Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3230312e3234322e302e302f31352d3234203d3e2038303438.roa
File: 3230312e3234322e302e302f31352d3234203d3e2038303438.roa (raw, json)
Hash identifier: reMKMEDPBmxFPN1jxFl7G4hWm1JdOJgxnyZTIyOiww4=
Subject key identifier: 4D:65:CB:0F:D2:52:BB:AD:EE:9F:3B:11:A0:61:54:19:E5:00:09:EE
Certificate issuer: /CN=9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4
Certificate serial: 37C8B45E014B41BCB21E0080EF73A7A63F5BB787
Authority key identifier: 9F:56:FC:23:A8:C5:FC:06:7B:7D:0B:FD:60:5C:0F:5A:33:D0:36:B4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3230312e3234322e302e302f31352d3234203d3e2038303438.roa
Signing time: Tue 04 Feb 2025 18:55:35 +0000
ROA not before: Tue 04 Feb 2025 18:50:35 +0000
ROA not after: Tue 03 Feb 2026 18:55:35 +0000
asID: 8048
IP address blocks: 201.242.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:c8:b4:5e:01:4b:41:bc:b2:1e:00:80:ef:73:a7:a6:3f:5b:b7:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4
Validity
Not Before: Feb 4 18:50:35 2025 GMT
Not After : Feb 3 18:55:35 2026 GMT
Subject: CN=4D65CB0FD252BBADEE9F3B11A0615419E50009EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5d:98:8e:88:29:90:6a:c9:e4:5a:34:fe:aa:
67:f5:4c:7c:6c:4d:49:f6:a3:6e:ea:a8:16:ac:48:
e6:01:4c:ec:86:a9:a7:8d:2d:6e:e1:c7:f8:9e:c1:
95:e4:88:7f:b6:9d:eb:ee:9f:d7:3f:26:f0:19:13:
5f:b3:ed:56:d0:f1:0f:8c:8c:fd:b9:3d:22:34:ac:
a3:ea:f0:24:da:eb:01:42:83:a0:5b:79:69:e1:df:
b5:a2:c8:f3:ac:cb:37:28:17:a5:fa:64:21:8e:d3:
b5:0b:55:ee:be:4c:d8:c4:a5:6f:6c:8c:cd:b7:fd:
f0:21:82:2d:27:54:8f:0c:d9:4d:72:2c:3e:54:45:
ea:79:8a:b1:2a:94:9b:a9:42:97:17:64:69:ca:31:
48:1c:7d:a6:18:b1:a2:2c:5b:b2:16:75:b0:98:49:
93:bb:9c:38:92:7f:e9:ee:8a:1d:db:c8:0f:a2:db:
73:e0:4f:f8:9e:7e:02:93:d5:b0:8a:94:38:bf:d9:
c1:b8:5b:f2:e5:87:0f:87:33:12:ba:d3:50:5c:47:
dd:0b:6d:37:fb:ed:78:08:c6:c5:97:96:0b:d7:c0:
a3:13:2f:97:dd:a8:12:72:1b:ac:cb:ca:f4:21:51:
1c:18:0a:0a:82:ef:d1:3d:9c:13:3d:4a:6e:2a:07:
62:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:65:CB:0F:D2:52:BB:AD:EE:9F:3B:11:A0:61:54:19:E5:00:09:EE
X509v3 Authority Key Identifier:
keyid:9F:56:FC:23:A8:C5:FC:06:7B:7D:0B:FD:60:5C:0F:5A:33:D0:36:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3230312e3234322e302e302f31352d3234203d3e2038303438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.242.0.0/15
Signature Algorithm: sha256WithRSAEncryption
4e:2e:c4:98:3d:dd:ae:7d:02:3a:72:3f:61:4d:39:97:c9:52:
41:1d:01:23:30:23:92:16:36:f3:bf:be:7a:a7:69:35:ea:9f:
16:fe:61:af:5e:7f:7d:9d:4c:81:51:6f:15:e8:5b:23:f1:fe:
63:c3:c5:fa:10:14:dc:80:47:0f:e6:a0:e0:1d:ac:42:13:3f:
3a:1f:76:05:01:34:5a:61:e7:85:99:41:00:5d:0e:47:3d:a0:
19:17:10:ae:73:41:e5:7d:82:a8:85:24:87:d4:ea:d2:c4:c6:
8e:79:25:b8:a5:e6:7b:19:77:59:b1:d0:05:26:bb:9e:b2:38:
21:b8:cb:9e:cd:d9:85:b3:e9:c2:06:e5:16:ce:c1:1b:15:f0:
2d:92:6a:d3:42:77:10:7b:a0:04:b8:60:b7:40:e0:b5:dc:04:
62:f8:7b:d3:c3:af:85:36:14:4d:de:60:dd:20:7d:4e:1a:d3:
05:80:a9:de:b9:db:44:d4:8b:da:e5:74:80:16:b2:a8:b3:17:
2a:24:31:22:ee:83:a7:cb:29:f8:21:73:9e:2e:88:c5:3a:2b:
3e:d0:0d:af:26:85:2b:18:0c:31:6f:0d:e5:9b:94:ee:59:91:
d1:26:41:6a:a4:98:1f:63:af:91:b3:b1:64:57:35:70:72:46:
07:3a:81:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:34:04 2025 by rpki-client