Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/3230302e332e382e302f32342d3234203d3e203237393537.roa
File: 3230302e332e382e302f32342d3234203d3e203237393537.roa (raw, json)
Hash identifier: FUjViukwxBxZzkqG5vYXtgs1X07c+LlXE656D56A/SE=
Subject key identifier: 6B:3C:59:FA:26:D6:B4:00:41:41:73:73:1C:4E:04:E9:F1:63:1E:9E
Certificate issuer: /CN=506320FB69AC1025178FC25AE58C93B0BA04A7B4
Certificate serial: 411D5111C1C51935A6CE73869696175256017F1F
Authority key identifier: 50:63:20:FB:69:AC:10:25:17:8F:C2:5A:E5:8C:93:B0:BA:04:A7:B4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/506320FB69AC1025178FC25AE58C93B0BA04A7B4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/3230302e332e382e302f32342d3234203d3e203237393537.roa
Signing time: Tue 04 Feb 2025 18:47:54 +0000
ROA not before: Tue 04 Feb 2025 18:42:54 +0000
ROA not after: Tue 03 Feb 2026 18:47:54 +0000
asID: 27957
IP address blocks: 200.3.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:1d:51:11:c1:c5:19:35:a6:ce:73:86:96:96:17:52:56:01:7f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=506320FB69AC1025178FC25AE58C93B0BA04A7B4
Validity
Not Before: Feb 4 18:42:54 2025 GMT
Not After : Feb 3 18:47:54 2026 GMT
Subject: CN=6B3C59FA26D6B400414173731C4E04E9F1631E9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d8:70:84:a1:76:b2:4c:28:73:59:9c:46:a1:
ef:af:d4:f9:5f:c6:37:08:f6:ac:07:d7:bf:ca:7c:
c7:e8:8f:10:65:47:bf:8e:19:06:12:1c:1a:d5:37:
bd:6e:e5:2d:48:49:c1:51:3b:d0:43:25:04:38:12:
53:e9:db:f5:ad:8a:c6:3d:45:cf:73:d1:5b:53:cd:
dc:0b:27:7b:35:00:0b:d1:7c:11:73:9c:05:c8:45:
36:a5:c7:2f:37:b8:ab:b3:ae:c4:15:f7:f4:bb:82:
c3:52:c5:45:17:3e:a4:32:64:eb:dc:46:03:89:58:
24:57:09:93:b6:f6:ac:90:98:95:35:90:3a:c4:f4:
06:76:a9:ba:12:cd:5d:d1:c6:63:0c:95:75:44:f3:
9c:9d:33:18:26:e9:a9:2b:fd:70:a8:db:97:0f:d8:
af:ca:39:4b:45:7d:a8:5b:ea:a4:2a:95:95:98:8b:
fd:c7:6b:3c:72:e8:b2:18:49:17:64:47:e5:14:b8:
be:89:08:08:02:e5:4a:7e:5a:9d:0e:9b:58:a2:9a:
a8:65:54:bf:51:a5:2a:dc:c1:69:bd:09:25:38:2e:
f6:4c:eb:7e:44:ef:71:be:46:db:e1:48:e2:e4:16:
97:13:02:f5:94:67:72:e5:0f:93:a3:1d:de:2f:e0:
7f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:3C:59:FA:26:D6:B4:00:41:41:73:73:1C:4E:04:E9:F1:63:1E:9E
X509v3 Authority Key Identifier:
keyid:50:63:20:FB:69:AC:10:25:17:8F:C2:5A:E5:8C:93:B0:BA:04:A7:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/506320FB69AC1025178FC25AE58C93B0BA04A7B4.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/506320FB69AC1025178FC25AE58C93B0BA04A7B4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B5CA50EE6F8DB61C9EFFD72F30B7B2AF171D2EE674F6A991FAA770707B27F9C/0/3230302e332e382e302f32342d3234203d3e203237393537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.3.8.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:b2:81:a0:5f:82:e7:8d:42:d8:a4:cc:c3:95:12:76:7e:55:
ee:a6:46:02:32:02:01:f8:cb:f8:4d:8e:24:df:d7:a0:1a:7f:
55:13:85:dd:1d:37:53:7d:63:2a:cc:2e:d5:1e:ee:18:c9:97:
f3:09:75:19:23:bb:98:58:c5:48:9f:c2:a0:3d:31:55:1e:db:
d5:a7:7d:8b:1a:b0:7b:7d:64:08:23:30:55:80:cf:bd:b2:96:
54:1f:59:a6:e7:77:28:8f:1e:6d:54:6f:f1:b3:59:9c:f6:6f:
41:53:80:dd:d4:c8:9c:b1:e5:3c:fe:ea:3e:f3:12:f3:83:9a:
69:a5:1e:de:9a:da:43:aa:33:cd:8f:38:2d:54:8b:83:f1:2a:
3d:64:68:5c:63:42:fd:d1:e4:f7:96:e8:b9:f4:70:23:dd:2b:
9e:bb:41:39:09:ff:52:34:b6:8a:25:4c:04:ec:81:98:44:2b:
9a:43:29:83:c0:12:74:03:35:59:8e:76:c1:14:00:ea:cc:d8:
8a:f1:d1:13:55:1d:3a:88:df:19:ba:14:7f:8a:71:b6:ae:7d:
04:30:a6:f5:5f:49:81:2e:dd:ac:8f:92:0e:ee:39:31:3c:db:
56:d7:92:b1:49:9f:02:d4:35:fd:64:5e:74:9f:6f:cb:48:b4:
9a:73:d0:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:52:14 2025 by rpki-client