Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e31302e3232352e302f32342d3234203d3e2037343138.roa
File: 3230302e31302e3232352e302f32342d3234203d3e2037343138.roa (raw, json)
Hash identifier: 3RgzVwZabWl6j2c63WuA15eNdKHSCaxiXPFL+1eNUVg=
Subject key identifier: D5:48:E6:FD:60:89:B4:D9:02:21:9D:31:79:E7:EA:3D:78:A9:E9:52
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 666A664805C44ABD83B51214915E0B6A088E31FE
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e31302e3232352e302f32342d3234203d3e2037343138.roa
Signing time: Tue 04 Feb 2025 18:29:45 +0000
ROA not before: Tue 04 Feb 2025 18:24:45 +0000
ROA not after: Tue 03 Feb 2026 18:29:45 +0000
asID: 7418
IP address blocks: 200.10.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:6a:66:48:05:c4:4a:bd:83:b5:12:14:91:5e:0b:6a:08:8e:31:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:45 2025 GMT
Not After : Feb 3 18:29:45 2026 GMT
Subject: CN=D548E6FD6089B4D902219D3179E7EA3D78A9E952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:18:89:ba:4a:6f:99:0f:36:92:c7:d6:db:32:
90:7e:9a:22:d6:65:8b:d0:cd:66:c7:78:c7:13:0a:
b0:e4:b0:01:97:5d:64:85:10:76:dc:ce:20:a3:6e:
1c:6b:a8:ae:eb:98:73:3f:c6:38:05:7a:45:53:12:
6c:70:0b:46:46:64:be:a5:55:22:db:c4:70:e6:f4:
3a:21:95:a0:29:e5:3f:3e:2d:2e:8d:84:e3:c0:0d:
64:0b:2d:7d:17:3c:58:71:02:22:40:13:5a:c1:75:
df:d4:23:d5:1a:8b:25:38:e8:58:5a:eb:48:48:fd:
c0:f1:ea:cb:99:60:9b:9d:1a:36:e5:ea:7c:53:a3:
84:a7:06:b6:fa:66:77:cf:56:38:f5:e0:9e:96:e9:
32:8a:06:f1:d7:7b:72:b1:b8:7d:84:9a:c2:34:8c:
65:ac:7c:9d:ec:fc:d0:08:8d:87:f2:58:d2:37:c3:
fa:77:d4:bc:63:00:c6:14:a1:aa:ba:0d:1b:38:23:
c1:58:c9:98:cc:29:6a:9f:6a:d1:fa:5e:c5:66:ad:
1b:41:64:ac:90:eb:36:46:6b:f6:41:01:58:28:b1:
47:6f:25:b0:bc:fb:46:a1:3f:9b:f1:e5:14:37:90:
07:28:40:fc:ac:b3:36:8f:6e:81:36:8d:2f:2c:71:
7c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:48:E6:FD:60:89:B4:D9:02:21:9D:31:79:E7:EA:3D:78:A9:E9:52
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e31302e3232352e302f32342d3234203d3e2037343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.10.225.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:bc:a6:b5:95:59:5e:28:b3:ce:3b:75:37:ae:03:73:f4:af:
f1:41:bb:af:83:39:85:5b:2f:9d:22:ef:96:e1:33:4e:3c:1d:
31:e0:34:76:6a:9a:c4:e9:24:c6:ad:72:fa:57:77:7b:58:3d:
e0:2b:39:13:b7:e9:76:ff:5a:f6:75:4a:98:22:d3:dd:14:d9:
15:55:8b:c3:56:58:d4:6f:2d:22:68:6f:5a:2b:e6:49:a8:d3:
d3:96:7c:d0:23:43:08:d0:57:d9:d5:7d:96:36:87:06:4f:ec:
9e:04:2e:00:13:f0:9b:99:db:c2:3a:14:e4:dc:79:9c:6f:a2:
81:83:a0:17:a6:bd:2d:b4:c8:c6:c3:88:b8:a4:18:82:51:09:
75:44:7f:f7:42:53:d2:c2:81:ec:8a:55:9a:78:cb:27:87:a2:
54:c4:ab:ce:dc:7b:38:3c:34:c1:71:4d:79:11:be:5f:96:69:
23:32:00:89:55:09:90:27:fc:eb:04:0c:6a:a4:38:d4:6f:67:
86:53:fb:84:64:27:e2:bc:22:58:3c:08:4a:1f:e9:59:ca:6e:
b0:f1:e6:19:ff:5f:84:5a:42:d4:fc:6d:f8:55:9e:b8:93:06:
2d:43:ff:ce:b4:bd:66:01:02:52:93:48:e6:1f:23:01:6b:56:
a1:42:72:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:38 2025 by rpki-client