Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e34332e302f32342d3234203d3e2037343138.roa
File: 3230302e32392e34332e302f32342d3234203d3e2037343138.roa (raw, json)
Hash identifier: 9CN77s36h+XVuD4fQ7jwexQmw1Ps4/LcYW8umvPxQkk=
Subject key identifier: A0:A8:6E:7B:FF:B7:7F:A5:94:E3:B3:9B:09:0B:7D:EB:78:60:3C:F1
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 59F6425FB66F8C44678D21A35C376AAE9D2B33C6
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e34332e302f32342d3234203d3e2037343138.roa
Signing time: Tue 04 Feb 2025 18:29:47 +0000
ROA not before: Tue 04 Feb 2025 18:24:47 +0000
ROA not after: Tue 03 Feb 2026 18:29:47 +0000
asID: 7418
IP address blocks: 200.29.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:f6:42:5f:b6:6f:8c:44:67:8d:21:a3:5c:37:6a:ae:9d:2b:33:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:47 2025 GMT
Not After : Feb 3 18:29:47 2026 GMT
Subject: CN=A0A86E7BFFB77FA594E3B39B090B7DEB78603CF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:54:ff:cd:91:d5:96:4f:b0:5d:af:ff:dd:43:
fd:8b:44:64:fc:78:fd:8b:37:0c:46:fa:77:e1:38:
b4:a7:1a:1e:42:57:18:b5:10:10:7b:39:a0:fb:a2:
52:1c:11:bd:9b:86:77:7d:ae:23:c9:39:39:d4:18:
88:0d:3d:be:6d:57:23:1c:dd:8f:4d:38:b5:b1:ba:
9e:16:ff:9b:0a:e7:74:29:c0:f1:9e:b2:91:94:5a:
73:42:71:3f:96:a4:4d:88:2a:20:00:e2:ad:fb:28:
26:c3:a9:ca:cd:5b:03:52:13:96:87:e6:ed:2b:2a:
99:06:84:e4:f5:8e:3f:e3:3f:c7:1c:6a:a4:e5:78:
93:d8:f0:10:59:af:73:f3:8f:b0:da:fe:d3:d3:43:
d0:fd:20:a3:27:7e:75:7c:d5:58:99:27:ce:c7:5a:
eb:19:74:30:88:6d:3e:12:bf:90:4c:89:83:80:54:
86:5c:9e:16:a4:03:0e:78:ca:93:4b:f6:89:96:b4:
29:ad:59:80:1a:5b:42:ae:0c:26:fd:7f:e9:32:ce:
34:b8:e9:2a:e0:dd:43:75:50:92:e4:a3:9d:26:be:
ab:a7:6b:ae:b4:b2:50:27:ab:f8:3e:57:3e:62:26:
95:c8:04:0d:26:52:51:83:c6:26:05:20:da:5f:44:
1b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A8:6E:7B:FF:B7:7F:A5:94:E3:B3:9B:09:0B:7D:EB:78:60:3C:F1
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e34332e302f32342d3234203d3e2037343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.43.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:5b:e3:7a:5a:41:a3:50:10:49:e0:4a:b5:41:cb:9d:ae:dd:
7d:82:89:ec:3a:36:09:10:1f:b2:5e:53:0e:47:60:af:f1:30:
5e:ac:fd:f1:fa:bf:fd:22:9e:a9:a6:07:01:5b:fd:c6:db:1a:
9d:cf:1a:51:0f:f3:b3:cd:b1:8e:13:37:7a:e8:8a:7e:31:ef:
3e:2b:80:69:94:bf:be:d8:03:ca:d7:d4:92:8b:13:14:8f:f2:
73:c0:b3:f6:ca:ff:fa:9d:81:e4:03:81:89:95:9a:b7:eb:95:
17:fe:5a:be:31:85:46:c2:ff:92:c4:f5:ff:40:9f:23:1b:c2:
16:18:2e:9d:10:f6:a3:4f:46:57:e2:1f:9e:29:59:f5:52:8e:
09:3a:ff:9e:dd:14:fd:47:4e:a6:a4:d5:68:b8:0c:e1:3f:67:
ee:3e:dd:45:c2:39:fe:97:2d:a6:a4:a3:8b:48:f3:d8:5b:80:
b1:a4:ee:b1:43:9d:e1:7f:a4:3b:1a:17:ac:ad:dd:a4:dc:4d:
29:86:f8:5f:39:21:47:fe:50:66:7e:16:d5:1f:f6:e4:4d:47:
a6:67:67:ec:1f:a5:d0:7b:87:45:64:02:4a:fa:0d:7e:24:73:
fb:08:e2:ec:4a:95:d5:e1:8a:b6:dc:eb:41:71:09:36:b1:10:
1e:3e:f0:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:04 2025 by rpki-client