Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e31332e34322e302f32332d3234203d3e203131303538.roa
File: 3230302e31332e34322e302f32332d3234203d3e203131303538.roa (raw, json)
Hash identifier: RHWA9jc3MJ+gukMwWxLVGL5UXWrNjwZIUp3NSe1MwgA=
Subject key identifier: 6E:D9:3D:BB:7B:9C:35:B2:AC:EF:6E:BD:CB:D5:9F:AD:8C:26:34:0F
Certificate issuer: /CN=1283B5F5ADDE2461E007DDCF79A4534AFC7A577F
Certificate serial: 7EE79B485A8DFD14947977383CEC39D42908187C
Authority key identifier: 12:83:B5:F5:AD:DE:24:61:E0:07:DD:CF:79:A4:53:4A:FC:7A:57:7F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e31332e34322e302f32332d3234203d3e203131303538.roa
Signing time: Tue 04 Feb 2025 18:37:15 +0000
ROA not before: Tue 04 Feb 2025 18:32:15 +0000
ROA not after: Tue 03 Feb 2026 18:37:15 +0000
asID: 11058
IP address blocks: 200.13.42.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:e7:9b:48:5a:8d:fd:14:94:79:77:38:3c:ec:39:d4:29:08:18:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1283B5F5ADDE2461E007DDCF79A4534AFC7A577F
Validity
Not Before: Feb 4 18:32:15 2025 GMT
Not After : Feb 3 18:37:15 2026 GMT
Subject: CN=6ED93DBB7B9C35B2ACEF6EBDCBD59FAD8C26340F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c4:f9:71:19:df:fa:9b:dd:8f:8c:56:ae:ca:
32:d2:49:5d:04:38:21:d7:41:45:24:1f:6d:77:f2:
45:10:74:4a:3f:9c:5a:a2:6b:cb:fe:1e:02:91:a9:
f5:69:09:f8:7a:10:a4:99:63:12:b9:8b:6a:37:c0:
60:f5:41:18:03:8d:c1:7d:4a:9c:da:13:9f:c6:6a:
56:85:0d:43:ce:19:2e:cd:9b:17:06:a2:44:35:66:
52:98:c9:6c:9b:de:49:30:ee:cd:48:25:78:68:26:
ef:2c:a9:51:ae:00:55:cb:e8:1c:91:1f:54:8f:9c:
d6:f8:a1:cb:7f:b2:66:44:fa:e6:59:96:e1:08:0b:
9b:e7:c9:7b:31:02:10:2c:d8:4e:cf:8c:7b:57:86:
77:fa:53:13:fb:16:79:fd:9b:2f:7e:cc:1f:9c:00:
3f:b9:1f:41:2d:fd:dc:8e:45:7d:7d:db:a6:48:1b:
74:30:bf:0a:96:a1:63:23:76:a6:da:b1:4e:da:67:
5c:62:9f:6a:5e:0c:55:93:a4:ac:49:eb:52:60:65:
a3:be:43:19:9d:e1:07:3c:ee:81:e1:a4:e9:63:ba:
c3:70:48:44:65:fc:d5:65:ad:d8:a4:41:47:7c:b8:
49:db:3e:6d:5e:45:ae:e6:7a:eb:58:81:bf:7d:cd:
ed:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D9:3D:BB:7B:9C:35:B2:AC:EF:6E:BD:CB:D5:9F:AD:8C:26:34:0F
X509v3 Authority Key Identifier:
keyid:12:83:B5:F5:AD:DE:24:61:E0:07:DD:CF:79:A4:53:4A:FC:7A:57:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e31332e34322e302f32332d3234203d3e203131303538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.13.42.0/23
Signature Algorithm: sha256WithRSAEncryption
37:b2:46:36:99:b4:d7:c1:98:c0:70:a6:99:00:da:50:82:1a:
a3:75:d9:bc:ac:e4:9f:3d:ff:94:c7:3b:77:65:07:a5:11:cf:
c4:b6:a6:e4:c0:19:e1:cf:ef:c9:4f:bb:72:9b:e8:62:fb:a3:
76:c0:0b:fc:2c:19:c2:8d:e1:e4:06:eb:7b:51:e8:a6:cd:e6:
48:ae:75:31:75:51:78:a8:2b:7c:2a:1e:f3:a1:d1:b6:23:11:
de:01:7f:04:18:99:ba:3a:34:a7:27:d6:0c:c6:8d:28:3e:c4:
4a:55:b9:ad:a1:c8:e3:7b:0f:5c:55:2c:03:49:d9:66:43:f2:
bf:ca:8f:32:5c:34:3b:9d:03:7c:a2:cd:f2:a0:69:35:46:61:
3e:21:15:ab:90:24:64:3e:ba:b4:05:a2:92:a2:65:11:65:c4:
96:cb:c5:d0:b3:5d:05:a9:bd:0a:08:f4:29:a6:68:f2:2d:48:
d9:23:64:77:9e:fa:03:d8:5f:3c:69:27:29:5c:84:cb:ff:c9:
83:15:6d:4e:20:32:cf:78:fe:17:b4:4b:61:2d:d4:11:27:20:
27:52:58:46:0b:b1:e4:ff:fd:91:b7:76:44:5e:40:0c:a4:b7:
9d:99:be:30:13:8c:4a:c0:03:7d:4c:8e:19:6c:52:cf:81:9a:
72:39:21:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:56:58 2025 by rpki-client