Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3137332e302f32342d3234203d3e203232353431.roa
File: 3230302e37352e3137332e302f32342d3234203d3e203232353431.roa (raw, json)
Hash identifier: uuApfp3GWei7DATGMPPy23mrc+RpX9L74Ul+uBmO8d4=
Subject key identifier: 7C:E7:7B:35:CF:89:F6:C8:AB:93:D8:5D:92:D7:41:0B:66:3B:1C:DF
Certificate issuer: /CN=620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D
Certificate serial: 425AC422731D5D6436EFF9531028E8570AB4B423
Authority key identifier: 62:0D:1F:DB:BD:45:7C:A0:F9:CC:FC:63:A8:B8:5C:99:A8:19:AF:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3137332e302f32342d3234203d3e203232353431.roa
Signing time: Tue 04 Feb 2025 19:59:17 +0000
ROA not before: Tue 04 Feb 2025 19:54:17 +0000
ROA not after: Tue 03 Feb 2026 19:59:17 +0000
asID: 22541
IP address blocks: 200.75.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:5a:c4:22:73:1d:5d:64:36:ef:f9:53:10:28:e8:57:0a:b4:b4:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D
Validity
Not Before: Feb 4 19:54:17 2025 GMT
Not After : Feb 3 19:59:17 2026 GMT
Subject: CN=7CE77B35CF89F6C8AB93D85D92D7410B663B1CDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9d:0a:d5:23:86:3a:fe:4a:bf:eb:18:0d:00:
2b:92:bc:db:5f:45:f6:98:8d:de:c4:e0:a6:9a:f9:
0e:91:fc:a4:12:d5:8c:2a:4f:33:65:56:86:d8:6f:
5d:39:4f:95:ae:39:89:69:8f:89:98:18:aa:b5:44:
35:3b:28:d3:83:c6:22:f8:e7:a9:b3:92:f6:7c:a0:
2b:15:70:fb:d4:a9:11:a4:b8:d4:42:13:22:d8:f3:
47:0c:40:1a:e6:66:03:e9:23:e5:31:d1:9c:50:6f:
ff:5f:ec:83:17:ce:09:9a:f4:95:9a:95:63:23:4a:
72:47:5e:bd:13:fb:a1:e9:0e:b1:57:c6:8f:e3:2a:
18:1f:c1:9b:28:59:9e:90:3c:a5:fe:b4:f4:3c:92:
e3:90:bc:f7:df:2e:ca:76:b5:26:85:47:54:bf:26:
3b:9c:86:ec:69:28:4a:7b:af:f6:1e:37:54:c6:fd:
e8:bd:57:ef:c5:50:01:92:f5:0d:54:6a:68:1c:e6:
10:23:f9:51:7c:a2:ca:3d:cb:68:99:73:36:b2:bc:
cc:3e:9b:65:40:0e:0c:63:b6:37:c3:a4:8b:d4:13:
89:72:37:b7:37:f7:88:35:e2:3c:be:1e:08:b4:3e:
ee:8b:14:2f:5d:25:f5:e8:f2:19:53:6e:50:08:f0:
74:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E7:7B:35:CF:89:F6:C8:AB:93:D8:5D:92:D7:41:0B:66:3B:1C:DF
X509v3 Authority Key Identifier:
keyid:62:0D:1F:DB:BD:45:7C:A0:F9:CC:FC:63:A8:B8:5C:99:A8:19:AF:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3137332e302f32342d3234203d3e203232353431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.75.173.0/24
Signature Algorithm: sha256WithRSAEncryption
31:c7:8a:70:a8:bc:16:4c:91:19:23:5f:1e:58:e3:e0:87:3a:
55:4e:f8:2b:02:50:15:5d:ff:00:ec:f2:bd:c5:24:f5:e7:fe:
71:a8:10:64:e7:95:31:5e:1a:3d:f9:4b:8d:b1:8d:c7:af:5f:
b7:27:0d:48:41:de:ad:0a:af:76:e9:1d:92:48:d8:1a:a9:dc:
0e:34:2b:01:39:66:0b:4d:96:0e:d9:54:eb:4d:9e:d8:9a:55:
ab:f2:59:e4:2d:cb:c2:19:7d:0d:ca:cb:7b:7f:e1:c1:9c:5c:
fe:19:97:49:d6:0e:05:9c:dc:59:98:5d:a1:35:b7:71:b4:41:
3e:9b:ec:1b:54:42:1d:ea:3f:43:f9:b6:bc:8e:20:90:83:2f:
ed:4e:8a:e2:39:00:8a:56:8e:dd:eb:a9:ff:b5:7a:82:85:b3:
60:02:90:1c:45:75:ff:42:e9:37:28:9f:32:f5:88:0a:13:e1:
7d:37:ba:1b:f4:7e:5b:82:20:1d:4e:7a:ac:d1:bf:24:90:3e:
ea:62:02:ff:f0:9c:dc:88:98:10:3f:11:fd:8c:6e:fe:69:7d:
46:df:9e:95:d5:8e:be:d3:a3:96:20:23:f4:d3:46:0f:d7:35:
da:4f:04:9d:a4:1a:83:92:c0:e1:9a:bf:d0:c8:cc:a8:3b:1f:
17:71:1a:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:41:47 2025 by rpki-client