Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e20323131383636.roa
File: 3230302e33332e38322e302f32342d3234203d3e20323131383636.roa (raw, json)
Hash identifier: 83ApRTKiVEAOD4C/XVJ9kgG3PvWjmso/Icc6ohnTuKg=
Subject key identifier: 1A:FF:98:07:11:04:D9:95:F9:9C:C1:96:9A:09:45:EA:E4:9B:24:95
Certificate issuer: /CN=1283B5F5ADDE2461E007DDCF79A4534AFC7A577F
Certificate serial: 71200E580731EE7DBC5AAB13E39D1F8EA808461D
Authority key identifier: 12:83:B5:F5:AD:DE:24:61:E0:07:DD:CF:79:A4:53:4A:FC:7A:57:7F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e20323131383636.roa
Signing time: Tue 04 Feb 2025 18:37:17 +0000
ROA not before: Tue 04 Feb 2025 18:32:17 +0000
ROA not after: Tue 03 Feb 2026 18:37:17 +0000
asID: 211866
IP address blocks: 200.33.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:20:0e:58:07:31:ee:7d:bc:5a:ab:13:e3:9d:1f:8e:a8:08:46:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1283B5F5ADDE2461E007DDCF79A4534AFC7A577F
Validity
Not Before: Feb 4 18:32:17 2025 GMT
Not After : Feb 3 18:37:17 2026 GMT
Subject: CN=1AFF98071104D995F99CC1969A0945EAE49B2495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8e:5f:6f:ac:a0:a1:40:68:60:29:5e:60:bc:
1f:eb:59:be:2d:01:ea:c6:0f:31:c6:a9:71:7c:c5:
d8:03:7c:52:17:52:31:b0:70:c3:84:4b:3b:bf:e0:
5f:1e:ac:a4:d1:94:58:cb:28:c0:76:aa:ac:68:fa:
f6:1b:d6:55:96:e4:d8:a0:0c:ae:e5:9f:43:a3:09:
43:43:62:9a:51:f8:de:ce:ca:57:57:bc:8d:cc:12:
c5:97:1b:5d:62:78:f5:f0:63:ea:c7:e4:0f:21:4c:
50:25:d3:70:78:4a:c6:57:9a:30:db:20:30:b3:64:
a2:ce:84:15:91:1e:29:a7:11:be:90:b4:9e:0e:9d:
d1:6c:e6:95:3a:45:e5:48:32:2c:63:6c:5e:4b:89:
67:b3:c3:88:c7:15:34:5c:37:27:79:37:3f:af:8a:
ad:31:68:64:ac:14:ed:41:d0:f1:91:87:a8:22:28:
bb:6b:86:f9:23:18:aa:2d:d4:8a:ce:48:da:9b:30:
e6:34:60:85:1c:d0:93:eb:c8:ab:1e:85:67:9b:1c:
23:c6:87:36:09:34:f3:f5:2c:02:d3:7d:b8:ed:f7:
77:98:41:a4:48:b0:ed:07:1b:d6:53:0d:08:89:f7:
8b:bd:1e:63:ba:62:17:e8:cf:e5:be:13:a3:d8:46:
38:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FF:98:07:11:04:D9:95:F9:9C:C1:96:9A:09:45:EA:E4:9B:24:95
X509v3 Authority Key Identifier:
keyid:12:83:B5:F5:AD:DE:24:61:E0:07:DD:CF:79:A4:53:4A:FC:7A:57:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e20323131383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.33.82.0/24
Signature Algorithm: sha256WithRSAEncryption
64:09:6d:c5:d5:5a:1a:a2:65:b2:2c:a7:f6:ce:2d:9f:62:0c:
c4:9f:38:97:6c:c2:4b:43:31:2c:c5:c7:64:20:0a:17:b2:7e:
06:f4:fa:f0:fb:be:da:1b:8a:45:c6:a5:80:0e:8b:35:9a:ba:
f4:db:a3:79:f3:af:6d:e2:2e:1d:02:eb:97:0b:6a:c4:13:4d:
17:eb:db:32:6f:44:f8:b6:f6:5a:25:b3:92:53:00:56:2d:99:
ed:d8:ef:fd:e4:2f:1d:ca:7d:b7:bc:f7:8f:57:61:7e:8d:65:
60:65:38:f4:3f:23:b3:0f:7b:19:bf:24:0f:d2:39:a2:f8:05:
60:66:45:a0:04:bb:b2:34:05:4f:56:05:ce:61:5d:9f:c4:33:
56:a9:91:7d:14:7c:53:a8:61:ac:87:f0:a6:63:95:36:85:ae:
b7:d4:a2:e6:46:ae:b3:97:4b:3a:d2:c3:39:6a:6a:e1:6a:e8:
ea:1f:63:dd:d0:51:54:5c:5d:14:5d:15:93:15:e7:b2:23:68:
69:b3:9e:3d:a9:ff:15:fd:16:38:85:23:fa:0f:08:cb:86:26:
3a:2a:96:ff:a0:39:e8:9e:cf:c9:77:90:e0:9a:21:8e:19:3f:
9d:21:58:37:b5:17:02:0b:79:32:56:18:da:32:fd:93:bc:c5:
09:f7:97:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:04:11 2025 by rpki-client