Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E1FCF006DE231C1E8F9AF43306DDA5F7FA1D2D8D4E6F8DB2F0B08C63D2FFBDFD/0/3230302e31322e3139362e302f32342d3234203d3e203136353039.roa
File: 3230302e31322e3139362e302f32342d3234203d3e203136353039.roa (raw, json)
Hash identifier: qM3GdwMMbe+gl5UoPNgGtsNDp6qIxxaeZ1iR6u0y7f4=
Subject key identifier: EB:E6:C6:DD:97:74:FA:87:11:90:8E:A9:DF:89:8A:EC:7C:04:32:D2
Certificate issuer: /CN=3F60989A0240421B9E62F93B598BE390FD6CDCC6
Certificate serial: 336BCEA81E3AEDC67880B25EBEF7537B97FC51E5
Authority key identifier: 3F:60:98:9A:02:40:42:1B:9E:62:F9:3B:59:8B:E3:90:FD:6C:DC:C6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F60989A0240421B9E62F93B598BE390FD6CDCC6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E1FCF006DE231C1E8F9AF43306DDA5F7FA1D2D8D4E6F8DB2F0B08C63D2FFBDFD/0/3230302e31322e3139362e302f32342d3234203d3e203136353039.roa
Signing time: Tue 04 Feb 2025 18:05:34 +0000
ROA not before: Tue 04 Feb 2025 18:00:34 +0000
ROA not after: Tue 03 Feb 2026 18:05:34 +0000
asID: 16509
IP address blocks: 200.12.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:6b:ce:a8:1e:3a:ed:c6:78:80:b2:5e:be:f7:53:7b:97:fc:51:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F60989A0240421B9E62F93B598BE390FD6CDCC6
Validity
Not Before: Feb 4 18:00:34 2025 GMT
Not After : Feb 3 18:05:34 2026 GMT
Subject: CN=EBE6C6DD9774FA8711908EA9DF898AEC7C0432D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ec:dd:fb:41:d1:c4:99:35:c1:14:33:72:e4:
11:e4:e6:9c:7b:77:c8:c1:a6:a6:3b:59:4c:57:38:
1e:35:ce:ce:a9:cd:2a:e0:e4:4a:a3:68:4e:7e:24:
41:d1:dc:d8:79:fc:e7:cf:e6:ce:4d:3c:da:ab:6e:
13:03:7a:03:d6:85:6e:2b:e8:f9:48:75:08:fc:08:
af:e6:b4:25:58:b2:f7:9a:af:ed:91:f5:ef:cc:47:
97:74:65:36:4e:4b:57:e2:c8:47:62:0e:50:82:b7:
fe:ca:13:b7:95:29:2d:5c:b6:8d:14:33:6e:5d:e1:
49:8e:fd:72:e7:da:3e:cf:97:39:ee:b4:66:e2:0f:
18:2d:c2:5c:aa:61:7a:1b:b2:06:09:18:77:98:b5:
c4:a6:d4:37:fe:74:9c:19:c9:49:18:74:8f:9f:79:
99:d4:3e:22:6a:48:2a:0d:71:5f:b1:2d:11:54:bd:
e5:e9:43:eb:7a:86:2c:2a:41:0c:46:81:a2:90:36:
54:82:2d:2b:d3:c7:b9:00:0a:00:41:6a:ac:03:c1:
89:de:f5:26:5c:1d:9d:03:62:1e:92:05:11:fd:6e:
97:69:a3:44:83:2b:1c:57:12:30:a6:0f:84:f3:ad:
98:d3:08:31:74:8f:71:c4:b8:54:32:b4:4c:e1:65:
f8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:E6:C6:DD:97:74:FA:87:11:90:8E:A9:DF:89:8A:EC:7C:04:32:D2
X509v3 Authority Key Identifier:
keyid:3F:60:98:9A:02:40:42:1B:9E:62:F9:3B:59:8B:E3:90:FD:6C:DC:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E1FCF006DE231C1E8F9AF43306DDA5F7FA1D2D8D4E6F8DB2F0B08C63D2FFBDFD/0/3F60989A0240421B9E62F93B598BE390FD6CDCC6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F60989A0240421B9E62F93B598BE390FD6CDCC6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E1FCF006DE231C1E8F9AF43306DDA5F7FA1D2D8D4E6F8DB2F0B08C63D2FFBDFD/0/3230302e31322e3139362e302f32342d3234203d3e203136353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.12.196.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:33:aa:de:73:7d:44:b8:f2:cd:de:37:64:89:bf:2d:36:f8:
ac:52:f0:13:b9:e2:4d:1f:84:54:bd:eb:35:d7:97:86:77:d1:
f9:f8:9a:f9:71:d5:1a:8e:ea:64:24:52:80:04:1c:0f:8c:1a:
71:87:0d:ce:23:bc:c1:2f:9f:22:05:7b:f8:73:1c:53:48:0b:
e7:66:5d:8f:0c:c7:bc:32:0a:76:28:80:f2:63:99:f8:1a:45:
f7:13:3c:88:0e:64:0b:47:13:d6:9f:ec:10:c0:f0:c0:6c:b9:
48:8d:78:e1:25:49:74:c2:4f:71:1f:2f:92:24:fd:11:07:a3:
8b:83:0f:bb:49:82:a1:7b:29:67:56:9b:86:2c:87:82:1b:19:
e4:73:86:b1:c9:06:db:58:95:af:38:24:5f:40:a9:10:7e:9f:
ba:17:0e:12:0d:b9:48:22:8a:39:d2:04:22:30:d9:b7:0c:e4:
5e:75:fd:b8:ec:3a:83:df:2c:02:e6:3a:06:e0:f1:6f:4d:17:
ec:c5:2e:74:e9:2d:ef:0c:56:28:8b:bf:dc:85:f7:77:b6:34:
3e:aa:c8:73:e3:94:23:98:0c:a9:67:a5:56:69:07:6f:89:7e:
33:a9:21:57:49:dd:52:c0:86:26:72:48:2b:6d:02:a4:df:a8:
03:e6:28:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:22:07 2025 by rpki-client