Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1CBDA3CBE3F94B19EDF009953C0F455D7053B060883FF74AB3FFCA12818F0932/0/3230302e3132352e3135372e302f32342d3234203d3e203238303431.roa
File: 3230302e3132352e3135372e302f32342d3234203d3e203238303431.roa (raw, json)
Hash identifier: hzDmycq7b+pfeP2DK0tNYRMt/puTmBQ2d0C7FNOLvMQ=
Subject key identifier: A9:B1:B4:94:5A:A4:3D:BB:3C:CD:4C:37:C8:1E:2A:82:05:D3:C0:E0
Certificate issuer: /CN=D2709F777988D8BB9C29DBBB53968812568C616E
Certificate serial: 755F8AA0FD38EB0EDA46A429583B05EBE130BB56
Authority key identifier: D2:70:9F:77:79:88:D8:BB:9C:29:DB:BB:53:96:88:12:56:8C:61:6E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2709F777988D8BB9C29DBBB53968812568C616E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1CBDA3CBE3F94B19EDF009953C0F455D7053B060883FF74AB3FFCA12818F0932/0/3230302e3132352e3135372e302f32342d3234203d3e203238303431.roa
Signing time: Tue 04 Feb 2025 18:33:22 +0000
ROA not before: Tue 04 Feb 2025 18:28:22 +0000
ROA not after: Tue 03 Feb 2026 18:33:22 +0000
asID: 28041
IP address blocks: 200.125.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:5f:8a:a0:fd:38:eb:0e:da:46:a4:29:58:3b:05:eb:e1:30:bb:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2709F777988D8BB9C29DBBB53968812568C616E
Validity
Not Before: Feb 4 18:28:22 2025 GMT
Not After : Feb 3 18:33:22 2026 GMT
Subject: CN=A9B1B4945AA43DBB3CCD4C37C81E2A8205D3C0E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fe:e7:61:11:fa:42:fa:e4:14:b3:5c:7c:50:
29:12:a0:46:f6:66:72:8d:41:aa:ed:4f:12:8a:0d:
0a:b2:36:7f:a9:96:52:d9:85:c9:0b:0d:8e:1f:b0:
8e:52:b4:e5:fa:7c:43:71:fa:d6:11:cf:c5:c8:7b:
85:1e:2b:2a:4e:4b:0e:9d:86:2f:f8:c3:2a:1f:87:
a3:2c:eb:77:4e:36:31:f8:f1:48:bd:af:54:98:63:
1d:27:fc:71:fa:54:74:9c:5c:c5:19:54:61:80:bc:
79:18:f8:49:34:36:15:7f:07:e0:09:33:db:7d:c3:
2e:da:6c:04:f8:63:ed:cd:7e:6c:bb:c5:f3:f0:16:
81:3c:8a:88:91:0c:00:ea:32:52:12:f9:30:8f:3e:
e4:28:14:0c:b0:7b:42:e6:d8:b3:61:e4:88:db:f4:
a6:63:63:4d:c2:0d:26:4c:e8:80:43:57:0f:fd:e4:
f7:90:08:ba:8a:7a:a4:81:2c:bd:bd:f2:20:fc:56:
39:b2:cc:43:17:c8:fd:35:48:ff:82:0b:51:86:db:
96:ef:3d:1f:fa:50:03:a0:5d:17:fd:39:f0:4b:f6:
02:3f:59:32:1e:ce:ed:8c:ee:8f:a8:a4:c7:d2:5c:
c8:ee:d6:a0:dd:ac:ba:8b:e5:d0:8a:b8:96:10:16:
ae:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:B1:B4:94:5A:A4:3D:BB:3C:CD:4C:37:C8:1E:2A:82:05:D3:C0:E0
X509v3 Authority Key Identifier:
keyid:D2:70:9F:77:79:88:D8:BB:9C:29:DB:BB:53:96:88:12:56:8C:61:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1CBDA3CBE3F94B19EDF009953C0F455D7053B060883FF74AB3FFCA12818F0932/0/D2709F777988D8BB9C29DBBB53968812568C616E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2709F777988D8BB9C29DBBB53968812568C616E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1CBDA3CBE3F94B19EDF009953C0F455D7053B060883FF74AB3FFCA12818F0932/0/3230302e3132352e3135372e302f32342d3234203d3e203238303431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.125.157.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:ff:8a:55:db:a3:bc:33:6d:24:63:0a:30:a4:9d:da:0f:2b:
66:2f:83:26:53:38:f7:98:04:0f:5c:b8:ca:b1:c2:db:c7:af:
22:de:a0:43:4b:4b:a9:ab:05:80:bc:6c:d8:eb:10:02:83:a6:
0b:5c:9c:21:4b:93:df:f0:b8:4a:25:1d:00:3b:61:bb:6a:76:
d5:ba:ca:c4:aa:f8:8c:13:48:e8:39:dc:cf:33:d5:07:ac:90:
69:f9:33:90:18:f9:b8:9b:30:46:be:c7:6a:04:b8:f6:a5:04:
ec:d5:68:1f:33:24:85:90:b7:a6:a4:9c:19:1b:b5:8e:4d:f9:
b6:fb:e1:fb:13:c1:c7:8c:12:00:31:a5:25:8e:ad:83:eb:72:
d3:bb:ff:af:20:e9:27:1b:8f:d7:73:14:0b:06:0e:a7:0f:8b:
3e:55:17:ae:9b:60:73:98:b0:12:4c:51:22:ce:dc:c3:e7:55:
31:cd:4d:48:eb:f3:51:d8:0a:71:e1:58:19:3a:c6:a3:b7:19:
f9:20:34:26:60:7c:04:38:35:bf:c0:58:28:71:2a:59:06:48:
11:5b:a8:b1:ba:11:e4:14:cb:da:bc:2f:be:34:c1:32:13:eb:
58:c6:88:30:8a:b5:9c:9f:6c:8a:ea:0c:ae:39:b1:b5:fe:0b:
da:72:4d:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:31:00 2025 by rpki-client