Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7068363C42E7A5FBCF2DF7CF504DF0ADDCEC7B7C507D5071C6DE68E0F9522D0B/0/3230302e392e39362e302f32342d3234203d3e203631343638.roa
File: 3230302e392e39362e302f32342d3234203d3e203631343638.roa (raw, json)
Hash identifier: ItjXaKOwb+QHZwLhWYBWCIH0VcsHfuLK9e+dIUcT39E=
Subject key identifier: 91:E9:C7:51:54:32:E8:FE:38:98:E4:18:86:C3:AA:11:45:16:FB:16
Certificate issuer: /CN=DDAF89D4807C4FBD2974CAC276C37C95F8A777AA
Certificate serial: 5B63C4927A772FE673D4662F1A7E8717FF6A307A
Authority key identifier: DD:AF:89:D4:80:7C:4F:BD:29:74:CA:C2:76:C3:7C:95:F8:A7:77:AA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDAF89D4807C4FBD2974CAC276C37C95F8A777AA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7068363C42E7A5FBCF2DF7CF504DF0ADDCEC7B7C507D5071C6DE68E0F9522D0B/0/3230302e392e39362e302f32342d3234203d3e203631343638.roa
Signing time: Tue 04 Feb 2025 18:16:56 +0000
ROA not before: Tue 04 Feb 2025 18:11:56 +0000
ROA not after: Tue 03 Feb 2026 18:16:56 +0000
asID: 61468
IP address blocks: 200.9.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:63:c4:92:7a:77:2f:e6:73:d4:66:2f:1a:7e:87:17:ff:6a:30:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DDAF89D4807C4FBD2974CAC276C37C95F8A777AA
Validity
Not Before: Feb 4 18:11:56 2025 GMT
Not After : Feb 3 18:16:56 2026 GMT
Subject: CN=91E9C7515432E8FE3898E41886C3AA114516FB16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:ea:ad:59:4b:fb:e5:d4:6f:89:ee:c7:7c:f9:
94:f5:92:84:cf:5b:17:5b:ee:c0:80:41:c1:c5:b9:
de:e2:0d:ea:be:c3:f5:02:71:b9:a4:b7:62:4a:b5:
15:ed:d1:74:66:24:d0:86:67:3a:73:d2:46:aa:40:
bb:b3:01:f4:9e:ef:9a:d9:e4:b3:2e:f4:1d:13:78:
cc:33:43:bb:0f:20:99:d3:38:c6:f8:37:39:91:78:
7e:a5:56:d9:d4:d3:cd:1d:08:61:8a:af:18:7b:d2:
46:18:7b:ff:7c:60:6c:91:0d:ad:10:f7:95:1b:19:
9c:49:8a:6f:60:30:0b:fe:ce:6e:b1:68:a4:46:3c:
7c:01:f2:fc:a3:fb:f7:07:40:46:e1:67:5d:f1:a4:
49:e1:b7:3c:55:c0:c1:cf:d8:0c:57:cc:82:be:a7:
cd:48:07:20:26:ff:01:e1:f7:1c:87:36:02:6c:c8:
76:63:b3:71:ec:3a:34:1f:4f:82:20:e9:54:74:47:
ee:17:26:9d:94:83:f6:1c:28:4d:c3:78:c6:86:88:
9d:34:14:fb:93:89:60:17:b6:ee:2c:9f:4f:74:5f:
06:ca:5d:85:0b:99:21:14:a6:0d:83:b9:5f:d5:96:
8c:12:7e:5d:a6:2e:a1:35:9b:d9:79:d0:24:2b:ad:
03:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E9:C7:51:54:32:E8:FE:38:98:E4:18:86:C3:AA:11:45:16:FB:16
X509v3 Authority Key Identifier:
keyid:DD:AF:89:D4:80:7C:4F:BD:29:74:CA:C2:76:C3:7C:95:F8:A7:77:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7068363C42E7A5FBCF2DF7CF504DF0ADDCEC7B7C507D5071C6DE68E0F9522D0B/0/DDAF89D4807C4FBD2974CAC276C37C95F8A777AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DDAF89D4807C4FBD2974CAC276C37C95F8A777AA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7068363C42E7A5FBCF2DF7CF504DF0ADDCEC7B7C507D5071C6DE68E0F9522D0B/0/3230302e392e39362e302f32342d3234203d3e203631343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.9.96.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:e7:f4:37:f1:24:c2:72:b9:cc:29:45:96:6c:00:c9:7c:4d:
fb:a2:6d:01:4e:04:50:f1:3a:a9:35:31:fa:c6:c2:10:47:82:
ba:b0:4e:da:b3:79:0f:ed:ae:75:1f:64:9a:f7:57:12:c9:f5:
db:4c:80:7f:90:8f:b6:af:3b:44:60:a3:4e:69:2e:01:65:77:
c0:11:91:58:b4:b0:3b:47:f4:d1:04:53:86:f5:b0:c0:16:4e:
ec:77:01:16:7f:77:43:db:d3:b3:08:38:eb:01:b8:2a:c9:12:
05:84:0d:a3:76:c7:5e:dd:27:b4:51:fa:17:d2:18:5b:b5:cd:
95:5e:c1:9d:64:5d:76:3e:af:11:8e:6a:fa:5a:9a:a1:5c:81:
8f:5e:80:d4:37:c6:bd:47:0f:2c:1c:c3:45:a5:89:6f:d9:a9:
43:fd:32:6f:76:39:a4:ce:5c:2a:24:3d:36:f7:e1:8b:b6:85:
8a:02:18:77:dd:8c:95:b9:b7:1c:ba:49:6e:e5:68:e4:7c:50:
35:51:7e:54:8a:5b:ed:ce:b0:f6:68:0b:ef:72:86:a0:cc:34:
37:a5:6e:12:ba:58:23:90:8c:80:23:99:4c:67:ff:49:e0:92:
fb:0e:b4:06:43:c3:dd:52:33:4c:ab:4b:b7:e8:04:fa:b0:99:
47:23:72:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:48:22 2025 by rpki-client