Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS20305.roa
File: AS20305.roa (raw, json)
Hash identifier: s4yOwmhbGoAEbTg4HF4olCjHGRk44bA2PWphZmjy7/M=
Subject key identifier: 5B:4D:D8:E5:91:61:BB:10:DC:2F:08:98:D7:B6:4C:C3:8D:35:59:7A
Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial: 79B9DC8E8F00940AFE282CC918A826FC6E3A4309
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS20305.roa
Signing time: Tue 04 Feb 2025 18:13:38 +0000
ROA not before: Tue 04 Feb 2025 18:08:38 +0000
ROA not after: Tue 03 Feb 2026 18:13:38 +0000
asID: 20305
IP address blocks: 200.0.252.0/24 maxlen: 24
200.70.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:b9:dc:8e:8f:00:94:0a:fe:28:2c:c9:18:a8:26:fc:6e:3a:43:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Validity
Not Before: Feb 4 18:08:38 2025 GMT
Not After : Feb 3 18:13:38 2026 GMT
Subject: CN=5B4DD8E59161BB10DC2F0898D7B64CC38D35597A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1a:5c:72:a9:43:39:85:2c:71:18:1e:7a:a4:
83:21:09:ab:aa:9e:2d:b8:5a:7e:df:34:f8:52:b3:
7e:01:a3:56:9a:50:3c:06:e1:5a:5b:33:8d:dd:8d:
1b:e0:47:c0:46:14:09:d5:c2:1a:72:d6:4a:83:39:
60:14:0f:38:9b:0d:5e:ec:a1:d9:8d:04:13:97:dc:
b1:5a:d5:79:cc:a3:fb:09:54:7e:91:12:76:96:10:
de:31:79:87:f8:dd:5f:f4:94:8a:98:f4:b2:7e:26:
00:87:ef:62:ec:07:ee:dd:82:9b:6f:f2:ef:cd:2a:
c5:f9:94:e8:5b:cc:eb:ab:a5:fb:6e:96:d8:7d:ae:
c3:46:b4:66:28:df:7a:84:81:9c:64:c9:a9:36:78:
f5:92:09:a1:05:15:80:25:ca:23:36:5b:83:b8:4e:
fa:0f:53:43:8a:5a:52:72:c4:42:15:1a:f9:86:1e:
73:8c:90:b9:93:5c:1b:ca:07:6d:48:01:bf:41:5f:
8c:e1:46:cf:10:4f:04:d0:52:2e:69:c3:69:9f:c8:
ff:d7:c9:4c:39:e9:9b:12:6e:f4:d0:36:7d:f6:7f:
24:d1:2d:85:7e:ff:41:96:e4:16:19:60:a3:19:b3:
74:69:99:8c:8b:d8:9e:b8:4b:1d:25:47:fe:91:de:
44:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:4D:D8:E5:91:61:BB:10:DC:2F:08:98:D7:B6:4C:C3:8D:35:59:7A
X509v3 Authority Key Identifier:
keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS20305.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.0.252.0/24
200.70.26.0/24
Signature Algorithm: sha256WithRSAEncryption
08:72:5a:50:e6:b3:bb:23:f5:82:cf:a7:d9:43:7c:27:b3:c3:
29:e6:b8:a8:17:77:41:f8:4b:e1:93:dd:5b:f6:83:77:f9:c6:
dc:bb:16:13:c6:f6:65:b3:4f:90:11:c9:5b:c9:f1:5f:c4:ed:
65:15:a8:ea:2c:b6:b6:af:ff:2b:71:b0:73:7b:70:cf:0e:ff:
cf:76:e5:1d:4d:93:37:5b:f2:ad:49:a7:81:ed:95:65:cc:87:
08:6e:04:60:a0:7f:01:ba:6b:54:80:ee:76:a1:6b:f0:eb:13:
50:9d:e3:0d:3d:f5:df:af:de:8f:8a:cc:7c:74:af:5e:56:95:
9a:fc:40:54:4d:e1:81:1b:fe:27:9d:c5:92:90:e9:60:5a:12:
5b:31:9e:1b:45:ad:87:8d:33:e3:a8:e2:e3:42:c3:d4:da:14:
8a:41:dc:47:c7:e9:14:76:6e:81:7d:3c:ee:dd:f7:ce:86:5d:
fe:f2:dc:38:f5:6f:88:5a:fb:7d:59:9f:ee:b8:0f:21:46:eb:
8b:eb:8f:f7:87:76:02:5f:e2:c2:fd:54:c3:f7:87:4a:b3:ca:
73:f2:8d:24:86:e5:29:86:83:0e:98:09:d2:64:ed:a4:d2:fb:
65:ff:71:42:89:e9:5e:f9:b5:92:98:57:ef:17:20:67:70:c5:
38:8f:b9:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:38 2025 by rpki-client