Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131382e302f32342d3234203d3e203532323833.roa
File: 3230302e3130382e3131382e302f32342d3234203d3e203532323833.roa (raw, json)
Hash identifier: idlEBAviX+zKv8LVShhB63AgV0cmkdyUZJo0Hn7EoTk=
Subject key identifier: 4A:F2:B7:0D:E1:7D:E5:A6:A9:21:D6:F8:9A:74:03:6D:C1:79:B4:93
Certificate issuer: /CN=B168144FAA075D3D9B10EF691FC55E6A3A3E172E
Certificate serial: 4041C8EA460FA5454F7AB06BA0EC854EB3554997
Authority key identifier: B1:68:14:4F:AA:07:5D:3D:9B:10:EF:69:1F:C5:5E:6A:3A:3E:17:2E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131382e302f32342d3234203d3e203532323833.roa
Signing time: Tue 04 Feb 2025 18:11:56 +0000
ROA not before: Tue 04 Feb 2025 18:06:56 +0000
ROA not after: Tue 03 Feb 2026 18:11:56 +0000
asID: 52283
IP address blocks: 200.108.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:41:c8:ea:46:0f:a5:45:4f:7a:b0:6b:a0:ec:85:4e:b3:55:49:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B168144FAA075D3D9B10EF691FC55E6A3A3E172E
Validity
Not Before: Feb 4 18:06:56 2025 GMT
Not After : Feb 3 18:11:56 2026 GMT
Subject: CN=4AF2B70DE17DE5A6A921D6F89A74036DC179B493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0d:78:f5:a5:56:f3:f7:d5:46:06:e5:5f:03:
84:d3:2d:80:36:9c:58:36:c5:a6:ae:6a:8b:2c:1a:
7a:11:02:09:a0:61:6b:e6:cb:50:0e:d5:d9:15:cf:
48:5b:c6:9c:d3:74:c9:87:0a:1c:e3:26:ce:ce:54:
9c:83:b5:92:28:4a:73:28:c0:a7:79:7e:2a:84:8d:
57:3c:74:df:91:c1:32:cc:d7:48:e5:79:c4:2b:c9:
31:12:da:1c:2d:d3:30:89:5a:06:c4:8e:99:69:be:
65:cc:14:9a:ed:a8:e6:ea:25:fa:f6:b9:b9:47:3b:
86:96:4b:6e:ab:9b:21:f2:79:36:49:7b:05:ec:66:
ed:8d:10:d6:20:5e:0a:79:8b:66:09:5b:a3:28:bd:
a6:f6:2d:bc:3e:ab:ac:97:96:ed:66:31:37:b1:48:
2d:8e:c2:fe:6b:1a:0c:94:ac:ba:bb:53:2a:f3:87:
98:67:89:5f:17:c2:14:15:f2:75:06:e7:cd:5b:c1:
3d:f2:16:6b:01:1e:6a:7c:2c:cc:b8:24:7d:cc:33:
41:41:2b:c4:a5:52:5b:c2:88:6a:2d:d3:51:ba:b2:
e2:e8:33:16:ee:3d:cf:bc:92:c3:00:c0:5d:18:e6:
c5:31:81:5b:3d:58:12:57:cf:09:cc:8f:e9:6c:c6:
cd:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F2:B7:0D:E1:7D:E5:A6:A9:21:D6:F8:9A:74:03:6D:C1:79:B4:93
X509v3 Authority Key Identifier:
keyid:B1:68:14:4F:AA:07:5D:3D:9B:10:EF:69:1F:C5:5E:6A:3A:3E:17:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131382e302f32342d3234203d3e203532323833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.108.118.0/24
Signature Algorithm: sha256WithRSAEncryption
88:af:42:8d:3e:f8:f3:4b:ce:f7:6c:87:ef:34:e7:81:2a:49:
89:ad:5a:44:d0:f2:52:d5:96:0e:aa:26:d6:48:d4:48:38:3e:
5c:b6:70:c5:e2:9a:71:01:58:5d:e5:42:12:ed:13:73:7f:f8:
59:54:6a:b8:5e:45:bb:2a:c8:9a:6c:f6:97:30:01:2a:d0:8d:
bc:66:a7:11:46:3b:1e:d8:ed:19:0b:07:0a:15:1c:dc:67:8f:
6f:2d:ce:6e:30:bc:b7:b5:ae:03:28:21:4c:87:3f:4e:68:ff:
4d:b3:6c:89:df:f5:1e:22:a9:e7:10:a8:ca:b4:57:df:4d:4f:
25:42:db:2f:d1:11:3c:4d:dc:5e:30:52:4f:bb:d7:27:91:5e:
50:fe:4f:5d:4f:27:28:71:f2:ff:7b:81:ef:b6:39:1d:aa:a8:
05:88:fb:fd:2f:d3:00:6e:59:86:2f:b6:27:58:49:ce:9c:72:
a1:9b:39:f6:55:fa:84:81:ef:b2:0c:2f:9c:51:da:e1:dc:d7:
00:f5:24:4d:7f:10:d5:9d:b0:8a:1f:c3:f2:b3:3d:c0:d5:25:
05:c0:41:53:5e:a3:b8:af:c4:64:22:29:92:52:ff:98:e9:cc:
97:68:71:4a:44:e9:a2:24:18:a7:63:19:17:71:b4:fd:e1:cc:
4c:28:ea:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:41 2025 by rpki-client