Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230302e31342e37342e302f32342d3234203d3e203532333539.roa
File: 3230302e31342e37342e302f32342d3234203d3e203532333539.roa (raw, json)
Hash identifier: zLBXNq3i0LAeVnu9qJyb+HGI8RQRYfDDqCPpmITXkOo=
Subject key identifier: 3C:18:F3:99:84:1D:96:87:95:A9:54:F9:FD:D3:90:4D:DB:5D:31:F9
Certificate issuer: /CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
Certificate serial: 430D1255D5DFA33C875A30A26FE11B7384380BEC
Authority key identifier: 48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230302e31342e37342e302f32342d3234203d3e203532333539.roa
Signing time: Tue 04 Feb 2025 18:35:23 +0000
ROA not before: Tue 04 Feb 2025 18:30:23 +0000
ROA not after: Tue 03 Feb 2026 18:35:23 +0000
asID: 52359
IP address blocks: 200.14.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:0d:12:55:d5:df:a3:3c:87:5a:30:a2:6f:e1:1b:73:84:38:0b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
Validity
Not Before: Feb 4 18:30:23 2025 GMT
Not After : Feb 3 18:35:23 2026 GMT
Subject: CN=3C18F399841D968795A954F9FDD3904DDB5D31F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e3:f3:a3:66:15:a1:7b:32:d1:ff:e0:50:81:
d7:c4:d7:8d:64:75:ed:13:4c:75:1c:96:a7:5e:e8:
51:ae:73:e7:47:77:57:cf:67:ec:22:19:a4:36:3b:
34:d2:4a:35:b9:62:9f:bb:e1:4d:36:ab:b3:d6:21:
92:c7:a1:63:6d:c8:2d:e6:bd:95:aa:61:af:45:27:
8d:a7:8c:75:97:1e:a8:fc:1c:7b:16:28:aa:10:0e:
d8:b1:e2:7f:5c:f4:f5:6a:23:ce:e6:de:37:e8:48:
ed:8f:17:54:c0:1d:3d:4c:f4:b4:67:6f:50:65:13:
ad:1f:23:c5:d4:4a:71:64:9a:39:87:90:98:30:8d:
b4:a7:7d:93:54:b3:4c:cc:5a:13:bf:93:3f:cb:1f:
e2:6f:c6:24:73:dc:51:c5:9f:56:6e:3e:f9:83:6c:
55:2f:3a:a6:73:a6:3b:b5:4a:e3:a5:db:76:59:10:
0e:d3:69:57:13:87:dc:d2:a5:32:3a:d3:00:34:bb:
a7:77:4c:4d:b2:bb:8c:ec:87:30:65:30:ff:63:f7:
72:d9:ac:da:3d:52:a4:8e:fd:d1:e9:5f:e5:c1:18:
fd:3b:de:11:d0:7b:9b:c8:bd:07:85:6a:3f:d5:d0:
ab:40:14:8b:76:48:21:78:45:0a:bd:76:fb:a2:b1:
41:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:18:F3:99:84:1D:96:87:95:A9:54:F9:FD:D3:90:4D:DB:5D:31:F9
X509v3 Authority Key Identifier:
keyid:48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230302e31342e37342e302f32342d3234203d3e203532333539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.14.74.0/24
Signature Algorithm: sha256WithRSAEncryption
25:67:33:af:52:64:ac:e4:04:65:16:1e:fa:15:98:c3:7d:b5:
8d:fd:ac:11:6a:73:06:06:ae:9c:c6:af:f9:6a:54:52:3f:53:
a2:61:13:d9:80:6e:e2:4c:b6:de:5e:e4:65:ec:4c:6e:65:64:
78:25:f7:46:be:82:56:5c:2b:eb:45:ca:84:7e:e7:8d:85:3f:
28:12:0c:64:68:ba:61:f1:c3:e6:7a:2c:df:1c:4a:c6:a0:3b:
24:4e:23:ef:02:0d:3b:f4:e3:5d:fb:80:74:64:8f:76:8e:7f:
bd:74:14:04:3c:84:61:5e:c8:26:41:02:46:55:9c:f8:67:da:
f0:ae:36:f8:8c:79:cc:9f:df:42:31:c0:a2:f6:df:a9:d5:dc:
00:1b:20:d5:5b:dd:18:96:2e:de:15:d0:9d:a4:a9:85:05:96:
46:6e:62:b0:11:e3:f9:90:32:2b:51:1f:ca:44:17:1f:6f:a9:
48:4d:88:b5:fd:5f:30:33:2e:f1:a8:f0:40:2e:fa:61:3c:ce:
f4:b2:93:9d:b1:fe:20:b4:71:1a:dc:d0:78:c3:dd:60:94:00:
8b:e4:a8:eb:48:e2:61:e6:dd:f6:49:17:d0:66:93:20:ce:0d:
f4:7d:f9:70:6b:be:a1:d7:f9:e4:85:2c:0b:7a:c8:1f:38:da:
9c:1e:f4:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:00:14 2025 by rpki-client