Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B5C3B87C146B5E5FF576E642A7C7C977FBE99D2AFD4069C50CCFE6A97886549F/0/3230302e31362e3132342e302f32342d3234203d3e203237383236.roa
File: 3230302e31362e3132342e302f32342d3234203d3e203237383236.roa (raw, json)
Hash identifier: P7If0jPsM4YpjyoiSkGUXav46+JPhsiYMkR5cLvsLJ8=
Subject key identifier: F9:F4:92:4C:A4:B2:98:E1:EC:5D:20:A9:9D:DC:FC:8C:B6:2E:6D:E0
Certificate issuer: /CN=B5AA5B1E5B800556A5B79F997E1B0C88020C13B9
Certificate serial: 22C88DD0BAF21FFCA3DFE8AF7CD69E53C08B07D0
Authority key identifier: B5:AA:5B:1E:5B:80:05:56:A5:B7:9F:99:7E:1B:0C:88:02:0C:13:B9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5AA5B1E5B800556A5B79F997E1B0C88020C13B9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B5C3B87C146B5E5FF576E642A7C7C977FBE99D2AFD4069C50CCFE6A97886549F/0/3230302e31362e3132342e302f32342d3234203d3e203237383236.roa
Signing time: Tue 04 Feb 2025 18:26:44 +0000
ROA not before: Tue 04 Feb 2025 18:21:44 +0000
ROA not after: Tue 03 Feb 2026 18:26:44 +0000
asID: 27826
IP address blocks: 200.16.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:c8:8d:d0:ba:f2:1f:fc:a3:df:e8:af:7c:d6:9e:53:c0:8b:07:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B5AA5B1E5B800556A5B79F997E1B0C88020C13B9
Validity
Not Before: Feb 4 18:21:44 2025 GMT
Not After : Feb 3 18:26:44 2026 GMT
Subject: CN=F9F4924CA4B298E1EC5D20A99DDCFC8CB62E6DE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:00:53:01:e8:76:09:0a:c1:00:88:ca:33:14:
5a:3b:00:f0:1d:9d:c3:e9:f0:2b:bc:2a:50:db:2a:
08:7a:3c:4c:5f:75:fa:44:79:1b:bb:94:1d:c5:ea:
d6:f9:ec:c6:ae:7d:9a:1f:8d:1e:5d:71:c2:4a:73:
8b:a6:2f:66:23:ea:c0:c1:0a:5d:86:8a:ed:9f:0c:
43:c7:0e:aa:96:da:98:c0:6b:2e:96:91:cf:da:8c:
d7:70:47:b5:d2:3b:3b:0b:d0:84:ce:3e:5e:4b:61:
58:c6:52:59:42:47:7d:3c:8a:b1:01:31:3f:4e:e5:
47:95:23:f0:05:b9:56:d1:36:f9:26:cd:db:2e:c6:
b8:fa:1f:ee:77:c0:29:a2:cd:52:33:89:7d:ce:9e:
e7:68:21:b3:f3:e2:a6:b2:4d:ae:21:49:03:94:0e:
05:91:8f:85:93:f2:ac:92:91:4c:e2:7d:ad:d5:11:
a1:26:0d:49:78:41:a0:aa:97:e3:b8:e3:4c:84:ee:
75:f1:c8:8e:ca:4f:13:25:c5:a1:93:e7:c0:19:d5:
ea:0c:ff:d6:15:81:73:f9:dd:01:ea:04:d8:99:b2:
14:84:35:d5:05:30:63:08:fa:ec:fe:d4:2e:ef:80:
90:0f:95:94:e1:f6:e9:f8:46:6b:cf:e0:2a:75:88:
7f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:F4:92:4C:A4:B2:98:E1:EC:5D:20:A9:9D:DC:FC:8C:B6:2E:6D:E0
X509v3 Authority Key Identifier:
keyid:B5:AA:5B:1E:5B:80:05:56:A5:B7:9F:99:7E:1B:0C:88:02:0C:13:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B5C3B87C146B5E5FF576E642A7C7C977FBE99D2AFD4069C50CCFE6A97886549F/0/B5AA5B1E5B800556A5B79F997E1B0C88020C13B9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5AA5B1E5B800556A5B79F997E1B0C88020C13B9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B5C3B87C146B5E5FF576E642A7C7C977FBE99D2AFD4069C50CCFE6A97886549F/0/3230302e31362e3132342e302f32342d3234203d3e203237383236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.16.124.0/24
Signature Algorithm: sha256WithRSAEncryption
71:17:36:8a:fb:53:79:47:c0:1d:f7:77:17:d5:87:8e:77:03:
a0:12:74:8d:bb:08:34:39:5c:00:ac:d9:78:21:d4:d0:89:48:
ca:cc:c4:44:9e:3f:0e:a8:ca:23:d7:1e:4e:f6:23:df:fe:6c:
a6:2e:04:f4:76:e1:a7:57:0e:57:20:33:5f:47:f7:64:31:55:
49:6a:c8:d1:cb:bd:7a:65:5d:20:c7:1f:82:a0:a8:f7:bd:b3:
52:02:4d:fc:93:82:68:e0:76:81:d1:ec:5f:47:c9:b1:34:60:
10:a8:ab:6a:f4:08:e5:e7:97:76:1a:a7:6a:58:e2:03:e9:e0:
ed:2d:62:2f:60:e8:ec:bd:d6:71:f4:10:6b:25:18:b4:f6:77:
b1:e4:25:60:57:b7:91:83:19:eb:9f:83:ed:b8:33:3e:24:0a:
96:c6:c2:bd:ea:99:6c:e0:a4:29:ba:df:5f:e2:09:16:6c:6f:
a9:a6:ce:de:b7:ce:c3:0e:07:7b:a5:c6:d1:ad:31:7b:bf:ef:
73:aa:66:df:31:00:59:62:b4:7e:41:a5:ab:72:51:35:76:fd:
35:36:68:c7:c4:11:96:db:46:24:60:94:46:4a:10:bb:a2:06:
1a:c0:47:fb:dd:69:09:9f:72:32:61:8e:04:ac:98:b3:02:dc:
5b:be:91:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:23:28 2025 by rpki-client