Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3230312e3134382e31362e302f32342d3234203d3e203138373334.roa
File: 3230312e3134382e31362e302f32342d3234203d3e203138373334.roa (raw, json)
Hash identifier: D7LLp3GRWWAxy5MF47K+vmPSUFm5c4Fs0NmUIBB3DbY=
Subject key identifier: B4:C6:55:5E:80:76:AC:D4:62:24:DF:81:8E:BE:83:E1:F1:E8:B2:FD
Certificate issuer: /CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Certificate serial: 0EEC0474666004D40F68516668657CE97A0B4DFA
Authority key identifier: 79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3230312e3134382e31362e302f32342d3234203d3e203138373334.roa
Signing time: Tue 04 Feb 2025 18:06:48 +0000
ROA not before: Tue 04 Feb 2025 18:01:48 +0000
ROA not after: Tue 03 Feb 2026 18:06:48 +0000
asID: 18734
IP address blocks: 201.148.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:ec:04:74:66:60:04:d4:0f:68:51:66:68:65:7c:e9:7a:0b:4d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Validity
Not Before: Feb 4 18:01:48 2025 GMT
Not After : Feb 3 18:06:48 2026 GMT
Subject: CN=B4C6555E8076ACD46224DF818EBE83E1F1E8B2FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3b:87:f8:8d:23:9e:55:f2:7f:0e:12:31:f1:
7b:23:c5:8b:d3:ca:0c:04:cf:95:b3:38:e9:d0:fc:
a7:0a:2b:57:97:f4:1b:1b:c8:4f:11:62:cf:5f:f4:
16:53:db:41:b3:56:45:cf:f8:99:d3:4f:3b:c8:46:
9e:70:b9:42:90:45:7f:9b:5e:7b:32:84:9f:77:25:
66:4b:f8:d6:58:52:0e:f8:d3:21:76:bb:13:5e:2b:
c6:47:ff:54:53:81:40:2b:c0:72:c3:e9:13:7e:0b:
3c:d7:0e:87:3d:b2:0c:7a:c2:d5:42:55:d3:b9:ea:
5c:af:7c:f0:aa:f9:9d:20:65:fa:7b:39:40:9a:3d:
3b:69:2b:89:a1:8e:73:86:85:2f:af:0c:ca:53:5f:
dc:86:fe:c4:00:f7:13:47:07:59:48:a7:78:3f:27:
03:3c:4b:b2:60:17:42:93:1c:af:42:81:0d:ad:a3:
b3:9b:1f:d3:66:21:9c:8b:7b:6f:ad:46:0f:23:e5:
7f:e2:a3:0e:ab:d7:7b:0f:c9:f1:3b:e3:d8:72:90:
fb:a9:d2:7b:d1:3c:b4:90:c0:06:35:98:bc:e1:79:
90:c3:85:2e:9c:ce:13:98:08:28:ed:c6:b2:35:13:
4e:dd:ba:12:4d:af:ba:a9:bd:c7:34:b9:fa:d7:6c:
63:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C6:55:5E:80:76:AC:D4:62:24:DF:81:8E:BE:83:E1:F1:E8:B2:FD
X509v3 Authority Key Identifier:
keyid:79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3230312e3134382e31362e302f32342d3234203d3e203138373334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.148.16.0/24
Signature Algorithm: sha256WithRSAEncryption
37:d6:38:ac:e3:8e:3a:27:c6:c8:45:94:85:10:4c:e7:4d:ad:
72:a1:4c:f4:9c:fb:c8:34:25:fe:d2:db:81:ee:64:8c:80:b1:
bc:7b:39:5f:17:e2:24:5d:ae:a7:c1:33:c7:95:dc:d9:d0:e5:
3a:ab:b5:5e:8f:8d:61:77:37:b3:44:1f:34:51:ff:f9:ef:8f:
c7:64:a3:8a:4c:72:34:c1:2f:64:8a:77:6d:6d:20:30:73:a8:
73:0a:4c:6f:c7:6c:45:7c:d9:87:34:78:f0:45:0a:63:96:4a:
6f:50:c8:9e:00:94:ec:3a:31:ba:da:7a:9e:b7:af:9a:48:31:
0a:10:89:46:44:e9:fe:8c:e0:b8:05:9b:08:f9:89:4d:41:0c:
f0:e6:98:97:49:fc:0b:62:de:44:aa:3c:c0:f2:d6:79:50:d2:
ed:b9:7e:3f:07:1c:69:12:90:b5:90:8a:c0:d4:6d:eb:e0:2f:
29:65:09:00:ae:1d:2c:21:d8:fb:9a:68:4f:ca:77:1b:1e:c9:
8b:b8:33:a2:d6:18:a2:7b:99:7c:00:31:9b:0a:8f:4a:e5:60:
56:b3:22:e3:c1:7e:66:3f:18:c7:6f:55:a3:52:db:15:44:8b:
bb:d0:b9:71:1d:ba:84:70:98:a1:68:71:f2:48:49:39:c3:74:
98:0a:3a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:59:31 2025 by rpki-client