Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/3230302e332e342e302f32332d3234203d3e203237393537.roa
File: 3230302e332e342e302f32332d3234203d3e203237393537.roa (raw, json)
Hash identifier: BUgqDGl3k0rtw5Wbdt1NvTjOOVhARUHX35ktwiVknAg=
Subject key identifier: 22:97:C5:30:61:9A:77:D8:E7:74:DE:36:F7:10:73:EC:35:2F:D7:D8
Certificate issuer: /CN=506320FB69AC1025178FC25AE58C93B0BA04A7B4
Certificate serial: 4AD2DEF35309805573C1658968EA70F2AE803204
Authority key identifier: 50:63:20:FB:69:AC:10:25:17:8F:C2:5A:E5:8C:93:B0:BA:04:A7:B4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/506320FB69AC1025178FC25AE58C93B0BA04A7B4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/3230302e332e342e302f32332d3234203d3e203237393537.roa
Signing time: Tue 04 Feb 2025 18:47:54 +0000
ROA not before: Tue 04 Feb 2025 18:42:54 +0000
ROA not after: Tue 03 Feb 2026 18:47:54 +0000
asID: 27957
IP address blocks: 200.3.4.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:d2:de:f3:53:09:80:55:73:c1:65:89:68:ea:70:f2:ae:80:32:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=506320FB69AC1025178FC25AE58C93B0BA04A7B4
Validity
Not Before: Feb 4 18:42:54 2025 GMT
Not After : Feb 3 18:47:54 2026 GMT
Subject: CN=2297C530619A77D8E774DE36F71073EC352FD7D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:af:46:65:d4:5b:45:70:76:1c:d1:dc:6e:3c:
1f:4e:3c:03:06:fc:d0:03:5d:32:c6:87:0b:28:9e:
0f:ff:62:2d:40:94:fc:23:ba:be:dc:ca:cb:70:5f:
8a:9e:a7:0d:33:43:32:ac:e1:98:65:ef:61:5c:91:
11:8a:23:34:19:fe:ae:83:d9:16:5d:1b:a5:56:ee:
45:2e:ae:50:56:c6:2a:da:e1:6d:4f:da:22:93:7f:
61:70:da:04:e6:a6:d8:fe:6e:1c:bf:5d:9d:2c:c9:
08:01:b1:85:ab:da:55:ea:9a:67:ec:b0:21:c9:d4:
e3:fd:86:c4:c3:c3:1c:8a:4e:9e:cf:83:15:f6:58:
e2:2c:57:e2:20:fb:d5:98:34:a2:7e:4c:fe:79:b0:
c6:97:e5:8c:41:df:3c:dd:d7:0e:1b:6e:dc:91:76:
1e:a2:30:98:26:8d:52:51:fa:81:94:14:9b:c1:e7:
16:80:a0:28:9e:cb:55:63:a6:d2:fe:5c:82:f8:c1:
27:39:2d:d7:6f:b9:d3:10:f5:eb:30:29:39:6a:06:
26:0e:a3:77:e5:35:4c:93:40:ca:95:ed:8e:77:fa:
2c:1b:45:00:97:4b:e9:b7:27:d0:be:b9:5d:0d:76:
83:af:b8:a2:34:5b:61:51:7b:9d:b3:78:58:40:6f:
df:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:97:C5:30:61:9A:77:D8:E7:74:DE:36:F7:10:73:EC:35:2F:D7:D8
X509v3 Authority Key Identifier:
keyid:50:63:20:FB:69:AC:10:25:17:8F:C2:5A:E5:8C:93:B0:BA:04:A7:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/506320FB69AC1025178FC25AE58C93B0BA04A7B4.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/506320FB69AC1025178FC25AE58C93B0BA04A7B4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/3230302e332e342e302f32332d3234203d3e203237393537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.3.4.0/23
Signature Algorithm: sha256WithRSAEncryption
59:73:ef:27:64:cd:2f:96:2e:09:01:80:28:39:f4:08:ef:d9:
95:05:38:e1:9b:30:f9:2a:fb:3b:1f:d8:be:8d:bb:bf:25:1b:
a9:54:09:f3:eb:10:41:e8:ac:04:ca:d6:a4:f5:44:bb:16:25:
02:ea:90:26:7c:e2:de:c4:ea:bb:bf:14:2d:8d:d5:a4:8b:16:
df:16:ce:e5:3b:7b:4c:80:2f:80:0b:c1:ff:e9:77:35:00:bb:
db:a9:bd:3b:5a:66:75:0a:20:2b:57:35:e8:2f:5e:d4:0f:19:
b5:21:53:ca:5c:43:c8:6c:1c:a8:27:3d:24:d6:48:10:ce:20:
64:4a:24:df:6a:ee:53:54:33:74:ab:06:0d:f0:54:bb:58:49:
d6:32:e5:6f:82:77:76:22:83:61:be:71:12:45:a3:79:3f:d4:
d1:33:39:8a:c1:c9:5b:fa:d8:2c:ed:16:8e:2d:6c:a2:97:5d:
6f:ef:83:f4:d5:51:91:01:81:b2:7a:92:da:15:54:e9:1b:db:
6a:69:2e:c2:d6:84:0a:9d:33:4e:84:8d:fb:df:bc:67:d8:fe:
e9:3f:32:47:5c:f3:6c:1a:52:4c:b2:98:bc:af:a0:82:b0:7e:
05:a8:53:e5:42:d2:40:24:5a:b6:15:21:7c:5e:d6:53:8a:a7:
c4:74:03:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 22:19:28 2025 by rpki-client