Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7E0C5237EAA1E378E05F33F4BC7C4CC9B6643AB4B34891E382A882779FDF81D7/0/3230302e33302e3137312e302f32342d3234203d3e203237373733.roa
File: 3230302e33302e3137312e302f32342d3234203d3e203237373733.roa (raw, json)
Hash identifier: kKhsb0haVmbad6PIbZ777FClcHV43BsiII+5ZMoszU0=
Subject key identifier: 86:E4:96:1D:5D:AB:8D:57:78:46:D1:32:96:BE:5A:FD:67:22:5B:8F
Certificate issuer: /CN=FB90888D9D0C05658464274F626D1462AAA70399
Certificate serial: 2767B96AB3B921E9AF88B1990A5758B459A39253
Authority key identifier: FB:90:88:8D:9D:0C:05:65:84:64:27:4F:62:6D:14:62:AA:A7:03:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FB90888D9D0C05658464274F626D1462AAA70399.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7E0C5237EAA1E378E05F33F4BC7C4CC9B6643AB4B34891E382A882779FDF81D7/0/3230302e33302e3137312e302f32342d3234203d3e203237373733.roa
Signing time: Tue 04 Feb 2025 18:38:38 +0000
ROA not before: Tue 04 Feb 2025 18:33:38 +0000
ROA not after: Tue 03 Feb 2026 18:38:38 +0000
asID: 27773
IP address blocks: 200.30.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:67:b9:6a:b3:b9:21:e9:af:88:b1:99:0a:57:58:b4:59:a3:92:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB90888D9D0C05658464274F626D1462AAA70399
Validity
Not Before: Feb 4 18:33:38 2025 GMT
Not After : Feb 3 18:38:38 2026 GMT
Subject: CN=86E4961D5DAB8D577846D13296BE5AFD67225B8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:01:63:76:96:c8:73:94:f2:54:55:ab:ad:e5:
68:d5:f9:af:af:be:6c:d2:a5:35:31:6b:76:6b:09:
e2:7e:7a:40:1d:49:6d:f0:17:fc:54:c5:a7:63:f9:
54:80:5d:ea:b9:46:96:34:ae:22:77:c8:3a:b8:4f:
74:eb:00:77:00:e9:72:34:db:37:ec:ae:f6:13:b0:
f9:08:87:3e:c2:68:67:1c:7b:50:3b:3d:bf:1d:ac:
31:ac:dd:7c:f6:ae:c7:7f:b3:57:14:68:47:45:80:
54:e8:eb:d7:65:2d:d4:f9:cb:6f:79:ea:7d:93:cc:
d6:25:fd:69:22:cf:7f:b4:cc:f8:85:fd:b3:e6:8d:
b0:b1:46:d0:9d:06:f5:b9:40:f4:be:6f:c4:80:fb:
c6:52:58:2c:db:d9:7c:49:73:b0:c1:4c:7c:5f:7e:
d9:0b:a7:31:83:71:da:6e:3c:49:86:17:a2:06:9c:
8d:52:22:de:f5:e8:66:b8:cb:17:ef:57:29:14:3b:
fb:21:ca:ad:7a:7d:e8:c9:82:20:8e:8f:d3:41:cf:
9c:b6:e5:4e:2d:c1:68:04:7a:ba:76:4f:74:8b:88:
93:51:87:9f:cc:0a:68:5d:53:8c:b0:96:38:5f:70:
6f:35:66:3c:d8:09:be:2e:90:83:58:ad:08:0c:39:
4f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E4:96:1D:5D:AB:8D:57:78:46:D1:32:96:BE:5A:FD:67:22:5B:8F
X509v3 Authority Key Identifier:
keyid:FB:90:88:8D:9D:0C:05:65:84:64:27:4F:62:6D:14:62:AA:A7:03:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7E0C5237EAA1E378E05F33F4BC7C4CC9B6643AB4B34891E382A882779FDF81D7/0/FB90888D9D0C05658464274F626D1462AAA70399.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FB90888D9D0C05658464274F626D1462AAA70399.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7E0C5237EAA1E378E05F33F4BC7C4CC9B6643AB4B34891E382A882779FDF81D7/0/3230302e33302e3137312e302f32342d3234203d3e203237373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.30.171.0/24
Signature Algorithm: sha256WithRSAEncryption
28:3d:ae:dc:53:15:2d:70:de:94:30:a7:32:64:dd:87:69:f0:
b8:08:4b:05:2d:1e:89:b6:85:2a:b1:60:d5:fd:fd:b4:3e:d9:
bd:bf:6e:71:05:9c:b1:a4:2a:99:f5:d9:fe:19:f3:99:47:6e:
2c:02:9d:16:32:ad:34:9e:2e:2e:05:2f:b6:1b:b9:11:63:86:
12:b4:00:18:9a:df:6e:c7:0a:96:a9:ce:55:cc:a2:ea:2f:83:
5d:17:3e:83:59:89:76:88:04:0d:4a:fa:f4:8f:e5:2a:37:79:
d7:db:35:98:aa:fa:1c:7c:50:bd:98:4e:67:0e:40:28:aa:d4:
6a:9f:b1:ae:f8:0e:bc:71:0c:63:d4:51:c9:db:77:34:80:7b:
34:0d:b0:e4:4e:0c:ea:1d:b7:c2:1f:1e:84:fa:6f:46:5d:00:
93:92:57:f7:51:e0:5a:3c:a5:87:bc:31:dc:1d:94:8c:dc:f5:
30:bd:d9:5f:1f:ec:28:f0:47:36:23:5b:24:0d:48:31:a7:3e:
0d:de:16:79:ed:1e:21:9a:5a:fc:4c:c3:d8:eb:dd:7b:29:d1:
1d:6d:32:ed:69:2d:1e:94:42:ad:93:4d:1b:a3:e5:94:f1:6d:
2a:64:48:76:7b:25:13:be:50:2d:46:f3:95:43:0f:36:db:8d:
ea:d4:d5:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:27 2025 by rpki-client