Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4CD18697CCD6A0801504102AE175C164A8EF049BEC02E6650B76FB41E227D9A9/0/3230302e3131322e3233332e302f32342d3234203d3e203133333831.roa
File: 3230302e3131322e3233332e302f32342d3234203d3e203133333831.roa (raw, json)
Hash identifier: G0qjXKOK9w9p9iPEVF2DR1hthRyP2QGXedm28UDtxHE=
Subject key identifier: ED:4E:45:3C:DD:2E:FF:A6:F5:37:38:8E:0F:E7:D4:B1:EE:55:F0:B1
Certificate issuer: /CN=A35E57ED97246E8C02997E4FCF0C3ED13E10074A
Certificate serial: 58D9A40B74B73B7D2A539506C2A087DE7D19CA2B
Authority key identifier: A3:5E:57:ED:97:24:6E:8C:02:99:7E:4F:CF:0C:3E:D1:3E:10:07:4A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A35E57ED97246E8C02997E4FCF0C3ED13E10074A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4CD18697CCD6A0801504102AE175C164A8EF049BEC02E6650B76FB41E227D9A9/0/3230302e3131322e3233332e302f32342d3234203d3e203133333831.roa
Signing time: Tue 04 Feb 2025 20:07:59 +0000
ROA not before: Tue 04 Feb 2025 20:02:59 +0000
ROA not after: Tue 03 Feb 2026 20:07:59 +0000
asID: 13381
IP address blocks: 200.112.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:d9:a4:0b:74:b7:3b:7d:2a:53:95:06:c2:a0:87:de:7d:19:ca:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A35E57ED97246E8C02997E4FCF0C3ED13E10074A
Validity
Not Before: Feb 4 20:02:59 2025 GMT
Not After : Feb 3 20:07:59 2026 GMT
Subject: CN=ED4E453CDD2EFFA6F537388E0FE7D4B1EE55F0B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e4:c1:35:9b:8b:e0:24:7a:2e:5e:5f:c1:80:
b6:48:40:e0:71:eb:1e:b3:e6:28:dd:e9:44:ab:8b:
ab:46:58:dd:a9:4d:38:8a:0e:62:6f:5d:6e:a4:64:
5c:42:32:d7:20:d8:78:57:b3:44:4c:9b:42:3d:e1:
93:38:23:fa:a3:c0:f2:1a:22:df:bd:8a:04:37:f4:
85:90:d1:5e:1e:6e:c7:30:ba:f1:62:67:21:ea:48:
45:69:47:17:d3:c2:55:ec:68:9c:ab:86:4e:d9:42:
38:48:07:d4:a7:be:3d:70:d8:6d:7e:91:d0:d4:2a:
38:51:0a:1d:47:9a:c0:6d:99:fb:93:9e:a1:93:c8:
6d:76:2f:1d:3c:b9:dd:4c:7d:45:c2:c1:45:31:52:
e4:b6:f6:bd:76:50:e0:d9:75:ba:c6:87:0d:35:5e:
08:ea:e5:e8:28:da:d5:56:a4:ca:b4:37:43:db:88:
a8:4a:c2:41:f5:5d:77:db:3a:64:0d:0e:c6:51:3d:
96:f8:42:f3:f5:17:7b:43:3d:92:f2:9f:d8:4b:23:
ee:45:c1:e8:9c:3a:53:b8:3f:3f:25:c6:57:9a:89:
3b:33:bf:a4:ef:82:54:77:e1:bb:e7:2c:e6:8c:96:
b7:5f:29:a3:39:a0:96:84:79:ac:5b:f3:a1:60:09:
12:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:4E:45:3C:DD:2E:FF:A6:F5:37:38:8E:0F:E7:D4:B1:EE:55:F0:B1
X509v3 Authority Key Identifier:
keyid:A3:5E:57:ED:97:24:6E:8C:02:99:7E:4F:CF:0C:3E:D1:3E:10:07:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4CD18697CCD6A0801504102AE175C164A8EF049BEC02E6650B76FB41E227D9A9/0/A35E57ED97246E8C02997E4FCF0C3ED13E10074A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A35E57ED97246E8C02997E4FCF0C3ED13E10074A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4CD18697CCD6A0801504102AE175C164A8EF049BEC02E6650B76FB41E227D9A9/0/3230302e3131322e3233332e302f32342d3234203d3e203133333831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.112.233.0/24
Signature Algorithm: sha256WithRSAEncryption
86:4e:12:1f:05:a5:6a:93:5d:3a:11:88:5d:44:67:96:20:b9:
69:7a:79:06:f8:b1:ae:b4:e1:30:67:ad:13:b5:a9:90:d0:63:
6c:13:f4:7b:59:81:b3:4c:ee:75:1b:60:18:54:82:5e:97:48:
4a:96:76:51:a2:98:51:e2:08:a1:43:4a:2d:6c:f7:81:bc:a2:
47:52:02:3a:21:ba:e6:fa:d2:1c:7d:7b:a5:9d:4b:2d:d6:be:
53:44:0c:1b:bd:bf:19:af:ba:25:9e:51:75:8d:e9:67:ab:04:
c4:d4:e5:cf:39:ea:72:96:1b:ea:84:c0:da:cd:93:78:49:8b:
98:4f:a2:0b:6d:96:37:b7:45:ef:a9:2f:6d:28:64:d7:d1:ae:
2d:34:96:a3:7c:61:43:31:a2:b5:47:bc:2f:44:92:dc:0a:8e:
03:88:97:e2:51:69:5f:ff:f6:ee:7f:ca:b7:ba:eb:93:b7:0a:
88:5c:56:15:3f:ea:3b:bf:15:74:18:82:ae:e5:91:46:23:42:
1b:58:f6:c3:20:04:77:e3:f9:f9:de:aa:02:64:0a:ce:b5:40:
3c:ed:f3:49:b3:a4:50:6c:03:11:be:85:7c:93:42:08:c3:ee:
d8:ae:33:c8:4e:3f:d0:e2:4f:d8:5d:44:a1:0c:0f:8c:8a:f2:
f3:23:d3:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:40 2025 by rpki-client