Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e37362e302e302f31382d3234203d3e203131313732.roa
File: 3230302e37362e302e302f31382d3234203d3e203131313732.roa (raw, json)
Hash identifier: vWJqvQHPpJbHRkN4wWSXqeX9N9UVGTDL4Hjl3O/87DM=
Subject key identifier: 49:DE:AF:61:A4:19:84:85:7F:F8:33:8E:C6:89:B7:AE:5B:45:E1:78
Certificate issuer: /CN=E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15
Certificate serial: 01A9D1ACC3B70BD89216547A596A0922F4FF2B45
Authority key identifier: E3:5D:D2:93:E1:C3:BC:5F:4D:E1:53:18:FA:C5:96:7E:7D:55:BF:15
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e37362e302e302f31382d3234203d3e203131313732.roa
Signing time: Tue 04 Feb 2025 18:52:50 +0000
ROA not before: Tue 04 Feb 2025 18:47:50 +0000
ROA not after: Tue 03 Feb 2026 18:52:50 +0000
asID: 11172
IP address blocks: 200.76.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:a9:d1:ac:c3:b7:0b:d8:92:16:54:7a:59:6a:09:22:f4:ff:2b:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15
Validity
Not Before: Feb 4 18:47:50 2025 GMT
Not After : Feb 3 18:52:50 2026 GMT
Subject: CN=49DEAF61A41984857FF8338EC689B7AE5B45E178
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ff:4b:eb:cb:5b:97:82:fb:03:f1:b0:13:cb:
07:0a:e8:5e:73:15:2c:04:c9:e5:99:dd:b2:c5:6a:
fb:02:c1:fd:46:6b:e6:ab:ce:6c:1a:f3:1e:d5:94:
10:64:bc:c0:f4:7b:3d:de:7b:1d:24:8c:73:58:aa:
68:0d:03:de:3f:b6:a5:87:d8:c8:c8:71:80:a4:8c:
db:1c:11:7c:da:cb:87:8b:2e:ae:e5:ed:a3:a1:09:
55:76:03:31:49:02:49:69:33:16:fe:5f:98:da:2a:
d8:a8:f1:43:c7:0a:6e:a5:2e:64:fd:d2:0b:43:74:
d6:f8:38:60:0e:83:b5:9a:95:c8:9e:e2:e9:0c:38:
ef:b5:1d:90:66:d7:54:5c:a0:0d:74:f5:cf:a3:eb:
b8:75:d3:0e:6b:a5:d3:e2:28:45:c4:2a:25:91:ad:
04:2b:6d:1f:92:c2:02:73:7b:98:4b:20:f9:0e:c4:
65:84:40:2a:08:c3:64:b6:1b:0e:f3:3f:c8:5e:3f:
b0:7a:2c:79:df:53:67:a2:a0:87:0a:f2:dc:74:3a:
2e:56:f3:9e:5a:a4:cf:46:dd:c4:86:ae:6a:57:bd:
1f:f9:da:ae:27:45:ba:2d:8f:6c:94:d1:c5:29:63:
be:20:ef:63:a5:da:73:9e:35:0e:16:56:42:18:e5:
ef:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DE:AF:61:A4:19:84:85:7F:F8:33:8E:C6:89:B7:AE:5B:45:E1:78
X509v3 Authority Key Identifier:
keyid:E3:5D:D2:93:E1:C3:BC:5F:4D:E1:53:18:FA:C5:96:7E:7D:55:BF:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e37362e302e302f31382d3234203d3e203131313732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.76.0.0/18
Signature Algorithm: sha256WithRSAEncryption
96:01:ec:9f:0f:70:2a:39:06:6a:5c:ca:82:6a:2a:a2:73:40:
18:37:04:d5:4b:6b:cd:80:49:db:2a:b0:70:14:d4:37:ba:13:
18:c9:07:ee:05:90:2c:bd:64:d9:2a:e4:71:bc:99:68:ad:f6:
55:2a:70:19:d1:be:28:bf:87:0a:d2:07:de:f9:30:83:a2:ce:
35:25:21:0d:bb:9a:56:44:ef:95:36:5a:ad:04:8c:a0:c5:ab:
e5:f0:2a:a9:0d:d4:d9:a7:9a:a5:fb:cf:af:43:6c:b8:6d:9c:
4b:d6:fa:ea:79:1b:28:e0:36:6c:83:5d:3c:0b:64:c0:f6:08:
91:80:f5:fd:9a:5a:20:e8:5f:8a:56:97:88:bd:63:7c:76:53:
ba:75:04:39:5c:a5:db:6d:2d:95:fc:8d:2d:d1:d0:6c:d0:21:
fa:b4:59:53:80:b0:1e:44:33:66:06:92:65:df:63:a8:30:e3:
d7:78:93:ec:8d:80:b9:33:c7:ca:d6:f7:e1:b1:cb:f5:2c:5d:
17:69:d1:a1:cb:50:15:2b:66:f9:0e:7b:c8:58:e1:57:66:64:
e1:21:6c:a0:26:5e:c8:a9:ef:35:1d:dd:45:39:7b:51:2a:a1:
0d:50:e2:53:6b:cf:d3:3c:1f:ed:1b:f1:25:26:73:9c:3a:47:
a8:0d:a1:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:22:45 2025 by rpki-client