Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234332e302f32342d3234203d3e203238353532.roa
File: 3230312e3135392e3234332e302f32342d3234203d3e203238353532.roa (raw, json)
Hash identifier: kNfEbj5kWcg5y3xuVwYBov0saaVY7i6948Z27klofU0=
Subject key identifier: 17:21:7C:F6:7F:63:81:9C:E1:26:7C:AE:01:6A:97:93:BF:89:C7:AC
Certificate issuer: /CN=BD43B3A76583426984FFC51B907F3FD29E2F3BB0
Certificate serial: 42E61D8F2E1FAC2B50173067F687BC806844B9D5
Authority key identifier: BD:43:B3:A7:65:83:42:69:84:FF:C5:1B:90:7F:3F:D2:9E:2F:3B:B0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234332e302f32342d3234203d3e203238353532.roa
Signing time: Tue 04 Feb 2025 14:20:01 +0000
ROA not before: Tue 04 Feb 2025 14:15:01 +0000
ROA not after: Tue 03 Feb 2026 14:20:01 +0000
asID: 28552
IP address blocks: 201.159.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:e6:1d:8f:2e:1f:ac:2b:50:17:30:67:f6:87:bc:80:68:44:b9:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD43B3A76583426984FFC51B907F3FD29E2F3BB0
Validity
Not Before: Feb 4 14:15:01 2025 GMT
Not After : Feb 3 14:20:01 2026 GMT
Subject: CN=17217CF67F63819CE1267CAE016A9793BF89C7AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:16:fe:e7:f9:59:6b:6f:3f:8c:74:52:d5:52:
20:b5:ff:88:3b:bb:f6:d6:fc:19:38:4a:69:f6:a9:
dd:2c:ca:30:ec:92:bc:19:fd:d8:8f:89:62:6f:cf:
b9:9a:6f:a4:e1:e5:d8:a7:33:9b:94:86:e4:3c:83:
95:a0:10:52:ac:37:18:17:99:8e:31:ec:e4:94:0d:
ed:99:3c:6b:90:c7:de:ec:d5:49:74:a7:14:60:02:
d8:37:15:3a:22:8b:1c:a8:e9:97:57:81:55:35:df:
39:54:22:fa:84:67:27:13:af:a7:1c:97:61:c5:fc:
68:05:f3:88:20:85:09:1f:9e:6b:b2:5b:ef:d6:d9:
d5:fe:95:e3:00:b4:80:ba:46:35:ee:52:5c:ac:ee:
23:e5:0e:aa:fe:cf:5c:0d:52:03:12:3f:20:84:b0:
5e:22:55:82:ff:2a:b0:9a:6b:8f:68:b7:08:48:9e:
ec:81:b5:eb:4d:10:11:a0:21:58:4c:9a:4a:ad:1c:
12:e7:00:0c:72:f4:6c:d4:60:57:d3:b9:ae:2e:0f:
80:05:fe:1b:1e:33:71:c7:00:61:ce:a8:13:71:7a:
6b:10:7a:f6:1e:5a:b7:c5:d3:ed:ee:85:9d:03:4f:
b0:a5:52:5f:9f:01:63:d6:e8:74:7f:a0:25:93:83:
20:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:21:7C:F6:7F:63:81:9C:E1:26:7C:AE:01:6A:97:93:BF:89:C7:AC
X509v3 Authority Key Identifier:
keyid:BD:43:B3:A7:65:83:42:69:84:FF:C5:1B:90:7F:3F:D2:9E:2F:3B:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234332e302f32342d3234203d3e203238353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.159.243.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:02:5d:43:d3:eb:63:05:70:3c:ed:c9:65:56:5b:ec:3c:f1:
14:5d:66:b7:06:32:5e:e8:1c:b8:8e:62:06:2f:31:4a:9b:23:
fe:a5:1a:57:6a:c4:90:94:7c:ea:57:aa:e4:ac:8a:b9:76:1a:
bd:60:58:72:6b:0a:e6:15:90:f2:3d:a7:de:e1:e5:19:36:ea:
00:5a:f7:d9:53:9f:5a:1d:35:f4:5a:c5:dc:87:7d:0c:bc:a5:
a2:84:b1:67:c5:c7:3a:a7:f0:03:b3:65:50:c5:a9:af:9e:c4:
f6:fa:1b:06:ba:90:5f:f3:fe:01:d5:71:e9:40:94:4d:b6:29:
88:8b:24:89:ec:b6:19:ca:b4:32:83:dc:72:a6:b6:dd:95:d3:
4d:38:53:07:d6:cd:1d:6b:10:87:c3:f2:48:01:64:24:36:2f:
93:b5:21:ae:69:29:27:5b:d7:a1:09:a0:cf:75:66:27:a7:a9:
8b:e7:a2:94:63:96:ce:3a:d7:1e:25:34:f0:d7:d1:ad:e5:e3:
87:e2:3e:6f:a6:0f:ba:17:47:a1:9b:5a:e6:6d:71:ed:b7:0b:
ff:12:ee:5f:ab:bc:8c:1b:02:3f:25:f7:28:54:9d:26:57:34:
15:e5:31:9a:10:83:06:1c:8d:72:f6:77:3a:9d:c8:8d:7d:d4:
45:dc:c3:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 07:21:42 2025 by rpki-client