Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e31302e3232352e302f32342d3234203d3e203136363239.roa
File: 3230302e31302e3232352e302f32342d3234203d3e203136363239.roa (raw, json)
Hash identifier: B+btCuE/joVtbTNNMB83J5KUoSmHzZuvRtfo0DB53v4=
Subject key identifier: 80:82:9B:C6:5E:B3:79:1C:46:49:0D:DC:E2:CE:AF:19:6C:8A:25:2C
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: AC5D026E81F2E9E9245BB0FF775D7F4A586BEF
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e31302e3232352e302f32342d3234203d3e203136363239.roa
Signing time: Tue 04 Feb 2025 18:29:52 +0000
ROA not before: Tue 04 Feb 2025 18:24:52 +0000
ROA not after: Tue 03 Feb 2026 18:29:52 +0000
asID: 16629
IP address blocks: 200.10.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
ac:5d:02:6e:81:f2:e9:e9:24:5b:b0:ff:77:5d:7f:4a:58:6b:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:52 2025 GMT
Not After : Feb 3 18:29:52 2026 GMT
Subject: CN=80829BC65EB3791C46490DDCE2CEAF196C8A252C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b1:87:44:5e:41:f0:88:a2:59:96:df:48:08:
e7:bf:2e:7e:22:82:86:a6:ed:d3:45:a4:50:5e:b6:
c9:13:e2:b1:1a:df:8f:38:33:dd:49:92:ea:cb:ce:
c8:4f:cb:25:eb:10:4d:91:3f:7c:55:d5:fb:44:2d:
99:2b:3a:a2:5f:7d:24:46:81:f0:3c:d5:67:4f:21:
f6:e7:7d:71:b5:d7:aa:12:a8:00:09:32:62:d5:8a:
25:94:db:84:ae:79:09:05:4d:23:09:85:ac:e3:eb:
2b:d7:f6:dd:82:6a:71:f1:b4:c0:ad:63:82:c8:4b:
19:d9:6f:f0:9e:2d:79:8f:07:f5:f6:29:fa:e2:c2:
55:9b:0d:83:12:f4:ce:e7:d2:6b:54:a6:5a:00:dc:
d4:02:da:a5:ce:d3:28:ae:4e:8c:b3:65:1b:fc:5f:
35:05:21:4e:75:a1:de:97:85:26:ee:8d:e5:8e:8e:
fb:7e:00:cf:7e:fb:f4:86:ae:4d:8e:5b:ee:8f:b9:
b5:9e:95:e9:95:75:c6:34:34:a6:7c:83:5e:3a:c4:
b0:dd:55:80:04:53:09:68:5d:66:54:80:63:e1:65:
f1:27:c1:7a:f7:c1:61:32:d1:f8:23:47:78:c1:ba:
77:70:6d:d1:0b:3b:60:c2:3f:6e:2d:ad:7e:54:cb:
59:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:82:9B:C6:5E:B3:79:1C:46:49:0D:DC:E2:CE:AF:19:6C:8A:25:2C
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e31302e3232352e302f32342d3234203d3e203136363239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.10.225.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ac:e8:7c:22:31:7a:0d:b0:4d:34:74:8a:06:12:55:99:c3:
7a:da:3f:fa:23:e8:27:76:b4:34:1c:c5:09:8c:b6:8e:69:47:
86:10:d8:fe:96:f2:88:8c:f5:7a:76:8b:fc:5e:2e:c2:ac:94:
9a:da:6f:22:07:6b:3f:9c:85:66:17:9a:23:7a:5b:0b:10:c5:
5e:b2:31:a7:73:07:4b:43:9a:c5:ac:e0:15:a7:72:5c:56:0f:
bd:19:d6:eb:31:e1:26:bc:c2:f5:07:20:79:ec:32:2f:bb:34:
f8:83:c9:d3:f2:af:d4:92:b3:9b:09:be:d3:98:8d:f0:f5:bb:
c4:e4:41:16:9a:98:0b:9b:b0:82:95:02:d7:98:4f:af:2d:f1:
32:2b:66:93:f2:d1:77:35:e3:be:6e:12:62:9c:53:58:be:3c:
be:01:24:b1:fe:8a:71:c4:ee:59:09:b1:c2:70:75:ba:21:20:
cd:cb:60:11:5a:79:07:42:8a:c0:02:f6:05:b7:54:f4:e6:08:
48:c1:bd:78:eb:a6:ae:16:9d:09:53:0b:0c:eb:77:6e:da:44:
45:e6:e2:fe:0c:54:57:7e:9c:9d:22:28:ed:b0:ad:6a:36:75:
cb:87:7a:16:92:7c:57:31:41:e8:2b:4d:97:6f:f4:3b:4d:83:
dc:56:a4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:32 2025 by rpki-client