Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4CE995227CB743022A101AA85DF989A5FD8B4339CD68B1791016101C90A7B9A6/0/3230302e392e342e302f32322d3232203d3e203233323031.roa
File: 3230302e392e342e302f32322d3232203d3e203233323031.roa (raw, json)
Hash identifier: FdjamUUJO7fn8FL2YMV0xf91FP0OAJYNugAVbP4IdZs=
Subject key identifier: 36:60:1D:9F:77:30:B0:69:50:1C:07:87:00:44:C0:09:1D:29:03:1F
Certificate issuer: /CN=412E3F2D3B64DFDEB58285F653327EEB6FF6CAE9
Certificate serial: 2D63EC1BD9FA81D12EB032BB73AA85AD2D2D51FB
Authority key identifier: 41:2E:3F:2D:3B:64:DF:DE:B5:82:85:F6:53:32:7E:EB:6F:F6:CA:E9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/412E3F2D3B64DFDEB58285F653327EEB6FF6CAE9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4CE995227CB743022A101AA85DF989A5FD8B4339CD68B1791016101C90A7B9A6/0/3230302e392e342e302f32322d3232203d3e203233323031.roa
Signing time: Tue 04 Feb 2025 18:40:59 +0000
ROA not before: Tue 04 Feb 2025 18:35:59 +0000
ROA not after: Tue 03 Feb 2026 18:40:59 +0000
asID: 23201
IP address blocks: 200.9.4.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:63:ec:1b:d9:fa:81:d1:2e:b0:32:bb:73:aa:85:ad:2d:2d:51:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412E3F2D3B64DFDEB58285F653327EEB6FF6CAE9
Validity
Not Before: Feb 4 18:35:59 2025 GMT
Not After : Feb 3 18:40:59 2026 GMT
Subject: CN=36601D9F7730B069501C07870044C0091D29031F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d5:3f:fc:bd:fe:8d:8f:eb:f3:99:01:ae:bb:
86:ee:85:11:cf:12:e7:a0:23:a7:a3:0e:94:b9:d8:
ba:da:fd:b6:a8:60:5e:17:7c:84:c8:b2:4e:3a:5d:
aa:01:cb:aa:26:9e:56:41:19:6f:2f:bd:3b:07:3d:
01:6c:ec:d3:66:67:3c:46:57:a0:47:75:fe:c7:01:
80:ca:ce:1f:10:3c:05:b6:78:7d:e0:a7:91:ce:0d:
87:57:07:ff:44:f5:fd:0a:88:58:df:cd:6d:71:c0:
28:c9:37:e0:c8:d8:10:9c:79:d7:85:2f:08:9a:6b:
77:24:80:9f:a9:36:29:26:f7:65:73:27:84:62:97:
83:91:0e:f9:bf:1f:9b:57:6b:ec:c6:04:dd:2d:6a:
17:27:65:3e:6c:e2:5a:a6:f2:55:b3:2f:a7:c0:e8:
da:b0:f1:bb:8a:0a:79:26:e3:82:e0:0a:33:5a:67:
00:94:0c:80:8c:ac:e5:88:d3:f0:2e:a6:da:16:74:
d9:b0:64:30:75:1e:dd:81:53:ce:9e:86:be:34:58:
6b:29:49:48:be:fe:92:91:9d:b7:45:9a:4a:81:dc:
13:49:a7:ca:c9:7e:a8:49:4e:c6:53:14:cc:9b:08:
38:e5:76:f4:3e:6c:81:55:13:0c:2c:f5:42:0f:b8:
5e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:60:1D:9F:77:30:B0:69:50:1C:07:87:00:44:C0:09:1D:29:03:1F
X509v3 Authority Key Identifier:
keyid:41:2E:3F:2D:3B:64:DF:DE:B5:82:85:F6:53:32:7E:EB:6F:F6:CA:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4CE995227CB743022A101AA85DF989A5FD8B4339CD68B1791016101C90A7B9A6/0/412E3F2D3B64DFDEB58285F653327EEB6FF6CAE9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/412E3F2D3B64DFDEB58285F653327EEB6FF6CAE9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4CE995227CB743022A101AA85DF989A5FD8B4339CD68B1791016101C90A7B9A6/0/3230302e392e342e302f32322d3232203d3e203233323031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.9.4.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:f8:2b:36:fc:e5:73:ba:76:9d:66:ac:0c:c4:aa:72:9f:96:
e3:0f:78:89:ed:7c:d8:a9:bf:17:33:a3:86:b4:84:2a:4e:0e:
ea:9b:c6:6c:f1:88:58:7b:43:42:77:a9:e7:4e:2a:98:f2:51:
67:56:a9:19:81:16:02:78:51:c5:8e:f5:a2:7f:37:ef:0b:46:
c8:05:47:bd:03:cb:c9:e2:89:9c:79:46:70:c1:14:19:37:b7:
17:9f:63:5c:2a:73:5d:c6:e8:df:45:11:a6:c2:56:57:55:5c:
87:4d:3b:c9:a0:d1:46:93:38:e2:72:f4:c6:c7:91:2c:d7:b2:
1d:2e:33:b2:45:7e:0f:b5:ba:08:c5:ba:be:d2:de:c0:e8:06:
73:40:04:a6:9e:86:85:e1:af:7e:19:5b:4e:66:d8:34:04:ba:
06:9b:03:ba:12:8a:ed:cb:57:bc:66:fc:9f:79:d4:9d:fa:06:
10:ff:f7:f4:cb:05:85:c7:0c:a4:12:25:f7:02:cb:e1:25:b6:
60:2d:24:e1:d2:8d:4a:77:f7:e0:d3:ac:c8:3f:69:9b:33:7f:
81:7c:b9:c0:89:62:4a:67:14:6f:0e:59:6b:24:17:87:27:b5:
cd:82:90:10:70:a6:d6:8a:3a:54:fc:8a:4e:39:d9:9e:96:07:
1e:25:9c:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:23:19 2025 by rpki-client