44:09:c9:f6:f0:75:32:97:
81:c8:ee:ba:39:09:d3:c6:8a:5e:13:1a:c4:57:07:35:00:cd:
56:76:81:b8:44:c5:73:56:d2:f1:74:b2:2d:c5:f2:ce:f0:2d:
9e:27:eb:d0:37:8d:4f:be:0a:b8:32:62:7b:bc:04:6f:b6:a7:
f9:cf:73:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:09:13 2025 by rpki-client