Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C32A8D50921BD87E43FA761FF973EE18169DD40683D0E47F21FE7576E4C359E0/0/3230302e32332e37352e302f32342d3234203d3e203134303830.roa
File: 3230302e32332e37352e302f32342d3234203d3e203134303830.roa (raw, json)
Hash identifier: KnfwwIYtHcF05AtqEtmr1AHp+x2BiOl5tGw8DeE/FHg=
Subject key identifier: C3:65:0A:EE:0C:09:83:2E:4F:DE:A3:3F:AF:1A:54:10:71:23:02:60
Certificate issuer: /CN=72B67FDA04246C53AE1C1A7EBE6EF57B4E9C842C
Certificate serial: 392F84557C772C1518D01C835F142ED60A6EE1D2
Authority key identifier: 72:B6:7F:DA:04:24:6C:53:AE:1C:1A:7E:BE:6E:F5:7B:4E:9C:84:2C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/72B67FDA04246C53AE1C1A7EBE6EF57B4E9C842C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C32A8D50921BD87E43FA761FF973EE18169DD40683D0E47F21FE7576E4C359E0/0/3230302e32332e37352e302f32342d3234203d3e203134303830.roa
Signing time: Tue 04 Feb 2025 18:09:00 +0000
ROA not before: Tue 04 Feb 2025 18:04:00 +0000
ROA not after: Tue 03 Feb 2026 18:09:00 +0000
asID: 14080
IP address blocks: 200.23.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:2f:84:55:7c:77:2c:15:18:d0:1c:83:5f:14:2e:d6:0a:6e:e1:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72B67FDA04246C53AE1C1A7EBE6EF57B4E9C842C
Validity
Not Before: Feb 4 18:04:00 2025 GMT
Not After : Feb 3 18:09:00 2026 GMT
Subject: CN=C3650AEE0C09832E4FDEA33FAF1A541071230260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:10:a0:18:16:00:37:20:c0:e7:61:ac:ea:00:
81:31:81:4a:8e:8a:58:21:c6:d2:da:b9:6a:a1:88:
4d:4c:53:e4:b9:bb:a1:7d:16:dd:12:89:b6:2b:64:
95:4d:54:fe:6e:79:13:00:cb:24:e7:d6:64:4e:7c:
ed:e9:3a:c5:e3:d4:ca:8c:6b:22:d3:ca:ec:96:93:
3a:71:88:48:fd:c2:92:38:75:66:22:28:02:66:22:
d1:e0:f5:ce:52:32:ad:04:34:74:06:7f:00:4b:2f:
0b:34:ea:65:24:d6:1c:1e:fa:e1:e0:b2:f8:79:a1:
7c:82:b2:17:09:10:0a:06:23:d7:12:ad:ef:38:82:
12:e2:d4:00:ff:9c:40:38:85:e7:57:a7:21:18:0b:
46:16:d5:aa:24:ca:38:f9:2d:03:c5:4f:4d:31:13:
1f:02:91:6c:ae:c9:1f:17:7e:12:87:c2:c3:83:6c:
b4:e9:11:13:d0:f0:bd:ad:ee:ee:e4:28:e8:57:fb:
94:93:0c:47:4d:4a:1d:6e:bc:92:0e:ff:a6:99:e6:
81:80:14:26:e2:1f:56:1c:5b:5e:92:4c:da:9d:76:
ca:f5:d5:20:99:98:4f:50:b8:1f:c5:9a:54:5f:7f:
e3:40:c0:b1:ec:85:98:6a:4a:38:96:fb:54:ea:0c:
91:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:65:0A:EE:0C:09:83:2E:4F:DE:A3:3F:AF:1A:54:10:71:23:02:60
X509v3 Authority Key Identifier:
keyid:72:B6:7F:DA:04:24:6C:53:AE:1C:1A:7E:BE:6E:F5:7B:4E:9C:84:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C32A8D50921BD87E43FA761FF973EE18169DD40683D0E47F21FE7576E4C359E0/0/72B67FDA04246C53AE1C1A7EBE6EF57B4E9C842C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/72B67FDA04246C53AE1C1A7EBE6EF57B4E9C842C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C32A8D50921BD87E43FA761FF973EE18169DD40683D0E47F21FE7576E4C359E0/0/3230302e32332e37352e302f32342d3234203d3e203134303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.23.75.0/24
Signature Algorithm: sha256WithRSAEncryption
14:93:8d:df:2c:f9:75:d5:76:f1:7a:02:f9:5d:00:4c:22:e0:
43:13:c6:ac:49:a2:d7:e7:e2:63:cb:1a:73:82:25:90:11:05:
2b:ef:f3:77:ff:d7:1d:9f:1d:0d:46:95:1b:7e:75:f6:51:48:
0c:cb:07:71:f4:39:e6:7a:4b:75:c6:43:dd:cb:08:5b:96:57:
42:13:88:41:a3:d4:ac:53:ad:2d:64:c6:7e:4d:aa:77:31:f9:
75:54:72:7e:cc:aa:d8:88:03:23:a2:33:55:9a:97:60:75:36:
24:f2:5f:0a:fb:91:52:cb:96:3f:29:0c:0b:9d:d3:b9:32:dc:
10:38:d8:be:13:e7:2c:1b:5d:1d:7c:45:23:24:5e:88:59:e3:
dc:e7:56:48:a9:76:f0:32:52:b1:14:23:7b:4c:1a:b7:a5:2a:
9e:52:ca:fe:c3:d7:fd:56:71:a5:3f:5b:76:30:dc:86:1a:bb:
62:90:d4:27:60:7c:0d:35:37:ed:48:cc:a0:9e:50:d2:c4:10:
78:bf:cb:c3:91:9b:b1:7b:b8:da:79:d4:cd:3e:04:66:7f:d5:
a1:ee:a6:9c:9e:2d:30:4b:1e:ca:34:f6:ba:88:be:83:62:44:
e1:fd:50:7c:9c:0d:2b:3b:86:31:96:26:15:98:2f:f2:b9:47:
b0:32:cc:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:25 2025 by rpki-client