Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3230372e3234382e3132332e302f32342d3234203d3e203231353735.roa
File: 3230372e3234382e3132332e302f32342d3234203d3e203231353735.roa (raw, json)
Hash identifier: YD1N0pX+sFzHKfDen+ARDPyKrN+O5MaBb5mVKiYzUKY=
Subject key identifier: EA:E4:D7:F5:DC:A9:BA:96:0F:69:C8:42:97:FC:01:DD:C0:35:EC:2C
Certificate issuer: /CN=24D42265AC44C52C720364B7A5C0074DD2179046
Certificate serial: 75ACB4FA9F064A0D4BA43AC135123110FCB2111C
Authority key identifier: 24:D4:22:65:AC:44:C5:2C:72:03:64:B7:A5:C0:07:4D:D2:17:90:46
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24D42265AC44C52C720364B7A5C0074DD2179046.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3230372e3234382e3132332e302f32342d3234203d3e203231353735.roa
Signing time: Tue 04 Feb 2025 18:18:15 +0000
ROA not before: Tue 04 Feb 2025 18:13:15 +0000
ROA not after: Tue 03 Feb 2026 18:18:15 +0000
asID: 21575
IP address blocks: 207.248.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:ac:b4:fa:9f:06:4a:0d:4b:a4:3a:c1:35:12:31:10:fc:b2:11:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24D42265AC44C52C720364B7A5C0074DD2179046
Validity
Not Before: Feb 4 18:13:15 2025 GMT
Not After : Feb 3 18:18:15 2026 GMT
Subject: CN=EAE4D7F5DCA9BA960F69C84297FC01DDC035EC2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:68:23:75:63:ab:0d:ac:eb:0c:13:5b:8e:28:
7b:af:d0:58:22:fb:a7:85:9e:1c:72:01:0d:05:a0:
9a:44:7f:54:13:9a:99:ca:24:31:42:6a:13:85:d8:
7f:cb:fb:bc:b4:98:e9:34:58:54:db:94:a9:56:e0:
1f:e2:ff:90:b0:99:18:c6:8f:b5:af:68:3c:c9:71:
df:73:25:d4:9d:73:da:82:3d:34:7d:16:cf:fc:7b:
ee:f5:58:a7:bc:6c:f6:de:ed:4a:a0:a4:23:13:78:
ef:80:99:2b:c2:e5:35:1a:71:6f:27:1c:0d:74:f4:
94:ab:e4:d6:12:3c:7c:a3:ef:e7:5c:e8:cf:a7:8e:
8e:ac:78:99:30:b9:09:c4:d3:0a:5c:3a:37:e5:68:
86:7f:40:a4:4a:da:98:02:de:67:25:bb:c8:b5:9a:
92:92:52:f3:51:02:fb:04:45:21:4d:91:6f:6a:42:
69:f2:85:06:16:ea:c2:3c:46:cc:b7:32:3a:b1:34:
3f:f7:f2:3c:80:07:ad:80:5c:24:53:14:b8:de:dd:
c4:83:a2:52:5b:7a:69:bd:39:e9:db:36:71:ce:b2:
2a:51:80:3d:9d:86:66:9f:b3:41:f3:0d:4f:5b:11:
e8:21:e4:3c:f7:37:31:f4:d9:51:43:cf:04:02:a9:
bb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E4:D7:F5:DC:A9:BA:96:0F:69:C8:42:97:FC:01:DD:C0:35:EC:2C
X509v3 Authority Key Identifier:
keyid:24:D4:22:65:AC:44:C5:2C:72:03:64:B7:A5:C0:07:4D:D2:17:90:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/24D42265AC44C52C720364B7A5C0074DD2179046.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24D42265AC44C52C720364B7A5C0074DD2179046.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3230372e3234382e3132332e302f32342d3234203d3e203231353735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.248.123.0/24
Signature Algorithm: sha256WithRSAEncryption
21:f7:53:5f:c8:96:b1:1d:85:2b:80:a0:41:92:fc:76:9b:b8:
32:27:2b:0a:d1:47:4c:a3:fe:10:b5:5f:58:4d:eb:1d:c4:e3:
d1:86:fe:3b:0e:04:c7:b7:dc:cb:00:0e:95:1c:f7:23:ef:7f:
80:68:bb:0d:e1:33:48:f4:ba:84:cb:53:b2:8a:b1:71:e0:d8:
3a:38:cf:d6:32:a9:0f:12:75:a1:e7:f2:08:e9:33:5d:0a:8f:
01:ed:63:17:e7:df:9b:6b:03:43:20:93:b3:76:67:92:28:00:
01:3c:8b:71:0d:a6:a4:ba:ee:1d:df:46:bc:c9:84:be:bd:be:
af:76:3b:34:01:6c:18:1b:36:f7:a5:34:2b:d0:8f:7d:b1:e2:
4c:19:d1:e3:7b:25:13:f8:5d:76:3f:30:5c:5d:59:31:04:c8:
8a:3f:33:23:b5:c8:07:06:6c:7d:99:bd:46:81:44:af:46:7a:
a4:a3:ce:57:c9:e8:78:db:d2:bc:7e:8e:5d:d4:6d:01:de:ad:
35:7a:d6:42:e6:0d:5d:ae:66:23:70:af:fa:04:90:5c:0c:7d:
39:10:af:df:21:1b:17:9b:44:63:2f:96:02:1e:ee:01:d8:f4:
66:e9:33:1f:c0:be:31:8c:ef:c2:d4:34:5a:e3:2a:e0:e3:8d:
93:50:6d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:26 2025 by rpki-client