Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33342e302f32342d3234203d3e2037343138.roa
File: 3230302e32392e33342e302f32342d3234203d3e2037343138.roa (raw, json)
Hash identifier: c7+H9cNXJFtHNcgwrbXbJK6k7lLbTtwZn+7uxY6SPTo=
Subject key identifier: 51:67:40:05:3F:D3:6D:03:CC:6F:DD:E9:75:8A:C8:EA:B4:02:AF:87
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 6B245C4132B77D6D611BFC31889D569FB6E92720
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33342e302f32342d3234203d3e2037343138.roa
Signing time: Tue 04 Feb 2025 18:30:03 +0000
ROA not before: Tue 04 Feb 2025 18:25:03 +0000
ROA not after: Tue 03 Feb 2026 18:30:03 +0000
asID: 7418
IP address blocks: 200.29.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:24:5c:41:32:b7:7d:6d:61:1b:fc:31:88:9d:56:9f:b6:e9:27:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:25:03 2025 GMT
Not After : Feb 3 18:30:03 2026 GMT
Subject: CN=516740053FD36D03CC6FDDE9758AC8EAB402AF87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:20:82:71:8e:b2:bc:8b:64:54:c4:98:85:e4:
23:45:98:fb:1f:34:2f:72:ec:b4:8b:2d:d5:40:82:
83:bc:e9:ed:70:db:41:43:a2:a9:2f:5d:00:a4:86:
ab:47:41:bc:1e:58:f8:89:f4:b7:8f:e2:ab:7e:a5:
75:4b:d5:a8:cf:52:29:46:0e:95:0c:62:ed:53:04:
55:13:5d:89:a1:10:08:fb:3c:8b:3c:ab:4c:17:88:
21:01:60:88:22:73:64:99:f7:1e:2d:f3:b7:38:52:
0a:1d:b1:ca:b0:7f:28:f7:03:3e:8e:91:6d:31:ac:
bd:f5:29:3c:a8:eb:33:36:08:78:de:e3:d7:b6:63:
ef:7d:4d:e7:66:09:45:d9:fa:cd:6c:35:a3:c7:fb:
69:97:f5:09:ea:db:9c:58:c4:eb:4c:f3:cc:9e:a7:
1a:85:71:7c:24:67:f8:59:b4:96:d4:c5:8d:bd:39:
c7:4e:fd:23:18:13:be:97:69:2a:6c:9a:71:eb:57:
ee:aa:ee:4b:0d:65:fd:ec:7d:9e:d8:b4:20:b5:98:
77:ba:ba:de:2f:0a:5a:55:8d:fc:bb:2e:95:35:b9:
de:a9:0d:87:d9:3a:20:30:82:69:46:4d:44:88:96:
e8:d8:5f:12:a2:4e:51:43:be:41:ed:0b:b1:c6:39:
3b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:67:40:05:3F:D3:6D:03:CC:6F:DD:E9:75:8A:C8:EA:B4:02:AF:87
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33342e302f32342d3234203d3e2037343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.34.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:65:d3:53:fa:51:8f:90:93:c2:21:8c:a8:f5:f4:0a:e4:96:
30:6e:43:e3:d5:0f:42:9f:a0:27:d7:a2:1d:e4:d1:48:eb:4b:
fd:b7:9d:d8:ec:0a:72:6a:94:85:86:5a:82:bd:bd:3a:46:ea:
27:d7:31:49:ed:47:14:2a:6e:29:a0:46:a8:1f:86:97:b4:1a:
ac:b6:f6:f6:6e:d7:1d:36:86:6c:be:42:4d:ce:26:71:79:dc:
b6:20:82:43:45:a3:bb:2d:b6:f6:63:a0:33:66:0e:3e:57:91:
be:be:bf:49:22:4a:57:52:f7:c0:d9:36:b2:b2:ff:3b:cc:82:
23:40:cb:4b:44:0c:80:f0:3c:8b:a6:77:b8:5b:e8:59:20:a6:
a7:bc:4c:02:f9:f3:6b:8f:c6:bc:ba:c8:58:07:09:01:03:a1:
08:82:5a:e9:92:9b:55:f9:1d:37:36:10:e6:fc:76:06:87:ca:
9b:7e:28:18:7e:b9:78:02:a8:5a:f2:9a:5f:16:ce:ca:46:a4:
c9:1d:fa:29:3a:5e:00:c0:34:c2:27:9f:12:c0:2b:6e:9f:30:
80:55:5c:e2:a5:37:4a:e6:c8:0f:85:bc:8b:5e:09:23:aa:5c:
62:34:57:57:08:96:29:7c:ca:6a:c0:79:0f:77:11:1a:2e:fb:
4e:37:34:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:05:59 2025 by rpki-client