Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/417BEAF2DA1622668D73BDC590D6641D842D85D7AB797E655342936D8C9C2512/0/3230302e3131322e3232302e302f32342d3234203d3e20323733383833.roa
File: 3230302e3131322e3232302e302f32342d3234203d3e20323733383833.roa (raw, json)
Hash identifier: GQ1TKUUCEd6drOHhL3ODOqMfQBuvCNGl54ybYSSk1Fk=
Subject key identifier: 14:B9:6A:76:55:57:E6:3D:E6:DD:28:C3:01:EC:A8:16:A7:64:F4:51
Certificate issuer: /CN=2BF2EA70064C593F25670D65BD2C1425EAE424A1
Certificate serial: 4AE136365E280D5259AF030C10B46A65749D472B
Authority key identifier: 2B:F2:EA:70:06:4C:59:3F:25:67:0D:65:BD:2C:14:25:EA:E4:24:A1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2BF2EA70064C593F25670D65BD2C1425EAE424A1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/417BEAF2DA1622668D73BDC590D6641D842D85D7AB797E655342936D8C9C2512/0/3230302e3131322e3232302e302f32342d3234203d3e20323733383833.roa
Signing time: Wed 04 Sep 2024 22:20:02 +0000
ROA not before: Wed 04 Sep 2024 22:15:02 +0000
ROA not after: Wed 03 Sep 2025 22:20:02 +0000
asID: 273883
IP address blocks: 200.112.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:e1:36:36:5e:28:0d:52:59:af:03:0c:10:b4:6a:65:74:9d:47:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2BF2EA70064C593F25670D65BD2C1425EAE424A1
Validity
Not Before: Sep 4 22:15:02 2024 GMT
Not After : Sep 3 22:20:02 2025 GMT
Subject: CN=14B96A765557E63DE6DD28C301ECA816A764F451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ff:0f:ae:94:45:cd:66:3d:25:1a:65:27:1d:
96:16:55:ab:6e:64:58:2b:1e:ec:fb:81:e0:16:83:
ba:eb:1d:b0:f2:38:64:64:78:a9:2b:53:e8:a4:9e:
1c:d3:58:84:d6:eb:4f:6e:61:e6:c1:77:8a:31:99:
17:cb:9a:d8:c3:c6:9f:06:4d:18:fa:2a:da:03:1f:
06:c6:69:78:c6:1c:15:81:cb:ba:21:2b:43:1f:0f:
63:9d:e8:5b:29:86:e2:4c:fe:8a:45:70:3d:3c:e7:
32:ae:ab:94:88:01:38:bf:84:19:e8:f2:a3:30:5c:
e9:30:95:19:4f:aa:ad:3b:86:6f:c6:31:01:a2:11:
32:5f:1f:15:a4:a8:ce:64:6f:58:59:80:2a:06:68:
22:de:7f:b7:aa:6a:cd:71:e8:d7:48:6f:db:1a:eb:
37:a1:b8:a6:5f:bc:2f:92:25:2c:dc:df:69:db:98:
83:9d:a2:0c:6f:85:9f:46:e5:4e:9c:3f:2b:76:08:
17:39:8a:4b:e7:93:b5:ab:ae:95:9a:21:22:23:b9:
91:f0:1b:92:5a:cf:3c:d3:c0:b5:8f:55:a0:b9:c7:
6f:7b:6e:bf:2f:95:91:45:36:72:c9:68:81:60:83:
70:b5:33:b9:0f:85:f0:aa:76:8b:4e:18:c7:ac:11:
b4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B9:6A:76:55:57:E6:3D:E6:DD:28:C3:01:EC:A8:16:A7:64:F4:51
X509v3 Authority Key Identifier:
keyid:2B:F2:EA:70:06:4C:59:3F:25:67:0D:65:BD:2C:14:25:EA:E4:24:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/417BEAF2DA1622668D73BDC590D6641D842D85D7AB797E655342936D8C9C2512/0/2BF2EA70064C593F25670D65BD2C1425EAE424A1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2BF2EA70064C593F25670D65BD2C1425EAE424A1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/417BEAF2DA1622668D73BDC590D6641D842D85D7AB797E655342936D8C9C2512/0/3230302e3131322e3232302e302f32342d3234203d3e20323733383833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.112.220.0/24
Signature Algorithm: sha256WithRSAEncryption
89:62:d0:a8:c5:c3:ec:20:1e:20:20:61:2b:76:e1:3e:92:c1:
27:b6:1c:db:ce:d0:fd:fb:e0:70:4f:92:24:9b:44:c7:06:45:
56:ed:95:1e:ca:a0:5b:fc:f6:f0:79:33:ec:0e:ad:65:b7:85:
7c:55:d6:0b:f0:53:de:f5:97:13:0b:84:29:65:97:ec:13:1f:
03:2d:ce:c2:aa:fa:93:c0:05:aa:21:f4:63:75:8d:7d:33:b6:
85:bb:22:72:bf:7d:31:06:b3:47:65:bd:e8:28:1f:1f:d7:18:
e4:48:d6:c7:c1:ce:99:2f:29:14:fe:33:d3:8b:3b:9f:1a:ea:
e9:a9:66:cf:e8:42:70:d7:d5:f1:2c:99:ea:4e:31:ab:13:8d:
6f:81:cd:a9:77:20:8a:4b:15:32:88:95:b2:d2:82:72:8e:7c:
e7:7f:fb:54:7c:c6:92:ef:22:28:bd:95:b1:41:8d:79:f6:ef:
8d:80:7c:ff:ef:6d:db:b4:8c:f5:d2:3d:35:42:d7:52:a4:d1:
49:58:93:54:56:ce:cc:1b:b0:e3:8b:8c:da:7e:e9:0a:c2:77:
8a:bd:45:59:a8:97:8a:b8:c5:0e:22:43:ab:29:1b:ab:60:87:
23:46:fd:53:3c:30:52:33:3c:b9:f7:80:6c:e1:54:2a:4c:c7:
a1:78:a0:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:52:59 2025 by rpki-client