Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4DAD3318A534D8ABB80195FF3669CE16A04A07F4B8F25636BD2ABF36C837AD7D/0/3230302e31302e32382e302f32322d3234203d3e20323730303735.roa
File: 3230302e31302e32382e302f32322d3234203d3e20323730303735.roa (raw, json)
Hash identifier: gn28aBfm8CA9641T1SAeLRCZkuXeIpRcWOmI/p9vTG8=
Subject key identifier: BF:AF:F7:62:F0:82:A1:7E:01:93:3C:84:AC:FE:9E:97:1A:40:A0:BE
Certificate issuer: /CN=304D8AC906FC4A87A162240815C8C2D4224130CB
Certificate serial: 4671173FD940CDC44B9935A973C5B1F934AE222F
Authority key identifier: 30:4D:8A:C9:06:FC:4A:87:A1:62:24:08:15:C8:C2:D4:22:41:30:CB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/304D8AC906FC4A87A162240815C8C2D4224130CB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4DAD3318A534D8ABB80195FF3669CE16A04A07F4B8F25636BD2ABF36C837AD7D/0/3230302e31302e32382e302f32322d3234203d3e20323730303735.roa
Signing time: Tue 04 Feb 2025 18:13:07 +0000
ROA not before: Tue 04 Feb 2025 18:08:07 +0000
ROA not after: Tue 03 Feb 2026 18:13:07 +0000
asID: 270075
IP address blocks: 200.10.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:71:17:3f:d9:40:cd:c4:4b:99:35:a9:73:c5:b1:f9:34:ae:22:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=304D8AC906FC4A87A162240815C8C2D4224130CB
Validity
Not Before: Feb 4 18:08:07 2025 GMT
Not After : Feb 3 18:13:07 2026 GMT
Subject: CN=BFAFF762F082A17E01933C84ACFE9E971A40A0BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:90:bf:03:70:ea:81:2a:52:d0:ae:f5:40:d6:
19:22:29:1c:08:a2:8c:a8:4a:35:5b:2b:d2:c8:80:
a0:b7:6a:aa:1f:10:e7:49:19:a6:51:0c:e6:d2:21:
ce:ba:fa:38:0b:5e:45:f3:dd:9e:f3:6a:3c:f3:35:
fe:f4:b4:e5:2f:8a:34:a9:10:20:96:6f:51:17:41:
b6:4f:d7:22:3d:13:01:a5:f2:4e:0d:af:b9:e2:f2:
24:e6:9c:85:28:0f:1e:43:7b:7e:e2:c4:2c:a1:b1:
a5:0d:02:5a:59:bf:6f:73:71:ee:07:46:51:bb:7f:
a7:91:6c:d9:12:6b:a5:8d:68:dc:f4:3b:15:eb:a9:
4c:b4:30:ef:87:14:87:52:83:ea:03:2e:ab:08:05:
b9:40:32:3e:c3:00:06:06:5b:f7:9b:79:7d:67:9c:
36:12:e6:81:9e:41:6a:57:ec:68:bb:94:7b:d2:82:
dc:00:24:e8:26:08:06:1c:63:8f:23:41:58:49:a6:
53:d2:c9:93:c9:c4:47:30:d3:ff:37:2a:97:e3:93:
0e:aa:65:f6:6c:28:da:42:1f:48:9d:a8:bc:73:00:
de:cd:21:82:ac:0c:b1:06:0d:db:07:12:ff:d9:96:
75:8f:8e:d6:11:00:5a:e4:4b:a3:d1:66:fa:6a:18:
14:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AF:F7:62:F0:82:A1:7E:01:93:3C:84:AC:FE:9E:97:1A:40:A0:BE
X509v3 Authority Key Identifier:
keyid:30:4D:8A:C9:06:FC:4A:87:A1:62:24:08:15:C8:C2:D4:22:41:30:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4DAD3318A534D8ABB80195FF3669CE16A04A07F4B8F25636BD2ABF36C837AD7D/0/304D8AC906FC4A87A162240815C8C2D4224130CB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/304D8AC906FC4A87A162240815C8C2D4224130CB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4DAD3318A534D8ABB80195FF3669CE16A04A07F4B8F25636BD2ABF36C837AD7D/0/3230302e31302e32382e302f32322d3234203d3e20323730303735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.10.28.0/22
Signature Algorithm: sha256WithRSAEncryption
14:23:73:0d:92:9d:9a:51:0f:ba:0e:07:95:42:3c:3d:a2:af:
3d:40:c3:ca:6e:b6:bb:7c:3b:46:1f:d3:fc:5d:ac:61:00:b7:
e8:6c:2f:04:8d:07:45:14:77:ff:24:a7:ba:1c:4b:f8:bb:fb:
f5:3f:76:9f:bd:80:8c:c6:2a:fc:e5:2e:c1:13:01:f6:d8:93:
39:e7:bd:44:29:8f:21:ae:0f:f9:39:6f:ea:25:17:a0:6f:0d:
3f:4b:e6:2b:98:85:41:04:66:0d:ec:8f:74:18:b8:2a:f7:52:
ce:3f:23:40:30:b6:11:f0:9d:c2:94:92:c9:71:6d:f6:88:f4:
8b:20:40:3e:72:2c:ad:f3:a2:5c:ee:e8:cb:14:00:04:45:59:
b4:50:4c:a3:43:92:70:b4:9a:c2:2e:02:94:9b:10:6e:d3:98:
c0:e4:76:3b:94:11:47:ef:3d:bf:76:9a:ff:b7:88:1e:38:2d:
87:ad:58:e0:2d:9a:aa:57:7f:a8:20:c8:74:8d:22:65:09:cf:
bf:db:83:1c:da:b2:fc:11:c0:23:c3:64:39:ae:e1:1e:78:e1:
87:e0:5a:da:0d:a1:6b:2b:cc:df:7e:89:75:43:ff:02:62:75:
22:ca:c6:6c:e5:48:c6:1b:7e:84:05:b1:1a:be:73:d6:ce:b9:
db:b2:b6:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:23:04 2025 by rpki-client