Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3230302e33332e37342e302f32342d3234203d3e203133343430.roa
File: 3230302e33332e37342e302f32342d3234203d3e203133343430.roa (raw, json)
Hash identifier: NCdmbpQSu3n2b6PyOv2R8E1MsyovT/f1bLEz8lBRr6s=
Subject key identifier: BC:2B:32:EC:0E:C1:05:43:7E:DB:03:35:8D:01:13:F6:B1:6C:BE:6D
Certificate issuer: /CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Certificate serial: 0923BF0577EAC444864B621EBD6104FAC685A8F7
Authority key identifier: 79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3230302e33332e37342e302f32342d3234203d3e203133343430.roa
Signing time: Tue 04 Feb 2025 18:06:53 +0000
ROA not before: Tue 04 Feb 2025 18:01:53 +0000
ROA not after: Tue 03 Feb 2026 18:06:53 +0000
asID: 13440
IP address blocks: 200.33.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:23:bf:05:77:ea:c4:44:86:4b:62:1e:bd:61:04:fa:c6:85:a8:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Validity
Not Before: Feb 4 18:01:53 2025 GMT
Not After : Feb 3 18:06:53 2026 GMT
Subject: CN=BC2B32EC0EC105437EDB03358D0113F6B16CBE6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fa:f5:f9:f0:b1:be:f0:45:4e:9f:76:70:56:
e1:a7:d3:43:04:f6:a3:42:f0:58:8d:5f:5d:2e:a3:
4a:89:d5:43:97:29:80:81:6e:93:41:4e:46:4c:ff:
e5:da:65:53:53:4c:7e:cc:9e:32:ed:c3:42:89:07:
25:3f:e1:35:77:0f:96:cc:09:9e:9b:0a:9c:b1:08:
9b:27:13:fa:9c:6d:03:d3:c9:16:87:79:71:65:7f:
94:db:0d:0f:14:ce:d0:5e:e4:83:19:84:08:43:ab:
68:4c:6f:29:6a:9e:13:fc:38:1b:49:0d:8b:8c:20:
4d:d9:02:e7:3a:c3:3d:e5:16:5f:37:e1:47:82:c7:
97:69:a2:d8:40:c2:a5:96:85:f5:a6:29:75:74:04:
06:98:99:4b:67:46:96:ef:cc:94:92:45:77:53:b2:
d9:cd:35:36:6d:ed:0a:3a:42:36:e0:3e:cb:8d:03:
ca:a1:18:22:c7:03:89:ca:ea:2d:da:6e:06:0c:2b:
c5:aa:d5:4e:f1:54:a8:7d:4d:3e:e0:14:83:27:7a:
0e:60:c8:20:6e:c0:67:e6:db:b4:17:12:87:fc:13:
2b:b9:7c:2e:35:29:46:47:d6:76:60:85:89:91:4e:
85:de:be:78:5b:c1:b3:31:85:a9:89:0e:fc:63:2e:
fd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:2B:32:EC:0E:C1:05:43:7E:DB:03:35:8D:01:13:F6:B1:6C:BE:6D
X509v3 Authority Key Identifier:
keyid:79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3230302e33332e37342e302f32342d3234203d3e203133343430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.33.74.0/24
Signature Algorithm: sha256WithRSAEncryption
13:ef:44:27:99:67:70:95:af:ad:99:13:f1:41:66:18:d7:1c:
d7:04:05:d4:df:59:ea:09:7d:ff:18:c6:cb:f1:5c:71:3c:36:
13:99:8f:35:27:ee:6c:e4:ac:62:c6:1d:3a:59:f2:30:d4:0e:
32:7e:8d:fd:7a:d8:ea:84:b3:b0:e9:63:b5:45:da:1d:fb:b1:
b6:37:62:97:31:d7:65:27:a4:93:41:a9:c2:78:79:a2:cf:c7:
b4:3d:77:37:70:c0:e7:51:a1:29:6b:4d:fc:89:f5:c1:d0:a9:
67:d7:ee:01:fd:1c:cd:42:59:08:cc:47:23:93:87:90:fb:dc:
c1:60:50:a7:06:92:cf:a3:fb:af:e3:11:d9:c5:bd:89:79:ae:
fb:5d:3e:4f:d5:a4:e8:87:d2:e3:a7:40:47:a7:cc:2c:11:d0:
6a:8f:ae:97:82:30:07:75:3f:09:b7:56:d6:51:79:77:31:af:
e8:0f:39:b9:9c:27:56:85:66:bc:b4:1c:c6:43:19:95:96:03:
85:bc:94:fc:7a:03:ae:ba:ae:8e:99:d7:ad:86:ff:f5:34:d6:
71:ea:7d:b0:4e:d3:f6:5b:d1:f6:51:bb:36:e1:9f:38:17:02:
0d:ef:fb:e2:04:45:ff:71:f4:de:e3:80:68:7d:78:9d:6f:11:
f6:2c:5b:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:54:13 2025 by rpki-client