Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1BF0FD508359E4862226854E2221A15A462D3B1BC654472302E7D4FD5BB35D27/0/3136302e32302e3232352e302f32342d3236203d3e20323637363835.roa
File: 3136302e32302e3232352e302f32342d3236203d3e20323637363835.roa (raw, json)
Hash identifier: THWUqyS0t36Rdq7rN0aVE8A3drcjCpiNWo261a35CB8=
Subject key identifier: A8:FD:C4:FD:6E:5D:30:1E:9A:66:26:C4:02:FC:07:F0:72:00:68:C2
Certificate issuer: /CN=24CF67069E9BB589E3A34EDAE398737367CE3473
Certificate serial: 1467FA594373A1D723C82B98C814A3AA590F31C3
Authority key identifier: 24:CF:67:06:9E:9B:B5:89:E3:A3:4E:DA:E3:98:73:73:67:CE:34:73
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24CF67069E9BB589E3A34EDAE398737367CE3473.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1BF0FD508359E4862226854E2221A15A462D3B1BC654472302E7D4FD5BB35D27/0/3136302e32302e3232352e302f32342d3236203d3e20323637363835.roa
Signing time: Tue 04 Feb 2025 18:48:50 +0000
ROA not before: Tue 04 Feb 2025 18:43:50 +0000
ROA not after: Tue 03 Feb 2026 18:48:50 +0000
asID: 267685
IP address blocks: 160.20.225.0/24 maxlen: 26
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:67:fa:59:43:73:a1:d7:23:c8:2b:98:c8:14:a3:aa:59:0f:31:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24CF67069E9BB589E3A34EDAE398737367CE3473
Validity
Not Before: Feb 4 18:43:50 2025 GMT
Not After : Feb 3 18:48:50 2026 GMT
Subject: CN=A8FDC4FD6E5D301E9A6626C402FC07F0720068C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:af:51:7a:69:21:ff:00:8e:fc:57:14:34:4d:
0b:77:fb:f3:86:8f:fa:b4:14:81:e5:c2:6e:07:47:
b9:c6:5e:8d:25:50:3d:61:61:7e:6f:63:0e:78:77:
9d:c3:d0:92:52:f5:6f:24:25:10:ea:a2:ad:f3:2f:
17:95:dd:1c:75:bc:a1:6a:e7:2f:47:f3:f3:34:c2:
99:ab:96:61:1b:42:a0:48:12:22:7a:ea:17:74:ba:
bd:71:29:62:c4:87:62:1d:38:3f:b5:e5:e2:7f:e8:
a4:ac:d8:04:dd:21:c2:6e:64:84:9f:3b:32:cb:7c:
13:aa:54:3a:b4:41:b6:b5:b6:c2:42:ab:48:82:ee:
cb:3f:b3:6b:a1:55:1a:14:ba:e0:ac:1e:ee:d7:8f:
7f:48:32:2e:34:3d:bb:c8:b6:ea:c0:8b:51:2d:13:
5f:db:57:dc:e4:c0:ce:d9:a9:94:d5:77:e2:07:43:
8d:af:3f:78:9e:dc:17:5d:75:74:5c:97:92:c0:9a:
6e:e8:4e:d5:2e:e0:22:ab:60:21:23:a9:57:5f:90:
bd:9f:bb:9e:41:b1:e6:60:0c:09:40:89:f3:fe:62:
4c:98:e9:b9:a9:7b:6d:51:34:21:21:da:2d:67:54:
a2:26:44:66:05:6a:d3:e1:e9:0e:9e:83:29:e3:f4:
d9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:FD:C4:FD:6E:5D:30:1E:9A:66:26:C4:02:FC:07:F0:72:00:68:C2
X509v3 Authority Key Identifier:
keyid:24:CF:67:06:9E:9B:B5:89:E3:A3:4E:DA:E3:98:73:73:67:CE:34:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1BF0FD508359E4862226854E2221A15A462D3B1BC654472302E7D4FD5BB35D27/0/24CF67069E9BB589E3A34EDAE398737367CE3473.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24CF67069E9BB589E3A34EDAE398737367CE3473.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1BF0FD508359E4862226854E2221A15A462D3B1BC654472302E7D4FD5BB35D27/0/3136302e32302e3232352e302f32342d3236203d3e20323637363835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.225.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:f0:e5:e3:c1:5f:e8:0d:98:d7:e0:dd:3c:0f:1e:1f:d5:22:
78:40:d9:2d:5b:d8:8f:81:aa:9f:cf:91:9a:f1:fe:2e:11:39:
43:bd:a8:22:01:9f:e1:a4:22:72:0f:e5:1d:e9:28:a9:d8:d4:
9f:e8:ef:2a:14:ef:01:37:5d:70:ce:32:bc:1c:5a:e0:ad:47:
ac:68:b6:62:de:82:71:16:fb:c8:b8:96:1d:40:2f:12:75:e2:
b8:f4:5d:cb:dd:b4:0a:62:70:5c:86:18:fd:f6:e4:95:2c:57:
10:b8:3e:1c:ac:aa:97:b7:12:3c:b5:55:44:36:7f:20:17:3b:
e0:d9:73:03:bd:08:cb:e8:a6:6a:d3:8e:d7:8c:33:55:b3:86:
cd:f3:f3:a3:2f:ca:15:38:04:29:be:7e:16:93:bf:4d:de:52:
13:fe:f5:e2:55:d1:8a:5d:9c:c6:8f:73:94:2e:88:a8:15:4c:
af:b2:5d:33:1f:0d:5a:3b:9a:b4:bf:10:55:0e:1e:08:99:75:
c0:3e:ce:9c:c9:61:53:79:2e:7d:e1:cc:29:33:65:9e:19:87:
89:05:d5:a0:53:22:19:08:76:ef:7b:87:e9:d3:94:9b:21:37:
7f:fa:90:b5:1c:3d:a5:b9:e2:ea:8a:40:50:00:13:b7:8c:48:
a7:65:ea:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:24 2025 by rpki-client