Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A3A4E0D18D97D39C5390FFDE26FC78BE4AB5068967B888AD988E4BB0D48F9819/0/3230312e3231372e35362e302f32332d3234203d3e203237383636.roa
File: 3230312e3231372e35362e302f32332d3234203d3e203237383636.roa (raw, json)
Hash identifier: 30triK1DHT+ZvgKH+ZJxLUQ4aOY88JJujy61X6HofXM=
Subject key identifier: 68:E7:6F:20:D1:DB:AA:11:C0:D7:6E:EC:11:CC:81:4A:DE:44:91:2A
Certificate issuer: /CN=EC2EAE5BF883D3DFD8B270D082FF89DD81090C53
Certificate serial: 5ADCFCEF44413F364BD6FD80B2B7354850441D00
Authority key identifier: EC:2E:AE:5B:F8:83:D3:DF:D8:B2:70:D0:82:FF:89:DD:81:09:0C:53
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EC2EAE5BF883D3DFD8B270D082FF89DD81090C53.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A3A4E0D18D97D39C5390FFDE26FC78BE4AB5068967B888AD988E4BB0D48F9819/0/3230312e3231372e35362e302f32332d3234203d3e203237383636.roa
Signing time: Tue 04 Feb 2025 18:31:17 +0000
ROA not before: Tue 04 Feb 2025 18:26:17 +0000
ROA not after: Tue 03 Feb 2026 18:31:17 +0000
asID: 27866
IP address blocks: 201.217.56.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:dc:fc:ef:44:41:3f:36:4b:d6:fd:80:b2:b7:35:48:50:44:1d:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EC2EAE5BF883D3DFD8B270D082FF89DD81090C53
Validity
Not Before: Feb 4 18:26:17 2025 GMT
Not After : Feb 3 18:31:17 2026 GMT
Subject: CN=68E76F20D1DBAA11C0D76EEC11CC814ADE44912A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:45:fd:d7:49:63:38:e0:e4:06:d8:1f:e0:8c:
1e:84:26:2c:a6:43:43:e7:72:22:94:d7:12:71:87:
14:ef:41:cd:87:78:4d:43:9f:35:bf:f2:45:12:ff:
c7:33:c1:28:ca:2f:ca:4e:01:0d:38:c8:5b:30:e0:
f5:c4:ec:5d:fc:55:d7:ca:c8:06:95:54:5e:a4:c5:
05:55:49:ec:b2:ff:ad:2c:cf:78:68:76:11:e2:ae:
7d:2f:b6:c5:f7:32:2d:65:41:e2:02:b7:38:fa:8e:
76:c9:cd:f5:1d:d4:ab:49:c2:21:c4:2b:8d:f4:64:
58:e0:1f:01:61:4d:b1:ea:a0:8a:6d:bd:a2:bc:59:
28:8c:57:ae:64:34:a0:3e:a7:bd:b9:56:e6:02:fe:
30:af:12:59:2b:7a:9c:b5:a3:9f:04:26:2a:1b:23:
e5:64:23:cc:4f:dd:e9:00:39:cc:20:b8:0b:0d:77:
a4:08:1b:3e:ea:48:0b:6c:f5:38:0e:db:8c:33:16:
6c:13:7f:d6:be:bc:df:6c:4d:fe:e8:43:05:c5:74:
9a:39:5a:9d:8c:54:de:d5:05:b3:27:a2:15:83:26:
63:7a:9e:46:c9:0d:a2:9f:bf:c2:d4:1e:aa:75:d4:
ea:e0:df:90:23:31:67:7b:43:0d:cc:85:5a:06:17:
d7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:E7:6F:20:D1:DB:AA:11:C0:D7:6E:EC:11:CC:81:4A:DE:44:91:2A
X509v3 Authority Key Identifier:
keyid:EC:2E:AE:5B:F8:83:D3:DF:D8:B2:70:D0:82:FF:89:DD:81:09:0C:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A3A4E0D18D97D39C5390FFDE26FC78BE4AB5068967B888AD988E4BB0D48F9819/0/EC2EAE5BF883D3DFD8B270D082FF89DD81090C53.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EC2EAE5BF883D3DFD8B270D082FF89DD81090C53.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A3A4E0D18D97D39C5390FFDE26FC78BE4AB5068967B888AD988E4BB0D48F9819/0/3230312e3231372e35362e302f32332d3234203d3e203237383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.217.56.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:b4:4f:21:d4:17:15:a7:10:83:42:1b:60:76:9d:83:76:e0:
64:39:3d:3d:de:42:ca:79:56:e7:88:10:d0:74:5d:8a:1d:4b:
64:14:ac:4c:1d:9e:e6:5f:69:18:aa:36:06:a3:7f:6a:48:3f:
32:60:d0:b6:a4:b5:2e:12:0c:15:25:5d:f4:04:f5:d2:fe:af:
c6:be:fd:a3:32:79:20:d1:34:84:8d:14:97:c8:99:9b:ca:4b:
e9:b4:8e:c2:dc:37:7b:7b:3d:dc:39:fb:da:30:15:25:ae:0f:
4b:d1:fe:d9:62:0b:cd:98:e2:cd:7f:e2:7a:5b:d7:67:05:e3:
ff:07:e7:8b:c7:1b:1c:7b:3e:d6:54:9f:72:e5:d5:be:69:7a:
d0:43:6c:b1:64:c0:dd:21:46:05:55:f3:46:a9:cd:5a:da:28:
67:05:01:f3:cc:7b:e9:eb:bd:b2:df:6f:5a:fd:dd:52:82:44:
d3:61:52:16:22:a9:70:3b:4d:fd:fa:2f:49:15:08:f0:8c:9e:
1b:5f:61:b8:08:38:6b:2c:ed:49:ba:04:0c:c6:e8:3c:b4:7f:
99:09:bb:ee:7f:5b:83:cc:31:28:4a:29:ce:2d:5d:30:64:99:
18:13:fe:42:03:8f:43:29:d7:95:83:42:0d:fc:31:82:cc:4a:
29:b5:75:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:47:30 2025 by rpki-client