Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3230302e37312e3134342e302f32302d3232203d3e2036333036.roa
File: 3230302e37312e3134342e302f32302d3232203d3e2036333036.roa (raw, json)
Hash identifier: L3kFnV53JF0wQi0XV8uSmZegfKPdO7FE7cIzcREe1EE=
Subject key identifier: 9F:8E:48:14:BB:AE:CE:C4:9E:F3:FC:28:D1:E8:64:E5:EE:3A:93:15
Certificate issuer: /CN=35705A9ED706FD45725A72D9D83EF1D9B9A12E9C
Certificate serial: 7894B7F500E98EE8FAE752D65B11569396E3105C
Authority key identifier: 35:70:5A:9E:D7:06:FD:45:72:5A:72:D9:D8:3E:F1:D9:B9:A1:2E:9C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3230302e37312e3134342e302f32302d3232203d3e2036333036.roa
Signing time: Tue 04 Feb 2025 18:33:01 +0000
ROA not before: Tue 04 Feb 2025 18:28:01 +0000
ROA not after: Tue 03 Feb 2026 18:33:01 +0000
asID: 6306
IP address blocks: 200.71.144.0/20 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:94:b7:f5:00:e9:8e:e8:fa:e7:52:d6:5b:11:56:93:96:e3:10:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35705A9ED706FD45725A72D9D83EF1D9B9A12E9C
Validity
Not Before: Feb 4 18:28:01 2025 GMT
Not After : Feb 3 18:33:01 2026 GMT
Subject: CN=9F8E4814BBAECEC49EF3FC28D1E864E5EE3A9315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:39:cf:c4:0a:5b:6a:1b:d5:5d:d1:88:6e:74:
64:aa:8b:d9:5a:35:e1:1b:2d:ee:c1:2b:f9:03:ae:
17:ec:0d:82:6a:ce:4f:c1:2e:4b:86:48:96:0c:a1:
1d:bf:f2:3f:a9:30:ac:c6:5d:7d:e8:4f:6c:f2:72:
ea:fc:75:e6:a9:04:7a:e2:70:1a:52:b1:7b:d0:6b:
5e:2b:56:50:18:30:cd:2b:82:f8:08:84:6a:77:07:
c4:f0:97:c1:1f:a1:0a:9b:0d:48:78:a0:b0:6f:dc:
0c:bc:e3:75:ed:05:c1:1c:ab:68:1a:9c:21:e8:39:
47:3b:07:e1:2d:9d:48:98:65:f0:8b:c8:3e:04:b2:
77:1f:f3:d6:37:ae:d4:60:56:14:58:00:8d:b9:17:
d4:8e:74:aa:85:81:b1:bd:88:4e:df:36:73:bb:b5:
88:f6:6f:38:58:34:65:86:18:3e:ab:dd:c2:5d:ad:
06:17:e7:52:a4:75:d0:7e:e4:8a:30:a2:ae:78:61:
05:c0:e2:7e:ad:b0:1a:c5:01:97:d1:8c:02:c7:a8:
ca:23:80:25:62:b9:27:3a:84:fc:af:c8:0e:d8:84:
c6:4a:5b:92:c6:75:be:65:b9:79:52:84:26:2a:3f:
81:d4:af:b5:b6:a0:5b:f1:4a:61:0b:58:fb:25:5c:
23:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8E:48:14:BB:AE:CE:C4:9E:F3:FC:28:D1:E8:64:E5:EE:3A:93:15
X509v3 Authority Key Identifier:
keyid:35:70:5A:9E:D7:06:FD:45:72:5A:72:D9:D8:3E:F1:D9:B9:A1:2E:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3230302e37312e3134342e302f32302d3232203d3e2036333036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.71.144.0/20
Signature Algorithm: sha256WithRSAEncryption
63:98:66:70:55:b3:6d:ac:d3:d0:07:56:96:11:0c:f4:6f:72:
c9:dc:b8:a8:3a:54:0b:76:37:f2:6e:ec:15:74:60:80:81:fe:
a8:93:80:9c:a1:8e:8c:2e:46:d5:f8:3c:75:13:73:f9:25:3b:
c2:3e:bf:f7:81:3d:55:6b:98:75:73:dd:84:68:3a:5c:fb:4c:
02:ae:ff:61:e5:63:32:f5:f3:e0:5d:e0:f4:be:b3:74:de:be:
75:18:d9:3b:46:1b:43:67:4d:4e:f3:90:3f:e2:63:4a:d1:ea:
48:46:76:29:62:e7:85:9a:a7:71:04:54:b3:0f:93:7f:8d:ea:
6a:93:62:5b:75:d1:6e:f9:0d:34:c3:15:f0:e4:38:86:c8:c2:
5e:9a:ee:ff:3c:6f:62:e4:57:4b:bb:70:48:05:b8:07:c1:f7:
c1:e2:35:9c:06:b7:9b:89:c8:61:e8:73:a7:ed:34:36:71:57:
4e:8c:1f:d1:06:bc:53:92:df:09:45:61:7b:57:ef:70:d6:45:
a3:46:1e:0a:29:25:e2:19:63:f7:6c:4d:2b:7c:5a:e9:a5:74:
44:97:89:c3:9e:40:47:9e:75:d5:5f:ea:26:25:bd:66:32:bf:
d3:34:e8:9d:08:0b:d3:62:6c:a7:b9:1c:22:1c:0c:ae:a1:18:
92:11:c9:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:10:05 2025 by rpki-client