Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3230312e3136322e3132382e302f31372d3234203d3e2037343338.roa
File: 3230312e3136322e3132382e302f31372d3234203d3e2037343338.roa (raw, json)
Hash identifier: 1QMnNK/5vjuuZdOz+nDo+9xTcNDX/Y/ntQZ9wX3aTUI=
Subject key identifier: 28:8A:F1:2E:0F:CC:BF:40:4D:C7:0B:86:78:D9:9C:BF:36:BE:B8:1F
Certificate issuer: /CN=C2B40785E3A240A257500C1EAC949A26103A8210
Certificate serial: 34C10A67C30AC90ACFC94C7AF66D1258F575A733
Authority key identifier: C2:B4:07:85:E3:A2:40:A2:57:50:0C:1E:AC:94:9A:26:10:3A:82:10
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B40785E3A240A257500C1EAC949A26103A8210.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3230312e3136322e3132382e302f31372d3234203d3e2037343338.roa
Signing time: Tue 04 Feb 2025 20:05:58 +0000
ROA not before: Tue 04 Feb 2025 20:00:58 +0000
ROA not after: Tue 03 Feb 2026 20:05:58 +0000
asID: 7438
IP address blocks: 201.162.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:c1:0a:67:c3:0a:c9:0a:cf:c9:4c:7a:f6:6d:12:58:f5:75:a7:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2B40785E3A240A257500C1EAC949A26103A8210
Validity
Not Before: Feb 4 20:00:58 2025 GMT
Not After : Feb 3 20:05:58 2026 GMT
Subject: CN=288AF12E0FCCBF404DC70B8678D99CBF36BEB81F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:57:e2:4d:c4:1a:84:b1:22:52:0c:8e:a4:6a:
68:80:ac:1c:0f:83:a1:b0:9b:a0:b3:fe:f9:fc:2b:
91:7c:fb:d8:d0:9d:7b:67:c9:5b:32:a8:1b:1b:c7:
60:10:91:d1:24:c9:49:78:6b:a5:51:b3:5d:94:62:
86:89:89:7e:bc:c6:12:36:64:93:cb:0b:64:64:ed:
fc:24:57:27:71:6a:e8:13:99:66:62:e2:02:e8:63:
00:83:30:80:ad:08:9e:03:9b:d8:38:61:95:c0:bc:
b6:64:7e:a2:e7:28:9c:6c:4e:1e:e9:aa:ed:84:f5:
67:2e:e4:01:0f:a2:40:37:96:c8:82:1e:da:ce:ab:
d8:04:5a:6a:56:f9:99:03:9d:e6:ab:86:12:b6:7e:
ff:d8:1e:97:79:42:f7:65:fe:76:a7:26:14:b2:b7:
d9:ac:6c:16:40:fb:b4:60:18:bb:a4:cb:4d:e6:24:
f9:c5:79:b5:b7:75:47:9a:3b:1b:83:3d:0b:8c:99:
39:11:94:a9:75:63:97:d3:1f:9c:bf:66:2c:8b:d3:
38:f9:b4:81:de:a1:bf:07:48:78:43:24:51:e7:c0:
88:89:7b:13:fa:7a:fb:aa:b0:3d:16:3b:10:c7:fb:
94:32:63:86:09:d6:a0:b4:d6:34:c3:ac:cb:d1:98:
d8:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8A:F1:2E:0F:CC:BF:40:4D:C7:0B:86:78:D9:9C:BF:36:BE:B8:1F
X509v3 Authority Key Identifier:
keyid:C2:B4:07:85:E3:A2:40:A2:57:50:0C:1E:AC:94:9A:26:10:3A:82:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/C2B40785E3A240A257500C1EAC949A26103A8210.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B40785E3A240A257500C1EAC949A26103A8210.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3230312e3136322e3132382e302f31372d3234203d3e2037343338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.162.128.0/17
Signature Algorithm: sha256WithRSAEncryption
39:87:96:19:8f:00:a7:3f:3b:5c:7d:80:e8:80:0b:3b:37:4a:
5d:81:88:b2:5a:18:f6:a1:8d:4b:b0:29:e5:63:ed:7b:f2:36:
56:b4:94:78:f9:15:d1:07:fd:f8:31:65:38:95:ef:e5:bd:7f:
72:d1:ba:da:d5:12:8f:aa:da:a8:ad:81:2b:87:68:a4:a3:ce:
77:9c:be:43:e1:2e:83:99:1c:7c:27:c3:e6:95:86:8b:cc:76:
28:53:e2:e4:dc:4b:00:38:5e:79:56:70:1a:36:ed:1e:b3:79:
e7:bd:14:c3:65:b2:63:b2:31:9f:02:66:82:19:a9:24:eb:2b:
54:dc:51:d1:f0:a3:eb:7e:23:38:67:93:3f:8c:a9:f7:92:7b:
b3:f6:10:c9:4b:98:e2:56:5c:3c:3c:37:ad:f8:d2:b6:34:30:
38:b4:73:64:fe:fe:c3:2e:e9:d9:76:0b:bf:36:e1:8d:aa:b0:
93:5b:1c:cd:2d:56:09:bd:5c:58:41:ed:7e:8f:bb:e5:b5:39:
c7:27:2a:5b:f0:21:e9:6a:1d:2b:99:6b:0a:02:03:f2:68:27:
8d:37:80:25:03:1f:07:1b:00:75:9b:73:62:9b:39:57:11:8e:
b0:77:a0:44:5a:bf:97:f6:b6:9e:3f:fd:c0:a5:67:c3:44:bf:
fe:bf:90:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:34:44 2025 by rpki-client