Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e35302e33322e302f31392d3234203d3e2037343138.roa
File: 3230302e35302e33322e302f31392d3234203d3e2037343138.roa (raw, json)
Hash identifier: s8qoVkZx5X9op2LW56P79sVSrSnu+m1SU9aZBjCGk4w=
Subject key identifier: 03:83:4A:6E:AA:5F:BD:BF:FB:FF:DA:3A:B6:98:6A:BE:7C:0D:3C:2A
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 133A79E50E261F2BDF1295671EE81C1553F9A00B
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e35302e33322e302f31392d3234203d3e2037343138.roa
Signing time: Tue 04 Feb 2025 18:29:47 +0000
ROA not before: Tue 04 Feb 2025 18:24:47 +0000
ROA not after: Tue 03 Feb 2026 18:29:47 +0000
asID: 7418
IP address blocks: 200.50.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:3a:79:e5:0e:26:1f:2b:df:12:95:67:1e:e8:1c:15:53:f9:a0:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:47 2025 GMT
Not After : Feb 3 18:29:47 2026 GMT
Subject: CN=03834A6EAA5FBDBFFBFFDA3AB6986ABE7C0D3C2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:cf:22:7d:8b:fd:49:44:47:69:70:b5:8f:ac:
66:6e:d0:1f:32:a9:71:01:be:3d:6a:13:7f:ae:22:
8d:f8:3c:9c:72:09:29:57:fa:73:31:ca:7d:63:f0:
32:62:ee:f5:2c:c4:c2:44:ed:7e:40:20:6b:38:1a:
1f:e8:cb:9b:47:de:e9:7b:bf:4a:dc:7f:9a:c1:f7:
f3:6a:86:c9:f2:b0:11:2f:68:e7:be:ac:81:dc:0f:
88:86:ff:79:ba:1d:d2:34:be:84:a2:46:80:59:86:
fa:03:a8:5b:3d:f7:99:07:7b:b3:58:b7:63:d5:36:
db:21:eb:23:ef:9a:39:6b:7d:ba:4e:e9:9d:6a:6f:
1b:99:0d:00:bf:9a:b7:fe:b9:8e:60:2a:f0:1d:83:
59:d8:d1:31:13:cc:68:23:45:8f:ae:b9:9e:6a:a3:
63:5b:79:cc:79:30:9e:9b:8f:67:3b:ee:95:2f:59:
fe:9b:f2:4e:29:d7:90:1a:c1:a4:2e:fb:a3:e7:a8:
7c:8b:43:9b:ab:fb:eb:7f:3a:9f:4a:b4:e6:97:df:
62:16:50:39:44:b6:92:5e:3c:46:c1:02:bd:ef:6f:
91:0a:71:7d:68:61:07:70:3a:e1:f2:c2:96:22:5a:
38:35:cd:a8:37:4c:9a:a1:47:57:71:25:9c:b9:e2:
09:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:83:4A:6E:AA:5F:BD:BF:FB:FF:DA:3A:B6:98:6A:BE:7C:0D:3C:2A
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e35302e33322e302f31392d3234203d3e2037343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.50.32.0/19
Signature Algorithm: sha256WithRSAEncryption
3a:c7:15:35:87:91:6d:f0:f5:c1:d0:26:64:f1:97:0f:b0:93:
12:c1:dc:34:71:70:04:5b:0e:c7:67:f9:db:38:c7:48:84:29:
8a:54:4a:61:4c:74:5f:7c:84:95:ea:de:02:c4:a6:3e:54:90:
46:b6:3b:b5:1f:a1:d7:90:56:fd:d8:63:38:21:de:6c:f4:5d:
ae:61:4c:eb:bd:af:4d:f7:bd:62:71:38:ec:58:d0:cd:fb:bf:
47:33:81:d4:84:b2:e4:ea:8a:63:71:2b:51:0c:a4:30:d2:2a:
71:02:cd:d8:00:8e:f9:a7:0b:26:ec:6a:ac:b1:a6:75:b5:8e:
4e:28:32:cd:4a:72:ba:34:e3:a5:98:f1:b7:95:df:88:d6:11:
f6:a2:23:38:ae:75:2d:0e:de:7a:ee:47:99:68:17:68:87:0a:
59:53:ef:a6:a5:db:ca:24:c8:be:ce:7b:5c:b4:8a:fc:d6:d7:
87:e9:9a:42:42:c0:24:27:2a:88:56:bb:57:16:09:bf:0a:b6:
ba:78:a6:4e:cf:5e:36:61:ad:b8:74:9d:6a:46:0d:b1:20:2f:
00:ed:62:6d:7b:8f:bf:ea:2a:61:0f:6b:49:d3:e7:0d:7d:a2:
f1:9b:e5:d4:ff:aa:c8:29:e3:84:cb:cd:9c:c6:6f:08:57:1e:
f1:d5:84:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:49:42 2025 by rpki-client