Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136332e302f32342d3234203d3e203232353431.roa
File: 3230302e37352e3136332e302f32342d3234203d3e203232353431.roa (raw, json)
Hash identifier: 6WmL119jptLJNpSCGTiCf6VVaivHcjb5tgz4OX8rTCA=
Subject key identifier: 2B:A6:8E:55:79:3A:69:D4:EC:CA:9A:08:11:28:9B:26:CD:B7:67:F1
Certificate issuer: /CN=620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D
Certificate serial: 414BF29F77583118F8AAF03F90201B681675FC95
Authority key identifier: 62:0D:1F:DB:BD:45:7C:A0:F9:CC:FC:63:A8:B8:5C:99:A8:19:AF:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136332e302f32342d3234203d3e203232353431.roa
Signing time: Tue 04 Feb 2025 19:59:16 +0000
ROA not before: Tue 04 Feb 2025 19:54:16 +0000
ROA not after: Tue 03 Feb 2026 19:59:16 +0000
asID: 22541
IP address blocks: 200.75.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:4b:f2:9f:77:58:31:18:f8:aa:f0:3f:90:20:1b:68:16:75:fc:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D
Validity
Not Before: Feb 4 19:54:16 2025 GMT
Not After : Feb 3 19:59:16 2026 GMT
Subject: CN=2BA68E55793A69D4ECCA9A0811289B26CDB767F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d8:17:e0:ae:cd:3c:60:1d:c6:f8:20:14:5e:
cb:45:74:fe:84:cf:51:89:18:a3:25:3d:ad:f9:0d:
09:26:31:0c:8b:51:1d:9c:cf:39:e0:1f:b2:73:e8:
66:40:dd:75:ef:a2:75:c0:74:3e:28:e2:c7:ac:fe:
cd:e3:62:86:be:ac:d6:e2:3d:07:a5:32:0a:6f:fe:
c7:f9:87:2c:17:2d:85:e2:e9:df:f9:f4:bd:de:ad:
a8:53:9e:40:4b:57:85:97:64:48:d5:ae:b0:d2:3f:
2b:db:c3:3b:91:9d:d0:74:93:bc:d6:88:7f:1b:3b:
94:a2:3d:7e:b2:4d:60:2f:99:fc:4e:2c:c4:be:bd:
2d:2c:85:62:e9:bd:8d:fc:14:a4:f7:fc:15:7d:17:
af:8e:12:4f:dc:2b:6a:05:cb:50:97:ae:15:1a:6f:
e4:e1:e7:b2:39:8d:46:5f:aa:b3:9b:9b:58:1a:78:
55:d3:4a:8c:cc:ff:59:b0:2c:15:94:b4:f8:fb:bf:
c4:47:94:5b:c6:6f:2d:70:b0:2b:99:55:af:92:3f:
f0:88:cd:af:60:ee:ab:7f:46:05:02:8c:01:ca:1d:
e4:55:9b:34:e9:e5:ec:13:20:ac:98:de:c2:c7:1e:
1e:eb:e8:c9:c9:2c:38:d6:84:13:db:fb:cc:c8:53:
0f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A6:8E:55:79:3A:69:D4:EC:CA:9A:08:11:28:9B:26:CD:B7:67:F1
X509v3 Authority Key Identifier:
keyid:62:0D:1F:DB:BD:45:7C:A0:F9:CC:FC:63:A8:B8:5C:99:A8:19:AF:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136332e302f32342d3234203d3e203232353431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.75.163.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:34:a2:ff:5a:60:ce:de:38:62:e7:2c:1e:c7:39:d4:e0:c4:
db:64:b8:7d:e7:81:bb:36:05:20:9e:ce:8f:9e:a4:93:88:d5:
2c:53:d7:f5:6a:9c:ab:3e:e5:6a:9d:27:2c:8d:ad:83:62:7a:
15:24:4d:08:6a:18:7e:a7:e5:d9:6d:a9:4f:ce:2c:6d:f0:c6:
3b:96:57:68:f2:45:6d:8d:8f:21:6f:47:5c:87:ff:7c:b0:f2:
08:a9:e6:e5:2f:7d:24:47:89:ad:c4:13:f8:3b:2d:1a:4c:0b:
89:27:83:0b:12:55:04:23:6f:4e:10:26:f4:30:3f:61:f7:0b:
e7:c7:ef:c0:62:9b:d5:3e:bb:5a:82:5b:d6:b1:ca:0e:3b:f3:
d2:e2:04:a6:79:9e:b2:55:de:09:98:de:9b:7f:8c:b2:1a:7c:
c3:21:62:30:49:1e:60:d0:ba:0b:1c:b0:52:d1:ce:fd:21:be:
e9:88:2a:ec:7e:8f:95:81:8b:96:0a:2f:ff:30:74:07:47:bc:
36:78:61:42:3e:07:b6:a0:ba:38:65:37:f5:af:07:97:29:aa:
65:84:70:65:30:c5:df:8a:c5:e4:5e:61:1d:b8:0d:c8:e9:ba:
c5:97:94:37:3e:7b:64:31:a9:9d:1a:da:3d:28:5a:34:f5:82:
49:bd:63:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:39:02 2025 by rpki-client