Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A213BEAC8C25B0ADD4BC241BB6A5DBC907383A458D13E127EE5137044BAB582A/0/3230302e37352e3134342e302f32302d3234203d3e203131353632.roa
File: 3230302e37352e3134342e302f32302d3234203d3e203131353632.roa (raw, json)
Hash identifier: Yc/chOt50J8mOoDtLpegpeC+H61qoFB42wXTZSBtYds=
Subject key identifier: C6:58:13:19:94:AD:BA:A2:99:94:7A:A5:18:44:CA:44:03:FE:49:01
Certificate issuer: /CN=8D6A7A61067CADD65929191F3556022BD1D2E09A
Certificate serial: 4E02A40BF9470F4A1106E7F3BBBC713813CD55AD
Authority key identifier: 8D:6A:7A:61:06:7C:AD:D6:59:29:19:1F:35:56:02:2B:D1:D2:E0:9A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D6A7A61067CADD65929191F3556022BD1D2E09A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A213BEAC8C25B0ADD4BC241BB6A5DBC907383A458D13E127EE5137044BAB582A/0/3230302e37352e3134342e302f32302d3234203d3e203131353632.roa
Signing time: Tue 04 Feb 2025 18:00:53 +0000
ROA not before: Tue 04 Feb 2025 17:55:53 +0000
ROA not after: Tue 03 Feb 2026 18:00:53 +0000
asID: 11562
IP address blocks: 200.75.144.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:02:a4:0b:f9:47:0f:4a:11:06:e7:f3:bb:bc:71:38:13:cd:55:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D6A7A61067CADD65929191F3556022BD1D2E09A
Validity
Not Before: Feb 4 17:55:53 2025 GMT
Not After : Feb 3 18:00:53 2026 GMT
Subject: CN=C658131994ADBAA299947AA51844CA4403FE4901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d9:6f:a4:19:b5:32:32:49:0c:c2:1f:99:2b:
25:ea:7a:f2:75:ff:c0:00:9c:44:ed:5f:b2:ac:f4:
18:85:ba:92:98:1b:7f:68:c5:0d:5e:65:e5:31:64:
90:06:6f:00:88:05:4c:f4:81:27:56:df:77:21:51:
67:05:05:ab:22:c3:be:c4:87:bd:d6:58:d8:0d:12:
fe:2a:5b:07:fc:96:33:6b:74:c7:b8:2b:3a:75:c0:
d9:c4:6c:01:54:32:0a:b6:b1:c6:f0:e9:08:2b:80:
12:97:0a:eb:c3:64:e5:24:e8:15:ed:a0:04:88:65:
d1:57:3e:69:8b:7e:7c:65:24:a9:a9:32:f5:76:85:
7f:a0:11:5c:79:c2:0b:e8:5a:46:c0:61:16:a7:14:
e3:df:6c:f9:2a:fc:3c:c9:f2:2d:1e:89:59:09:45:
4e:f5:de:89:54:f4:de:61:c4:f8:fa:1a:d7:cf:e0:
5f:0a:71:06:a9:9f:e7:9d:e9:f5:a7:b9:03:3a:39:
05:4d:49:f3:de:77:1e:56:9c:31:77:d0:47:89:c2:
81:91:59:4c:92:b5:e9:2e:72:84:17:6d:9f:58:b5:
a4:b3:fe:4c:a8:dc:5a:20:10:13:8f:1a:72:37:25:
a8:fd:2b:3e:a5:02:2f:02:2c:a9:14:f1:5c:e8:2e:
ef:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:58:13:19:94:AD:BA:A2:99:94:7A:A5:18:44:CA:44:03:FE:49:01
X509v3 Authority Key Identifier:
keyid:8D:6A:7A:61:06:7C:AD:D6:59:29:19:1F:35:56:02:2B:D1:D2:E0:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A213BEAC8C25B0ADD4BC241BB6A5DBC907383A458D13E127EE5137044BAB582A/0/8D6A7A61067CADD65929191F3556022BD1D2E09A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D6A7A61067CADD65929191F3556022BD1D2E09A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A213BEAC8C25B0ADD4BC241BB6A5DBC907383A458D13E127EE5137044BAB582A/0/3230302e37352e3134342e302f32302d3234203d3e203131353632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.75.144.0/20
Signature Algorithm: sha256WithRSAEncryption
18:bd:ac:46:f3:c8:04:ce:18:10:6c:66:84:7c:91:4b:6f:0f:
7f:9a:aa:3a:a0:db:1f:92:56:80:f7:17:51:47:e5:8d:fd:27:
13:6c:dc:84:12:93:7b:5c:92:82:b5:c1:1f:f2:d7:9e:1e:ea:
69:12:83:11:ef:a4:f6:43:05:c7:10:80:40:71:0b:c7:0c:0e:
4b:47:39:1b:bd:45:b0:da:d8:6e:34:0f:6c:f7:e3:2d:ee:ae:
59:72:77:5e:69:af:96:72:cb:0e:83:29:fe:ea:b3:07:29:dc:
d5:9d:04:74:cc:82:75:4b:55:df:63:b6:a8:83:d7:fa:24:1e:
cb:1c:3c:5f:2a:75:3d:e9:3d:44:8f:a9:4c:31:ef:1c:7d:4d:
36:20:d8:96:d8:ab:69:7b:3a:9d:39:4d:74:84:8b:98:ad:f4:
d0:40:db:8a:7c:9e:78:5f:bc:b5:13:5c:78:04:98:cd:31:40:
d0:52:c5:e5:21:1f:c0:c5:04:bb:27:d7:ed:d5:93:25:85:9f:
e3:82:ed:56:be:d5:e2:c2:b3:a3:c7:72:9a:a9:93:78:24:4b:
a5:7a:cc:e2:9f:4f:5a:fd:3e:50:e7:af:85:5a:b2:a3:4c:69:
db:31:3d:b5:b2:66:e2:ba:ef:76:dd:6f:63:0e:07:c7:4b:7a:
43:c2:4b:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:36:06 2025 by rpki-client