Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131332e302f32342d3234203d3e203532323833.roa
File: 3230302e3130382e3131332e302f32342d3234203d3e203532323833.roa (raw, json)
Hash identifier: pmFYMnWFyeOdDenw0KRgdxZChBlK4iZ2OeLaI3a0xi8=
Subject key identifier: 9B:33:D7:FD:13:05:CD:1D:9A:54:2B:E0:FB:76:08:90:38:44:51:21
Certificate issuer: /CN=B168144FAA075D3D9B10EF691FC55E6A3A3E172E
Certificate serial: 41301D5233337BEEFD1788F2A5E081E60A541F53
Authority key identifier: B1:68:14:4F:AA:07:5D:3D:9B:10:EF:69:1F:C5:5E:6A:3A:3E:17:2E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131332e302f32342d3234203d3e203532323833.roa
Signing time: Tue 04 Feb 2025 18:11:56 +0000
ROA not before: Tue 04 Feb 2025 18:06:56 +0000
ROA not after: Tue 03 Feb 2026 18:11:56 +0000
asID: 52283
IP address blocks: 200.108.113.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:30:1d:52:33:33:7b:ee:fd:17:88:f2:a5:e0:81:e6:0a:54:1f:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B168144FAA075D3D9B10EF691FC55E6A3A3E172E
Validity
Not Before: Feb 4 18:06:56 2025 GMT
Not After : Feb 3 18:11:56 2026 GMT
Subject: CN=9B33D7FD1305CD1D9A542BE0FB76089038445121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:21:1b:9c:3a:cb:11:1c:91:6c:51:4b:7c:af:
5a:de:34:a7:59:9c:58:53:e6:db:36:a7:c9:b7:8f:
49:ae:9c:ce:1b:c3:7e:23:ba:7c:f5:7e:d9:48:9a:
70:00:69:7b:af:66:c0:4b:d9:12:6a:54:36:ad:19:
32:c3:0b:c5:2e:17:0c:21:30:60:dc:4d:55:24:b9:
8e:91:8a:6b:0d:2c:4e:0c:60:ba:79:85:32:c0:22:
c7:9d:2a:78:04:3d:4d:01:de:a0:4f:02:e8:e9:31:
b9:78:66:d6:87:03:d6:4a:05:d7:00:20:0d:78:d1:
14:19:7d:17:80:c9:2e:69:eb:4a:04:85:84:61:ee:
9f:c0:01:e1:8a:43:a1:4c:82:56:75:64:b1:79:52:
0a:68:06:12:58:bc:f9:f9:93:30:c0:7c:4b:83:57:
2a:10:e4:06:f1:66:0e:69:3b:3e:b2:df:da:d3:61:
de:52:60:a6:cc:76:9d:35:ae:15:c3:10:37:04:f2:
c6:00:69:4c:93:50:44:e1:50:a5:54:80:9b:c7:13:
4f:df:7e:f3:2c:87:fe:e8:4e:19:42:38:73:3b:5a:
e6:f8:a1:19:7e:6a:c1:89:d2:bd:b9:50:5f:74:07:
4c:61:81:b5:fe:ae:17:45:09:8b:22:67:21:7d:b1:
ac:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:33:D7:FD:13:05:CD:1D:9A:54:2B:E0:FB:76:08:90:38:44:51:21
X509v3 Authority Key Identifier:
keyid:B1:68:14:4F:AA:07:5D:3D:9B:10:EF:69:1F:C5:5E:6A:3A:3E:17:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131332e302f32342d3234203d3e203532323833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.108.113.0/24
Signature Algorithm: sha256WithRSAEncryption
87:f9:6d:a8:c9:42:56:e7:7d:67:d0:b2:dc:95:02:02:9b:aa:
95:84:9c:aa:a9:a1:01:ed:e6:ce:92:03:74:41:3f:f6:ea:6c:
79:f7:f4:80:d5:95:c8:d0:53:3c:5c:cb:d9:1b:4d:90:e2:45:
79:81:78:99:b1:45:18:fa:f7:dd:66:72:31:13:be:01:c0:26:
e4:7e:39:26:70:ad:c1:d1:c0:a7:2b:1a:58:e6:2e:52:bd:b6:
e6:c4:b3:22:c8:e4:e3:c1:a3:b7:bc:a2:28:e0:9d:84:e6:76:
86:21:38:7f:97:7d:7e:47:6e:5f:07:1c:6c:6a:6a:6b:ba:b3:
39:87:49:5a:9e:a1:7d:b7:c4:a1:b3:93:a9:ce:01:0d:bb:e1:
a1:0e:1f:c8:5a:42:3a:f5:c4:8b:de:55:d3:74:cf:69:ab:42:
ca:0d:d3:aa:67:54:bb:91:33:0a:c2:f2:f3:4d:3c:1c:06:57:
f6:df:94:bf:f5:43:09:74:9b:ec:7c:7f:0c:d8:10:9a:8e:3c:
10:e8:94:86:86:92:05:ef:e7:b8:d8:4a:c2:ba:4d:8b:b6:1b:
dc:cf:91:f8:a4:ac:72:17:b5:e2:a6:7d:0e:2c:6c:a3:46:86:
35:fb:ec:03:1e:05:7a:8e:a1:a7:57:96:78:99:a1:7b:0d:2a:
b7:7a:e8:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:40 2025 by rpki-client