Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e31322e3133382e302f32342d3234203d3e203237383735.roa
File: 3230302e31322e3133382e302f32342d3234203d3e203237383735.roa (raw, json)
Hash identifier: PLQZVxODAI0ZWxpBJD8MF5n5CLcKZCP5kLr1fVwORyA=
Subject key identifier: 0E:A6:7F:53:ED:77:E2:CA:04:42:96:45:31:8D:A2:83:90:74:13:E2
Certificate issuer: /CN=D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC
Certificate serial: 06DF08E182B0B6756B44F84D164F11F1DC384E73
Authority key identifier: D0:53:F7:D4:2F:C9:FD:03:55:6A:9F:3D:2A:F9:E3:D2:22:1B:AD:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e31322e3133382e302f32342d3234203d3e203237383735.roa
Signing time: Tue 04 Feb 2025 18:05:25 +0000
ROA not before: Tue 04 Feb 2025 18:00:25 +0000
ROA not after: Tue 03 Feb 2026 18:05:25 +0000
asID: 27875
IP address blocks: 200.12.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:df:08:e1:82:b0:b6:75:6b:44:f8:4d:16:4f:11:f1:dc:38:4e:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC
Validity
Not Before: Feb 4 18:00:25 2025 GMT
Not After : Feb 3 18:05:25 2026 GMT
Subject: CN=0EA67F53ED77E2CA04429645318DA283907413E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:1f:8e:c6:99:5a:c5:fc:7b:04:f1:92:76:fd:
af:83:70:2a:37:83:11:e3:1b:f2:22:c5:1d:bc:91:
2b:29:15:c2:08:da:28:80:59:88:a3:a9:1a:36:db:
f1:2a:58:91:ad:d5:98:6a:0d:61:cc:6d:2a:98:13:
2e:28:6c:6f:1c:ed:88:81:7a:8c:ee:f4:54:b0:cc:
3b:53:88:4e:c7:2d:3f:97:01:85:31:b5:6f:6c:64:
c3:73:e3:7b:50:fe:be:af:38:5a:ff:b5:dc:b3:1e:
7d:d7:bc:c1:b2:f9:ec:ba:5a:3c:0e:f2:d5:4f:57:
85:24:f6:a1:1d:ce:1e:18:06:d7:f3:7a:12:46:be:
b2:0e:03:27:a7:b2:04:56:b6:00:53:dd:cf:a9:b7:
79:e4:bf:60:79:74:b4:ed:73:b7:48:87:95:5c:27:
09:2a:6f:ec:cd:3d:d2:c9:c8:c0:b8:1f:17:fd:1a:
2b:a5:5c:36:27:b5:ed:ff:cf:fe:4d:86:05:ee:ea:
0b:db:47:17:5a:fe:fc:28:ac:1c:2c:0e:6e:a1:d4:
79:0a:08:dc:e6:d4:fb:25:a8:ea:e3:22:3c:18:a8:
ab:09:ef:7f:a1:5c:5c:64:9c:9e:9a:f8:2a:8e:08:
d4:7e:e7:0d:e5:0e:ce:7b:64:34:9b:bc:a4:29:7a:
04:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A6:7F:53:ED:77:E2:CA:04:42:96:45:31:8D:A2:83:90:74:13:E2
X509v3 Authority Key Identifier:
keyid:D0:53:F7:D4:2F:C9:FD:03:55:6A:9F:3D:2A:F9:E3:D2:22:1B:AD:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/3230302e31322e3133382e302f32342d3234203d3e203237383735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.12.138.0/24
Signature Algorithm: sha256WithRSAEncryption
93:83:13:ba:9e:1f:2d:0c:cd:58:72:5c:da:ba:97:58:45:aa:
6c:f1:e7:c8:a9:4a:9d:0b:40:57:66:1b:da:80:d5:23:c8:cb:
47:8a:96:b2:ce:57:e3:30:65:a9:5b:65:9c:4a:40:36:69:e2:
d3:d5:bd:c8:f2:e0:c5:a0:6c:25:d3:b8:f3:11:66:2a:9d:2f:
26:a4:f8:b6:ac:d7:56:66:5a:cc:1f:64:33:0c:5e:52:2b:a6:
20:79:12:c8:cd:33:a9:01:2c:ac:6a:2a:3b:65:5b:45:7c:a8:
8f:9c:2a:79:5b:b4:7a:a0:78:7b:06:1a:d8:b3:4a:78:c1:e0:
bd:fb:dd:4e:c5:43:06:58:b9:7a:48:ed:00:14:fc:d9:c0:c9:
38:a2:a5:5b:7a:54:53:4f:e2:a3:4a:83:d1:16:21:98:15:fd:
2a:d2:d5:91:44:06:f3:ec:34:7f:38:98:c4:42:99:57:59:f6:
ac:d0:58:ab:38:79:10:8e:6a:09:57:29:c8:92:b5:57:9d:69:
94:36:4a:83:e8:92:89:c6:02:23:d5:70:4c:8e:4d:81:fd:ba:
0f:ff:cd:aa:1d:fc:79:de:e6:b3:ad:fd:3c:ee:b8:68:ad:2c:
68:3a:52:67:e5:60:92:c2:43:22:1e:99:c1:e8:dc:4d:9d:eb:
25:33:84:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:52:09 2025 by rpki-client