Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e35322e302f32342d3234203d3e2037343138.roa
File: 3230302e32392e35322e302f32342d3234203d3e2037343138.roa (raw, json)
Hash identifier: XHI00Iq0+ly4vEtfcDnzc0QPa6R/sDDg/cXj8pZSWog=
Subject key identifier: D0:33:86:1C:33:F1:5C:8D:C8:42:E6:62:78:D7:45:33:CD:23:E6:56
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 4A3267786EE3E92C10D2CFBC45E214FDB1C1DC1B
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e35322e302f32342d3234203d3e2037343138.roa
Signing time: Tue 04 Feb 2025 18:29:53 +0000
ROA not before: Tue 04 Feb 2025 18:24:53 +0000
ROA not after: Tue 03 Feb 2026 18:29:53 +0000
asID: 7418
IP address blocks: 200.29.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:32:67:78:6e:e3:e9:2c:10:d2:cf:bc:45:e2:14:fd:b1:c1:dc:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:53 2025 GMT
Not After : Feb 3 18:29:53 2026 GMT
Subject: CN=D033861C33F15C8DC842E66278D74533CD23E656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:24:56:48:0b:cd:ac:a2:d3:ad:08:79:47:73:
ac:83:a5:9a:54:65:05:c8:d7:25:e2:cd:a5:af:c1:
d0:13:30:24:22:b1:3a:25:d5:18:21:d5:aa:72:0c:
d9:7d:76:25:6b:62:88:56:d2:fa:3c:df:17:dd:da:
e0:70:0f:74:6c:4d:63:d3:d5:ae:af:14:b7:b5:ae:
73:f6:9c:24:99:db:a6:4c:f3:45:f6:bc:c5:d0:15:
e2:e6:44:11:eb:c1:d4:93:f1:37:dc:31:95:ae:bd:
b6:ae:3d:c3:02:f7:21:b7:72:0f:87:ac:ea:db:b2:
84:82:a1:0d:35:12:b8:f5:9f:b8:b2:f3:f3:0f:54:
df:a9:f3:f4:52:7e:cb:59:59:69:59:d0:9b:cc:b0:
2b:38:ff:76:68:84:dc:fd:45:7a:78:ef:2f:11:5a:
10:44:2d:7d:7f:b4:3a:c9:a9:3f:01:d9:d8:1f:52:
22:8d:22:15:16:21:7a:7b:dc:1b:7f:ff:76:11:d4:
d1:5b:ec:ef:a2:8d:53:73:c3:bd:57:95:78:5e:af:
c4:03:b3:c8:f7:c0:9f:90:3b:93:ae:0c:77:07:60:
7c:01:af:05:24:b7:c4:e6:5c:65:92:fe:80:fc:78:
d1:67:7f:34:fa:83:fd:10:bd:33:4f:2c:0c:2c:ce:
e7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:33:86:1C:33:F1:5C:8D:C8:42:E6:62:78:D7:45:33:CD:23:E6:56
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e35322e302f32342d3234203d3e2037343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.52.0/24
Signature Algorithm: sha256WithRSAEncryption
26:a2:0e:11:54:e6:ad:00:04:e4:9e:bd:f3:7f:2a:71:c3:5f:
bf:1e:f3:ed:a3:5d:48:eb:49:21:7b:59:61:06:0d:ff:6b:44:
e6:33:fb:e0:ae:18:8f:09:00:47:41:2b:d1:08:84:55:44:d8:
45:6f:03:76:a8:66:ff:7f:64:0a:c4:ad:b3:52:4c:6e:c6:7a:
38:a4:3a:52:7c:06:b5:5b:88:c2:d7:4b:70:1d:49:c4:54:76:
29:ae:3f:51:ec:95:2d:62:4b:f9:5a:9d:78:8d:03:20:f4:ab:
18:f2:d1:a7:d8:3b:e9:b6:85:e7:f1:81:77:98:25:2d:2e:c3:
76:86:cd:7b:ab:c9:cc:50:c3:30:aa:d7:d0:36:d5:43:47:86:
fc:d7:cd:35:d0:ca:ce:c9:d8:ef:7b:61:66:59:b5:98:a9:5e:
17:a2:d7:93:de:57:89:8d:29:14:a8:e0:a6:72:04:50:18:ad:
3d:e0:ed:50:54:9f:e5:b6:3d:48:c7:19:02:92:cf:6c:b3:12:
bb:68:40:c6:33:40:7e:7f:cb:24:e2:54:39:6b:6a:af:13:40:
bf:92:12:24:86:4e:0c:87:d8:a8:59:a5:a4:cc:d6:e9:94:f2:
ac:e8:0a:37:ea:9b:ac:a1:05:c8:cc:c2:a2:0a:16:f8:85:f8:
38:51:10:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:57:29 2025 by rpki-client