Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/3230302e3132332e3132382e302f31382d3234203d3e203136383134.roa
File: 3230302e3132332e3132382e302f31382d3234203d3e203136383134.roa (raw, json)
Hash identifier: C0R9kSAQxwUXZMsyCh/HunIO1N/hkCizZTH8JSyeePo=
Subject key identifier: B7:79:8C:24:C2:23:AF:2B:BC:45:77:0D:EF:85:7A:9A:49:CB:DB:2F
Certificate issuer: /CN=171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7
Certificate serial: 147DC95C2C0B51C17712C9FEBDDDAB6C4E0D630E
Authority key identifier: 17:1F:14:D5:AE:EC:89:F4:AE:41:04:C0:F6:09:DE:27:7D:1D:3C:D7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/3230302e3132332e3132382e302f31382d3234203d3e203136383134.roa
Signing time: Tue 04 Feb 2025 20:04:12 +0000
ROA not before: Tue 04 Feb 2025 19:59:12 +0000
ROA not after: Tue 03 Feb 2026 20:04:12 +0000
asID: 16814
IP address blocks: 200.123.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:7d:c9:5c:2c:0b:51:c1:77:12:c9:fe:bd:dd:ab:6c:4e:0d:63:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7
Validity
Not Before: Feb 4 19:59:12 2025 GMT
Not After : Feb 3 20:04:12 2026 GMT
Subject: CN=B7798C24C223AF2BBC45770DEF857A9A49CBDB2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:01:6c:e8:f2:06:83:8a:62:0d:b9:e5:d5:05:
a1:8f:a4:98:4e:47:0e:9c:cc:5b:a1:60:7b:09:c1:
83:1c:b5:c9:e6:66:ef:37:20:79:b7:60:bc:e2:6a:
d1:12:c0:2c:ad:12:91:51:b6:87:ca:e3:a6:ee:5f:
92:9e:94:0d:f3:d2:d3:4a:db:b6:6b:d5:34:4b:43:
33:49:01:44:4a:60:50:eb:ab:d6:ed:dd:c9:b2:cb:
31:92:81:85:bd:97:66:68:27:8f:1e:c1:2b:4b:db:
40:43:b2:00:da:80:9a:70:f7:71:34:3d:1d:81:8e:
85:64:e2:b1:48:59:6f:68:51:a2:18:fc:0e:7c:04:
03:ea:7c:08:a4:27:67:04:45:7b:cc:d3:b8:70:f8:
af:33:ef:fc:73:2a:dc:5f:c9:80:75:76:31:90:a6:
91:5e:09:1b:0b:66:c8:63:d4:9d:2d:84:2e:ca:3e:
ef:29:60:67:d6:65:d8:b2:fa:e7:48:51:39:d6:48:
4b:78:83:68:25:99:40:94:a4:5a:40:95:dc:ff:dc:
e9:ef:d7:0a:51:78:af:21:ce:11:95:6d:4a:84:64:
b6:47:13:97:ef:3b:ff:43:c5:1c:a3:5d:6b:4e:60:
58:d9:28:6c:cc:9d:03:4c:07:1d:50:ad:1d:d3:d1:
b4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:79:8C:24:C2:23:AF:2B:BC:45:77:0D:EF:85:7A:9A:49:CB:DB:2F
X509v3 Authority Key Identifier:
keyid:17:1F:14:D5:AE:EC:89:F4:AE:41:04:C0:F6:09:DE:27:7D:1D:3C:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/3230302e3132332e3132382e302f31382d3234203d3e203136383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.123.128.0/18
Signature Algorithm: sha256WithRSAEncryption
21:db:b0:7c:f0:a1:a4:45:1a:e6:16:f9:cc:98:4c:b6:3f:75:
80:e3:82:62:d9:10:7a:67:92:9a:65:10:18:91:2f:57:2d:1e:
71:e0:36:f3:dc:b0:25:87:33:ae:5f:50:f1:21:c4:1d:b4:12:
fc:12:35:4d:c2:54:49:09:61:ec:bf:24:f5:b7:3b:de:c4:27:
d3:7c:ac:9c:d2:6e:5e:ba:ed:cb:39:93:5e:13:44:bc:50:7f:
15:b0:02:e3:47:1b:bc:bf:6b:b6:63:0e:be:66:0b:a2:e0:6e:
4d:e4:c8:2c:c7:9e:f1:7e:3b:23:96:e5:88:14:82:b4:6c:88:
cb:fa:f7:f9:5a:ba:4c:46:d2:44:e1:a6:32:fe:73:40:08:87:
e8:5d:74:ae:4c:07:0b:c4:08:00:cc:7c:d2:9e:65:3e:ff:be:
83:b7:44:37:bc:9f:be:e7:0d:5a:97:9a:62:37:48:2f:f9:7f:
3b:02:3e:c1:ea:40:ae:66:1c:32:11:32:c9:de:fe:e6:29:ed:
2f:9f:ab:c1:59:78:b0:2d:cc:ec:d2:d7:23:c8:50:a7:da:49:
d4:7c:99:72:4b:0f:90:8f:39:60:13:09:91:99:99:9e:01:96:
e5:97:25:ce:85:2d:3a:88:c1:5d:d1:ec:5b:cf:44:93:3f:6d:
69:f5:51:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:38:34 2025 by rpki-client