Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e3131322e33322e302f31392d3234203d3e2037343138.roa
File: 3230302e3131322e33322e302f31392d3234203d3e2037343138.roa (raw, json)
Hash identifier: tfZZSVFfsb4ohDNQePgVgZqstks1a7Ol0/Y7lIVr6tw=
Subject key identifier: 72:CA:5B:B5:AF:1D:42:29:71:81:8D:0A:D9:88:F1:27:B5:D3:BC:D5
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 66F27883742751FC03A75DCC8D9FFE1F80BB9485
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e3131322e33322e302f31392d3234203d3e2037343138.roa
Signing time: Tue 04 Feb 2025 18:29:54 +0000
ROA not before: Tue 04 Feb 2025 18:24:54 +0000
ROA not after: Tue 03 Feb 2026 18:29:54 +0000
asID: 7418
IP address blocks: 200.112.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:f2:78:83:74:27:51:fc:03:a7:5d:cc:8d:9f:fe:1f:80:bb:94:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:54 2025 GMT
Not After : Feb 3 18:29:54 2026 GMT
Subject: CN=72CA5BB5AF1D422971818D0AD988F127B5D3BCD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d0:f1:e2:fc:87:e7:c8:89:aa:d6:82:2a:ed:
55:80:25:48:38:b9:e3:07:16:3b:2a:90:e7:cd:08:
a9:58:52:38:12:1b:b9:47:19:47:4d:3e:03:9b:94:
30:ad:1c:e6:e5:c7:49:f8:f5:c5:61:4c:5e:c2:5c:
8f:06:83:57:78:f3:bd:df:43:13:64:a4:98:7d:b1:
67:2f:3d:90:1a:c8:36:fd:fa:69:23:11:74:c1:4f:
64:26:de:6f:ca:f2:e8:01:d8:d3:a6:25:73:a0:89:
fd:a9:df:cb:50:ff:5b:b0:a9:96:0a:e1:bb:46:63:
62:dd:3a:f5:4e:c7:fe:bf:a5:dd:eb:c3:1d:0e:4f:
ce:22:79:89:2a:17:a4:a6:41:07:46:42:cf:27:cf:
21:8e:ca:44:3e:b7:5e:cf:36:1a:43:05:86:1e:eb:
78:69:a8:30:16:44:bd:ef:88:15:94:0e:07:73:b8:
b5:8b:7f:34:b4:ce:f9:69:77:37:f2:96:d3:00:4e:
ea:a2:47:72:5a:03:3b:be:c6:f6:eb:54:45:5d:c9:
3a:4a:fb:eb:9e:0e:a1:6f:73:42:4f:22:c0:db:ff:
42:04:12:f1:25:41:4a:f8:2e:07:0b:af:3d:ff:1d:
a1:f0:78:02:11:3e:83:b7:1a:da:05:27:c7:ca:3e:
6d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:CA:5B:B5:AF:1D:42:29:71:81:8D:0A:D9:88:F1:27:B5:D3:BC:D5
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e3131322e33322e302f31392d3234203d3e2037343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.112.32.0/19
Signature Algorithm: sha256WithRSAEncryption
6f:85:f9:36:3e:98:f8:65:2c:47:7c:88:2e:e1:8e:5e:88:1b:
8c:2a:38:8b:6f:da:57:e1:7d:ba:4c:9f:17:3d:86:53:6e:3f:
7c:0c:eb:97:e2:7f:20:e3:e0:89:22:d7:4e:a9:c9:80:e2:21:
57:9b:62:47:a1:45:25:27:b1:ec:fc:79:35:a6:4c:08:a5:98:
91:0b:6d:ae:99:44:e3:14:32:95:48:12:32:57:72:5b:1b:22:
6c:1e:e8:84:61:54:63:08:b8:4b:35:5e:74:81:9f:cd:26:55:
c6:06:c2:55:a1:e3:0b:86:26:15:fb:b6:1f:cf:7d:55:5a:f4:
0b:f0:98:08:b2:7f:8b:7b:a3:a2:07:92:3f:4d:12:74:3d:bb:
9f:52:98:1c:98:a1:9b:58:f5:65:ca:f3:b3:09:d0:dc:11:5a:
6a:8d:bf:23:60:2e:e4:6a:e4:74:68:4e:36:97:c9:8a:77:09:
f4:ff:dc:24:48:3f:2e:81:30:03:29:b1:23:3c:4a:5d:82:e6:
ac:83:c4:f7:57:04:93:67:95:e5:1a:61:47:0f:07:35:e7:90:
a1:f3:06:a0:bc:15:39:dd:c7:ea:ef:c1:c4:17:c0:9b:c0:42:
5f:34:e8:18:b4:e0:28:54:8c:a9:d0:24:ec:20:67:9e:d3:f8:
10:f7:72:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:49:30 2025 by rpki-client