Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3230312e3136362e3132382e302f31382d3234203d3e2037343338.roa
File: 3230312e3136362e3132382e302f31382d3234203d3e2037343338.roa (raw, json)
Hash identifier: CxFP11IL2eU4lzCccDGYCON9sX73QcgpehNaGaWasm8=
Subject key identifier: CD:6A:24:2E:29:A3:E4:4E:68:7B:3B:40:F1:1C:B4:69:9A:7F:DD:20
Certificate issuer: /CN=C2B40785E3A240A257500C1EAC949A26103A8210
Certificate serial: 1207C178A2C8D9A2B1F4A80D066251B5AD1C7672
Authority key identifier: C2:B4:07:85:E3:A2:40:A2:57:50:0C:1E:AC:94:9A:26:10:3A:82:10
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B40785E3A240A257500C1EAC949A26103A8210.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3230312e3136362e3132382e302f31382d3234203d3e2037343338.roa
Signing time: Tue 04 Feb 2025 20:05:57 +0000
ROA not before: Tue 04 Feb 2025 20:00:57 +0000
ROA not after: Tue 03 Feb 2026 20:05:57 +0000
asID: 7438
IP address blocks: 201.166.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:07:c1:78:a2:c8:d9:a2:b1:f4:a8:0d:06:62:51:b5:ad:1c:76:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2B40785E3A240A257500C1EAC949A26103A8210
Validity
Not Before: Feb 4 20:00:57 2025 GMT
Not After : Feb 3 20:05:57 2026 GMT
Subject: CN=CD6A242E29A3E44E687B3B40F11CB4699A7FDD20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:52:35:28:c4:65:92:57:d5:c9:0a:a7:7a:31:
00:37:b0:93:bc:4e:9b:fb:7d:87:57:d6:92:30:cf:
a9:6f:68:2f:6c:a8:3f:3d:ea:d8:7f:03:dd:91:cd:
02:cb:4b:7b:6e:e6:b5:74:a0:a2:18:4b:ba:14:5a:
89:9b:44:6b:59:f6:df:e2:46:d8:94:72:6b:a8:3a:
d8:4d:aa:af:66:c8:6c:21:0f:2f:1f:f6:05:9d:1c:
79:fb:8a:b4:76:29:45:ca:83:28:fb:08:18:0b:cd:
d8:ad:09:df:ee:af:86:47:37:58:0a:ba:20:34:46:
ca:d9:9f:e2:69:df:b3:89:d4:6b:ab:4c:8c:43:6c:
eb:98:40:38:df:97:e3:85:61:d4:2c:2a:a4:79:f4:
c0:17:c1:72:47:6c:71:73:80:ce:d8:6a:09:6e:21:
67:b1:82:86:ab:49:ad:de:22:a3:ca:86:36:d4:65:
8a:2e:d7:c6:6c:cb:b1:37:7b:fa:bb:80:e9:80:4b:
91:b3:20:10:3a:23:58:b0:ab:db:82:6f:e8:da:54:
6f:9b:c9:81:5b:79:9c:d6:ba:51:b4:12:a8:f1:54:
de:0b:b6:87:bb:f5:18:3a:30:b8:e6:83:eb:f0:84:
93:f6:2b:b1:71:8f:db:39:29:fc:bb:1f:3a:34:dd:
c1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:6A:24:2E:29:A3:E4:4E:68:7B:3B:40:F1:1C:B4:69:9A:7F:DD:20
X509v3 Authority Key Identifier:
keyid:C2:B4:07:85:E3:A2:40:A2:57:50:0C:1E:AC:94:9A:26:10:3A:82:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/C2B40785E3A240A257500C1EAC949A26103A8210.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B40785E3A240A257500C1EAC949A26103A8210.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3230312e3136362e3132382e302f31382d3234203d3e2037343338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.166.128.0/18
Signature Algorithm: sha256WithRSAEncryption
03:80:3f:26:80:ac:37:53:69:0d:33:df:94:23:0b:0c:99:d9:
6c:68:60:8e:8d:87:41:8c:c5:f2:71:06:0e:da:de:47:44:8b:
0e:bd:58:fb:74:c7:ac:03:0a:4c:72:64:6d:92:cd:73:2b:07:
9b:30:2a:82:07:ac:b1:ae:63:a5:8d:ef:7d:53:6c:13:24:08:
f2:61:e6:2a:10:a2:12:42:fb:56:f6:8f:dd:14:8d:0e:29:94:
16:ac:d8:79:7c:6a:27:90:20:59:f4:a2:42:98:21:1e:f8:fb:
47:1e:09:45:98:1c:88:6c:8e:94:bc:1b:6f:2c:45:d3:b6:17:
22:26:00:ef:f0:cf:6c:4d:72:1b:65:b2:2a:88:1f:f7:80:da:
7a:57:c3:66:e7:72:7a:26:ce:b5:6a:5c:b9:bb:21:98:59:83:
14:54:f2:d4:5a:8d:31:97:5c:8a:32:e1:05:de:b4:66:d2:6d:
4c:18:fb:a9:a4:a2:64:c1:b9:85:22:b5:53:6d:c8:7e:fe:14:
e8:7b:fa:06:5d:a8:04:21:ac:5f:9a:7a:72:a9:85:f8:2e:21:
d9:0c:1a:ae:f9:27:bc:c4:51:2f:64:d8:88:8f:87:41:bd:06:
8f:57:98:8b:de:18:34:3e:7c:3d:51:b9:c9:26:d4:b2:ba:cd:
46:ab:4a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:36:02 2025 by rpki-client