Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e35322e3131322e302f32302d3234203d3e2036353033.roa
File: 3230302e35322e3131322e302f32302d3234203d3e2036353033.roa (raw, json)
Hash identifier: bXDYWV4ohYehfBplF6uZsnq0xvOYfb5LGk0zd7fDJmc=
Subject key identifier: A6:02:36:C6:8D:16:97:85:CA:5C:EF:2E:0B:08:7A:5E:C7:11:2F:04
Certificate issuer: /CN=E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15
Certificate serial: 05037B9D91A746FE1F854A215291865F3E993010
Authority key identifier: E3:5D:D2:93:E1:C3:BC:5F:4D:E1:53:18:FA:C5:96:7E:7D:55:BF:15
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e35322e3131322e302f32302d3234203d3e2036353033.roa
Signing time: Tue 04 Feb 2025 18:52:42 +0000
ROA not before: Tue 04 Feb 2025 18:47:42 +0000
ROA not after: Tue 03 Feb 2026 18:52:42 +0000
asID: 6503
IP address blocks: 200.52.112.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:03:7b:9d:91:a7:46:fe:1f:85:4a:21:52:91:86:5f:3e:99:30:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15
Validity
Not Before: Feb 4 18:47:42 2025 GMT
Not After : Feb 3 18:52:42 2026 GMT
Subject: CN=A60236C68D169785CA5CEF2E0B087A5EC7112F04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:31:ab:2b:f4:59:0d:76:dc:50:a9:d7:9c:ac:
ec:9c:3e:93:bb:a7:29:db:93:ce:44:a5:5d:65:56:
8c:92:e4:37:70:5a:5e:18:e0:00:f5:1e:a0:e8:4f:
64:d1:40:80:1b:54:5b:4c:cf:18:68:bb:6a:34:5b:
ec:b2:b4:91:77:f9:cf:e4:d8:c5:ac:f5:ed:13:37:
6c:87:8c:f5:f2:fa:8e:87:30:9c:5d:5f:b6:3c:6e:
6c:87:1e:e8:94:41:e4:ee:fe:73:ef:05:94:06:a1:
f4:f0:c0:1c:ce:cf:0b:03:41:24:6b:7b:53:4f:81:
ea:bb:43:3d:e9:6f:72:b6:75:8e:2d:fe:cd:0c:1a:
11:60:8b:c7:19:c3:93:61:d0:20:a4:7f:91:de:70:
cb:66:98:cb:cc:0a:0a:12:59:aa:ab:91:bd:f3:29:
2c:b2:cd:45:cd:2d:e0:ed:80:c1:e4:0f:a7:4e:4e:
69:8f:63:cc:15:ad:51:fe:35:1c:ee:00:c4:f6:85:
4d:f6:d3:b2:20:a6:d2:e4:01:58:14:96:a2:55:b9:
31:1c:49:21:1e:4d:ea:82:6c:58:fe:47:46:51:b4:
12:6d:3d:36:27:c8:88:21:f2:4c:76:e4:74:e7:b2:
e0:2f:83:cd:6d:3c:c7:54:c3:c3:09:e4:e4:ad:10:
0f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:02:36:C6:8D:16:97:85:CA:5C:EF:2E:0B:08:7A:5E:C7:11:2F:04
X509v3 Authority Key Identifier:
keyid:E3:5D:D2:93:E1:C3:BC:5F:4D:E1:53:18:FA:C5:96:7E:7D:55:BF:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e35322e3131322e302f32302d3234203d3e2036353033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.52.112.0/20
Signature Algorithm: sha256WithRSAEncryption
5f:ae:18:b4:f9:9f:5e:d6:af:bf:67:22:e5:30:47:51:ec:e2:
e0:31:79:53:0e:cc:92:ec:81:44:63:b1:25:0b:f1:e2:3f:ed:
6e:f3:62:18:9e:12:c9:82:c4:42:5c:73:78:ad:c6:cb:cf:38:
ad:71:8d:7d:84:a3:3b:f7:21:1e:d2:a2:bf:7f:74:8c:15:98:
87:de:4e:d4:1e:0b:80:e0:ad:b6:5b:48:ca:f1:b3:4a:ee:93:
db:d0:4c:13:67:69:93:00:c3:10:74:73:a3:9b:20:8d:5d:74:
7f:a5:6e:80:3a:cb:66:eb:dc:69:4b:bd:77:0d:bc:43:9d:9c:
ac:ef:92:02:6b:fd:b6:8e:93:c0:b8:cf:e4:af:38:89:ed:e6:
24:28:f4:1c:61:df:59:2c:e6:45:75:ca:0a:ce:eb:d3:61:d8:
eb:1c:3f:a1:51:71:ed:d5:03:29:c6:7c:a5:21:96:22:50:b3:
a5:c0:bc:52:5a:76:3f:74:7e:0e:b1:71:b7:f8:52:20:fc:85:
c9:b1:e5:a0:4c:47:0f:43:41:f6:ab:0b:1c:ee:b8:49:f0:ae:
f9:7f:28:ec:6d:9b:fb:f2:a3:95:e0:15:3d:5f:f2:16:a1:ce:
1d:b9:d9:f5:9b:10:17:29:31:b5:07:81:41:62:8c:96:74:24:
9d:d7:d1:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:13 2025 by rpki-client