Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DD35F68E9227CCEAAEA800CE80E70C92F4CEC522E4CD6BA43623E4D22907423E/0/3230302e36332e34302e302f32312d3234203d3e20323635353430.roa
File: 3230302e36332e34302e302f32312d3234203d3e20323635353430.roa (raw, json)
Hash identifier: ulMukU/tKARWjiumr5uOUAw28CeDskaAj0ZTL0Qh4Gw=
Subject key identifier: 3F:F7:83:6B:10:5F:37:6E:4E:F3:45:C6:F0:25:C7:06:1B:41:2C:A5
Certificate issuer: /CN=FAD90A03B0BB49A34C7BF9A5C88CCC4C61A7B3EC
Certificate serial: 59ACE6DBDF0F4ECD1F2A6F564FE52E8E04833574
Authority key identifier: FA:D9:0A:03:B0:BB:49:A3:4C:7B:F9:A5:C8:8C:CC:4C:61:A7:B3:EC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FAD90A03B0BB49A34C7BF9A5C88CCC4C61A7B3EC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DD35F68E9227CCEAAEA800CE80E70C92F4CEC522E4CD6BA43623E4D22907423E/0/3230302e36332e34302e302f32312d3234203d3e20323635353430.roa
Signing time: Tue 04 Feb 2025 18:50:16 +0000
ROA not before: Tue 04 Feb 2025 18:45:16 +0000
ROA not after: Tue 03 Feb 2026 18:50:16 +0000
asID: 265540
IP address blocks: 200.63.40.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:ac:e6:db:df:0f:4e:cd:1f:2a:6f:56:4f:e5:2e:8e:04:83:35:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FAD90A03B0BB49A34C7BF9A5C88CCC4C61A7B3EC
Validity
Not Before: Feb 4 18:45:16 2025 GMT
Not After : Feb 3 18:50:16 2026 GMT
Subject: CN=3FF7836B105F376E4EF345C6F025C7061B412CA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a2:b9:50:d8:ae:27:73:dc:00:88:33:d1:da:
4d:f4:b2:00:d9:54:1a:dd:9f:1d:98:ff:d2:db:a8:
af:3c:92:ea:a1:71:4a:15:57:3d:ae:78:9a:2f:ac:
ce:69:05:fc:17:cf:c0:a8:fe:54:f4:43:b9:6c:16:
33:a4:e9:85:eb:cd:64:b8:e2:ad:2a:0d:88:bf:de:
1d:8b:2f:5b:e2:b1:79:bc:8d:e9:a5:32:8e:44:aa:
42:18:7b:a5:5a:10:de:0a:57:5f:53:d0:c7:13:88:
6f:00:65:f7:6f:07:25:47:ed:ff:3a:98:c5:7b:73:
f5:ae:64:58:cc:4c:a7:6c:7f:09:e3:4d:2c:1e:79:
db:3e:8b:23:4a:fd:03:ab:90:ea:b8:17:14:5f:e8:
14:e0:ed:9e:94:bd:88:b1:56:27:37:eb:5a:08:1a:
0b:60:8f:f2:71:9b:56:b8:bf:fd:2d:c4:48:1a:63:
ba:af:58:3e:61:00:29:22:d5:7c:2a:7a:43:ba:56:
13:d8:d0:60:71:db:f4:94:3d:65:60:8e:c1:23:0d:
7f:35:8d:95:ae:8a:a6:98:63:f5:e0:49:fe:d5:66:
c6:cf:b5:65:5c:46:e2:f0:32:28:ba:df:5c:b0:46:
e9:8e:c6:84:90:e3:da:6e:b2:91:00:52:c5:1d:97:
4b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F7:83:6B:10:5F:37:6E:4E:F3:45:C6:F0:25:C7:06:1B:41:2C:A5
X509v3 Authority Key Identifier:
keyid:FA:D9:0A:03:B0:BB:49:A3:4C:7B:F9:A5:C8:8C:CC:4C:61:A7:B3:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DD35F68E9227CCEAAEA800CE80E70C92F4CEC522E4CD6BA43623E4D22907423E/0/FAD90A03B0BB49A34C7BF9A5C88CCC4C61A7B3EC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FAD90A03B0BB49A34C7BF9A5C88CCC4C61A7B3EC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DD35F68E9227CCEAAEA800CE80E70C92F4CEC522E4CD6BA43623E4D22907423E/0/3230302e36332e34302e302f32312d3234203d3e20323635353430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.63.40.0/21
Signature Algorithm: sha256WithRSAEncryption
3b:f7:89:c6:6b:59:7b:11:88:97:aa:02:12:aa:4a:16:c8:fd:
ac:6a:40:a3:41:6d:49:40:95:bf:b7:dc:4b:0d:55:5f:67:61:
65:d8:28:70:f8:42:d4:28:bf:e1:11:d8:b6:86:45:28:bb:20:
f2:90:26:1c:62:d8:84:2f:c0:bd:ef:6d:cc:c7:81:ee:38:eb:
b7:6a:8b:40:a9:db:81:09:88:5e:a8:01:5c:f8:ac:aa:fe:ad:
4d:9c:f9:80:25:4f:e4:5b:7a:35:2c:89:3d:ec:21:ad:35:8f:
27:26:0c:ce:e7:c6:a2:85:7e:8b:eb:29:71:ab:5b:65:f8:88:
b6:f7:d4:ed:6c:cb:79:8b:4f:71:b8:7b:22:4c:31:c8:e7:d6:
6c:99:4d:4d:7b:76:88:68:70:6f:df:2c:ac:3e:d2:32:7d:b1:
82:54:69:e0:9e:36:ed:37:38:be:84:d0:a1:b1:4b:7e:44:cb:
02:8e:ff:0d:fe:5c:69:89:63:aa:ee:33:ab:d0:f1:ef:2f:61:
f5:3c:c0:16:bf:aa:8a:14:43:d8:39:cb:4c:05:33:9b:b4:a1:
bf:69:28:63:ea:4f:6b:d2:ca:3c:25:27:f8:d8:cc:55:78:a5:
bc:61:e1:0f:89:ed:e1:d3:66:6b:fb:1c:10:bb:a5:7d:a4:df:
5c:75:e7:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:27:31 2025 by rpki-client