Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/70A87649CC75CDC794211B8E207C30E9F6E4978A6DDD1956CEB008CD0BD42770/0/3230302e342e31362e302f32302d3332203d3e2038303236.roa
File: 3230302e342e31362e302f32302d3332203d3e2038303236.roa (raw, json)
Hash identifier: Vcgy9RvAb5vv0eXehQXNpkJyfKyHOOqkufI+axkI1S0=
Subject key identifier: 90:33:96:B0:24:A1:3B:D5:C6:AD:6A:B8:F4:55:19:69:3E:FF:09:99
Certificate issuer: /CN=B2D8C7D34091682F466A6A7FBDBFD94F5AFC346E
Certificate serial: 6503DDFF90651B8F9189F9E0D1B6DC21F3DD461B
Authority key identifier: B2:D8:C7:D3:40:91:68:2F:46:6A:6A:7F:BD:BF:D9:4F:5A:FC:34:6E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B2D8C7D34091682F466A6A7FBDBFD94F5AFC346E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/70A87649CC75CDC794211B8E207C30E9F6E4978A6DDD1956CEB008CD0BD42770/0/3230302e342e31362e302f32302d3332203d3e2038303236.roa
Signing time: Tue 04 Feb 2025 20:03:06 +0000
ROA not before: Tue 04 Feb 2025 19:58:06 +0000
ROA not after: Tue 03 Feb 2026 20:03:06 +0000
asID: 8026
IP address blocks: 200.4.16.0/20 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:03:dd:ff:90:65:1b:8f:91:89:f9:e0:d1:b6:dc:21:f3:dd:46:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2D8C7D34091682F466A6A7FBDBFD94F5AFC346E
Validity
Not Before: Feb 4 19:58:06 2025 GMT
Not After : Feb 3 20:03:06 2026 GMT
Subject: CN=903396B024A13BD5C6AD6AB8F45519693EFF0999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:52:7b:9e:19:0e:95:91:8f:e3:44:d5:b5:b6:
bc:10:86:bb:cb:01:39:22:52:d7:0c:3f:f2:1e:da:
91:32:31:02:0a:12:4d:8d:c4:32:92:65:6c:85:21:
18:34:fa:d3:ca:6a:5a:05:1b:09:d9:fe:1d:03:92:
af:f1:e4:81:f6:2c:6c:0e:fa:73:aa:57:6e:2f:ac:
82:ff:56:95:ad:e0:cd:89:57:09:ab:14:b8:2d:4f:
3f:43:0b:9d:d9:be:94:96:16:cb:03:76:c3:c3:c7:
c0:88:7d:46:ff:03:f4:35:ff:a3:69:87:11:dc:3e:
36:1e:ee:4a:dc:0b:23:73:90:e2:e0:ba:97:54:cd:
aa:b5:14:4a:c0:52:3f:7a:5e:c8:e3:78:64:a8:b9:
70:a0:3a:2d:f0:77:73:b7:40:9b:de:97:0f:9b:1e:
75:75:53:9c:bd:e6:0e:b7:f7:7f:52:0e:2e:f0:e0:
96:62:8e:f8:b7:db:d4:fd:63:94:71:7b:a4:09:42:
1d:4e:79:a9:47:31:47:47:a1:d3:06:4c:77:c7:15:
ad:e7:b1:22:fd:55:8d:cd:17:6e:38:76:65:2c:ed:
10:02:f0:29:28:9e:3c:0a:4d:63:48:ea:10:19:55:
a2:d3:66:83:d0:c8:5a:e8:11:cd:70:a5:a6:e9:3e:
02:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:33:96:B0:24:A1:3B:D5:C6:AD:6A:B8:F4:55:19:69:3E:FF:09:99
X509v3 Authority Key Identifier:
keyid:B2:D8:C7:D3:40:91:68:2F:46:6A:6A:7F:BD:BF:D9:4F:5A:FC:34:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/70A87649CC75CDC794211B8E207C30E9F6E4978A6DDD1956CEB008CD0BD42770/0/B2D8C7D34091682F466A6A7FBDBFD94F5AFC346E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B2D8C7D34091682F466A6A7FBDBFD94F5AFC346E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/70A87649CC75CDC794211B8E207C30E9F6E4978A6DDD1956CEB008CD0BD42770/0/3230302e342e31362e302f32302d3332203d3e2038303236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.4.16.0/20
Signature Algorithm: sha256WithRSAEncryption
aa:dc:df:84:10:8e:c2:42:c6:e4:25:52:f5:35:78:f1:7f:71:
a8:1f:5e:7d:c8:29:28:0c:6e:1c:b0:28:fd:b3:43:6a:76:16:
5b:a0:6d:24:c3:6f:94:c0:7a:43:4e:78:08:20:ee:ca:9c:fa:
3b:7a:ad:6a:3b:8e:1a:6d:eb:67:0e:7a:d3:d5:3a:76:7d:12:
61:ad:30:1f:bb:a4:02:be:44:61:d4:b4:06:65:67:ce:8f:cb:
ce:4c:54:9b:e3:ad:db:79:fb:b1:1b:ae:45:7f:19:98:75:f1:
d0:f4:55:17:68:92:20:e4:cb:db:f7:8e:33:c9:ce:7c:e1:e3:
87:0a:70:b5:1e:f4:25:b5:ce:24:f7:c8:32:56:48:bb:f0:57:
f6:a1:54:8f:80:5b:af:93:6c:03:5c:d7:59:f0:ae:75:fd:fc:
3c:3f:a0:9c:69:8a:83:c5:d7:9c:41:5b:08:f9:1f:03:f7:c6:
e3:9b:17:75:3f:d1:cd:e1:09:9a:da:29:11:a4:04:11:84:c6:
48:8a:1b:f4:35:00:a8:f6:fb:d2:51:d1:28:be:27:04:d7:d2:
e4:94:2e:75:ed:de:76:93:42:92:02:aa:66:c6:5d:62:0b:05:
bd:7a:72:b2:2a:bb:ce:01:0d:60:12:3b:b5:13:7e:46:04:9e:
b3:5b:cb:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:55:38 2025 by rpki-client