Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3231342e302f32342d3234203d3e203230303135.roa
File: 3230302e37312e3231342e302f32342d3234203d3e203230303135.roa (raw, json)
Hash identifier: jzAYld0X4dw7TgLtz0oNTowbTRQeqhniYqemnazp/74=
Subject key identifier: B1:50:91:8C:68:28:3B:4C:BF:DC:1C:39:90:2D:7B:42:32:AF:E4:5D
Certificate issuer: /CN=D6368A1CCA4398AC245E8096FFF2D9BD515D42F3
Certificate serial: 1B13B2D7763A45266410A4994906375FB2F0A3D2
Authority key identifier: D6:36:8A:1C:CA:43:98:AC:24:5E:80:96:FF:F2:D9:BD:51:5D:42:F3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3231342e302f32342d3234203d3e203230303135.roa
Signing time: Tue 04 Feb 2025 18:52:17 +0000
ROA not before: Tue 04 Feb 2025 18:47:17 +0000
ROA not after: Tue 03 Feb 2026 18:52:17 +0000
asID: 20015
IP address blocks: 200.71.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:13:b2:d7:76:3a:45:26:64:10:a4:99:49:06:37:5f:b2:f0:a3:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D6368A1CCA4398AC245E8096FFF2D9BD515D42F3
Validity
Not Before: Feb 4 18:47:17 2025 GMT
Not After : Feb 3 18:52:17 2026 GMT
Subject: CN=B150918C68283B4CBFDC1C39902D7B4232AFE45D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f4:90:60:56:53:23:cc:f7:a3:b6:e5:20:e8:
40:39:af:6b:0d:ae:ad:80:e0:de:a4:ae:18:b5:ba:
1c:b7:96:63:1a:09:6a:2e:7c:cb:39:17:9e:d1:1e:
59:55:82:b4:f3:08:38:e8:4c:3c:13:df:6d:ed:2c:
e2:b5:3a:94:94:2c:85:a5:8b:47:42:51:9c:f1:3f:
44:91:d3:1b:5a:57:e9:b2:ce:43:5f:fd:50:d7:e3:
f3:cb:7b:58:f0:c8:13:39:14:e1:55:64:83:8e:5f:
75:b3:e7:aa:e8:56:31:48:16:fc:a7:1f:9a:20:82:
21:b1:ba:d8:4d:a4:2f:e3:2f:0d:59:e6:9f:15:0f:
c2:f4:b6:b7:86:de:a1:5c:82:44:45:1f:42:2d:14:
24:60:6d:b4:46:ef:aa:6c:1d:e7:6a:04:e5:d8:68:
b4:ed:e7:95:b3:76:a3:63:b3:8d:0f:1d:ef:af:ea:
c6:ef:08:6d:59:8c:ea:3c:ef:2e:30:84:cd:15:33:
3c:21:a4:c0:1f:d6:77:e5:22:cd:e8:86:32:d7:93:
04:95:d8:72:e7:92:d4:4a:e5:8a:93:3a:d8:c6:64:
91:d6:9d:dd:ab:c9:21:89:53:07:59:9b:23:ca:61:
0f:17:b3:bf:c3:b7:5e:a2:a3:c7:e8:a1:d6:93:0a:
59:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:50:91:8C:68:28:3B:4C:BF:DC:1C:39:90:2D:7B:42:32:AF:E4:5D
X509v3 Authority Key Identifier:
keyid:D6:36:8A:1C:CA:43:98:AC:24:5E:80:96:FF:F2:D9:BD:51:5D:42:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3231342e302f32342d3234203d3e203230303135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.71.214.0/24
Signature Algorithm: sha256WithRSAEncryption
04:ca:83:f4:39:30:63:60:7a:7c:f6:26:8b:ca:b4:ce:1a:78:
14:ca:f0:16:7c:55:b6:95:31:c9:01:c5:47:ce:a1:a7:c1:65:
4a:05:01:e3:c9:e1:ee:b7:3b:98:d0:20:4c:11:ba:b9:c1:bf:
98:3d:94:06:7c:3a:c9:6c:36:c6:8c:f5:57:85:7d:13:b9:e9:
24:5b:1b:66:d9:f8:d7:06:11:4c:8d:6d:b1:50:8f:e0:c0:dc:
b1:50:c2:7f:29:a6:1d:2a:3e:a5:b3:93:8a:4a:8b:a3:e8:59:
97:d2:e6:34:0f:c9:77:38:e1:db:60:3d:01:25:0e:76:32:f7:
4f:4b:8f:0a:ad:3b:b0:bb:0c:b7:fa:c0:a7:eb:27:ef:2a:50:
5e:c9:9e:b6:3c:08:7a:20:5f:64:6a:c8:81:83:26:e1:6a:e7:
23:82:95:92:71:98:ea:a1:96:3f:ef:b1:cd:de:e0:6e:57:ec:
41:6b:89:f5:76:18:61:46:b9:2e:d4:19:5d:46:cf:eb:af:28:
cb:8c:25:1a:f1:52:d4:55:2f:21:2b:db:7f:7a:0d:0b:ff:50:
e4:6f:f8:4a:5f:58:f9:16:76:4a:6c:ee:83:5c:53:cf:b7:25:
86:71:6a:66:23:28:90:1c:c1:99:cd:1c:61:17:a4:1a:72:29:
8b:fa:d6:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:25:09 2025 by rpki-client