Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F0D21D17F8A2D38BF63D76EC2894A767C5FC1ED7BCD1DA1864C1934A4ED183D9/0/3230302e37312e3130382e302f32322d3234203d3e20323635363036.roa
File: 3230302e37312e3130382e302f32322d3234203d3e20323635363036.roa (raw, json)
Hash identifier: cmJBQqqv0NwdJxnmd/33hIR7s29wsLQU4vgOLDqSphc=
Subject key identifier: CF:DE:AC:2E:67:CF:A5:03:9D:AA:3C:6B:73:11:0B:2D:DE:B1:E6:19
Certificate issuer: /CN=C640513CAB898A7B4B1CA0EAB7CAAB035AE585C6
Certificate serial: 17EABA68A4ABC6A3F68E96D3B2E25B8BDB7408FA
Authority key identifier: C6:40:51:3C:AB:89:8A:7B:4B:1C:A0:EA:B7:CA:AB:03:5A:E5:85:C6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C640513CAB898A7B4B1CA0EAB7CAAB035AE585C6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F0D21D17F8A2D38BF63D76EC2894A767C5FC1ED7BCD1DA1864C1934A4ED183D9/0/3230302e37312e3130382e302f32322d3234203d3e20323635363036.roa
Signing time: Tue 04 Feb 2025 20:01:27 +0000
ROA not before: Tue 04 Feb 2025 19:56:27 +0000
ROA not after: Tue 03 Feb 2026 20:01:27 +0000
asID: 265606
IP address blocks: 200.71.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:ea:ba:68:a4:ab:c6:a3:f6:8e:96:d3:b2:e2:5b:8b:db:74:08:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C640513CAB898A7B4B1CA0EAB7CAAB035AE585C6
Validity
Not Before: Feb 4 19:56:27 2025 GMT
Not After : Feb 3 20:01:27 2026 GMT
Subject: CN=CFDEAC2E67CFA5039DAA3C6B73110B2DDEB1E619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:57:c5:b2:23:29:d6:eb:3d:cc:c3:73:89:13:
51:0b:99:d9:fb:49:bf:29:1f:f8:2c:25:8a:53:a5:
ce:89:3a:39:67:2d:e2:7c:e5:02:b9:d4:ae:ea:b3:
ee:8f:1d:15:c5:43:30:b9:a7:65:e9:11:99:a3:00:
4a:c4:fd:2c:b9:04:92:07:c9:c9:ff:be:1f:a2:19:
c8:c1:65:fd:0c:39:fa:97:cf:27:30:4f:63:12:8e:
46:be:cc:82:62:6f:3f:f9:d2:e6:79:f2:e1:38:bd:
fd:4c:68:1f:9d:b9:01:b7:11:47:16:d1:28:9d:a6:
15:23:fd:a7:84:1a:20:53:5f:7d:91:26:4e:05:e9:
d5:f5:47:7b:a9:d8:e4:a0:9c:8a:99:e9:26:4c:3a:
72:e6:6c:aa:13:2f:56:94:69:2d:bc:84:c6:64:60:
23:57:76:2d:ef:3e:fd:9b:24:2d:5c:03:30:51:56:
da:c1:04:5e:7c:f7:64:5f:44:06:4f:bb:04:69:4f:
51:c8:15:91:d3:56:6f:46:d9:98:59:fd:52:fb:fc:
b8:ed:71:d8:13:14:76:19:1b:31:43:8a:f4:81:24:
99:d8:2c:7f:32:61:fc:2a:42:6c:6c:8f:a3:0b:06:
44:72:0d:f1:84:c7:92:08:16:94:d5:05:3f:ca:58:
4a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DE:AC:2E:67:CF:A5:03:9D:AA:3C:6B:73:11:0B:2D:DE:B1:E6:19
X509v3 Authority Key Identifier:
keyid:C6:40:51:3C:AB:89:8A:7B:4B:1C:A0:EA:B7:CA:AB:03:5A:E5:85:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F0D21D17F8A2D38BF63D76EC2894A767C5FC1ED7BCD1DA1864C1934A4ED183D9/0/C640513CAB898A7B4B1CA0EAB7CAAB035AE585C6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C640513CAB898A7B4B1CA0EAB7CAAB035AE585C6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F0D21D17F8A2D38BF63D76EC2894A767C5FC1ED7BCD1DA1864C1934A4ED183D9/0/3230302e37312e3130382e302f32322d3234203d3e20323635363036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.71.108.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:dd:9d:58:8f:49:ed:29:ee:90:2a:49:cd:1e:4c:c8:a9:ea:
46:8e:40:7d:78:1d:0e:d2:86:41:f2:ad:e8:ef:b7:a6:1c:d4:
27:3c:c6:19:4b:95:45:a6:ac:83:0f:6b:6e:d4:93:c4:00:52:
46:a0:2d:b4:ad:b9:42:e8:36:36:e8:de:c1:25:b0:51:d5:62:
89:d6:dd:d4:10:99:a2:10:08:98:47:f7:6c:95:5d:88:60:88:
68:a2:76:9d:ab:22:b0:7b:ad:60:42:e0:69:c9:4b:24:31:25:
a6:07:7a:0b:44:7a:56:65:fd:8d:e8:df:7a:eb:23:ab:e3:9a:
bb:c4:ee:3c:2d:30:d4:42:77:6c:b0:75:81:cd:2e:18:69:49:
a4:06:19:99:90:1e:51:27:fd:85:3c:59:dc:7d:2f:c3:9b:e6:
ac:8b:83:b6:89:11:af:23:e7:0c:4b:a0:39:4a:3b:f3:88:c2:
a4:60:90:35:67:c9:a8:1d:a1:9d:cf:bd:53:72:89:bf:fa:3f:
c8:23:33:c7:ed:73:f5:42:6e:92:49:75:97:63:38:ef:da:f0:
31:fe:2a:03:d7:b7:4f:e6:9a:a6:b2:25:5d:4f:4f:14:41:0b:
4b:8f:e2:54:1c:4f:f3:1e:ca:16:17:5a:2b:4a:ad:98:e3:03:
b6:bd:54:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:31:31 2025 by rpki-client