Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AFACFB8BC7A43BB957D8E486209C80BC90118DFD3ED5EB2CD3282DFA17EA1639/0/3230302e39342e3136382e302f32312d3231203d3e203238353039.roa
File: 3230302e39342e3136382e302f32312d3231203d3e203238353039.roa (raw, json)
Hash identifier: 3b4YH/DSZgOGJ0r7t/uT80Vxvey32+FzcUAWi5KnHQc=
Subject key identifier: DB:8C:76:6A:25:44:73:97:17:B0:26:C7:B0:45:36:1A:24:69:30:DE
Certificate issuer: /CN=E1BAAC863FA77DA084FB6FF68CC4D5008C31552A
Certificate serial: 6119DF9941578C906B92906A23E84A9BA16DADC2
Authority key identifier: E1:BA:AC:86:3F:A7:7D:A0:84:FB:6F:F6:8C:C4:D5:00:8C:31:55:2A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E1BAAC863FA77DA084FB6FF68CC4D5008C31552A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AFACFB8BC7A43BB957D8E486209C80BC90118DFD3ED5EB2CD3282DFA17EA1639/0/3230302e39342e3136382e302f32312d3231203d3e203238353039.roa
Signing time: Tue 04 Feb 2025 18:46:09 +0000
ROA not before: Tue 04 Feb 2025 18:41:09 +0000
ROA not after: Tue 03 Feb 2026 18:46:09 +0000
asID: 28509
IP address blocks: 200.94.168.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:19:df:99:41:57:8c:90:6b:92:90:6a:23:e8:4a:9b:a1:6d:ad:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1BAAC863FA77DA084FB6FF68CC4D5008C31552A
Validity
Not Before: Feb 4 18:41:09 2025 GMT
Not After : Feb 3 18:46:09 2026 GMT
Subject: CN=DB8C766A2544739717B026C7B045361A246930DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:04:f8:54:b0:14:21:be:12:fe:06:69:70:8c:
44:f9:f0:48:83:14:d9:1e:0f:bb:1c:ee:72:ac:a4:
13:b9:ec:4e:6b:ba:a8:85:bf:43:8d:8e:9d:fc:62:
c0:86:07:b1:11:cf:75:8f:7e:ae:b7:7e:78:f5:d0:
6a:72:e2:6e:ee:29:c5:f3:d0:53:6a:68:8c:c8:b1:
2d:26:50:34:fd:30:46:07:ee:0b:7d:3e:28:c7:3a:
43:fa:d7:81:b8:17:0c:d1:9f:86:f6:61:f7:ea:14:
1f:c8:71:79:2c:c9:5f:2f:b7:92:a4:5a:a0:28:12:
3a:1c:03:a3:56:05:de:16:c7:aa:54:fd:6d:b4:0b:
3c:7a:98:a0:69:55:f4:3d:ac:14:96:34:ea:77:7f:
e8:7d:31:2e:ca:ae:2c:0c:f3:95:fa:17:73:33:e3:
50:fa:e6:c3:17:a8:8e:e0:0f:c7:18:04:ea:e4:5e:
16:ff:5d:52:8d:bf:0c:28:0d:25:1b:e9:84:03:b4:
07:9b:41:aa:bd:6c:8a:a9:69:be:fb:41:54:f6:83:
10:13:19:41:17:f0:61:63:52:30:5f:7b:3e:99:61:
90:44:d6:f6:27:54:45:d7:14:f3:13:77:c6:1c:2c:
48:06:3b:5b:95:d2:5c:7b:c8:90:53:ff:d5:7c:16:
35:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8C:76:6A:25:44:73:97:17:B0:26:C7:B0:45:36:1A:24:69:30:DE
X509v3 Authority Key Identifier:
keyid:E1:BA:AC:86:3F:A7:7D:A0:84:FB:6F:F6:8C:C4:D5:00:8C:31:55:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AFACFB8BC7A43BB957D8E486209C80BC90118DFD3ED5EB2CD3282DFA17EA1639/0/E1BAAC863FA77DA084FB6FF68CC4D5008C31552A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E1BAAC863FA77DA084FB6FF68CC4D5008C31552A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AFACFB8BC7A43BB957D8E486209C80BC90118DFD3ED5EB2CD3282DFA17EA1639/0/3230302e39342e3136382e302f32312d3231203d3e203238353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.94.168.0/21
Signature Algorithm: sha256WithRSAEncryption
51:8d:77:fb:1c:56:20:3d:8b:c8:72:66:ce:6e:d0:89:e3:a3:
aa:06:db:6b:2e:a7:43:42:dc:0e:1e:24:3b:38:97:f6:85:23:
98:21:f7:4a:bc:2b:fa:c2:8f:54:4b:e2:0e:72:ae:9f:22:07:
43:13:06:d7:07:26:5d:77:e7:7e:35:9e:fc:fa:38:05:0e:0e:
b0:53:a7:2a:62:76:4c:bf:e2:b6:f2:6e:ec:3b:de:19:8d:56:
a9:ab:3f:0c:e3:a8:84:04:96:dd:70:2b:08:0c:04:f5:5d:62:
ee:97:15:71:52:4c:34:81:b0:df:64:78:b8:e5:d4:46:48:79:
0e:de:99:36:3c:21:80:e1:fd:9e:2f:0c:26:fa:51:f6:f3:37:
a3:07:3b:9b:83:1b:e6:0a:c1:49:fb:90:f4:0b:c1:9f:b2:45:
a7:f9:bf:2e:65:5e:72:ac:37:1b:b0:4a:b9:ad:a5:36:84:96:
b0:b4:0c:ff:d3:c9:c2:47:9a:88:09:3b:b6:4a:fa:46:32:e9:
af:89:c9:e9:65:6e:4f:a9:71:6f:60:a7:a4:22:23:ee:84:dd:
24:0e:f9:4c:76:4b:e5:f0:e7:78:b6:1f:b5:42:56:bc:17:a6:
e6:c0:46:2f:cc:89:3b:b6:2c:e6:3e:91:72:a9:a6:6f:0a:8b:
a4:40:cc:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:46:33 2025 by rpki-client