Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C862C92FE79571CDCE834A609053002A1212C9B70796AFAD01C6193D7F0DAAAB/0/3230302e31312e39362e302f32312d3234203d3e203237363531.roa
File: 3230302e31312e39362e302f32312d3234203d3e203237363531.roa (raw, json)
Hash identifier: r7o2ehGlmayIFlRJiCUEBvKC4aGPOMu7ucTl0iT2FoU=
Subject key identifier: 82:8E:04:51:41:7F:21:74:3E:EE:76:82:5F:5C:D1:8E:62:45:C7:CC
Certificate issuer: /CN=3FDB44D18BC16AB039C2B1B6BD3866AB29E122A7
Certificate serial: 507FBA28BC3605DB90AE21D9F06DA57ED4EC4565
Authority key identifier: 3F:DB:44:D1:8B:C1:6A:B0:39:C2:B1:B6:BD:38:66:AB:29:E1:22:A7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3FDB44D18BC16AB039C2B1B6BD3866AB29E122A7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C862C92FE79571CDCE834A609053002A1212C9B70796AFAD01C6193D7F0DAAAB/0/3230302e31312e39362e302f32312d3234203d3e203237363531.roa
Signing time: Tue 04 Feb 2025 19:56:29 +0000
ROA not before: Tue 04 Feb 2025 19:51:29 +0000
ROA not after: Tue 03 Feb 2026 19:56:29 +0000
asID: 27651
IP address blocks: 200.11.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:7f:ba:28:bc:36:05:db:90:ae:21:d9:f0:6d:a5:7e:d4:ec:45:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3FDB44D18BC16AB039C2B1B6BD3866AB29E122A7
Validity
Not Before: Feb 4 19:51:29 2025 GMT
Not After : Feb 3 19:56:29 2026 GMT
Subject: CN=828E0451417F21743EEE76825F5CD18E6245C7CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f1:3b:02:f3:7b:f1:e4:64:4a:8f:ac:bb:ee:
78:b3:46:c6:ac:c3:e2:dc:b0:96:37:b6:37:46:cd:
ec:97:f7:35:fc:f6:44:da:c6:51:52:a5:82:30:b2:
c7:5b:0e:6c:4d:7c:95:ff:68:b0:a2:3d:47:16:77:
87:fe:30:5c:e1:de:90:c9:38:0e:ba:e6:e7:95:55:
a6:92:73:b2:29:e6:5c:3b:63:67:44:3f:96:5f:66:
e9:0a:5e:e2:7b:6e:49:02:81:23:db:c9:ea:de:8c:
3e:84:c0:f3:28:a5:b6:2b:b2:fc:ea:1c:9e:a3:72:
ff:06:57:b3:ba:59:81:ce:8d:e0:a0:89:ec:5a:aa:
9e:ff:bb:d3:b3:2f:24:f2:4a:71:88:92:86:40:d9:
dd:26:58:9e:13:c5:9d:48:f2:41:e0:c5:5e:27:1c:
18:ac:e5:74:55:d3:3d:9a:50:ae:52:c8:16:94:5a:
da:36:90:0d:7e:59:96:88:18:3f:bb:77:d3:75:75:
e4:cd:da:9d:4f:43:32:fa:74:19:c7:10:67:41:a4:
df:ee:ae:f2:fa:69:07:ab:b8:80:49:b7:3b:c5:f0:
d6:af:07:e4:78:07:6b:ab:f5:f7:d9:89:35:03:45:
7c:5d:3f:32:ff:7d:cc:b5:a8:18:78:38:9d:4c:32:
06:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:8E:04:51:41:7F:21:74:3E:EE:76:82:5F:5C:D1:8E:62:45:C7:CC
X509v3 Authority Key Identifier:
keyid:3F:DB:44:D1:8B:C1:6A:B0:39:C2:B1:B6:BD:38:66:AB:29:E1:22:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C862C92FE79571CDCE834A609053002A1212C9B70796AFAD01C6193D7F0DAAAB/0/3FDB44D18BC16AB039C2B1B6BD3866AB29E122A7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3FDB44D18BC16AB039C2B1B6BD3866AB29E122A7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C862C92FE79571CDCE834A609053002A1212C9B70796AFAD01C6193D7F0DAAAB/0/3230302e31312e39362e302f32312d3234203d3e203237363531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.11.96.0/21
Signature Algorithm: sha256WithRSAEncryption
62:97:6b:70:4e:84:f1:11:bc:ed:07:03:36:33:54:b1:80:54:
a1:82:ef:ba:41:8e:c8:53:0f:30:7a:cb:09:5b:18:2b:ea:29:
a4:e1:f7:e5:eb:93:c4:df:c4:99:e4:fc:77:12:b0:50:10:59:
02:5b:16:a9:0d:f4:4c:21:d0:f3:90:60:42:3a:98:ab:0c:f5:
7b:e1:9e:20:4d:6b:b0:57:ce:1e:40:e0:5a:7d:0a:e1:5a:8c:
29:8e:4d:70:aa:55:7d:09:c2:ac:ef:23:16:9e:a5:1a:b2:9f:
cf:a6:44:94:36:76:be:cf:40:f8:9a:c8:d2:58:7f:6d:17:00:
9b:2f:14:3e:28:9f:3c:4f:c8:6a:c5:cf:29:56:d9:9c:ca:a7:
50:c2:6e:a2:6f:c1:3e:0d:54:6f:44:95:f8:94:53:35:17:c3:
11:fa:a0:79:a8:1e:3f:85:a5:46:1e:11:4b:64:06:ca:c9:1e:
b9:98:92:46:98:20:26:1e:e1:4c:bd:67:62:ce:1a:ef:3f:86:
b4:4b:da:90:5c:33:dd:6d:87:31:87:26:4e:3f:95:36:68:79:
ed:bc:ed:17:55:bf:f5:03:55:5d:01:90:01:11:9b:03:8a:52:
90:e5:cd:33:07:04:33:b3:44:e0:97:f3:d8:54:90:86:72:8d:
61:fc:15:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:55:36 2025 by rpki-client