Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/3230312e3139302e3232302e302f32342d3234203d3e203238303735.roa
File: 3230312e3139302e3232302e302f32342d3234203d3e203238303735.roa (raw, json)
Hash identifier: Ji2cq8NFHu2gWIRk6ttXCUMCFEnJVrbTRuEZ/eg43Ug=
Subject key identifier: C1:E5:3C:19:D1:68:99:90:1A:37:B1:DC:BD:56:19:7C:97:C2:E1:86
Certificate issuer: /CN=CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18
Certificate serial: 08619B6EED20A97B170E4C0EDD408ED9B8B8DDC1
Authority key identifier: CC:C7:DF:B2:C7:C9:FC:F2:F1:14:06:14:76:EC:B8:7B:57:3A:4E:18
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/3230312e3139302e3232302e302f32342d3234203d3e203238303735.roa
Signing time: Tue 04 Feb 2025 19:59:01 +0000
ROA not before: Tue 04 Feb 2025 19:54:01 +0000
ROA not after: Tue 03 Feb 2026 19:59:01 +0000
asID: 28075
IP address blocks: 201.190.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:61:9b:6e:ed:20:a9:7b:17:0e:4c:0e:dd:40:8e:d9:b8:b8:dd:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18
Validity
Not Before: Feb 4 19:54:01 2025 GMT
Not After : Feb 3 19:59:01 2026 GMT
Subject: CN=C1E53C19D16899901A37B1DCBD56197C97C2E186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fe:07:36:db:a5:c0:81:46:b6:6b:6f:97:09:
3d:2c:f5:4a:f1:05:72:55:61:2d:a1:88:10:a8:2f:
e6:a1:32:99:47:b4:91:6d:7c:05:71:79:d4:cc:89:
f5:e5:6c:61:29:22:d1:17:a5:d2:64:fd:f9:e8:5d:
55:32:fe:4f:d5:1f:b1:44:5a:06:ec:82:7c:bb:00:
a1:6c:a2:4a:f8:eb:97:b4:28:5b:e2:b9:59:2a:5f:
bc:45:01:7f:54:d2:35:66:76:35:7d:b2:07:6d:0f:
df:ce:b8:f5:c9:d5:9f:4c:14:f7:c7:dd:82:d9:e8:
5b:8a:bc:99:97:63:a7:f7:41:13:0e:57:63:e5:cd:
d0:91:45:21:08:05:61:6e:db:94:dc:5a:98:08:9f:
7a:a4:2d:cc:52:00:ff:6d:d0:d7:af:e4:43:b1:55:
0e:60:82:40:e7:75:93:0d:d9:f2:c7:e0:a8:55:df:
5f:2c:25:d4:3b:24:14:f8:36:5b:74:da:3c:4f:a6:
b9:c3:dd:4f:a3:41:68:1c:3a:46:eb:00:17:4d:1f:
5e:d0:a7:34:fa:67:c8:90:c5:e2:57:50:0c:5d:52:
f6:1c:49:15:8e:02:b8:50:bd:19:06:fa:41:da:6e:
c2:d9:51:24:98:0d:14:44:46:e1:64:d5:7a:b6:64:
62:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:E5:3C:19:D1:68:99:90:1A:37:B1:DC:BD:56:19:7C:97:C2:E1:86
X509v3 Authority Key Identifier:
keyid:CC:C7:DF:B2:C7:C9:FC:F2:F1:14:06:14:76:EC:B8:7B:57:3A:4E:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/3230312e3139302e3232302e302f32342d3234203d3e203238303735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.190.220.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:05:6b:48:eb:02:b1:8f:e3:be:e8:b4:f1:61:e3:fa:fd:63:
da:a6:df:c5:a5:3c:1c:2f:99:a4:33:19:a2:fb:78:de:62:f4:
29:70:32:80:bb:da:d4:19:27:bb:da:fa:a8:e3:09:80:77:63:
2f:f3:e2:0f:ef:6a:98:cf:f4:eb:93:f8:6b:ff:d6:a8:6d:ee:
d6:b6:53:c5:85:dc:24:b6:aa:a1:b8:40:3b:96:a0:21:be:b8:
32:25:72:5b:82:3b:cd:e9:7c:1b:38:0e:6f:32:20:96:46:76:
d9:30:98:54:09:73:ac:14:9c:de:7a:26:9d:e9:19:e7:9c:e9:
69:5e:65:4f:96:e5:97:bf:35:af:fa:7f:db:89:59:3f:ca:7b:
77:5e:35:5e:1e:41:28:59:03:e5:5d:dc:47:f8:1e:4f:10:39:
6f:c9:0f:7c:33:bc:52:0c:ec:e7:d1:94:65:a8:00:6a:b9:e7:
8b:ae:88:33:cc:33:0f:86:87:36:d9:ac:c7:c6:cf:ec:13:4a:
5a:f1:41:1e:c9:7b:23:b3:83:89:33:47:f2:37:41:e3:f7:bf:
c0:72:1e:e5:d9:d7:24:55:d6:ed:0a:f7:58:e2:59:12:fc:d9:
8c:68:2d:e1:15:98:9f:8e:b5:55:7a:ba:05:fb:72:be:a9:e4:
dd:65:f1:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:48 2025 by rpki-client