Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C71E9B6EEE78F12B15E3BEBF954942DBC0CDCA94DA317B83F0CD62B2FDB26ECE/0/3230302e35382e36342e302f31392d3234203d3e203237383339.roa
File: 3230302e35382e36342e302f31392d3234203d3e203237383339.roa (raw, json)
Hash identifier: /azlzrfLwX7iYF9S/2/9bgQOjnUMSDw5X7xHaYvXE08=
Subject key identifier: A8:F0:CA:74:C4:3F:02:2E:3B:A7:85:DD:43:78:2C:A8:F8:D7:CD:9C
Certificate issuer: /CN=21B4A6594D293307A54FC67EA972CF9E807930DF
Certificate serial: 623306258762B4E05CDEAF907D265928E0E5E8E6
Authority key identifier: 21:B4:A6:59:4D:29:33:07:A5:4F:C6:7E:A9:72:CF:9E:80:79:30:DF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/21B4A6594D293307A54FC67EA972CF9E807930DF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C71E9B6EEE78F12B15E3BEBF954942DBC0CDCA94DA317B83F0CD62B2FDB26ECE/0/3230302e35382e36342e302f31392d3234203d3e203237383339.roa
Signing time: Tue 04 Feb 2025 18:16:41 +0000
ROA not before: Tue 04 Feb 2025 18:11:41 +0000
ROA not after: Tue 03 Feb 2026 18:16:41 +0000
asID: 27839
IP address blocks: 200.58.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:33:06:25:87:62:b4:e0:5c:de:af:90:7d:26:59:28:e0:e5:e8:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21B4A6594D293307A54FC67EA972CF9E807930DF
Validity
Not Before: Feb 4 18:11:41 2025 GMT
Not After : Feb 3 18:16:41 2026 GMT
Subject: CN=A8F0CA74C43F022E3BA785DD43782CA8F8D7CD9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5a:90:0a:cb:c0:76:88:ae:6a:33:5a:8a:19:
b4:34:75:d3:c2:64:bc:55:91:bd:63:54:4e:d2:3e:
50:1c:9c:46:30:c9:75:25:62:f8:89:79:8c:4b:58:
61:1e:35:73:78:d8:32:86:99:c7:3b:9b:32:b8:03:
ac:a6:fe:21:f6:6d:af:af:72:e3:bc:dc:74:51:30:
e6:3a:5b:4c:05:3b:88:bb:ad:f0:56:c6:20:fb:8f:
31:f7:45:d1:f6:df:d4:d9:04:81:e2:ab:02:0a:c7:
17:04:16:5f:56:d2:70:d8:05:aa:9f:d5:77:0a:71:
f4:6b:bc:78:29:f9:51:bf:24:25:b5:e0:1e:a1:be:
b9:3f:a8:63:01:f7:f6:db:7f:63:d9:15:7e:82:e3:
94:35:54:dc:4a:c7:35:d8:0a:a4:e2:15:0d:01:66:
3c:b2:ab:47:2b:44:c3:b5:68:ba:9d:d0:e5:0d:e2:
56:2d:45:1c:75:72:39:a5:02:91:08:af:d4:3c:b9:
7e:9c:76:e3:50:16:3b:df:35:8b:fe:fc:01:9a:34:
d8:af:dd:3e:99:74:c7:c7:d0:49:7e:bd:d2:06:3d:
49:a4:19:b4:33:a8:b6:f2:95:8b:91:d3:4e:2c:fa:
79:16:f6:6d:1a:0d:b8:90:35:79:d6:b3:0d:6e:e3:
79:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:F0:CA:74:C4:3F:02:2E:3B:A7:85:DD:43:78:2C:A8:F8:D7:CD:9C
X509v3 Authority Key Identifier:
keyid:21:B4:A6:59:4D:29:33:07:A5:4F:C6:7E:A9:72:CF:9E:80:79:30:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C71E9B6EEE78F12B15E3BEBF954942DBC0CDCA94DA317B83F0CD62B2FDB26ECE/0/21B4A6594D293307A54FC67EA972CF9E807930DF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/21B4A6594D293307A54FC67EA972CF9E807930DF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C71E9B6EEE78F12B15E3BEBF954942DBC0CDCA94DA317B83F0CD62B2FDB26ECE/0/3230302e35382e36342e302f31392d3234203d3e203237383339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.58.64.0/19
Signature Algorithm: sha256WithRSAEncryption
b8:d6:7d:14:72:33:bc:75:24:1c:cf:e1:a1:46:33:ec:d9:88:
2e:8f:b9:73:f8:ac:b3:18:9f:05:53:c0:bd:e2:e5:8d:2f:6a:
fe:98:3f:c6:d8:19:52:44:ef:71:f4:2c:69:4a:bd:90:8b:69:
40:f9:a9:ee:0a:68:ca:9a:d4:14:5a:6a:4e:fe:4d:6a:44:b9:
9e:4a:5d:4c:44:41:17:01:91:15:d1:e7:16:54:2a:b3:8d:cd:
3e:67:50:c8:7f:4d:a7:2f:62:da:3e:46:91:50:ba:66:b3:0b:
0d:70:14:ae:b8:b3:8e:31:33:7e:95:ef:ed:4d:2f:e0:57:b2:
73:73:6d:4a:16:c9:2c:47:8b:e8:bd:84:60:72:c4:41:39:d9:
32:7d:3a:6e:52:4a:f6:d6:0d:74:4a:2f:11:ec:ff:b3:b7:f2:
13:05:87:d9:70:f5:eb:53:89:09:f0:a7:25:f3:6a:81:ee:04:
b1:b9:4f:20:62:c2:06:69:93:a1:66:64:24:ef:70:01:c6:8c:
ca:29:93:10:2a:cd:15:e3:ec:e7:fd:32:f8:08:32:a6:a7:bf:
88:fb:d6:bf:ad:2e:f9:1b:b5:0a:5e:e6:db:5d:55:ca:15:dc:
a6:8c:6b:04:87:52:ee:9b:94:d7:f9:36:96:e7:cf:4a:66:3f:
74:f0:71:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:35:41 2025 by rpki-client