Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/50072E5743143975C51B47D9F3A728F2952D2260ADDD001F0CA6307875AD41C8/0/3230302e33352e3136382e302f32312d3234203d3e203236363137.roa
File: 3230302e33352e3136382e302f32312d3234203d3e203236363137.roa (raw, json)
Hash identifier: /+vudvEPF0+xliCUYgP/l353I7IFhwo5LE8tFH4uhGM=
Subject key identifier: 8D:F1:97:D2:81:38:8B:6D:11:48:8C:DB:AC:08:C3:C1:44:A8:4A:0D
Certificate issuer: /CN=4CC10087B32EE69A488F5AE8AFA2EE2F5061ADE0
Certificate serial: 56472906BFA47C510CE2E1C781578240084B3802
Authority key identifier: 4C:C1:00:87:B3:2E:E6:9A:48:8F:5A:E8:AF:A2:EE:2F:50:61:AD:E0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4CC10087B32EE69A488F5AE8AFA2EE2F5061ADE0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/50072E5743143975C51B47D9F3A728F2952D2260ADDD001F0CA6307875AD41C8/0/3230302e33352e3136382e302f32312d3234203d3e203236363137.roa
Signing time: Tue 04 Feb 2025 18:15:38 +0000
ROA not before: Tue 04 Feb 2025 18:10:38 +0000
ROA not after: Tue 03 Feb 2026 18:15:38 +0000
asID: 26617
IP address blocks: 200.35.168.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:47:29:06:bf:a4:7c:51:0c:e2:e1:c7:81:57:82:40:08:4b:38:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4CC10087B32EE69A488F5AE8AFA2EE2F5061ADE0
Validity
Not Before: Feb 4 18:10:38 2025 GMT
Not After : Feb 3 18:15:38 2026 GMT
Subject: CN=8DF197D281388B6D11488CDBAC08C3C144A84A0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:66:5a:cb:b7:13:4b:10:b6:9e:5d:11:62:61:
87:45:be:68:ba:e4:e6:ad:24:1d:b8:16:b2:ba:95:
f6:44:c6:0e:c4:2e:25:14:d6:e5:02:53:ad:29:01:
ee:af:62:ae:02:5c:d1:3b:e3:f5:65:16:76:4c:74:
7b:e9:1e:45:04:0f:60:d5:f7:67:ef:d1:83:d9:ad:
b4:c6:59:07:c7:af:3b:4c:d6:ab:b5:d6:7c:a2:75:
e2:24:ba:3b:4c:57:26:17:c1:28:d3:d9:29:58:cc:
2d:53:a6:36:6e:a0:69:03:47:ea:95:0e:75:dd:cc:
37:e0:cf:0f:0e:27:cd:ba:0a:6c:c5:c8:e7:e7:8a:
63:ac:0a:ee:b9:d1:16:b5:02:5e:dd:ff:3f:f1:fd:
60:dd:62:d9:ed:b0:21:19:5f:20:75:26:35:73:23:
74:b6:f1:4a:88:63:18:65:e0:7a:de:0f:0b:3b:92:
13:d6:c5:a1:5c:68:fd:96:4e:52:8a:68:45:a6:52:
90:76:44:a3:1f:6a:6f:8c:96:ac:24:20:8f:40:4d:
2b:63:5f:4c:c2:8a:15:aa:92:79:d1:96:fc:4d:21:
92:d2:c4:df:ad:2d:c1:e1:3c:8f:a1:dc:ab:e7:85:
95:7c:91:ff:d7:0a:6f:e3:80:6c:e5:75:33:b2:45:
5f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F1:97:D2:81:38:8B:6D:11:48:8C:DB:AC:08:C3:C1:44:A8:4A:0D
X509v3 Authority Key Identifier:
keyid:4C:C1:00:87:B3:2E:E6:9A:48:8F:5A:E8:AF:A2:EE:2F:50:61:AD:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/50072E5743143975C51B47D9F3A728F2952D2260ADDD001F0CA6307875AD41C8/0/4CC10087B32EE69A488F5AE8AFA2EE2F5061ADE0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4CC10087B32EE69A488F5AE8AFA2EE2F5061ADE0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/50072E5743143975C51B47D9F3A728F2952D2260ADDD001F0CA6307875AD41C8/0/3230302e33352e3136382e302f32312d3234203d3e203236363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.35.168.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:8c:63:81:37:c7:5f:6e:5c:22:50:7a:3a:09:e3:7b:0a:e9:
66:f8:8d:23:77:5f:2e:cb:d6:65:fe:90:5f:05:5c:a1:29:11:
f5:0d:8f:2a:87:da:3e:4b:69:ed:54:33:a4:e6:06:01:ea:ba:
6f:a0:45:95:76:34:44:12:10:26:7a:0e:86:75:50:55:ff:ab:
d2:b6:5f:a4:de:52:ef:88:4b:6b:21:c0:0f:dc:5a:28:63:fb:
03:70:e1:80:c8:de:5e:2a:99:a1:06:a1:c0:76:ae:82:39:3e:
3e:92:b9:c1:36:52:42:4d:51:97:2e:5a:f0:e5:d6:45:5e:b1:
30:c3:28:be:d1:0a:72:c6:ab:2c:82:7d:62:0c:11:4a:18:c5:
c5:e1:09:e2:e6:70:e0:d3:e9:63:a6:6f:34:01:92:84:f7:2a:
5d:2c:f6:cf:6d:16:3d:1e:b1:9c:0a:b0:7b:2a:77:ab:46:89:
1f:71:78:6c:b3:9e:77:b2:ed:6a:69:10:28:0f:73:fe:b6:5a:
41:a0:c0:fd:4e:7f:61:40:35:a4:18:d4:45:d0:bf:9c:78:86:
65:5e:11:69:8f:22:75:74:fb:d4:dd:0a:32:cf:d0:e3:64:b3:
c5:59:80:b6:25:3a:f9:bf:9f:7c:2b:fc:31:a6:90:58:55:48:
75:9f:63:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:09 2025 by rpki-client