Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e203232393237.roa
File: 3230302e33332e38322e302f32342d3234203d3e203232393237.roa (raw, json)
Hash identifier: mY7JDUVDq5QxXWf/0TNx4dP9bsg5lPo+jVTiZSsbS3Y=
Subject key identifier: 0F:12:77:77:F8:65:8E:97:20:21:26:43:7F:DA:03:F0:91:15:65:96
Certificate issuer: /CN=1283B5F5ADDE2461E007DDCF79A4534AFC7A577F
Certificate serial: 541F66A83E8779F969198158C59EEFDA09221786
Authority key identifier: 12:83:B5:F5:AD:DE:24:61:E0:07:DD:CF:79:A4:53:4A:FC:7A:57:7F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e203232393237.roa
Signing time: Tue 04 Feb 2025 18:37:10 +0000
ROA not before: Tue 04 Feb 2025 18:32:10 +0000
ROA not after: Tue 03 Feb 2026 18:37:10 +0000
asID: 22927
IP address blocks: 200.33.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:1f:66:a8:3e:87:79:f9:69:19:81:58:c5:9e:ef:da:09:22:17:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1283B5F5ADDE2461E007DDCF79A4534AFC7A577F
Validity
Not Before: Feb 4 18:32:10 2025 GMT
Not After : Feb 3 18:37:10 2026 GMT
Subject: CN=0F127777F8658E97202126437FDA03F091156596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:65:6d:4c:d9:d5:21:82:a8:95:61:14:6b:70:
e7:53:e5:19:ad:98:aa:4d:fd:48:27:cd:cf:bb:8b:
9f:af:99:55:dd:0f:15:99:12:b9:a6:fe:33:5a:37:
e7:05:82:4b:42:28:3d:a7:79:9c:02:e5:aa:4c:34:
52:d1:92:4c:0a:cd:0f:47:ee:9c:88:74:e9:e9:65:
13:8e:00:c6:29:a7:49:a2:a0:c9:da:c8:ac:95:ad:
45:d3:24:17:15:39:82:86:2c:00:19:76:57:71:53:
cf:76:cf:75:d7:5d:85:f8:79:92:47:7d:76:77:6b:
a1:3d:17:08:81:37:45:83:2f:91:80:cf:28:f8:91:
0f:fb:65:c8:89:aa:0b:e4:d1:b1:5b:61:02:ad:5e:
c9:4f:08:56:84:83:6d:c4:2a:40:d6:d7:5b:9a:58:
5b:6d:9f:5a:d7:a9:f8:52:7e:e9:b2:6b:86:ca:04:
f8:de:2e:d7:66:be:93:7a:33:e5:51:02:c2:9f:4c:
8a:74:56:3e:da:1c:6a:e1:b9:24:72:d0:56:1c:1f:
b3:d9:a1:69:6a:ac:3d:60:cb:f0:c6:91:74:02:4a:
e4:d0:0f:71:af:e5:3e:30:1d:23:03:be:38:91:1d:
6e:be:61:5f:2a:c4:6e:2b:3f:c8:84:16:7d:93:d0:
3a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:12:77:77:F8:65:8E:97:20:21:26:43:7F:DA:03:F0:91:15:65:96
X509v3 Authority Key Identifier:
keyid:12:83:B5:F5:AD:DE:24:61:E0:07:DD:CF:79:A4:53:4A:FC:7A:57:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e203232393237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.33.82.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:94:18:79:87:2c:a6:9c:d2:52:0d:cb:1e:77:34:cd:db:92:
1c:20:fc:16:d7:ee:a3:06:37:e6:f4:70:94:12:e2:cf:1b:63:
45:e8:8a:fe:77:2b:c8:af:ac:33:85:4b:27:cb:5f:7c:66:50:
af:17:e2:83:1f:a5:40:be:be:48:56:4e:ee:b7:40:7b:0e:23:
23:52:59:a8:67:3a:29:50:76:6a:a0:0a:eb:e5:6e:52:07:94:
c5:56:b4:4d:5d:c6:fb:02:a6:c7:3e:06:fb:91:3e:97:15:b5:
c5:36:0d:bd:52:2d:fc:32:51:5a:42:1a:1a:94:bd:92:ab:6b:
03:74:02:38:32:20:07:de:91:6d:ba:e6:85:25:b6:1d:20:5e:
73:55:40:0e:82:18:b5:0e:e3:1d:1d:e0:64:98:78:38:df:27:
66:17:82:55:de:1c:38:ba:48:92:9b:ab:f9:d2:90:84:53:4f:
9a:df:87:d8:ff:11:cd:3d:09:aa:4d:a2:57:26:4b:31:2c:18:
fc:c7:56:a9:46:09:69:5c:88:e9:18:70:65:79:e3:d2:9e:57:
a9:0b:92:d8:cc:ef:ea:2f:a4:00:90:b9:66:3c:fc:84:89:87:
6b:6c:c1:9b:51:80:f8:2d:bf:42:2f:2f:ec:e8:00:cc:24:32:
0c:d8:5c:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:54:21 2025 by rpki-client