Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e31322e3133362e302f32332d3234203d3e203237383735.roa
File: 3230302e31322e3133362e302f32332d3234203d3e203237383735.roa (raw, json)
Hash identifier: s6GCGiJyDSb86VrCH0fhS5UzF5ChJSRL0GozSa2u4kg=
Subject key identifier: C9:FA:9E:18:4A:84:F8:59:CC:9C:DE:5A:24:9F:15:07:08:C3:88:83
Certificate issuer: /CN=D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC
Certificate serial: 2D3F8922793703E0D198E5BAEC8829919539745E
Authority key identifier: D0:53:F7:D4:2F:C9:FD:03:55:6A:9F:3D:2A:F9:E3:D2:22:1B:AD:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e31322e3133362e302f32332d3234203d3e203237383735.roa
Signing time: Tue 04 Feb 2025 18:05:24 +0000
ROA not before: Tue 04 Feb 2025 18:00:24 +0000
ROA not after: Tue 03 Feb 2026 18:05:24 +0000
asID: 27875
IP address blocks: 200.12.136.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:3f:89:22:79:37:03:e0:d1:98:e5:ba:ec:88:29:91:95:39:74:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC
Validity
Not Before: Feb 4 18:00:24 2025 GMT
Not After : Feb 3 18:05:24 2026 GMT
Subject: CN=C9FA9E184A84F859CC9CDE5A249F150708C38883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e1:50:db:e4:15:76:5a:25:cb:ed:49:c6:07:
d6:5d:71:11:cd:9c:80:5e:c6:ae:c5:c3:83:fa:04:
0c:8d:c9:c2:a4:55:b4:75:13:21:3d:7c:e1:c2:2e:
88:b4:93:1e:64:30:88:22:8b:d0:7b:92:f7:9c:09:
13:dc:82:30:80:4f:37:35:2a:13:e2:f9:0d:03:e8:
25:31:d9:85:70:ac:b3:d4:c9:f0:5f:35:ec:3d:9c:
38:af:23:b1:a8:55:e3:0b:b0:4c:33:72:b5:a4:48:
55:34:dc:b5:a4:95:2a:4b:d3:53:51:c7:46:7b:11:
2b:8a:a6:92:16:4d:7b:f8:6d:7c:3b:e1:a5:23:44:
1a:70:2e:34:66:f7:16:71:96:b9:ef:81:13:f3:5b:
04:f6:18:0a:c4:c4:8b:ee:c9:ea:63:5b:be:1c:64:
da:13:f7:22:f6:e0:fe:55:08:85:2f:b9:d6:97:41:
a2:ec:b3:08:42:3c:28:74:e4:c8:f5:81:ef:45:a1:
b6:54:be:ef:c9:86:bb:06:95:7d:02:c4:50:38:75:
ed:05:6c:7e:22:b5:38:a8:4b:86:8e:f9:fb:1a:23:
25:c4:50:a2:ff:e4:91:cd:ee:31:14:dd:64:ee:7a:
39:6f:91:58:d5:ed:da:5f:17:e2:a5:f9:85:7d:45:
88:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:FA:9E:18:4A:84:F8:59:CC:9C:DE:5A:24:9F:15:07:08:C3:88:83
X509v3 Authority Key Identifier:
keyid:D0:53:F7:D4:2F:C9:FD:03:55:6A:9F:3D:2A:F9:E3:D2:22:1B:AD:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e31322e3133362e302f32332d3234203d3e203237383735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.12.136.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:53:7a:e0:6c:03:2f:97:68:6e:08:54:0a:27:53:ac:b1:fb:
26:bc:0c:6c:bd:1a:f8:d5:d5:e8:88:32:01:1e:eb:3b:c0:37:
81:25:aa:20:f0:07:6d:84:1d:54:19:cf:f5:82:13:51:0c:25:
f5:b6:13:51:61:c8:2d:23:22:ba:43:cd:db:17:2c:c0:f9:d7:
e7:e6:5c:01:b6:28:0b:6d:c6:b6:e8:e6:08:dc:f9:1e:de:64:
67:54:3d:bc:51:e5:7b:9a:3a:95:d9:46:f0:54:18:a9:e2:84:
e9:37:e3:a5:e1:fa:41:17:b8:32:4d:12:76:fb:16:05:c6:3f:
b0:bc:51:96:90:64:08:71:69:f6:3c:bd:2e:58:62:19:c7:8b:
d3:71:5d:71:6a:80:e9:a1:71:54:5a:07:70:64:58:fb:c0:33:
a7:bd:e9:3c:7a:5a:ae:ab:dd:1a:7e:f5:3b:87:c5:4e:70:4c:
dd:99:06:ca:f3:6d:ae:c1:ab:70:61:70:f0:8f:f1:2c:b6:ab:
a5:06:bc:e4:a5:79:85:a2:e1:af:17:9e:32:78:41:3e:f7:31:
f6:7d:03:c9:3c:c1:ad:5b:3e:a7:fd:ec:4c:e9:f6:11:63:33:
6c:2f:ac:58:cb:b1:99:dc:17:da:e8:6e:47:92:a0:cc:15:df:
1e:d2:29:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:49:34 2025 by rpki-client