Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e39342e302e302f31372d3234203d3e203131313732.roa
File: 3230302e39342e302e302f31372d3234203d3e203131313732.roa (raw, json)
Hash identifier: Yu/y+4zXXHrTktSWnS2H5+8Iw7pbn4NKavgoAeNDVq8=
Subject key identifier: 71:DC:53:AA:57:B2:87:B2:B2:8A:72:7D:75:D3:75:A2:BA:FF:88:68
Certificate issuer: /CN=E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15
Certificate serial: 46FB8E6971882BF27745E417DCBBECC7D2EC4EA7
Authority key identifier: E3:5D:D2:93:E1:C3:BC:5F:4D:E1:53:18:FA:C5:96:7E:7D:55:BF:15
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e39342e302e302f31372d3234203d3e203131313732.roa
Signing time: Tue 04 Feb 2025 18:52:46 +0000
ROA not before: Tue 04 Feb 2025 18:47:46 +0000
ROA not after: Tue 03 Feb 2026 18:52:46 +0000
asID: 11172
IP address blocks: 200.94.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:fb:8e:69:71:88:2b:f2:77:45:e4:17:dc:bb:ec:c7:d2:ec:4e:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15
Validity
Not Before: Feb 4 18:47:46 2025 GMT
Not After : Feb 3 18:52:46 2026 GMT
Subject: CN=71DC53AA57B287B2B28A727D75D375A2BAFF8868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ca:91:cf:f0:4d:98:51:ab:51:4d:b5:7e:24:
1c:a9:dd:57:ce:8b:9e:5d:2e:b5:08:13:05:9d:53:
06:86:94:76:ab:75:a0:ca:15:7f:0f:b6:20:c0:b1:
2b:44:c6:b8:54:24:2c:ab:ae:47:6c:93:15:7e:e2:
77:f9:d8:e4:2a:a6:d5:7c:b9:b5:58:3d:a9:29:6c:
4a:16:7f:5d:07:fb:70:91:ee:f0:62:ae:35:5c:e5:
c7:62:c2:e2:63:48:0c:4a:fc:d7:38:9b:10:b2:91:
95:80:5d:4d:97:01:e6:1d:74:f3:55:c8:42:5e:be:
0f:c2:24:93:f9:f1:89:65:52:92:cb:ec:1e:ed:b4:
ae:81:8f:e4:d0:35:91:ad:fe:7e:d7:16:c2:65:84:
d6:b2:96:0a:1e:2d:7d:4a:61:88:b9:b4:61:63:4b:
3a:26:17:1e:1d:bc:74:dd:71:9b:39:30:60:fc:c8:
ba:f7:4c:bb:5c:b6:07:65:22:3e:1d:53:ef:6f:1a:
23:bb:5f:d8:d7:b1:ec:61:f2:e8:5e:85:1c:76:63:
5a:8c:ac:e7:2f:0d:5e:2b:82:fa:ce:2b:0b:39:4a:
8e:8e:03:b2:66:e6:9e:9a:c1:b7:23:6d:7e:5f:8c:
5d:82:34:79:d4:ac:2d:2b:81:37:cd:ea:1b:69:77:
5c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:DC:53:AA:57:B2:87:B2:B2:8A:72:7D:75:D3:75:A2:BA:FF:88:68
X509v3 Authority Key Identifier:
keyid:E3:5D:D2:93:E1:C3:BC:5F:4D:E1:53:18:FA:C5:96:7E:7D:55:BF:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35DD293E1C3BC5F4DE15318FAC5967E7D55BF15.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DF6495DFE557A9656AFD934637E96634D3D2739D5072D17F108058F0A9CA9938/0/3230302e39342e302e302f31372d3234203d3e203131313732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.94.0.0/17
Signature Algorithm: sha256WithRSAEncryption
95:66:af:4a:38:47:64:00:bf:e7:86:72:23:d2:93:74:fe:a0:
dc:7c:cf:df:76:09:e5:f3:d3:ad:c6:a7:9e:04:b0:34:4d:d0:
a2:de:99:cb:1e:ad:63:9d:97:d0:38:d7:3a:2a:1c:e7:ee:bf:
b4:f5:ad:aa:c4:9f:00:a9:1b:6e:85:30:8a:6c:90:c1:01:2b:
bf:7e:b7:8e:83:31:ab:63:15:58:20:b2:9c:90:f4:d2:cc:41:
06:73:19:d9:b1:c4:4d:4f:58:72:c0:02:2d:2a:48:a2:1f:67:
d5:f4:bf:97:33:e3:22:93:24:9d:0c:0a:5c:af:a7:60:90:1d:
5c:f5:33:b3:fd:ab:ee:88:14:9f:59:6b:19:a4:2a:b4:d8:8d:
2d:ba:2a:0e:c5:de:b5:47:76:c4:91:b7:78:26:0a:38:49:41:
24:3f:93:80:d2:16:dd:b8:af:ee:23:aa:fd:c0:1e:70:39:3b:
aa:74:b0:36:2e:ff:8e:a8:14:fa:53:04:31:c8:16:c8:b5:e4:
2f:c7:49:94:00:a1:35:d7:a9:40:6d:f4:83:58:04:be:bf:3b:
35:7b:30:72:d4:e9:e1:a7:24:d7:68:34:43:bb:08:26:bc:74:
ee:53:22:22:72:e6:79:05:78:4a:cf:b7:fd:c8:38:10:96:af:
4e:bb:e9:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:16:24 2025 by rpki-client