Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131362e302f32342d3234203d3e203532323833.roa
File: 3230302e3130382e3131362e302f32342d3234203d3e203532323833.roa (raw, json)
Hash identifier: fkJks9Hzj+QmzKetIKa3NdGLzTDCudNUGhgT/qKOiuE=
Subject key identifier: C8:EB:39:60:DF:4D:9D:82:0E:96:BC:45:97:79:02:84:30:D5:1E:FD
Certificate issuer: /CN=B168144FAA075D3D9B10EF691FC55E6A3A3E172E
Certificate serial: 5FBAA2677CD51FB39F96DD7771F9693F592DB38B
Authority key identifier: B1:68:14:4F:AA:07:5D:3D:9B:10:EF:69:1F:C5:5E:6A:3A:3E:17:2E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131362e302f32342d3234203d3e203532323833.roa
Signing time: Tue 04 Feb 2025 18:11:56 +0000
ROA not before: Tue 04 Feb 2025 18:06:56 +0000
ROA not after: Tue 03 Feb 2026 18:11:56 +0000
asID: 52283
IP address blocks: 200.108.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:ba:a2:67:7c:d5:1f:b3:9f:96:dd:77:71:f9:69:3f:59:2d:b3:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B168144FAA075D3D9B10EF691FC55E6A3A3E172E
Validity
Not Before: Feb 4 18:06:56 2025 GMT
Not After : Feb 3 18:11:56 2026 GMT
Subject: CN=C8EB3960DF4D9D820E96BC459779028430D51EFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:98:af:09:b0:ef:7f:81:c7:a1:ae:da:7b:33:
a6:9f:c7:e9:56:c4:82:4d:89:6d:ac:e0:f9:57:a9:
1d:8a:13:3d:8f:80:0b:a4:cc:82:a2:bf:21:7f:be:
e4:3d:fb:14:10:52:03:63:51:d3:97:ed:84:b0:b7:
64:9e:6e:23:8a:c1:ed:c3:23:1a:86:17:b9:7a:74:
7c:87:b2:79:20:2a:26:ac:65:29:53:61:44:e1:20:
78:b6:24:35:58:5c:ff:51:b4:d1:fa:23:c5:26:2c:
c7:6d:f3:88:4a:61:90:7e:c1:71:38:82:2b:22:4f:
fd:c4:95:08:82:df:df:b5:a8:20:2e:4c:50:bd:78:
f1:07:fb:ab:24:21:44:e0:56:d2:6b:69:68:2c:78:
3d:12:d2:1d:a8:c8:3f:db:13:a0:25:dd:20:90:20:
94:23:07:e0:aa:3b:2d:bd:e0:4d:ed:f3:63:de:72:
ff:ec:46:ec:2d:76:f0:9c:d9:2c:b5:7f:82:50:09:
b1:37:38:6e:97:b8:d1:d0:1e:a7:39:e9:4c:83:15:
d8:6b:2c:8a:cf:3d:d3:ad:a3:e7:a3:fe:7e:1a:6a:
86:26:25:f0:7f:b5:ac:d6:53:a2:02:95:f4:ee:fa:
d2:e4:dd:85:b2:f3:50:7b:4e:3e:8f:9b:b2:c3:ae:
76:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:EB:39:60:DF:4D:9D:82:0E:96:BC:45:97:79:02:84:30:D5:1E:FD
X509v3 Authority Key Identifier:
keyid:B1:68:14:4F:AA:07:5D:3D:9B:10:EF:69:1F:C5:5E:6A:3A:3E:17:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131362e302f32342d3234203d3e203532323833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.108.116.0/24
Signature Algorithm: sha256WithRSAEncryption
83:64:9d:00:c2:8e:6d:67:d3:62:ec:e6:54:0a:b8:85:25:82:
86:f6:5a:24:7b:d6:dc:23:a6:7e:01:5f:b5:86:e3:bd:3d:be:
b9:44:5e:5d:c2:f0:9d:de:db:06:c7:07:5c:d6:e5:5b:fe:c8:
c5:3a:87:a0:79:00:a8:da:57:bc:f1:ec:a9:52:b3:b7:5e:b5:
86:cb:bb:ef:02:20:14:f9:2e:c0:81:3b:1a:11:98:60:19:25:
d3:aa:fd:2a:e7:e1:3d:a6:d4:c9:85:47:a4:4a:65:93:ba:72:
20:88:99:d9:ba:7f:04:4a:c8:fd:4b:50:b1:a2:e7:ab:08:1d:
b1:4c:2a:7c:cb:d5:0b:0a:db:47:f4:7b:88:51:dd:e1:de:b7:
c1:72:d9:f6:de:ac:24:38:cb:57:ef:c1:2c:90:72:71:3d:ed:
c5:77:c2:70:08:1b:9f:32:ce:cd:13:17:3a:c1:f0:74:8c:8f:
7e:9b:30:f9:0d:fe:6b:8f:1f:a8:37:54:2d:f2:db:1d:b5:8e:
f7:cb:be:01:b3:8b:15:e1:19:7d:3c:da:b6:00:20:f0:30:01:
5d:3b:54:4d:0f:f0:e7:c1:18:74:8f:5b:82:71:9a:06:66:ab:
5d:a2:02:55:96:d7:2b:af:ff:fc:be:bd:8f:dd:89:99:d9:89:
35:a3:55:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:40 2025 by rpki-client