Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/35EA57EDCFB8D3C555B7B09D2E5D658E6D2412BC89F1BC7A54777FDC15C93873/0/3230302e3232392e3134342e302f32322d3234203d3e203532343638.roa
File: 3230302e3232392e3134342e302f32322d3234203d3e203532343638.roa (raw, json)
Hash identifier: kqk0FVT3Avr003dFwjqxdZpHIM9oOM/l/YzONjSQKlw=
Subject key identifier: 1F:BC:64:81:74:D7:51:BA:AC:7C:DB:38:AC:32:51:73:24:31:04:CC
Certificate issuer: /CN=CEC9A488D079AEE7FE0B21664A1A4AEE1C899FDC
Certificate serial: 3BECD2FB1E8D7886B139CBD355316866F9FF971E
Authority key identifier: CE:C9:A4:88:D0:79:AE:E7:FE:0B:21:66:4A:1A:4A:EE:1C:89:9F:DC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEC9A488D079AEE7FE0B21664A1A4AEE1C899FDC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/35EA57EDCFB8D3C555B7B09D2E5D658E6D2412BC89F1BC7A54777FDC15C93873/0/3230302e3232392e3134342e302f32322d3234203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:33:43 +0000
ROA not before: Tue 04 Feb 2025 18:28:43 +0000
ROA not after: Tue 03 Feb 2026 18:33:43 +0000
asID: 52468
IP address blocks: 200.229.144.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:ec:d2:fb:1e:8d:78:86:b1:39:cb:d3:55:31:68:66:f9:ff:97:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEC9A488D079AEE7FE0B21664A1A4AEE1C899FDC
Validity
Not Before: Feb 4 18:28:43 2025 GMT
Not After : Feb 3 18:33:43 2026 GMT
Subject: CN=1FBC648174D751BAAC7CDB38AC325173243104CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:60:18:54:da:3f:4d:38:99:5b:1a:59:7a:23:
a0:54:82:c9:61:74:73:f7:81:68:3c:74:bb:f8:61:
03:9c:c2:fc:d9:8a:bf:fe:c7:6e:04:4a:a9:e9:17:
34:18:59:3c:40:93:ed:c6:ad:cb:e9:c2:dd:db:36:
96:0b:f7:72:fb:2f:0c:75:e0:93:c0:5c:37:2c:37:
3f:57:7b:e0:88:75:5c:37:d3:c1:fe:2c:8a:d4:30:
88:4c:db:48:cd:51:35:f2:54:49:34:08:11:2e:b1:
a6:c8:81:25:61:80:d6:d0:60:47:a0:dc:8c:de:34:
8f:4b:dd:44:39:db:95:a9:16:23:eb:ae:c7:d1:50:
ab:cb:69:6f:4d:2d:f9:a7:c1:5f:b8:99:ba:45:35:
1a:11:48:58:65:07:42:25:80:6a:bf:48:23:85:b5:
28:34:61:ad:ef:43:40:5e:b9:62:ba:34:db:d0:f3:
54:c7:5a:b0:41:9a:3b:a7:26:b3:32:50:a6:ae:fa:
a8:53:60:0f:72:c8:68:9d:4d:c0:35:06:95:90:cb:
25:70:4d:da:16:ce:4c:17:be:63:ee:57:95:16:28:
0b:0f:4e:24:0f:92:a9:b6:b7:5d:3a:cd:a4:9a:25:
1a:ed:b3:b0:28:81:e4:28:90:a8:d1:40:9e:e3:14:
8b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:BC:64:81:74:D7:51:BA:AC:7C:DB:38:AC:32:51:73:24:31:04:CC
X509v3 Authority Key Identifier:
keyid:CE:C9:A4:88:D0:79:AE:E7:FE:0B:21:66:4A:1A:4A:EE:1C:89:9F:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/35EA57EDCFB8D3C555B7B09D2E5D658E6D2412BC89F1BC7A54777FDC15C93873/0/CEC9A488D079AEE7FE0B21664A1A4AEE1C899FDC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEC9A488D079AEE7FE0B21664A1A4AEE1C899FDC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/35EA57EDCFB8D3C555B7B09D2E5D658E6D2412BC89F1BC7A54777FDC15C93873/0/3230302e3232392e3134342e302f32322d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.229.144.0/22
Signature Algorithm: sha256WithRSAEncryption
62:22:29:68:d1:89:b6:c3:73:bf:93:29:55:33:3b:26:49:00:
f7:20:c2:6d:ca:1e:e7:1a:80:59:ef:03:ea:18:b9:ce:58:05:
30:14:30:fb:7b:09:cb:82:64:ef:75:fc:a2:4d:26:b1:af:21:
61:c6:02:60:c6:fe:c9:7e:f0:25:dc:2b:d2:b9:13:fe:72:d1:
28:1b:72:3b:db:8c:f3:80:5d:31:a3:fe:99:6b:83:3e:23:e8:
e2:19:7e:b3:39:12:69:58:96:69:ca:58:35:a8:dd:0f:39:46:
e4:94:a2:7b:58:b8:bf:ae:d1:3d:29:53:42:19:3c:d3:b7:92:
4d:49:10:e6:d1:62:03:98:43:21:27:09:fa:00:94:83:79:c7:
49:cd:9f:2d:38:49:a2:de:16:eb:b3:8a:34:f3:e0:90:3a:2f:
75:df:1d:1a:28:49:93:1c:1e:01:1a:4a:31:40:61:ac:9f:03:
11:8c:fc:04:21:1d:a1:df:fa:01:aa:1a:71:0d:73:3c:89:95:
93:aa:fe:9f:02:83:03:91:48:1c:e1:e7:d4:1d:74:da:01:c5:
75:bf:f9:09:ac:12:08:4b:2a:6a:de:fc:fd:00:94:46:82:14:
b4:20:76:a2:ee:31:54:e4:12:15:eb:59:e2:d8:22:b0:20:ba:
37:a2:c5:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:45 2025 by rpki-client