Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3139332e302f32342d3234203d3e203230303135.roa
File: 3230302e37312e3139332e302f32342d3234203d3e203230303135.roa (raw, json)
Hash identifier: Z91UwjSQ6IMQ8p4krXpMiwCsjaUt+YK3cXpG+NZJPUo=
Subject key identifier: 97:AA:B8:21:8D:36:5E:33:81:F8:AF:EA:6C:75:D5:5D:66:52:88:B2
Certificate issuer: /CN=D6368A1CCA4398AC245E8096FFF2D9BD515D42F3
Certificate serial: 0CC38F8732809114D7763AE00475012479CAB073
Authority key identifier: D6:36:8A:1C:CA:43:98:AC:24:5E:80:96:FF:F2:D9:BD:51:5D:42:F3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3139332e302f32342d3234203d3e203230303135.roa
Signing time: Tue 04 Feb 2025 18:52:20 +0000
ROA not before: Tue 04 Feb 2025 18:47:20 +0000
ROA not after: Tue 03 Feb 2026 18:52:20 +0000
asID: 20015
IP address blocks: 200.71.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:c3:8f:87:32:80:91:14:d7:76:3a:e0:04:75:01:24:79:ca:b0:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D6368A1CCA4398AC245E8096FFF2D9BD515D42F3
Validity
Not Before: Feb 4 18:47:20 2025 GMT
Not After : Feb 3 18:52:20 2026 GMT
Subject: CN=97AAB8218D365E3381F8AFEA6C75D55D665288B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ae:8d:12:9e:45:77:f2:39:eb:0c:fa:31:72:
f8:98:43:d6:a2:28:b9:a4:de:2d:6b:37:88:49:f0:
c4:f0:09:31:f8:37:b2:00:c4:95:66:e0:30:78:b0:
9c:5c:d0:25:dd:a4:f8:0b:e8:a9:a9:a0:4f:6e:ed:
79:2e:16:52:7c:4d:19:44:e0:de:7c:c2:3b:8e:2b:
9d:6e:8c:76:2e:e4:63:de:f1:c5:d3:0d:80:7d:cd:
02:ad:23:a8:e8:e8:5e:6a:57:47:2f:54:ce:03:88:
d9:5e:57:4b:96:80:c5:65:b6:e9:87:42:e1:5c:7b:
c2:2a:d8:b6:5c:69:9b:f6:e0:42:6a:13:8c:8f:78:
92:cd:63:04:dc:8f:a7:9d:45:12:0d:51:d3:26:57:
1f:e8:e0:96:fc:63:91:ae:8a:cf:43:bf:c3:b7:bd:
e6:74:89:d4:fe:bb:ec:ef:54:31:f2:25:7a:d0:8c:
42:ad:23:fa:52:44:c7:da:5c:63:0a:1f:68:b6:18:
e2:7a:47:58:9d:7f:b3:81:2e:8b:cf:a5:74:43:b8:
e1:d7:6e:91:6a:ec:22:cb:2b:e6:43:90:a5:7e:8e:
8d:cd:80:aa:9a:18:49:5d:cc:36:43:84:5d:2b:2d:
39:b0:62:3a:21:de:44:90:7b:16:90:d9:c7:8f:01:
6f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AA:B8:21:8D:36:5E:33:81:F8:AF:EA:6C:75:D5:5D:66:52:88:B2
X509v3 Authority Key Identifier:
keyid:D6:36:8A:1C:CA:43:98:AC:24:5E:80:96:FF:F2:D9:BD:51:5D:42:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3139332e302f32342d3234203d3e203230303135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.71.193.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:78:2a:7d:17:3c:50:cd:60:29:ab:11:bb:1d:57:e0:e4:02:
37:43:53:74:0c:65:2d:e7:84:65:a3:ff:c1:88:6b:24:3e:8b:
c0:11:06:a7:bf:b8:97:f9:4a:34:72:83:8e:b6:1c:f3:2f:a9:
80:9d:e6:a1:5b:92:e1:b6:87:c5:49:63:53:0e:30:ee:2d:96:
3b:e5:f1:03:85:32:3d:b2:40:98:cf:7b:13:dc:d7:d4:d7:1c:
9e:a2:ee:08:39:86:c0:f4:41:61:4c:8e:71:6b:86:9e:fe:e7:
b6:e6:4f:d1:4e:2f:cb:53:fe:c0:49:cc:43:13:8d:17:26:0d:
71:1f:ad:7f:c7:b9:d9:bc:88:68:3c:16:02:98:7a:54:d2:a4:
c8:7c:65:43:95:a3:08:4f:85:57:cd:3a:4a:70:33:b4:34:96:
a0:54:c7:e6:1d:73:bf:d2:56:02:82:f2:21:a3:8c:8f:2c:2f:
f2:0c:35:1a:74:ee:97:69:63:a7:71:42:e9:e4:5b:95:b7:84:
7b:84:1e:43:9f:07:9c:a8:e3:47:33:fe:a4:58:43:c1:14:ed:
4c:3f:8e:25:48:4a:3c:ad:96:6e:b6:fd:7e:8c:b2:bc:e0:87:
00:8c:92:fc:39:aa:89:23:57:5c:b5:8c:49:56:30:bf:ec:97:
c8:e4:e6:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:24:09 2025 by rpki-client