Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e3131322e302e302f31392d3234203d3e203136363239.roa
File: 3230302e3131322e302e302f31392d3234203d3e203136363239.roa (raw, json)
Hash identifier: J7j1UfoTKQVC3oSa8bm/k9JQzpVVmNllzqvu2mZy4FU=
Subject key identifier: 15:13:15:BA:B1:6E:DA:BE:0A:18:E7:33:69:D2:EB:E4:CE:88:FD:81
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 7E037C209D99F59143D6034334E7334480823B8A
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e3131322e302e302f31392d3234203d3e203136363239.roa
Signing time: Tue 04 Feb 2025 18:29:44 +0000
ROA not before: Tue 04 Feb 2025 18:24:44 +0000
ROA not after: Tue 03 Feb 2026 18:29:44 +0000
asID: 16629
IP address blocks: 200.112.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:03:7c:20:9d:99:f5:91:43:d6:03:43:34:e7:33:44:80:82:3b:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:44 2025 GMT
Not After : Feb 3 18:29:44 2026 GMT
Subject: CN=151315BAB16EDABE0A18E73369D2EBE4CE88FD81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:62:ac:8f:9f:87:7c:c9:a6:e6:fe:c4:0e:92:
cf:88:33:1b:52:b7:a5:f5:b4:1b:c5:97:7b:20:28:
a3:57:54:2c:ad:89:c7:a8:bc:20:01:f3:ca:ea:79:
07:47:2b:1a:72:b8:3f:63:14:ad:07:fb:c4:2c:35:
b2:56:15:6c:26:d7:11:c3:c3:88:3c:e3:1c:dc:3e:
55:b5:4f:12:e1:bd:21:88:63:aa:8b:7c:3f:13:8c:
1f:bc:b1:b6:77:3a:06:d5:4c:87:cd:41:5b:f4:65:
3e:f4:7b:0a:b5:f6:ba:44:f8:15:66:c2:3b:1e:05:
7a:19:7a:b1:0c:7a:b0:43:1a:b2:7b:36:de:fb:75:
1a:50:33:42:6a:bb:08:f1:8b:51:ea:c2:ec:d4:d9:
97:e1:e6:c7:4a:b0:50:48:07:71:82:2c:98:62:c8:
60:a8:e2:97:b1:c2:77:06:e2:5a:4f:7c:28:df:c6:
12:35:33:30:2e:fa:a0:ee:7a:86:5d:5b:a4:4d:9a:
de:28:fc:6a:59:59:20:30:c7:94:6d:89:fe:42:00:
8e:1b:ba:7a:cb:d5:68:22:9c:39:07:26:cd:58:d6:
f0:5a:28:8e:8e:e0:a6:d2:79:70:03:a8:e7:c9:5c:
c0:2b:bf:5a:40:31:16:70:86:e0:d5:8e:a5:ff:12:
c9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:13:15:BA:B1:6E:DA:BE:0A:18:E7:33:69:D2:EB:E4:CE:88:FD:81
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e3131322e302e302f31392d3234203d3e203136363239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.112.0.0/19
Signature Algorithm: sha256WithRSAEncryption
81:78:fd:b0:75:d8:7a:ea:d3:71:55:63:19:38:d4:5e:0d:20:
c7:9c:b1:02:da:10:fa:f5:f5:6e:81:e0:8d:39:6c:b6:5c:e5:
29:f1:3e:4b:32:93:6f:05:3d:d5:ff:a4:34:81:df:4d:ff:5f:
4f:aa:49:45:02:d9:4b:a6:0a:0d:c5:d8:41:ce:18:1e:21:c4:
be:0e:48:77:62:f3:cf:ed:25:32:31:68:8d:dc:e3:bd:bb:b1:
50:e5:b7:4b:ca:6d:cb:e2:a3:e9:41:8c:0c:42:a0:48:e8:e9:
e2:9e:40:5d:00:1c:94:fe:57:68:1c:e5:f3:a1:22:74:79:61:
a8:ff:79:50:32:2f:23:43:13:04:ed:49:b2:18:84:e6:ed:6c:
0f:84:02:b1:5b:67:52:65:9a:dd:97:fb:d1:be:0d:05:a7:52:
cd:45:76:78:68:91:87:e0:68:f8:e5:80:ed:f7:0d:55:ca:f3:
eb:04:25:62:df:2b:cd:6c:86:46:2a:aa:68:f4:b4:19:6d:25:
a4:e0:81:1a:5c:aa:b8:6e:4b:58:86:fa:4a:e6:24:72:ef:82:
0a:c9:08:3d:1b:b8:d3:5c:23:c2:be:d1:fa:c0:5b:55:8f:6e:
ec:86:6f:48:a5:d7:ba:52:45:26:b2:0b:6e:cb:e1:39:3f:e1:
7e:d7:28:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:18 2025 by rpki-client