Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4B218F3CBA21C388131E0CAF6303A0B108E72AE53C573F3F35142DB16100168B/0/3230302e36382e302e302f31382d3234203d3e203136363239.roa
File: 3230302e36382e302e302f31382d3234203d3e203136363239.roa (raw, json)
Hash identifier: JzJ2J4hWvtXMM1oterMI28t2E4sJQD7zBoUqv2tBuVk=
Subject key identifier: 58:C9:0B:76:A6:43:07:25:0A:CC:E0:04:BF:CF:4F:21:15:FE:14:E5
Certificate issuer: /CN=5F082C57CDBD68D82A84D9967C49585547E6E80F
Certificate serial: 04DA31A06A4F4BF5AEBA9ADD67736625E8EDFB20
Authority key identifier: 5F:08:2C:57:CD:BD:68:D8:2A:84:D9:96:7C:49:58:55:47:E6:E8:0F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5F082C57CDBD68D82A84D9967C49585547E6E80F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4B218F3CBA21C388131E0CAF6303A0B108E72AE53C573F3F35142DB16100168B/0/3230302e36382e302e302f31382d3234203d3e203136363239.roa
Signing time: Tue 04 Feb 2025 18:32:05 +0000
ROA not before: Tue 04 Feb 2025 18:27:05 +0000
ROA not after: Tue 03 Feb 2026 18:32:05 +0000
asID: 16629
IP address blocks: 200.68.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:da:31:a0:6a:4f:4b:f5:ae:ba:9a:dd:67:73:66:25:e8:ed:fb:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5F082C57CDBD68D82A84D9967C49585547E6E80F
Validity
Not Before: Feb 4 18:27:05 2025 GMT
Not After : Feb 3 18:32:05 2026 GMT
Subject: CN=58C90B76A64307250ACCE004BFCF4F2115FE14E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fa:05:c1:b0:7b:5e:37:15:46:e4:b9:a2:64:
fe:6d:68:91:01:1b:c9:ce:3a:ce:ec:e5:c1:75:74:
4c:a0:3d:a2:fa:e4:b2:5e:e1:ef:5d:d7:42:4a:1a:
23:aa:56:b6:bf:98:73:79:b9:fb:a3:29:0d:2b:e9:
08:5f:2b:de:fe:cf:b1:f0:bc:d1:63:4f:8b:6d:85:
b1:f5:12:4d:65:4c:4a:8b:55:78:70:46:9e:7d:6f:
47:28:91:42:f3:ef:96:5a:d5:0a:71:f3:d5:fc:73:
66:3f:bb:51:f9:65:b3:13:ed:45:62:a6:2e:82:39:
c4:05:95:31:fc:e9:96:fc:12:88:98:d9:61:52:a8:
52:0d:92:85:17:ea:45:de:c2:81:bb:ba:7e:08:ff:
a5:4b:fd:84:f6:50:d9:32:e1:47:d5:f5:8e:cb:34:
a6:e8:19:67:2c:b9:65:6c:74:a2:23:bd:79:83:dc:
f3:f0:ff:b4:4f:ea:21:1e:50:e3:89:54:43:9c:06:
36:53:ef:75:6f:a5:73:cb:8d:75:48:ea:90:94:16:
89:1c:3d:a6:49:70:f6:bc:7f:8b:82:ad:b6:58:30:
47:c3:97:16:f2:87:df:ac:86:a6:13:0d:a7:f9:4f:
fe:30:29:8c:f7:2e:8f:67:a9:c4:7d:d9:ea:79:ee:
f6:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:C9:0B:76:A6:43:07:25:0A:CC:E0:04:BF:CF:4F:21:15:FE:14:E5
X509v3 Authority Key Identifier:
keyid:5F:08:2C:57:CD:BD:68:D8:2A:84:D9:96:7C:49:58:55:47:E6:E8:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4B218F3CBA21C388131E0CAF6303A0B108E72AE53C573F3F35142DB16100168B/0/5F082C57CDBD68D82A84D9967C49585547E6E80F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5F082C57CDBD68D82A84D9967C49585547E6E80F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4B218F3CBA21C388131E0CAF6303A0B108E72AE53C573F3F35142DB16100168B/0/3230302e36382e302e302f31382d3234203d3e203136363239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.68.0.0/18
Signature Algorithm: sha256WithRSAEncryption
8e:94:e6:93:cb:f4:69:73:c9:42:87:92:0d:2a:0d:ad:23:e8:
9a:f5:17:22:66:26:0d:6e:8a:7c:ce:e6:24:6a:45:a7:b1:8c:
17:7c:09:b0:61:16:85:67:c3:11:74:09:7a:44:26:a9:96:96:
33:09:b6:59:19:3d:45:cd:ba:9e:e1:6d:b0:08:63:9f:fd:af:
52:3d:7f:94:34:19:44:8e:49:c5:b9:d1:fd:9a:dc:4c:ad:19:
13:cf:e0:bb:a0:2d:24:fe:5c:80:56:15:ea:4b:64:c5:c2:5c:
12:0a:dd:82:dc:ae:bb:ff:cb:55:e6:cb:5e:bf:ca:c3:f1:3b:
e0:77:5e:bd:08:9e:1a:8d:7e:8e:b2:6d:e9:9d:17:26:9f:68:
8c:44:f1:8b:ff:46:f3:19:5b:65:9e:de:5b:bd:4c:8d:f7:11:
7c:2d:d2:26:97:48:80:27:83:1d:56:54:b4:0d:73:9c:34:7b:
e4:b4:c7:fd:97:31:0d:61:18:9f:49:0f:ba:bf:f2:48:ff:22:
dc:82:d7:d9:da:6c:a4:cd:1a:a6:05:57:90:43:0c:88:30:fb:
4c:0a:89:31:32:62:bf:09:e6:d1:35:7f:bb:a0:6c:b1:99:3a:
73:ed:3f:9e:0c:cb:19:43:db:8e:ce:5a:e9:60:9f:15:ea:2f:
89:57:0b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:51 2025 by rpki-client