Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e31322e3133342e302f32332d3234203d3e203237383735.roa
File: 3230302e31322e3133342e302f32332d3234203d3e203237383735.roa (raw, json)
Hash identifier: HOuDJ+H6QEo/PrcopTt7dSt6rHAOKi16hUEaQl46VPc=
Subject key identifier: 05:FC:C4:97:44:46:3B:47:D8:57:62:F1:95:88:DE:76:AE:2B:6B:F1
Certificate issuer: /CN=D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC
Certificate serial: 47834CE36B014E90AEB346EFB5AD424B583FBB2C
Authority key identifier: D0:53:F7:D4:2F:C9:FD:03:55:6A:9F:3D:2A:F9:E3:D2:22:1B:AD:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e31322e3133342e302f32332d3234203d3e203237383735.roa
Signing time: Tue 04 Feb 2025 18:05:26 +0000
ROA not before: Tue 04 Feb 2025 18:00:26 +0000
ROA not after: Tue 03 Feb 2026 18:05:26 +0000
asID: 27875
IP address blocks: 200.12.134.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:83:4c:e3:6b:01:4e:90:ae:b3:46:ef:b5:ad:42:4b:58:3f:bb:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC
Validity
Not Before: Feb 4 18:00:26 2025 GMT
Not After : Feb 3 18:05:26 2026 GMT
Subject: CN=05FCC49744463B47D85762F19588DE76AE2B6BF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:95:54:9a:d1:11:58:4e:cf:93:97:75:f9:25:
94:36:b7:58:fe:6e:b3:62:4a:45:4e:fe:25:b3:78:
a3:0c:c2:20:a6:92:d5:08:07:b1:99:c9:1a:b9:23:
43:81:80:b8:ee:b2:0c:91:f7:0a:13:f5:4d:b4:4b:
17:1f:37:fa:22:36:e1:31:96:81:f9:00:d1:e2:7f:
d4:ae:13:59:f7:06:b0:99:2c:d8:3e:9b:ec:9c:cc:
b9:00:68:34:88:8e:44:eb:99:42:38:d9:9c:ac:11:
c3:21:df:09:61:bb:77:ab:4d:1a:d0:51:f9:f9:ce:
5e:ea:64:79:be:5f:dd:3f:2a:8e:e8:7b:59:9e:ab:
26:c6:8c:7f:fe:2b:98:19:51:9e:4b:09:29:50:c3:
a3:e8:42:2d:a9:77:90:1b:72:f0:0b:9b:9e:c4:c2:
d5:a3:42:4f:ae:42:00:6a:bb:59:7b:95:62:8b:b6:
6b:73:f3:08:e9:4c:0b:99:be:b7:64:ea:b8:d0:67:
d2:d3:4b:ec:08:52:ab:91:e8:55:e8:32:e2:8a:92:
d9:39:1f:b4:57:06:21:7c:92:dd:01:b9:4a:53:21:
e6:d8:fe:85:12:9b:03:79:45:f6:8d:2a:d2:79:e6:
f4:5b:83:70:f2:17:2d:ee:81:67:0e:a8:63:bc:29:
5a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:FC:C4:97:44:46:3B:47:D8:57:62:F1:95:88:DE:76:AE:2B:6B:F1
X509v3 Authority Key Identifier:
keyid:D0:53:F7:D4:2F:C9:FD:03:55:6A:9F:3D:2A:F9:E3:D2:22:1B:AD:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e31322e3133342e302f32332d3234203d3e203237383735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.12.134.0/23
Signature Algorithm: sha256WithRSAEncryption
39:2f:f1:68:9f:8c:9b:4e:b8:b6:9e:0b:0b:ff:7c:50:b0:54:
35:be:73:33:40:0f:ad:c7:b4:77:0a:f1:7a:5e:86:a4:ce:08:
f2:c4:06:ca:79:af:b8:10:fe:a1:a7:d6:92:f7:cf:e6:1a:5b:
68:0a:e7:bc:6b:53:b8:93:3e:f8:db:9f:26:8e:9c:b5:b2:a5:
5a:df:0b:d5:8c:c0:45:9b:b0:51:01:0d:e2:62:bd:44:f0:f9:
f5:44:e7:3e:23:b5:4e:28:8d:0d:4c:eb:b7:b6:93:8f:64:3d:
c6:27:9c:94:c7:67:4a:c8:4d:0c:d6:c0:8f:f9:49:60:21:f6:
b0:42:d8:4d:27:e5:bd:ef:db:ae:b3:47:97:be:81:f2:30:53:
06:0d:e8:ca:58:fd:0b:f5:0d:41:14:36:5e:2a:e9:d3:37:bc:
50:f3:f1:1c:80:60:47:7f:15:9f:a2:0a:c4:8b:c4:58:b7:ef:
08:d8:88:37:97:a4:54:40:2a:cb:23:b2:ab:89:9e:4c:e0:89:
b8:7e:cb:ee:b5:23:7f:d9:21:21:8a:c1:08:c8:78:22:18:22:
43:0e:ad:b5:b6:a9:fe:d5:f0:63:24:3a:3e:ef:75:60:72:3d:
ae:d0:a9:bd:90:14:df:85:0c:23:9a:fe:f5:ca:b6:59:13:4b:
02:31:73:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:53:44 2025 by rpki-client