Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2C099A025DF24EB1B85190FF5FC025A43AF3169B338B2C531BAF72FBF8F691D8/0/3230312e3133312e3230302e302f32322d3235203d3e203238333837.roa
File: 3230312e3133312e3230302e302f32322d3235203d3e203238333837.roa (raw, json)
Hash identifier: Qj2EjH5qDGgJC42UVCvDivbnhKnhi9tbr3HSR1UonRQ=
Subject key identifier: EC:E9:36:6E:45:18:3B:18:90:2B:25:AD:36:17:5D:CF:C3:9C:AB:E0
Certificate issuer: /CN=F120FD76709C67C88845B1BB9132720E6262A870
Certificate serial: 401035B184BD3164E6D959D381C17CB90E91E5E2
Authority key identifier: F1:20:FD:76:70:9C:67:C8:88:45:B1:BB:91:32:72:0E:62:62:A8:70
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F120FD76709C67C88845B1BB9132720E6262A870.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2C099A025DF24EB1B85190FF5FC025A43AF3169B338B2C531BAF72FBF8F691D8/0/3230312e3133312e3230302e302f32322d3235203d3e203238333837.roa
Signing time: Mon 06 May 2024 15:10:00 +0000
ROA not before: Mon 06 May 2024 15:05:00 +0000
ROA not after: Mon 05 May 2025 15:10:00 +0000
asID: 28387
IP address blocks: 201.131.200.0/22 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:10:35:b1:84:bd:31:64:e6:d9:59:d3:81:c1:7c:b9:0e:91:e5:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F120FD76709C67C88845B1BB9132720E6262A870
Validity
Not Before: May 6 15:05:00 2024 GMT
Not After : May 5 15:10:00 2025 GMT
Subject: CN=ECE9366E45183B18902B25AD36175DCFC39CABE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6a:45:90:64:95:14:9b:85:d2:7b:7d:74:56:
22:90:ed:b4:6c:d3:23:36:d7:1a:f5:31:87:6a:f9:
b7:bb:f0:fe:c5:8e:2f:99:d6:5c:6a:bc:63:d6:a0:
76:5d:4f:22:6d:f7:67:41:fe:e4:4a:57:a9:0d:09:
48:f3:d1:a8:dd:b7:a3:87:3f:a9:62:e9:15:9f:81:
67:f8:53:31:81:ed:20:e8:2a:bf:6e:a5:f9:2c:58:
33:4f:cd:5d:52:f4:d2:15:a6:c9:dc:0f:9d:58:25:
c0:ca:c2:d8:2e:6f:18:ba:7d:c2:b7:a7:8e:55:06:
dc:e6:c1:01:d2:64:5a:cc:84:ec:7c:39:27:58:ff:
93:d4:af:c3:79:1f:22:dc:d4:0c:b5:a7:27:4c:75:
0c:94:b1:5b:a0:6d:c4:a5:49:84:38:a4:4f:84:72:
71:c6:e8:d2:87:39:c9:87:7c:38:7b:cf:04:1d:08:
eb:c2:1f:f5:c4:d5:d1:f5:e6:4c:c4:b5:bf:a5:ed:
ee:49:04:0c:a9:df:14:5c:99:da:45:7b:0f:a8:0a:
6f:71:bb:ae:f4:af:93:33:21:72:a5:eb:ab:e0:e7:
6e:11:95:54:de:4f:bc:31:12:04:fd:8b:21:e6:98:
0a:b8:4f:1f:72:11:25:b2:7b:99:8e:1c:f2:0a:29:
17:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E9:36:6E:45:18:3B:18:90:2B:25:AD:36:17:5D:CF:C3:9C:AB:E0
X509v3 Authority Key Identifier:
keyid:F1:20:FD:76:70:9C:67:C8:88:45:B1:BB:91:32:72:0E:62:62:A8:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2C099A025DF24EB1B85190FF5FC025A43AF3169B338B2C531BAF72FBF8F691D8/0/F120FD76709C67C88845B1BB9132720E6262A870.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F120FD76709C67C88845B1BB9132720E6262A870.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2C099A025DF24EB1B85190FF5FC025A43AF3169B338B2C531BAF72FBF8F691D8/0/3230312e3133312e3230302e302f32322d3235203d3e203238333837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.131.200.0/22
Signature Algorithm: sha256WithRSAEncryption
46:67:0e:d9:d4:38:ed:a0:d7:af:56:26:cc:8c:f3:52:6a:97:
0c:97:d8:81:58:12:fd:e2:cc:68:a9:52:c8:df:e2:80:c7:2f:
01:e1:b3:49:c5:ae:03:5a:97:19:5e:b8:04:ed:ca:dc:18:44:
a3:53:cc:af:26:f0:73:e4:91:78:0e:5e:9d:e7:d0:ed:06:ca:
d3:bc:40:c0:71:e2:c8:d4:14:90:1f:3e:a0:d0:c3:e2:3d:9a:
4a:4f:c2:a8:fe:a8:67:56:e5:70:e5:1b:b4:e4:9c:cf:d3:c6:
aa:12:28:f4:58:40:75:4f:5b:d4:89:41:1c:15:73:4e:01:d5:
40:3b:1f:86:d2:f8:65:d2:1a:45:d0:a8:b6:6b:8a:a8:64:14:
99:de:a5:69:2b:fa:db:cc:7d:2e:a5:ac:c4:10:71:f0:4f:21:
42:08:a8:b9:3b:6b:79:97:83:50:3e:a0:8d:b3:22:f0:ac:af:
49:fc:75:a4:4d:2f:de:bb:4e:10:06:b5:0d:68:54:65:70:d8:
39:25:47:69:88:48:22:6f:d4:6f:78:84:43:da:bd:3b:4e:59:
0c:81:f5:cf:98:8a:a3:25:5c:ab:d2:3e:4c:84:55:b4:6c:61:
9a:58:62:a0:c0:c7:f5:9e:f5:59:27:f9:b8:19:ed:a5:01:8e:
55:03:87:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:25:07 2025 by rpki-client