Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CE44675593FCB5620100439CC864F19C4086343D21B20C9EF4279C8CB5059060/0/3230312e3232322e34332e302f32342d3234203d3e20323731393733.roa
File: 3230312e3232322e34332e302f32342d3234203d3e20323731393733.roa (raw, json)
Hash identifier: DyT0aqpWal/5bray9g3fUBFA56pcWn1mK9uVrLAhFVk=
Subject key identifier: DA:A5:31:CD:DE:0E:F0:1B:C8:13:D5:F5:60:20:C2:B2:80:8B:D8:3E
Certificate issuer: /CN=D64A11A9A77E5298D696728C6796EF7B7B2DE7D0
Certificate serial: 6DCC2C63F37B81D90F3D56E0791D4A0944DA0CD5
Authority key identifier: D6:4A:11:A9:A7:7E:52:98:D6:96:72:8C:67:96:EF:7B:7B:2D:E7:D0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D64A11A9A77E5298D696728C6796EF7B7B2DE7D0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CE44675593FCB5620100439CC864F19C4086343D21B20C9EF4279C8CB5059060/0/3230312e3232322e34332e302f32342d3234203d3e20323731393733.roa
Signing time: Tue 04 Feb 2025 19:59:45 +0000
ROA not before: Tue 04 Feb 2025 19:54:45 +0000
ROA not after: Tue 03 Feb 2026 19:59:45 +0000
asID: 271973
IP address blocks: 201.222.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:cc:2c:63:f3:7b:81:d9:0f:3d:56:e0:79:1d:4a:09:44:da:0c:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D64A11A9A77E5298D696728C6796EF7B7B2DE7D0
Validity
Not Before: Feb 4 19:54:45 2025 GMT
Not After : Feb 3 19:59:45 2026 GMT
Subject: CN=DAA531CDDE0EF01BC813D5F56020C2B2808BD83E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2f:88:74:43:c6:89:9a:31:66:09:e5:ed:e6:
ca:c4:9a:5c:86:24:b0:82:7e:fa:84:35:49:b7:7a:
68:24:b0:f5:1f:2b:0a:66:d1:50:58:e9:1d:4f:8d:
c9:2b:11:dc:97:85:72:5a:69:a2:10:77:75:0b:af:
c4:00:2f:6e:f1:5b:ef:16:28:3b:44:3e:97:86:3f:
cb:87:34:1c:a0:19:aa:bf:ff:3d:44:33:77:39:8f:
59:d1:e1:89:f5:40:1c:7f:e6:c1:e4:78:14:8e:0d:
b7:56:a7:b5:f5:4b:c0:ef:a9:80:d3:a0:fb:f1:99:
62:05:7a:a8:55:1a:4f:61:28:45:66:01:e8:43:0d:
ea:d7:6b:07:02:fe:8e:50:77:f4:8f:7d:36:2a:ad:
10:8b:b5:e8:e5:d2:15:04:74:42:96:fc:14:3a:0d:
55:ba:97:bd:22:f2:2c:fd:d0:16:ab:8d:fc:2b:72:
c6:ad:04:ae:b2:81:40:4d:69:16:3a:97:49:b1:cc:
f7:69:9b:0e:9d:0a:86:ab:a7:e4:ee:ee:0b:0a:08:
0c:7f:7e:ba:b5:00:1b:8a:ca:71:ae:03:a8:4f:0f:
4e:92:30:4f:06:c1:2e:ba:14:1d:32:3e:57:43:76:
90:70:96:cd:a9:e3:cb:ab:05:3e:74:d1:16:28:61:
05:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A5:31:CD:DE:0E:F0:1B:C8:13:D5:F5:60:20:C2:B2:80:8B:D8:3E
X509v3 Authority Key Identifier:
keyid:D6:4A:11:A9:A7:7E:52:98:D6:96:72:8C:67:96:EF:7B:7B:2D:E7:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CE44675593FCB5620100439CC864F19C4086343D21B20C9EF4279C8CB5059060/0/D64A11A9A77E5298D696728C6796EF7B7B2DE7D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D64A11A9A77E5298D696728C6796EF7B7B2DE7D0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CE44675593FCB5620100439CC864F19C4086343D21B20C9EF4279C8CB5059060/0/3230312e3232322e34332e302f32342d3234203d3e20323731393733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.222.43.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:f1:2d:73:11:1f:30:63:3f:ef:ff:d1:bc:ec:86:5a:5b:a2:
cc:04:2a:91:75:38:40:3a:ab:66:9e:6f:a5:fd:ea:2f:82:81:
9b:e6:f9:e7:c8:8a:29:22:65:66:15:72:a7:dc:c1:bd:a2:83:
96:d1:ba:ad:2b:85:83:8f:8a:d9:6e:aa:a7:ef:ac:f4:dc:10:
c8:99:db:2d:73:9c:be:a4:ba:cd:9b:db:1e:09:91:f6:fb:21:
08:24:a9:92:1b:ee:b9:26:33:b7:ad:93:37:80:52:19:1d:14:
57:d4:55:91:23:d5:a9:5b:14:76:21:50:17:52:dd:13:f5:f9:
10:4c:db:45:08:d0:f1:c0:91:ec:11:90:75:9d:df:66:b4:af:
c6:c3:37:81:a5:54:f2:49:44:ba:19:af:7f:b6:7c:50:b0:6d:
eb:17:d8:54:7a:50:ea:fb:2e:59:41:7b:a4:54:30:45:13:9b:
50:e3:fb:66:74:6b:0e:a4:4a:e2:56:b1:5c:0e:4f:32:d2:d3:
6e:18:72:ec:0c:15:a8:4e:3c:9e:ee:f4:93:36:ee:1e:b8:dc:
84:bc:75:11:ca:53:76:cb:07:25:84:61:c6:80:cf:57:7e:45:
c3:86:b7:1a:c0:22:82:07:15:5e:80:cc:b1:3c:c0:a8:2f:c2:
87:67:21:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:55 2025 by rpki-client