Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e31342e302f32342d3234203d3e2037303034.roa
File: 3230302e32382e31342e302f32342d3234203d3e2037303034.roa (raw, json)
Hash identifier: I4aAtMKZiZKtZC9KN6d3F6OKTyt4EhccA48zY2H1VLA=
Subject key identifier: 4B:73:14:68:D8:54:E7:44:4E:29:45:19:5F:9A:10:70:BC:87:C9:99
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 57BBEEF33536E4EC5C1716174ECC763F6FDE732A
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e31342e302f32342d3234203d3e2037303034.roa
Signing time: Tue 04 Feb 2025 18:30:03 +0000
ROA not before: Tue 04 Feb 2025 18:25:03 +0000
ROA not after: Tue 03 Feb 2026 18:30:03 +0000
asID: 7004
IP address blocks: 200.28.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:bb:ee:f3:35:36:e4:ec:5c:17:16:17:4e:cc:76:3f:6f:de:73:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:25:03 2025 GMT
Not After : Feb 3 18:30:03 2026 GMT
Subject: CN=4B731468D854E7444E2945195F9A1070BC87C999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:75:9f:33:9e:46:b9:e9:38:bc:33:87:54:6c:
4a:4b:31:89:c9:7e:6c:fe:3e:24:5d:a4:4c:4b:03:
f6:36:e8:3f:85:3f:ad:58:b7:ee:c6:b4:7a:c1:0e:
9e:2e:e2:d7:e8:72:a1:27:5d:2d:63:77:3f:1c:c2:
83:ac:a9:f3:f8:85:72:13:da:3e:16:8f:f6:f9:d6:
72:01:f6:53:71:df:56:ed:c3:ce:cb:ed:ef:a0:9e:
89:58:52:5f:cf:a6:9e:74:10:ca:11:15:3f:a4:e9:
2f:23:d1:fb:f2:d7:a5:a7:8f:3f:75:88:29:34:5e:
7b:cc:21:54:75:c4:52:4f:92:3b:9a:59:24:ef:34:
b0:94:b4:d5:28:f2:e6:c6:29:72:8d:04:62:9d:d2:
7b:c3:d4:3c:d4:67:d0:a5:21:2a:dd:78:b0:60:17:
d6:16:08:d7:1e:f2:bf:28:69:a6:fe:d6:1e:98:5b:
8d:48:54:48:54:1c:58:a2:2f:41:ac:65:c8:89:ea:
14:59:24:d3:c9:19:63:66:c8:8b:7f:71:2a:22:3d:
3a:ce:c8:b7:aa:3d:36:7a:73:89:77:a8:c1:35:80:
03:c1:ea:ba:52:92:8d:cf:b1:85:cb:85:12:c0:e8:
b9:46:d8:4a:e5:ed:b2:36:5d:31:6c:50:85:6f:79:
29:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:73:14:68:D8:54:E7:44:4E:29:45:19:5F:9A:10:70:BC:87:C9:99
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32382e31342e302f32342d3234203d3e2037303034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.28.14.0/24
Signature Algorithm: sha256WithRSAEncryption
20:3d:75:3b:37:ca:61:ff:91:a8:6b:13:67:19:94:68:0f:f3:
94:4e:1f:d5:01:ca:37:01:4e:24:4e:4d:01:24:04:f1:43:9e:
25:d6:89:ac:4e:07:90:7b:18:08:c5:7a:ac:52:30:b2:c3:06:
cc:90:a5:3d:73:82:ca:1b:f6:e6:7e:f1:e5:c4:8d:9d:ea:e8:
5d:50:74:15:55:5d:5d:37:2e:3e:b7:70:58:98:a5:31:f8:9b:
ad:55:07:c4:0e:6e:c8:dd:19:fd:e8:1b:02:38:c9:99:f8:36:
1d:e1:fd:3f:95:43:63:38:ca:08:ad:ae:56:80:2e:4e:b4:bb:
21:5e:80:31:6d:b5:89:20:3e:b7:fc:09:29:fb:3a:fd:e9:44:
13:0c:87:13:30:ec:20:3b:87:83:b3:60:3f:e2:af:c1:de:ce:
58:4c:12:b0:fe:ee:12:fd:ce:25:07:e8:f5:f7:75:7d:40:53:
9c:23:b1:66:cb:f8:52:8e:e6:e6:3e:9b:69:ba:01:d1:c0:df:
08:e9:ee:a6:8c:05:6f:9f:62:a7:c0:db:f3:cb:8a:c0:b1:34:
37:a3:be:e1:1f:59:fe:30:4a:a9:6e:19:ff:71:01:f0:d2:d2:
e8:c4:ad:c5:c0:42:86:14:c4:7d:f8:c5:b4:56:70:70:c9:ba:
c6:12:b7:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:07:54 2025 by rpki-client