Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/3230302e36382e3131342e302f32342d3234203d3e20323634363338.roa
File: 3230302e36382e3131342e302f32342d3234203d3e20323634363338.roa (raw, json)
Hash identifier: /gdPvNogM/vGumG0ZwabRvMiCl97hUAEEwfc8+f+a7M=
Subject key identifier: 4F:33:35:1F:AB:BA:B3:AF:08:1A:BC:A1:49:31:35:CD:BB:B7:FB:BA
Certificate issuer: /CN=171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7
Certificate serial: 657F05919CC2D03FF36B78DBB55B79F4460236DF
Authority key identifier: 17:1F:14:D5:AE:EC:89:F4:AE:41:04:C0:F6:09:DE:27:7D:1D:3C:D7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/3230302e36382e3131342e302f32342d3234203d3e20323634363338.roa
Signing time: Tue 04 Feb 2025 20:04:08 +0000
ROA not before: Tue 04 Feb 2025 19:59:08 +0000
ROA not after: Tue 03 Feb 2026 20:04:08 +0000
asID: 264638
IP address blocks: 200.68.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:7f:05:91:9c:c2:d0:3f:f3:6b:78:db:b5:5b:79:f4:46:02:36:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7
Validity
Not Before: Feb 4 19:59:08 2025 GMT
Not After : Feb 3 20:04:08 2026 GMT
Subject: CN=4F33351FABBAB3AF081ABCA1493135CDBBB7FBBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:55:05:84:2c:a3:ba:ba:08:18:13:98:ef:78:
8c:26:2b:9f:e1:80:c0:0a:3e:7c:95:e7:43:8b:28:
56:17:a1:19:ec:55:cd:30:4d:d3:01:d4:e0:2f:bf:
03:de:08:cb:c8:e6:b2:c4:ed:af:8c:5b:45:5f:4f:
f1:c4:0d:96:04:81:91:9a:49:db:9a:c9:f9:4b:5f:
a0:48:65:c0:25:37:04:b0:5a:ce:3c:0d:43:03:9a:
69:6f:1c:c1:06:c4:79:ff:95:1e:79:f7:41:ff:dc:
03:e5:93:7a:7b:eb:76:de:c2:4c:71:2e:54:ed:07:
f2:43:c6:f8:eb:34:25:55:7e:9a:7f:62:ed:ce:c3:
7e:d1:f8:53:4d:1b:ae:b3:f1:21:ae:55:af:60:27:
12:5b:38:4c:c8:dd:80:1d:a3:98:9e:31:8c:78:ac:
f7:28:9e:79:04:61:20:88:b0:c3:66:34:a0:28:54:
83:0b:9b:68:f7:33:c7:c4:ab:23:30:d2:dd:54:00:
02:03:0b:aa:79:d7:74:d9:d5:b8:44:81:99:5a:01:
01:b8:7d:aa:43:ea:5a:6f:d9:f5:5e:93:16:88:97:
8e:91:54:a9:c3:79:c4:dd:99:82:ee:f1:fa:a7:2b:
ad:a6:fc:fa:e9:30:cc:dc:cf:0a:02:2e:d6:67:49:
7a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:33:35:1F:AB:BA:B3:AF:08:1A:BC:A1:49:31:35:CD:BB:B7:FB:BA
X509v3 Authority Key Identifier:
keyid:17:1F:14:D5:AE:EC:89:F4:AE:41:04:C0:F6:09:DE:27:7D:1D:3C:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/171F14D5AEEC89F4AE4104C0F609DE277D1D3CD7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C1382B1A4CCAB66DA618B1EF9AB4C63086EAAA18E7F0C95BD941803C46F5D567/0/3230302e36382e3131342e302f32342d3234203d3e20323634363338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.68.114.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:68:4b:03:62:10:9c:06:a8:0e:9a:17:98:b4:f1:c2:ff:93:
e0:69:f3:50:6d:d0:6e:26:39:82:19:2c:89:8e:80:0b:c4:a1:
63:48:ba:0e:1f:c1:62:e0:15:b2:7b:7e:a4:39:cf:31:f4:0d:
18:31:7f:29:74:01:7f:e7:5c:d3:74:75:87:23:6d:a7:e2:b8:
bb:ef:fd:e5:86:23:e4:0e:0e:f3:14:75:f0:21:bc:74:89:cd:
84:08:2d:a1:c4:51:fd:1d:a4:9d:c7:cb:fe:30:67:17:ca:3a:
5d:47:6e:d5:11:de:ea:e1:27:0b:ed:65:f7:1d:2a:71:cc:d8:
a8:91:cb:19:32:1f:b1:8d:19:20:cc:e9:f6:fb:eb:dd:ff:13:
21:e3:3d:c3:47:de:1e:5d:26:a0:0a:4c:81:4b:9f:54:65:a7:
c2:09:49:a9:39:d7:71:c9:f6:c8:9f:17:13:6b:1e:f2:22:6c:
1f:fa:d6:39:71:e1:9f:c8:ac:f6:f1:76:04:ac:cb:be:a9:fd:
69:86:7c:e6:4e:5e:cc:14:7f:79:df:ca:6c:2d:cb:a5:55:c3:
67:ee:fa:e6:9c:71:b2:7f:9a:2a:c6:33:1d:33:13:a7:d9:00:
5b:44:ac:56:fe:1b:31:9b:d7:00:10:c3:d4:6d:a6:d6:3f:96:
ee:ba:82:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:40:22 2025 by rpki-client