Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3230302e35372e332e302f32342d3234203d3e203133343430.roa
File: 3230302e35372e332e302f32342d3234203d3e203133343430.roa (raw, json)
Hash identifier: odshf9xEflqqGlxEw5l86mbNMJUJXhnaq6AhEifOJFs=
Subject key identifier: 60:B0:61:17:56:21:6E:E4:67:CC:22:06:16:E1:D8:3A:91:9B:43:97
Certificate issuer: /CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Certificate serial: 2B1E4241A2C88FF6E3E13127BAD68F5E59AB314E
Authority key identifier: 79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3230302e35372e332e302f32342d3234203d3e203133343430.roa
Signing time: Tue 04 Feb 2025 18:06:50 +0000
ROA not before: Tue 04 Feb 2025 18:01:50 +0000
ROA not after: Tue 03 Feb 2026 18:06:50 +0000
asID: 13440
IP address blocks: 200.57.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:1e:42:41:a2:c8:8f:f6:e3:e1:31:27:ba:d6:8f:5e:59:ab:31:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Validity
Not Before: Feb 4 18:01:50 2025 GMT
Not After : Feb 3 18:06:50 2026 GMT
Subject: CN=60B0611756216EE467CC220616E1D83A919B4397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f7:bb:20:35:fb:42:a8:49:b9:96:2c:d2:d4:
6b:74:22:ed:c1:3f:8e:7d:7f:6e:38:0a:32:22:ec:
c6:f4:eb:83:21:64:ab:a0:61:83:45:d4:c3:14:b9:
d6:2e:f7:8c:54:83:85:9e:d6:18:e4:bc:80:53:f4:
e3:df:31:c7:b4:48:c7:d6:3f:cd:6a:23:08:77:bd:
1c:95:e9:d9:76:d7:96:ea:b1:46:22:96:da:8f:15:
58:54:2a:a6:11:6e:2c:71:8b:f8:5a:0d:d4:7b:0c:
74:10:d4:5d:8b:1a:53:97:26:75:60:a6:30:81:0d:
95:3a:0a:f7:e8:88:af:fe:1e:fe:00:d4:8b:17:7c:
5e:41:38:9e:2f:e7:25:cb:65:90:49:1e:cd:c9:6f:
7a:d1:16:79:44:e5:87:a5:26:c2:47:b2:29:24:66:
d7:f6:83:7c:d5:37:a5:9b:2f:23:0e:16:9e:77:a7:
a4:e3:cc:0b:67:83:b9:aa:e9:d4:55:6b:b5:2f:c5:
c7:4f:0f:f9:34:ce:90:d7:69:04:f6:7c:dd:de:38:
71:fc:85:09:ab:86:4c:74:d4:55:ac:6c:ad:02:e6:
81:80:57:69:53:3f:3d:1b:4a:c6:5b:4b:3e:ae:eb:
cb:b8:93:56:51:b1:61:7e:ca:e6:bd:e0:41:d5:c3:
f7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B0:61:17:56:21:6E:E4:67:CC:22:06:16:E1:D8:3A:91:9B:43:97
X509v3 Authority Key Identifier:
keyid:79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3230302e35372e332e302f32342d3234203d3e203133343430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.57.3.0/24
Signature Algorithm: sha256WithRSAEncryption
38:1d:49:5a:f7:75:8d:a3:e6:0b:21:df:1e:65:48:26:50:69:
2c:fb:fb:24:c7:f5:82:71:fd:da:90:82:4e:f1:82:6f:f4:31:
fb:53:80:3e:5b:fa:d5:94:76:91:b8:de:05:dc:bf:4c:f8:f8:
05:4d:6f:b5:c5:4c:08:28:fb:17:0f:e8:cc:d2:0d:84:b4:39:
af:6c:f1:06:ba:33:ae:65:5a:9b:6a:42:aa:54:50:24:a4:09:
1e:e3:cf:b9:81:b3:5d:e2:26:0a:bc:8b:db:e8:35:88:e2:77:
bb:39:be:35:23:ac:f4:3f:7b:43:93:cd:08:c0:67:f7:c5:1d:
fa:25:db:5c:38:80:4d:02:03:43:b3:6d:e2:ba:d4:c2:8a:56:
04:02:37:1b:2b:7d:df:69:da:4d:24:d6:72:33:fa:5e:4b:e9:
6e:1b:c7:0e:11:ce:d4:7b:71:64:9f:85:9e:76:c8:15:b5:ba:
bc:bd:a6:e3:24:c2:6d:05:41:4b:2c:22:fb:e1:17:40:2e:c7:
fc:91:6c:f9:0a:c9:39:fd:fc:ce:08:73:99:e4:cc:d4:aa:7a:
dd:8f:6c:24:dc:8e:b4:48:24:a3:78:2c:f7:c6:a4:3a:ca:46:
95:55:fc:7d:0f:4e:d5:21:d8:8e:8f:66:79:28:e1:aa:e4:c5:
90:a9:f6:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:45:19 2025 by rpki-client