Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/3230302e37352e39362e302f31392d3234203d3e203231383236.roa
File: 3230302e37352e39362e302f31392d3234203d3e203231383236.roa (raw, json)
Hash identifier: hbIeTDJJzbe4ORtGZx80De7OqdjUPe4kEW8N/rZmyAs=
Subject key identifier: 07:9F:90:A2:0E:63:D7:07:50:C1:49:FF:BE:3B:20:0A:EA:E9:F0:B8
Certificate issuer: /CN=165E0F133EF8A6DF2ECCBFDD6E915964893A4324
Certificate serial: 3EF9ED7F2202A0ADD5D6B8C6CCEAE65F23DC4D44
Authority key identifier: 16:5E:0F:13:3E:F8:A6:DF:2E:CC:BF:DD:6E:91:59:64:89:3A:43:24
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/3230302e37352e39362e302f31392d3234203d3e203231383236.roa
Signing time: Tue 04 Feb 2025 18:44:34 +0000
ROA not before: Tue 04 Feb 2025 18:39:34 +0000
ROA not after: Tue 03 Feb 2026 18:44:34 +0000
asID: 21826
IP address blocks: 200.75.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:f9:ed:7f:22:02:a0:ad:d5:d6:b8:c6:cc:ea:e6:5f:23:dc:4d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165E0F133EF8A6DF2ECCBFDD6E915964893A4324
Validity
Not Before: Feb 4 18:39:34 2025 GMT
Not After : Feb 3 18:44:34 2026 GMT
Subject: CN=079F90A20E63D70750C149FFBE3B200AEAE9F0B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9c:73:cb:26:5c:b6:50:b8:b8:c4:c4:9b:0a:
85:88:cc:3b:fc:69:16:0b:55:f6:8e:12:aa:03:01:
f3:ec:ee:fd:d5:31:f1:60:11:cd:e3:41:2f:03:f4:
42:76:86:c9:e5:ec:db:bc:08:3d:10:90:d1:96:73:
16:02:33:41:b5:37:68:2c:4e:05:e0:e0:41:a1:c3:
84:54:14:73:e2:97:c7:a3:77:d4:cb:98:d6:b2:72:
66:99:b8:ab:ee:ba:f7:f9:be:46:8a:2c:8b:d7:b1:
14:4a:48:92:19:f9:54:d3:e9:fe:ba:bd:e3:b1:eb:
7c:46:e8:b2:a7:3b:58:06:21:19:5d:19:1d:cb:bf:
99:98:a8:a9:69:b8:8f:d4:c4:52:32:3e:82:e2:dd:
27:ab:b1:f1:04:0b:d7:ce:e8:2f:85:82:2c:87:cd:
c8:fd:a4:c5:dc:2a:82:e5:c5:57:6c:af:c2:58:4c:
9b:c0:9a:92:42:23:50:ad:a6:19:04:4b:1a:8e:f6:
de:a3:01:85:33:4a:31:ac:dc:47:c6:30:67:90:4c:
9c:3f:af:64:19:01:1d:9a:f8:f3:3b:a1:c8:79:82:
9b:0e:e3:61:f8:1e:54:6c:6a:c7:83:e6:7b:16:3a:
dc:a8:e1:d5:78:8c:f8:db:ce:47:38:a3:52:b3:aa:
31:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9F:90:A2:0E:63:D7:07:50:C1:49:FF:BE:3B:20:0A:EA:E9:F0:B8
X509v3 Authority Key Identifier:
keyid:16:5E:0F:13:3E:F8:A6:DF:2E:CC:BF:DD:6E:91:59:64:89:3A:43:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/3230302e37352e39362e302f31392d3234203d3e203231383236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.75.96.0/19
Signature Algorithm: sha256WithRSAEncryption
20:59:e5:95:28:64:fc:82:e5:f3:97:07:77:df:4e:65:a9:9e:
0e:1e:18:cd:94:da:d5:81:f7:cf:79:1a:0e:5b:70:05:57:57:
7a:50:8a:3d:69:1f:69:f4:c5:ce:89:aa:5e:6f:fd:17:c0:28:
bd:b2:70:0a:16:da:69:ca:db:13:91:a8:0d:d9:1f:74:da:70:
af:0b:f6:e3:2f:f3:82:a6:39:7f:ec:a5:e8:a3:fb:08:8f:b4:
bf:38:87:61:be:8a:f7:d2:85:91:4c:c0:73:83:cc:d9:b7:47:
61:d8:56:58:b2:b4:e9:02:e5:91:92:19:f9:37:d1:3d:e3:f3:
58:46:4a:2f:5d:75:4f:7c:b1:5b:0b:93:10:1a:f6:56:f3:3c:
04:2a:b2:b6:91:1c:f0:f8:5e:52:29:2e:cc:87:d6:24:68:77:
1a:fc:c3:9c:23:0e:3b:f9:e4:a8:8c:31:7a:84:ac:bb:07:70:
14:83:7f:ac:bf:7f:83:d3:6a:15:e4:9b:18:3e:3c:ed:c1:c5:
07:bb:13:5e:23:1d:1f:91:a3:11:1e:7d:44:1f:73:0e:fc:21:
db:6d:ab:be:a1:ae:e4:34:e8:ea:60:5a:01:59:20:f4:ea:62:
84:b4:0e:b9:1c:42:98:f8:68:09:71:3a:68:4d:71:03:9c:2d:
6a:c0:59:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:34 2025 by rpki-client