Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/870C83D25E7FA67388832052309332085572C074B86F60E54C9F48F630BD5AA6/0/3230372e3234382e302e302f32322d3234203d3e203634313339.roa
File: 3230372e3234382e302e302f32322d3234203d3e203634313339.roa (raw, json)
Hash identifier: oWJ9vccGLUdueJWYjfFhLhduD0fOyy49hhVQWWMFT3M=
Subject key identifier: 57:EE:E7:97:10:30:24:E3:23:4C:2F:77:FD:1A:B9:F8:8C:71:F0:A4
Certificate issuer: /CN=367EAE467C8B549D5E6615661A70C865954F55EE
Certificate serial: 6987F6655102D9E9EFABB8B964D701F6E80FF6B8
Authority key identifier: 36:7E:AE:46:7C:8B:54:9D:5E:66:15:66:1A:70:C8:65:95:4F:55:EE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/367EAE467C8B549D5E6615661A70C865954F55EE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/870C83D25E7FA67388832052309332085572C074B86F60E54C9F48F630BD5AA6/0/3230372e3234382e302e302f32322d3234203d3e203634313339.roa
Signing time: Tue 04 Feb 2025 20:01:52 +0000
ROA not before: Tue 04 Feb 2025 19:56:52 +0000
ROA not after: Tue 03 Feb 2026 20:01:52 +0000
asID: 64139
IP address blocks: 207.248.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:87:f6:65:51:02:d9:e9:ef:ab:b8:b9:64:d7:01:f6:e8:0f:f6:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=367EAE467C8B549D5E6615661A70C865954F55EE
Validity
Not Before: Feb 4 19:56:52 2025 GMT
Not After : Feb 3 20:01:52 2026 GMT
Subject: CN=57EEE797103024E3234C2F77FD1AB9F88C71F0A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fe:f1:43:c9:22:f7:cd:4b:ca:2c:0f:5a:26:
54:a9:fd:6d:ef:f0:c8:b8:22:4d:74:5d:91:5b:f0:
f0:c4:ce:ad:f0:14:8d:26:57:bf:e5:02:84:18:42:
31:9c:26:3c:02:13:3d:0d:88:cb:40:bc:47:d0:a0:
4b:51:49:3d:02:07:11:30:45:02:d4:2f:db:c7:65:
15:57:12:f3:fb:2e:e3:c6:38:08:6f:47:43:39:0d:
f4:5d:77:39:2d:2b:77:e6:07:ff:8a:33:8f:1b:2e:
1f:49:5c:2f:61:46:ea:d4:85:09:43:02:2e:08:e1:
87:23:7f:5a:3a:41:ca:d4:56:6b:05:da:0f:78:d9:
80:17:c7:cc:74:3e:5f:56:8f:e0:46:a2:48:3b:a9:
93:af:bb:ae:f4:5b:1e:fc:d8:99:2b:44:29:68:d2:
51:60:55:07:92:f9:b9:55:ad:82:c4:b2:f7:0f:d7:
8c:26:e2:78:21:41:41:e2:33:84:97:3d:c9:6a:0c:
0f:99:38:6e:98:26:3f:92:e9:cd:63:f0:b0:b7:ba:
11:df:d0:48:50:be:db:9a:db:f1:58:ae:01:4f:44:
bf:c2:7a:e2:88:b0:c0:f4:fe:19:0c:bc:11:35:ee:
de:63:7b:e3:29:6e:7d:c4:83:24:a5:db:df:a1:41:
3c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:EE:E7:97:10:30:24:E3:23:4C:2F:77:FD:1A:B9:F8:8C:71:F0:A4
X509v3 Authority Key Identifier:
keyid:36:7E:AE:46:7C:8B:54:9D:5E:66:15:66:1A:70:C8:65:95:4F:55:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/870C83D25E7FA67388832052309332085572C074B86F60E54C9F48F630BD5AA6/0/367EAE467C8B549D5E6615661A70C865954F55EE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/367EAE467C8B549D5E6615661A70C865954F55EE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/870C83D25E7FA67388832052309332085572C074B86F60E54C9F48F630BD5AA6/0/3230372e3234382e302e302f32322d3234203d3e203634313339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.248.0.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:19:24:1c:74:7a:69:fe:1d:c2:39:9c:e8:47:aa:1a:7b:89:
99:f9:cb:56:f8:12:0c:7b:3a:c4:04:74:c7:bd:88:06:e7:e9:
ac:79:5e:f7:bb:8a:80:b8:05:56:e4:e6:c0:64:b9:54:97:d9:
b0:5c:cb:95:a7:60:cf:05:f4:18:08:76:88:3e:8c:46:5c:e8:
ef:ef:46:ce:e9:f1:6c:8e:ca:c2:72:82:2e:90:48:74:ef:e2:
7d:7f:22:e7:8f:da:32:c8:96:4f:93:dd:62:2f:3f:8a:dc:e3:
76:46:0b:5b:44:dc:02:0a:b5:1e:d1:73:55:12:fe:6f:a3:f7:
7a:f2:32:ee:5e:4e:19:bf:40:65:9e:1b:34:dd:69:e7:cf:98:
af:f0:00:74:3c:76:2a:7d:09:cc:39:e9:83:cd:16:62:6e:f4:
bf:c3:87:b1:5c:17:e1:1e:f4:a8:7b:22:b8:83:f6:45:ec:6d:
ce:43:55:38:d4:cf:eb:5d:ff:29:5b:d7:58:db:cb:6b:48:b4:
6f:de:da:14:ff:7d:ef:6e:81:45:9b:10:cf:57:76:83:b9:91:
ae:12:ef:36:17:4e:ff:5f:d1:d9:cf:a5:5a:3e:34:ad:d3:d7:
a5:42:6b:59:03:9d:64:2f:67:2f:00:1c:cd:c4:51:e3:95:44:
c3:76:fa:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:21 2025 by rpki-client