Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3138392e3230312e3232342e302f32342d3234203d3e203238343135.roa
File: 3138392e3230312e3232342e302f32342d3234203d3e203238343135.roa (raw, json)
Hash identifier: mF+vrD0gkul35uDJPdpGPxM/k8WJkG4CsET1H9BpD3w=
Subject key identifier: 85:8E:1E:7C:C5:A4:3D:46:3A:0C:BF:44:79:79:3D:47:93:2A:CF:D2
Certificate issuer: /CN=C2B40785E3A240A257500C1EAC949A26103A8210
Certificate serial: 6F627FC583D5B1B52FC13385164C744E2136D95B
Authority key identifier: C2:B4:07:85:E3:A2:40:A2:57:50:0C:1E:AC:94:9A:26:10:3A:82:10
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B40785E3A240A257500C1EAC949A26103A8210.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3138392e3230312e3232342e302f32342d3234203d3e203238343135.roa
Signing time: Tue 04 Feb 2025 20:05:58 +0000
ROA not before: Tue 04 Feb 2025 20:00:58 +0000
ROA not after: Tue 03 Feb 2026 20:05:58 +0000
asID: 28415
IP address blocks: 189.201.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:62:7f:c5:83:d5:b1:b5:2f:c1:33:85:16:4c:74:4e:21:36:d9:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2B40785E3A240A257500C1EAC949A26103A8210
Validity
Not Before: Feb 4 20:00:58 2025 GMT
Not After : Feb 3 20:05:58 2026 GMT
Subject: CN=858E1E7CC5A43D463A0CBF4479793D47932ACFD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6d:17:2e:72:3c:0c:b2:84:e2:bd:7d:c0:fd:
3b:7e:1d:37:98:da:f0:4b:90:5a:60:0d:06:52:56:
23:af:7b:02:c5:49:79:ab:5f:d2:34:8c:b0:b3:e9:
5a:c3:95:59:cf:fd:71:4f:fc:b6:96:cc:67:3a:08:
0b:a5:e4:a8:ad:3f:7f:ff:45:02:d0:12:a8:d8:c7:
c5:59:23:35:96:80:0a:7d:6f:ea:3b:e0:e7:92:c2:
5b:e6:ee:92:fe:1f:6a:14:91:ff:8b:58:e9:cf:74:
bf:ad:03:49:9b:28:f9:b0:d8:be:5a:e0:60:c4:cd:
c7:59:5c:26:1c:c1:53:8e:ab:21:83:c9:cd:fe:4d:
30:17:85:6f:cd:30:fe:3b:5e:d9:17:b9:5b:7c:49:
58:a9:6a:ba:ba:6f:c0:2a:0a:8f:68:63:e8:f0:c7:
31:fc:39:84:d3:f4:ba:f8:a3:6f:55:4a:be:a0:ab:
fb:72:df:e3:d3:34:4c:bf:8d:3d:60:fc:04:86:79:
b9:6c:8d:5a:77:8e:b4:bd:cb:6e:1c:0b:a6:12:48:
64:2d:d9:04:a7:66:3c:fc:4b:7a:a8:3d:a1:a8:6f:
48:92:32:f3:cd:6a:c4:6f:0d:57:9f:e3:19:0a:f1:
7a:d6:47:e7:9b:8c:51:86:35:30:6c:34:6e:3e:0c:
41:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8E:1E:7C:C5:A4:3D:46:3A:0C:BF:44:79:79:3D:47:93:2A:CF:D2
X509v3 Authority Key Identifier:
keyid:C2:B4:07:85:E3:A2:40:A2:57:50:0C:1E:AC:94:9A:26:10:3A:82:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/C2B40785E3A240A257500C1EAC949A26103A8210.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B40785E3A240A257500C1EAC949A26103A8210.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3138392e3230312e3232342e302f32342d3234203d3e203238343135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.201.224.0/24
Signature Algorithm: sha256WithRSAEncryption
89:b8:7e:15:02:1e:73:7a:60:23:d4:5b:d2:29:48:30:12:01:
96:a0:f9:98:ff:5f:a8:79:4b:23:94:41:e9:25:50:66:66:4d:
1b:33:b7:3f:81:a8:19:c1:70:c2:b6:f8:4d:ef:ca:28:f4:24:
68:39:14:a0:0a:63:51:a4:cb:80:82:6c:84:f8:ad:3e:6f:64:
89:9f:16:bd:28:95:32:25:82:d8:ad:a7:14:61:c8:36:57:8e:
20:3c:c4:c7:88:8c:81:08:46:5f:96:bd:3b:3e:08:11:30:26:
9f:50:73:40:32:be:9e:41:2b:d9:3b:f7:65:59:8f:46:80:0a:
80:59:22:e5:ef:d3:e4:81:b4:7f:09:1f:9c:56:76:be:93:c5:
45:cd:7a:db:9c:44:c3:d0:15:ee:0f:84:69:17:07:df:35:2f:
79:ce:af:27:c4:47:a4:af:fa:35:fc:dc:1c:00:11:10:a5:b4:
a1:a7:2d:3a:ee:57:b1:0e:33:72:97:9c:d8:d9:8a:cc:12:dd:
f4:b4:77:57:a7:25:c9:d3:58:82:04:8f:6d:b4:34:61:c3:c6:
a7:a9:95:e2:1f:38:b9:f1:ee:ca:73:2f:4a:9b:6c:b0:bb:77:
59:3e:96:c7:c2:e2:4a:7e:84:0b:cb:14:3d:ac:7f:98:4f:ad:
7f:b0:7b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:17:22 2025 by rpki-client