Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3232312e302f32342d3234203d3e203230303135.roa
File: 3230302e37312e3232312e302f32342d3234203d3e203230303135.roa (raw, json)
Hash identifier: rqxe3mhm/S2z9Or5t+mhwgQi2zHMJvjcPAUiPQQSNmA=
Subject key identifier: 1F:1E:C1:65:AA:8E:7B:37:8B:9A:59:82:A8:F1:60:44:79:D2:19:D7
Certificate issuer: /CN=D6368A1CCA4398AC245E8096FFF2D9BD515D42F3
Certificate serial: 1AABF0831D2B2A5A22D6B6A4A0CD33E604EDA431
Authority key identifier: D6:36:8A:1C:CA:43:98:AC:24:5E:80:96:FF:F2:D9:BD:51:5D:42:F3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3232312e302f32342d3234203d3e203230303135.roa
Signing time: Tue 04 Feb 2025 18:52:16 +0000
ROA not before: Tue 04 Feb 2025 18:47:16 +0000
ROA not after: Tue 03 Feb 2026 18:52:16 +0000
asID: 20015
IP address blocks: 200.71.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:ab:f0:83:1d:2b:2a:5a:22:d6:b6:a4:a0:cd:33:e6:04:ed:a4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D6368A1CCA4398AC245E8096FFF2D9BD515D42F3
Validity
Not Before: Feb 4 18:47:16 2025 GMT
Not After : Feb 3 18:52:16 2026 GMT
Subject: CN=1F1EC165AA8E7B378B9A5982A8F1604479D219D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:17:4e:61:8b:fe:15:3c:93:d5:49:38:30:d4:
db:e2:55:5b:79:9c:3d:67:53:aa:84:8a:38:32:73:
d2:b8:67:5b:01:45:e0:fd:45:48:5f:5f:8b:de:46:
2b:31:5c:25:e4:a4:8c:83:76:44:66:d3:c6:fa:d5:
c3:50:ca:71:d6:80:25:b0:87:a0:9a:74:ff:fb:02:
86:14:ae:2d:b0:e8:65:6c:bb:13:c2:a9:6d:bd:8f:
4f:3a:a6:22:87:77:99:73:f5:02:ac:4f:08:2a:c9:
50:36:c9:a8:29:1c:41:ad:33:2c:45:67:b1:32:71:
02:04:1a:7b:d3:35:6d:6b:d6:52:b9:7c:92:ee:af:
d6:e5:42:88:4c:d0:0a:5e:a2:7f:72:3f:55:dc:ba:
30:63:2f:97:ab:63:2b:ca:08:f0:60:7b:ad:86:f4:
2d:5f:1d:b1:4e:4e:56:4c:f5:6d:f8:68:a5:e7:1d:
d1:f2:5e:de:2f:8b:03:f2:1e:2a:c5:c7:74:c2:29:
bc:52:35:c2:fc:e9:e1:c8:c4:05:bc:e0:f5:0e:ca:
76:80:d6:67:8d:44:83:ed:1e:4a:aa:1f:ee:a3:e2:
5d:15:da:b2:68:21:4d:fc:a8:b1:05:bf:f2:d1:09:
f5:7a:58:43:6b:88:79:da:aa:89:ca:0a:28:4a:da:
89:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:1E:C1:65:AA:8E:7B:37:8B:9A:59:82:A8:F1:60:44:79:D2:19:D7
X509v3 Authority Key Identifier:
keyid:D6:36:8A:1C:CA:43:98:AC:24:5E:80:96:FF:F2:D9:BD:51:5D:42:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6368A1CCA4398AC245E8096FFF2D9BD515D42F3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A300BCF37CC7EB3A319E7C92A3F89B23C2B65CEE6E1F16AE07EED710CCC40CFE/0/3230302e37312e3232312e302f32342d3234203d3e203230303135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.71.221.0/24
Signature Algorithm: sha256WithRSAEncryption
07:0a:e9:4f:5f:bb:55:d8:3a:37:f4:9c:1f:ad:fc:8f:8c:89:
d8:dc:67:a9:3b:4b:95:31:0e:cf:8e:90:4a:0a:b1:a8:24:f4:
2d:50:e0:6f:a7:c7:a6:0b:cf:c4:46:33:03:44:9b:23:ff:99:
9a:93:51:22:46:9e:99:14:c4:9b:68:19:36:56:ee:4b:c2:e4:
83:31:cb:48:ab:79:fa:19:92:17:5e:8f:4c:f5:1a:3a:02:1c:
9e:8d:f1:55:f7:47:5d:1f:06:15:fc:a3:2a:c4:89:e7:b0:31:
ab:08:f3:86:82:23:47:64:6a:a8:29:3c:02:50:bb:54:2f:5f:
5b:90:dc:5e:85:37:58:30:20:65:e5:3a:94:5d:40:19:4c:ec:
b4:ac:69:6b:4c:c1:98:bb:ec:17:d5:52:11:78:5b:d4:d1:82:
76:0f:10:a3:2a:7d:ce:2e:84:7c:4e:13:36:52:7f:4f:aa:18:
15:8b:86:17:9b:6e:17:04:99:7e:c3:96:6b:fe:da:f1:71:af:
dd:b2:83:35:7b:b4:96:44:6a:4a:cd:c3:52:a0:9c:dd:dd:a9:
22:ee:37:c3:58:aa:f3:d7:85:87:60:49:5c:fa:16:76:42:dc:
c7:af:1a:2e:d6:3d:35:c0:0a:6c:24:5e:bc:39:6e:bc:d9:7d:
fa:11:0a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:25:15 2025 by rpki-client