Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8FF4F3E1A2BF9FA155F338FCBDA5F60422BDB810D749FD1167ECAD8EDB4DB8D1/0/3230302e37312e38382e302f32312d3234203d3e203237393936.roa
File: 3230302e37312e38382e302f32312d3234203d3e203237393936.roa (raw, json)
Hash identifier: r/EnoAJ/QDLRyKJ2eUMGsfZEAwWctbmLg0N+5EAKcZA=
Subject key identifier: E0:81:1F:83:85:DF:E2:21:E2:76:3F:08:DB:89:D5:82:A6:6A:92:BE
Certificate issuer: /CN=0CB0C776687001A6BEFA9EDD20F9BA6C888EE854
Certificate serial: 069AA14CBEE5F555BC0A833F1C96743AA1717135
Authority key identifier: 0C:B0:C7:76:68:70:01:A6:BE:FA:9E:DD:20:F9:BA:6C:88:8E:E8:54
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0CB0C776687001A6BEFA9EDD20F9BA6C888EE854.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8FF4F3E1A2BF9FA155F338FCBDA5F60422BDB810D749FD1167ECAD8EDB4DB8D1/0/3230302e37312e38382e302f32312d3234203d3e203237393936.roa
Signing time: Tue 04 Feb 2025 18:17:39 +0000
ROA not before: Tue 04 Feb 2025 18:12:39 +0000
ROA not after: Tue 03 Feb 2026 18:17:39 +0000
asID: 27996
IP address blocks: 200.71.88.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:9a:a1:4c:be:e5:f5:55:bc:0a:83:3f:1c:96:74:3a:a1:71:71:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CB0C776687001A6BEFA9EDD20F9BA6C888EE854
Validity
Not Before: Feb 4 18:12:39 2025 GMT
Not After : Feb 3 18:17:39 2026 GMT
Subject: CN=E0811F8385DFE221E2763F08DB89D582A66A92BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:68:a4:4a:3b:38:f6:31:65:40:0d:75:b9:08:
e4:fb:63:c5:8c:ab:4a:98:01:fe:43:0a:82:95:44:
d5:b5:74:fa:c1:f1:3b:f3:4c:ad:49:67:15:33:a3:
43:b3:31:d0:a0:b8:b9:ba:fc:7a:c3:36:51:4c:28:
0a:01:14:dd:50:1a:9d:39:c3:d2:f3:a4:09:5c:45:
64:ae:c0:08:83:b9:ee:f7:82:82:7d:1f:89:8c:fc:
bd:40:7e:ed:3a:33:c1:de:76:11:4d:9f:96:d4:ff:
71:69:67:38:f9:91:2d:cf:6d:b1:05:c8:8b:12:92:
9a:ad:d8:61:a0:0a:d2:70:ee:42:71:7c:48:a5:7e:
18:70:b3:6d:9e:bb:8a:c9:96:fa:ed:e4:61:fc:3a:
45:a4:6c:45:85:82:b9:89:36:cd:96:1e:79:a7:64:
b5:60:1b:ff:f8:4d:48:89:e6:60:2e:4f:f6:8b:9e:
c7:5e:ba:49:8f:8f:91:9d:72:ca:55:0d:e9:8c:48:
d2:a3:77:e2:6b:e7:c5:42:07:25:c6:b5:f0:11:06:
50:c3:be:f9:94:8b:3d:50:ca:38:35:52:8d:64:d8:
fe:76:6c:2a:57:00:f9:45:d4:39:63:c3:1b:af:ff:
e8:c0:68:80:23:49:2e:55:2b:54:fd:0a:5a:6b:b8:
cd:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:81:1F:83:85:DF:E2:21:E2:76:3F:08:DB:89:D5:82:A6:6A:92:BE
X509v3 Authority Key Identifier:
keyid:0C:B0:C7:76:68:70:01:A6:BE:FA:9E:DD:20:F9:BA:6C:88:8E:E8:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8FF4F3E1A2BF9FA155F338FCBDA5F60422BDB810D749FD1167ECAD8EDB4DB8D1/0/0CB0C776687001A6BEFA9EDD20F9BA6C888EE854.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0CB0C776687001A6BEFA9EDD20F9BA6C888EE854.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8FF4F3E1A2BF9FA155F338FCBDA5F60422BDB810D749FD1167ECAD8EDB4DB8D1/0/3230302e37312e38382e302f32312d3234203d3e203237393936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.71.88.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:19:0c:60:56:e8:cb:c9:23:75:4b:2f:eb:52:2c:c4:84:8a:
fa:cf:2a:bf:21:a0:4f:0d:f5:7e:8d:14:d7:55:b1:14:5c:ef:
8c:e2:c6:ff:7f:cb:df:a8:1b:e2:08:3a:e9:92:ff:6c:28:6c:
29:86:42:69:cb:01:57:41:17:0e:5c:92:a4:40:99:b4:77:d4:
27:76:5c:08:3c:a3:ff:44:e3:8b:2b:71:3c:2a:36:a5:47:60:
d2:55:04:ac:26:b1:e3:4b:76:2d:2f:ae:ae:c9:1c:ce:1a:4f:
c8:23:f4:54:75:4a:e3:c8:1e:4e:3e:24:62:e0:2c:d8:85:f1:
e8:84:0b:57:c2:ec:aa:d8:87:7f:6d:8c:39:c8:59:88:bd:25:
0c:12:3d:a4:a4:af:91:6f:01:dc:e3:42:d5:8e:9b:32:bf:d0:
6a:98:bb:d0:0a:3b:f5:45:48:0f:0c:c8:cb:5b:11:7e:a5:a7:
82:8b:33:3b:10:0b:08:38:72:71:64:9a:05:9c:3d:83:ba:e9:
db:03:e4:85:08:88:37:4b:f2:56:72:b8:bd:46:42:f9:16:df:
07:f4:27:03:38:38:66:8b:d6:27:b6:56:bd:a8:5d:09:1a:64:
47:86:92:fe:c8:6a:f0:a0:65:e8:2b:15:8c:ac:a4:ba:78:aa:
fa:43:36:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:59:03 2025 by rpki-client