Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7E6635FA2162D733AE6563393FA233436377B0DC54E32CEA281C301F7134FFD4/0/3230312e3232302e3136302e302f31392d3234203d3e203237383138.roa
File: 3230312e3232302e3136302e302f31392d3234203d3e203237383138.roa (raw, json)
Hash identifier: jkPFKQBGHSSdBNySCNB805UtYhMZn98r6RrHj5vzsZE=
Subject key identifier: C0:5D:12:BB:12:F5:36:AC:0C:20:22:7B:CC:AC:E4:E7:95:12:D5:5D
Certificate issuer: /CN=20DDB465F07E0C4CF8244E3A2605195B41ADA3BB
Certificate serial: 1D9841030F8A8C8907EF022521F95BD6F403E57F
Authority key identifier: 20:DD:B4:65:F0:7E:0C:4C:F8:24:4E:3A:26:05:19:5B:41:AD:A3:BB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20DDB465F07E0C4CF8244E3A2605195B41ADA3BB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7E6635FA2162D733AE6563393FA233436377B0DC54E32CEA281C301F7134FFD4/0/3230312e3232302e3136302e302f31392d3234203d3e203237383138.roa
Signing time: Tue 04 Feb 2025 18:25:07 +0000
ROA not before: Tue 04 Feb 2025 18:20:07 +0000
ROA not after: Tue 03 Feb 2026 18:25:07 +0000
asID: 27818
IP address blocks: 201.220.160.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:98:41:03:0f:8a:8c:89:07:ef:02:25:21:f9:5b:d6:f4:03:e5:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20DDB465F07E0C4CF8244E3A2605195B41ADA3BB
Validity
Not Before: Feb 4 18:20:07 2025 GMT
Not After : Feb 3 18:25:07 2026 GMT
Subject: CN=C05D12BB12F536AC0C20227BCCACE4E79512D55D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:83:2a:bd:08:e1:c6:a1:3a:d3:75:24:ca:3e:
49:36:23:1e:44:5a:62:3d:6b:9b:8c:50:62:18:d5:
f5:d7:ab:6e:ae:70:5d:9e:c6:15:3b:66:54:88:4f:
a9:98:09:90:ef:76:a4:c7:89:cb:6b:92:ab:b8:e4:
6b:db:ac:9d:e7:8d:64:a2:e6:56:8e:8f:19:fc:59:
b4:d8:93:6e:3a:46:bb:a9:49:b3:6c:2c:86:0f:4f:
1c:ba:4f:04:d0:f8:61:6f:82:82:ca:97:1b:60:0b:
02:85:99:d6:5a:d5:14:c2:09:3f:19:9d:9c:ef:b9:
3d:67:b5:71:67:4e:0c:d5:50:16:84:46:92:dc:bc:
c7:93:b8:8e:43:d7:e2:44:56:05:60:63:f4:6e:30:
ea:29:7f:50:46:7e:47:58:39:93:53:f9:cb:dc:76:
93:6b:bd:41:bf:79:19:51:86:ed:f1:bd:ba:86:f2:
4b:58:b3:79:48:7d:1f:30:e2:f8:f7:10:c1:40:56:
c1:b5:f3:30:3e:d3:d8:ed:e8:3b:bc:0a:91:36:57:
61:f0:73:b8:47:3c:27:a9:af:13:b9:30:0c:cf:1d:
e2:e1:c4:33:a8:9a:6e:24:2b:dd:62:0a:e3:5d:23:
53:c3:35:06:73:1b:8e:46:de:6c:d5:b2:7e:51:6c:
e9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:5D:12:BB:12:F5:36:AC:0C:20:22:7B:CC:AC:E4:E7:95:12:D5:5D
X509v3 Authority Key Identifier:
keyid:20:DD:B4:65:F0:7E:0C:4C:F8:24:4E:3A:26:05:19:5B:41:AD:A3:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7E6635FA2162D733AE6563393FA233436377B0DC54E32CEA281C301F7134FFD4/0/20DDB465F07E0C4CF8244E3A2605195B41ADA3BB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20DDB465F07E0C4CF8244E3A2605195B41ADA3BB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7E6635FA2162D733AE6563393FA233436377B0DC54E32CEA281C301F7134FFD4/0/3230312e3232302e3136302e302f31392d3234203d3e203237383138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.220.160.0/19
Signature Algorithm: sha256WithRSAEncryption
b5:5d:cc:89:db:b1:12:34:fa:24:25:8e:18:3c:f5:59:6a:7a:
98:28:fe:4a:68:bd:45:b1:1d:76:ed:fa:27:d7:ec:30:4b:94:
f1:22:8b:c3:08:ae:b0:1b:aa:57:27:c1:03:be:8b:03:ac:fe:
7f:60:a9:76:ea:0a:f0:20:80:a5:32:4d:6e:97:37:20:ac:77:
23:16:d4:97:92:45:14:9d:02:4c:57:6d:80:d6:1c:52:76:4c:
29:aa:8c:21:23:47:b8:27:f3:2a:5d:09:4d:76:aa:ae:40:2e:
47:c8:81:9e:41:86:7c:f0:e5:3b:29:a7:5d:d3:32:cb:4d:49:
38:15:ef:3e:67:a0:9a:91:f6:fb:9a:d9:fd:8b:7d:08:0c:83:
36:c9:ee:3d:3f:e1:2e:4f:1f:72:4b:94:57:a3:4d:ab:10:f5:
08:17:61:ea:20:c2:d3:fa:6d:f1:7a:2f:79:5b:42:cc:39:a8:
0a:f3:eb:e9:28:85:4a:a9:50:3e:dc:a4:96:bf:71:99:58:66:
03:97:e9:05:95:30:52:61:1c:b1:c3:4e:63:82:56:33:d9:77:
ae:e8:f9:b0:d1:4d:a9:92:d1:be:1e:3d:53:9f:af:cd:17:16:
6c:19:3e:76:e5:0a:b1:f4:c0:c0:0d:36:d6:e0:04:0a:08:7a:
06:20:c6:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:27:57 2025 by rpki-client