Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/3230302e32392e31302e302f32342d3234203d3e2034393935.roa
File: 3230302e32392e31302e302f32342d3234203d3e2034393935.roa (raw, json)
Hash identifier: E8JN8jlSOyGqVk+87auwXwCeVQPSzfc4wSRx2FNm2uA=
Subject key identifier: F6:9C:4C:D6:3F:34:06:11:02:5B:10:38:D3:0D:3B:40:2A:0F:EA:7F
Certificate issuer: /CN=979E05FFEED48A9692454F668B83D49714C9FE39
Certificate serial: 0A7BDAF0B9DEDABCED03F90A510BD2901103830C
Authority key identifier: 97:9E:05:FF:EE:D4:8A:96:92:45:4F:66:8B:83:D4:97:14:C9:FE:39
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/979E05FFEED48A9692454F668B83D49714C9FE39.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/3230302e32392e31302e302f32342d3234203d3e2034393935.roa
Signing time: Tue 04 Feb 2025 20:03:33 +0000
ROA not before: Tue 04 Feb 2025 19:58:33 +0000
ROA not after: Tue 03 Feb 2026 20:03:33 +0000
asID: 4995
IP address blocks: 200.29.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:7b:da:f0:b9:de:da:bc:ed:03:f9:0a:51:0b:d2:90:11:03:83:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979E05FFEED48A9692454F668B83D49714C9FE39
Validity
Not Before: Feb 4 19:58:33 2025 GMT
Not After : Feb 3 20:03:33 2026 GMT
Subject: CN=F69C4CD63F340611025B1038D30D3B402A0FEA7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:86:2a:d3:37:fe:83:8c:a3:b2:37:10:0a:9e:
6e:6d:43:af:f4:ea:dc:33:60:16:46:9f:db:28:86:
4d:1c:9f:9a:1e:61:7a:be:e9:8b:f5:d3:59:cf:af:
0d:0e:e6:8f:c5:89:5f:57:17:84:c3:4f:47:66:10:
88:80:32:6e:64:95:b0:d3:39:5f:54:1d:d3:cb:22:
a0:8d:2f:7c:38:5e:53:3c:b0:57:d3:13:4b:f7:07:
b6:18:c9:b7:f6:9e:ee:69:38:8a:98:f5:cc:45:70:
21:90:50:b5:90:1f:86:35:d5:b1:e8:b0:42:4d:bf:
2b:0f:63:44:9b:71:c6:52:3e:16:ae:d1:af:b4:7e:
d1:fb:e7:dd:fe:1e:5f:ef:eb:8b:cf:dc:44:75:6a:
1c:c9:23:4b:bc:e4:0a:ca:0a:06:d8:22:19:26:12:
f9:27:7c:cb:76:e9:48:68:8d:ee:c9:70:3e:62:6a:
ab:a9:d6:8f:5f:ff:dd:62:b2:dd:ce:d5:8f:03:0f:
8f:97:db:75:e1:fb:82:42:88:8a:77:c1:9f:cf:b0:
6a:05:77:ae:44:5f:bb:b6:56:86:57:a5:ad:f9:3e:
5a:67:f7:df:e4:5a:cb:2c:8f:ab:59:dc:7d:d1:23:
09:38:e4:be:b9:a7:2a:ca:a4:e2:54:99:f8:57:b7:
5b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:9C:4C:D6:3F:34:06:11:02:5B:10:38:D3:0D:3B:40:2A:0F:EA:7F
X509v3 Authority Key Identifier:
keyid:97:9E:05:FF:EE:D4:8A:96:92:45:4F:66:8B:83:D4:97:14:C9:FE:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/979E05FFEED48A9692454F668B83D49714C9FE39.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/979E05FFEED48A9692454F668B83D49714C9FE39.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/3230302e32392e31302e302f32342d3234203d3e2034393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.10.0/24
Signature Algorithm: sha256WithRSAEncryption
05:d0:75:a8:31:47:37:8b:a3:b0:bc:40:c9:9e:55:8b:2d:8b:
23:b1:02:66:c3:2a:99:18:2b:5d:dd:f5:70:0d:bf:e0:32:32:
49:32:d0:77:c5:a0:9a:e9:62:cf:50:e5:41:30:3f:05:60:35:
bd:4f:0e:ad:cc:d7:cc:a6:17:fb:3b:e5:27:5e:42:cc:7c:b2:
35:e9:11:bf:8f:d8:98:ae:e7:2a:99:13:3b:12:77:e1:29:7c:
30:9a:c8:52:7b:ec:ab:1a:0b:dc:bf:ed:87:06:59:d0:28:15:
24:56:6d:b7:04:25:3a:63:ea:06:b9:d2:8f:bb:36:af:1a:fc:
48:47:b6:40:c1:02:6e:67:b4:38:5c:1e:bc:6e:46:75:16:d7:
fc:71:26:0f:29:8b:84:71:06:d8:3b:95:a8:6c:59:ce:70:17:
5b:55:4b:9c:a7:65:54:66:6a:c5:a3:76:4e:51:a5:f9:63:d8:
93:99:ef:05:ad:16:a4:70:9e:de:f4:75:e9:e7:5c:47:6a:97:
13:1f:a9:bc:c1:f3:33:54:5f:3a:ef:d4:5c:cd:bf:66:ec:81:
af:fb:4f:a2:94:46:7e:a5:db:1d:bf:f5:78:e1:0a:7e:ff:21:
ca:b0:04:71:f4:88:ee:32:af:d3:59:19:f4:8e:c3:c3:fa:5e:
c3:e3:57:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:32:48 2025 by rpki-client