Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51E523A47843A96CCBD949FDF72C80642205A6F5B61CB329F665368A48B2A5A1/0/3230312e3233362e3139322e302f31382d3138203d3e203133343839.roa
File: 3230312e3233362e3139322e302f31382d3138203d3e203133343839.roa (raw, json)
Hash identifier: 2czzSYbTgKPKbbmXSUw2TVFmB+kLa9U4lu2HjLcLf6I=
Subject key identifier: FE:E9:12:28:D2:D8:50:66:D3:EF:2B:F9:74:48:99:FB:30:63:D2:2B
Certificate issuer: /CN=34039F5BADECD4DFB42E3F4E0C5ECE97A30180A7
Certificate serial: 60596A205D4C2E27F7840B5B650956B6A68D198B
Authority key identifier: 34:03:9F:5B:AD:EC:D4:DF:B4:2E:3F:4E:0C:5E:CE:97:A3:01:80:A7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/34039F5BADECD4DFB42E3F4E0C5ECE97A30180A7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51E523A47843A96CCBD949FDF72C80642205A6F5B61CB329F665368A48B2A5A1/0/3230312e3233362e3139322e302f31382d3138203d3e203133343839.roa
Signing time: Tue 04 Feb 2025 18:33:29 +0000
ROA not before: Tue 04 Feb 2025 18:28:29 +0000
ROA not after: Tue 03 Feb 2026 18:33:29 +0000
asID: 13489
IP address blocks: 201.236.192.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:59:6a:20:5d:4c:2e:27:f7:84:0b:5b:65:09:56:b6:a6:8d:19:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34039F5BADECD4DFB42E3F4E0C5ECE97A30180A7
Validity
Not Before: Feb 4 18:28:29 2025 GMT
Not After : Feb 3 18:33:29 2026 GMT
Subject: CN=FEE91228D2D85066D3EF2BF9744899FB3063D22B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:20:39:ec:4a:4c:51:d6:ef:28:84:04:a2:8d:
ec:e9:8f:2a:cb:c3:43:bc:07:8f:2b:83:6f:6c:0f:
c0:ba:55:78:07:8f:5f:14:1d:c8:4b:4f:c2:c0:94:
18:89:77:b6:3e:2f:92:4b:59:95:da:a9:bb:0f:c9:
e8:a2:53:28:1f:dc:e4:fe:f4:b4:cf:92:1d:c1:a1:
78:eb:3f:94:0b:cc:95:e6:68:8c:0b:79:24:2e:ec:
63:de:8e:b1:9b:63:26:6d:a3:61:2c:af:87:b7:05:
eb:ee:4c:cf:c8:75:72:c1:eb:5f:7a:10:cd:44:57:
54:ec:00:f3:0b:71:87:8e:8c:75:22:70:6e:25:db:
f2:77:4b:9e:41:e8:8c:11:4d:a2:86:d2:f5:f8:ae:
46:6a:19:b5:32:11:e9:1e:87:74:0c:43:d6:3c:68:
c7:fb:45:23:8c:05:6a:67:63:77:d6:be:d1:98:a1:
3e:d6:3a:13:b6:65:d0:e4:ed:e1:a4:f8:c1:34:de:
d4:b8:1a:12:b6:f0:99:c4:a0:35:66:bd:83:e4:fb:
8c:db:5c:cd:b8:c6:a1:52:7f:cd:35:5b:a5:28:3e:
43:03:2c:49:f4:a9:f7:87:c2:54:6a:c0:95:6b:05:
4e:08:98:93:69:27:e9:17:b8:45:bb:62:cd:d0:fa:
08:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E9:12:28:D2:D8:50:66:D3:EF:2B:F9:74:48:99:FB:30:63:D2:2B
X509v3 Authority Key Identifier:
keyid:34:03:9F:5B:AD:EC:D4:DF:B4:2E:3F:4E:0C:5E:CE:97:A3:01:80:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/51E523A47843A96CCBD949FDF72C80642205A6F5B61CB329F665368A48B2A5A1/0/34039F5BADECD4DFB42E3F4E0C5ECE97A30180A7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/34039F5BADECD4DFB42E3F4E0C5ECE97A30180A7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51E523A47843A96CCBD949FDF72C80642205A6F5B61CB329F665368A48B2A5A1/0/3230312e3233362e3139322e302f31382d3138203d3e203133343839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.236.192.0/18
Signature Algorithm: sha256WithRSAEncryption
83:a6:ba:2b:ad:a1:86:52:0d:75:41:70:3d:7e:59:c0:0e:66:
e7:ec:6c:be:ea:f0:84:2f:9e:38:80:7d:6c:c6:e8:c4:46:4a:
28:ff:4c:34:f3:ec:1b:26:dc:0a:14:81:84:09:64:04:07:c9:
80:62:c7:fb:19:28:00:b5:08:c4:0f:65:d4:d3:a6:dd:ba:a8:
74:66:e2:69:c5:e3:ed:8b:87:f1:c1:8e:16:e6:6b:6d:c1:6f:
5c:e1:76:50:94:44:01:d4:c3:2e:62:d1:3d:7a:ac:6f:40:d2:
41:d3:3a:60:6d:24:bb:8c:a0:f1:db:1f:cf:28:b7:51:71:c5:
5a:ab:ed:10:02:3f:3e:ad:c0:9a:70:50:75:41:06:f7:98:0c:
f0:56:9b:8e:f6:19:83:0e:74:22:1b:16:01:26:d6:3d:17:f5:
6e:09:0d:5b:1d:23:52:58:25:a1:94:1e:47:8e:aa:d6:1f:c2:
c0:ed:78:7d:2e:b4:8e:78:7e:0d:c7:c6:0c:cf:d8:2f:ee:8d:
89:af:1f:5e:a9:58:cc:a5:a3:4e:bf:b2:8a:3f:31:f9:54:17:
d0:83:97:99:98:0b:2c:da:4a:2c:61:7b:26:95:89:77:06:10:
0a:d2:eb:32:79:d6:1e:6e:6d:71:33:ad:6c:c3:d3:2b:5a:9d:
55:d2:69:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:31:11 2025 by rpki-client