Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DCD67801167D0EF074FF13AE5977B421687A21F08DFD1541521481D4D8E35A05/0/3230302e33312e3234302e302f32302d3234203d3e203532343139.roa
File: 3230302e33312e3234302e302f32302d3234203d3e203532343139.roa (raw, json)
Hash identifier: +7ZT4IxPU3KQDNqsxh75NbK5B83dfZdVwC6wjHsLXZI=
Subject key identifier: BE:34:C4:54:8C:67:E3:23:EC:91:B2:C8:99:25:BA:66:A0:2B:48:85
Certificate issuer: /CN=D8D44DD84F3FDBD732870581DB91456D40862FA2
Certificate serial: 45B3B25B03D42962E4E69FCFDF08E69BFF760E1F
Authority key identifier: D8:D4:4D:D8:4F:3F:DB:D7:32:87:05:81:DB:91:45:6D:40:86:2F:A2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8D44DD84F3FDBD732870581DB91456D40862FA2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DCD67801167D0EF074FF13AE5977B421687A21F08DFD1541521481D4D8E35A05/0/3230302e33312e3234302e302f32302d3234203d3e203532343139.roa
Signing time: Tue 04 Feb 2025 18:22:39 +0000
ROA not before: Tue 04 Feb 2025 18:17:39 +0000
ROA not after: Tue 03 Feb 2026 18:22:39 +0000
asID: 52419
IP address blocks: 200.31.240.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:b3:b2:5b:03:d4:29:62:e4:e6:9f:cf:df:08:e6:9b:ff:76:0e:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8D44DD84F3FDBD732870581DB91456D40862FA2
Validity
Not Before: Feb 4 18:17:39 2025 GMT
Not After : Feb 3 18:22:39 2026 GMT
Subject: CN=BE34C4548C67E323EC91B2C89925BA66A02B4885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d5:84:e0:c3:40:47:46:b1:2a:ca:f2:eb:7f:
2b:74:df:3c:c3:75:50:2d:23:fe:4c:c3:fc:b6:6b:
76:86:b1:03:9a:33:cd:b0:2a:6c:b1:f5:02:91:e6:
1a:52:ea:1d:61:d8:1d:a7:bd:e9:7f:ad:4d:12:fc:
53:6e:80:b6:1c:6c:45:48:65:2a:46:d0:62:8f:f2:
64:02:35:e1:c3:6e:ec:3a:1d:43:09:8c:ab:b5:89:
2d:08:18:5d:93:4f:dd:0e:2b:3a:b0:68:78:0e:5b:
d3:a9:13:16:33:a6:f2:a7:ee:f7:51:99:32:39:40:
84:39:28:79:32:0b:a6:1e:e8:02:ee:1f:1b:b8:b2:
66:3b:b5:e7:35:a1:38:4f:e1:c9:ca:55:50:1e:82:
18:82:ce:8d:29:06:61:50:37:2e:84:45:7c:85:b3:
75:ea:03:66:be:e1:ec:4e:97:11:26:d9:40:c5:42:
77:b2:1b:c3:ee:b8:f4:4e:88:d0:ef:dc:17:4e:59:
bf:28:a5:3b:33:ef:9a:3f:d8:c2:41:eb:ae:d8:41:
52:c5:3a:cd:0c:b3:1b:f2:c3:fb:af:73:22:f1:e8:
d0:5d:72:7e:0d:6f:49:b6:64:1a:c6:61:31:b3:8b:
a7:68:40:fe:43:19:9d:97:a1:90:99:52:63:8b:3d:
8a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:34:C4:54:8C:67:E3:23:EC:91:B2:C8:99:25:BA:66:A0:2B:48:85
X509v3 Authority Key Identifier:
keyid:D8:D4:4D:D8:4F:3F:DB:D7:32:87:05:81:DB:91:45:6D:40:86:2F:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DCD67801167D0EF074FF13AE5977B421687A21F08DFD1541521481D4D8E35A05/0/D8D44DD84F3FDBD732870581DB91456D40862FA2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8D44DD84F3FDBD732870581DB91456D40862FA2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DCD67801167D0EF074FF13AE5977B421687A21F08DFD1541521481D4D8E35A05/0/3230302e33312e3234302e302f32302d3234203d3e203532343139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.31.240.0/20
Signature Algorithm: sha256WithRSAEncryption
69:b9:c6:af:e6:f4:4f:2c:4f:be:0d:83:76:2d:2f:00:f3:04:
61:e3:01:52:8c:d5:3d:35:2c:45:32:16:a3:9d:f1:97:69:99:
f6:40:7b:8f:88:67:de:34:d1:2a:d9:85:f1:c2:0e:a2:91:e8:
ea:f4:fa:68:5b:0f:9d:c4:e1:6d:4c:30:af:18:9c:c9:7c:dc:
c2:e7:8b:c4:4f:59:b6:4f:86:24:c6:6e:37:0c:66:95:44:1d:
42:56:ef:2a:de:45:bb:52:10:bd:43:3d:d9:0d:11:ab:e0:54:
f0:da:30:45:ca:a2:ee:6e:90:9e:c2:c6:0b:27:b2:67:13:a1:
f1:19:00:e1:c6:8e:b5:26:cd:93:bf:41:d5:a9:44:11:c8:59:
5f:49:c9:93:bf:f1:ad:2b:24:3d:c9:21:9f:02:b8:80:5d:2c:
fd:ab:ec:c7:e3:a5:96:a8:8d:89:79:ec:68:f0:f1:0f:27:f4:
8e:ce:4a:11:b9:53:3c:b3:fe:0f:3f:6c:82:e4:dd:66:9a:a2:
38:0b:05:04:8a:11:ab:f7:64:7e:aa:a2:cc:af:79:0f:64:63:
ef:06:83:fb:c9:68:8f:b0:5e:f5:ab:48:7f:9f:93:f7:ab:fd:
55:05:72:26:6f:fb:95:7f:e9:89:c5:18:16:b5:eb:39:b2:0d:
28:0d:89:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:09:33 2025 by rpki-client