Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4CD18697CCD6A0801504102AE175C164A8EF049BEC02E6650B76FB41E227D9A9/0/3230302e3131322e3234352e302f32342d3234203d3e203133333831.roa
File: 3230302e3131322e3234352e302f32342d3234203d3e203133333831.roa (raw, json)
Hash identifier: H9rGylZiQ5pvTIUwmXFnrEcitvX2+j3/fjykra9NA54=
Subject key identifier: 3A:81:A9:96:2C:68:BD:FD:68:32:32:48:1C:7B:B6:B4:95:0E:E7:C0
Certificate issuer: /CN=A35E57ED97246E8C02997E4FCF0C3ED13E10074A
Certificate serial: 2D94DB6C9F1E904BDA493D5E53707C6934CC7C54
Authority key identifier: A3:5E:57:ED:97:24:6E:8C:02:99:7E:4F:CF:0C:3E:D1:3E:10:07:4A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A35E57ED97246E8C02997E4FCF0C3ED13E10074A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4CD18697CCD6A0801504102AE175C164A8EF049BEC02E6650B76FB41E227D9A9/0/3230302e3131322e3234352e302f32342d3234203d3e203133333831.roa
Signing time: Tue 04 Feb 2025 20:07:51 +0000
ROA not before: Tue 04 Feb 2025 20:02:51 +0000
ROA not after: Tue 03 Feb 2026 20:07:51 +0000
asID: 13381
IP address blocks: 200.112.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:94:db:6c:9f:1e:90:4b:da:49:3d:5e:53:70:7c:69:34:cc:7c:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A35E57ED97246E8C02997E4FCF0C3ED13E10074A
Validity
Not Before: Feb 4 20:02:51 2025 GMT
Not After : Feb 3 20:07:51 2026 GMT
Subject: CN=3A81A9962C68BDFD683232481C7BB6B4950EE7C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:fd:3c:1c:e2:7c:61:70:c9:13:a0:7e:b1:d5:
29:26:63:9a:cb:2e:18:52:b3:b8:50:c5:4f:9a:cc:
47:cd:ab:ce:1b:c0:24:7e:d8:5b:33:27:6d:bd:4c:
2c:81:7b:05:6b:e3:fe:9d:a2:ce:1c:e3:b1:1f:e3:
ff:2a:5e:a9:e4:07:e1:cb:7f:e2:5f:c4:7e:ea:81:
2f:c6:8b:7c:15:a9:c5:1b:35:69:03:9b:b0:0c:bc:
86:ed:c2:c6:68:68:9e:6c:d2:de:11:f3:b6:bf:00:
d1:d5:13:a4:c0:81:0a:bb:e4:97:c4:46:f9:e0:98:
c0:9f:15:7b:6a:1d:5a:6e:e5:cb:c6:74:a8:60:d9:
1b:f5:7f:83:00:b6:51:46:a5:0d:68:41:42:18:bf:
54:1f:62:19:20:7f:24:ec:8a:63:ad:39:e6:5c:5e:
46:1f:06:e2:e8:ab:ee:ad:08:2f:7a:d1:1a:4f:cc:
73:3f:e1:af:f9:81:c1:af:b5:4e:2a:37:2f:86:cf:
10:92:65:59:96:d5:e9:a1:50:8b:e1:98:b2:be:40:
74:79:34:d3:1f:6a:14:eb:73:f1:f6:9a:a5:13:29:
e1:64:c6:bc:d3:46:08:10:ca:6e:1a:88:43:dc:8f:
91:e4:0e:59:0e:3f:32:b3:5a:50:aa:18:9e:fa:3d:
97:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:81:A9:96:2C:68:BD:FD:68:32:32:48:1C:7B:B6:B4:95:0E:E7:C0
X509v3 Authority Key Identifier:
keyid:A3:5E:57:ED:97:24:6E:8C:02:99:7E:4F:CF:0C:3E:D1:3E:10:07:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4CD18697CCD6A0801504102AE175C164A8EF049BEC02E6650B76FB41E227D9A9/0/A35E57ED97246E8C02997E4FCF0C3ED13E10074A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A35E57ED97246E8C02997E4FCF0C3ED13E10074A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4CD18697CCD6A0801504102AE175C164A8EF049BEC02E6650B76FB41E227D9A9/0/3230302e3131322e3234352e302f32342d3234203d3e203133333831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.112.245.0/24
Signature Algorithm: sha256WithRSAEncryption
77:2a:80:2a:d3:d0:75:0b:d4:50:55:02:f8:38:f7:cb:1f:98:
f2:7f:65:c0:a7:2e:ea:8f:26:12:5d:84:63:7f:df:f5:62:43:
81:a0:e5:45:b8:24:95:a6:86:bb:c7:4a:a5:b1:d4:e0:c7:3c:
99:60:d4:6d:c0:17:c2:92:48:ba:a1:74:49:e2:4e:35:75:84:
eb:f3:28:a6:63:27:28:38:1e:1d:0b:d2:d0:c3:bf:ee:ba:76:
f1:32:34:af:f0:79:47:bc:f6:55:56:ba:b3:29:d7:ff:97:65:
1f:e5:d9:3e:ba:1b:23:cd:65:8d:1b:e0:76:29:06:39:68:7f:
f6:82:66:a8:a5:ec:59:cd:17:f7:47:99:73:d7:f5:13:d7:e9:
17:3a:21:44:19:e4:b4:83:e7:ad:31:3c:26:26:56:ef:ce:e9:
02:19:38:6d:88:4f:97:d7:7d:88:54:ee:bb:42:61:99:5c:7a:
52:73:87:fc:00:95:2c:b5:a4:c2:4e:ca:fe:f9:28:c2:00:58:
c5:dc:3f:84:da:91:b8:5c:9e:b8:aa:d2:5a:64:87:7a:5f:82:
fe:5c:96:af:fa:23:31:a4:aa:b9:a6:10:8f:7f:c4:a5:70:8c:
65:22:53:9e:52:a5:09:b5:0e:be:50:51:76:a9:d3:d7:eb:a8:
ad:ec:c9:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:06 2025 by rpki-client