Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F207CCF97F44CDD65B7B130389FDBC9E32213F8E9E8671D59BAD81080264A6D1/0/3230302e31302e3135362e302f32342d3234203d3e203139393035.roa
File: 3230302e31302e3135362e302f32342d3234203d3e203139393035.roa (raw, json)
Hash identifier: bDGvSgzXepfqaBjNqpdJ8j8/CE+Aq0NxQh0D//tkdsc=
Subject key identifier: 2C:29:E9:71:6E:C4:37:B9:50:B3:D6:15:55:26:19:82:25:EC:94:FF
Certificate issuer: /CN=D8B4C3626E6F6928DC3655F1ED05EB7827A4FBB9
Certificate serial: 17D8BA510012A81A63D4EA474C3FD4FE21FA2128
Authority key identifier: D8:B4:C3:62:6E:6F:69:28:DC:36:55:F1:ED:05:EB:78:27:A4:FB:B9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B4C3626E6F6928DC3655F1ED05EB7827A4FBB9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F207CCF97F44CDD65B7B130389FDBC9E32213F8E9E8671D59BAD81080264A6D1/0/3230302e31302e3135362e302f32342d3234203d3e203139393035.roa
Signing time: Tue 04 Feb 2025 20:07:47 +0000
ROA not before: Tue 04 Feb 2025 20:02:47 +0000
ROA not after: Tue 03 Feb 2026 20:07:47 +0000
asID: 19905
IP address blocks: 200.10.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:d8:ba:51:00:12:a8:1a:63:d4:ea:47:4c:3f:d4:fe:21:fa:21:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8B4C3626E6F6928DC3655F1ED05EB7827A4FBB9
Validity
Not Before: Feb 4 20:02:47 2025 GMT
Not After : Feb 3 20:07:47 2026 GMT
Subject: CN=2C29E9716EC437B950B3D6155526198225EC94FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:3b:e9:f8:6f:53:08:b4:81:ff:f9:de:0f:d9:
74:b4:95:a8:d6:1e:42:a9:1f:9a:28:0c:50:be:2d:
42:96:fb:69:7a:05:79:e2:1f:3f:7d:a4:87:3c:04:
55:97:62:ef:10:2f:ed:a4:fa:4e:f9:49:0c:9d:2a:
16:32:09:f0:4c:a6:e8:0b:34:f3:ba:e3:28:4b:f4:
2a:bc:28:59:df:b4:92:19:34:5a:cc:12:0b:72:0c:
e0:24:2e:83:94:39:13:9d:8d:96:47:81:3f:fc:45:
37:4f:e5:ca:cc:fa:0d:39:f5:22:1d:a9:6a:41:89:
33:f2:fe:03:c9:d4:21:98:8d:83:87:b2:47:ed:d0:
b2:81:10:16:e9:60:bc:52:01:f1:39:e2:59:5e:69:
80:54:00:90:07:06:f6:e3:ea:1f:f0:e4:81:4b:69:
c2:f3:5a:dc:6e:9e:06:33:82:26:3c:0b:f0:f3:13:
86:36:6f:75:8d:a3:ce:13:ad:50:3b:dc:8d:af:d4:
5c:27:bd:41:4c:b7:f1:35:74:66:36:1d:0e:87:0f:
51:7d:8d:ab:2d:b9:48:d1:8a:6d:84:57:c8:46:15:
2a:e0:0a:fb:5e:ea:0a:51:f4:24:d3:3a:a2:97:b9:
da:9a:58:42:08:76:7d:c8:da:ca:10:55:84:2e:ad:
ff:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:29:E9:71:6E:C4:37:B9:50:B3:D6:15:55:26:19:82:25:EC:94:FF
X509v3 Authority Key Identifier:
keyid:D8:B4:C3:62:6E:6F:69:28:DC:36:55:F1:ED:05:EB:78:27:A4:FB:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F207CCF97F44CDD65B7B130389FDBC9E32213F8E9E8671D59BAD81080264A6D1/0/D8B4C3626E6F6928DC3655F1ED05EB7827A4FBB9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B4C3626E6F6928DC3655F1ED05EB7827A4FBB9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F207CCF97F44CDD65B7B130389FDBC9E32213F8E9E8671D59BAD81080264A6D1/0/3230302e31302e3135362e302f32342d3234203d3e203139393035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.10.156.0/24
Signature Algorithm: sha256WithRSAEncryption
21:33:cf:05:f5:a1:d3:4d:0f:ec:4b:96:03:3a:69:a1:ad:5b:
b9:ae:94:8b:43:19:b9:aa:80:2b:32:4d:cc:28:4b:c9:51:d3:
bf:96:b0:da:2e:5c:31:3b:c2:f3:74:3c:86:88:84:c8:64:c2:
03:ec:3d:45:5a:9a:5f:75:a6:e9:63:8f:d0:36:47:37:d7:d6:
ef:a8:b0:d0:dd:20:c3:19:7b:28:eb:da:5a:c7:5a:76:f8:19:
64:28:8c:3f:05:1a:83:48:51:e6:db:d3:9b:e7:48:5b:be:e5:
1f:d6:d8:90:15:4b:09:ab:4a:53:b6:51:79:0f:98:0d:f6:3f:
e0:a6:4f:47:f3:3e:a1:36:99:66:85:45:d0:57:a6:53:c9:65:
68:3f:6b:00:ba:64:41:8b:67:f9:05:54:53:ee:8e:26:06:32:
05:56:e2:e0:7e:28:f7:16:47:3f:25:f0:9e:20:57:32:09:b9:
c7:93:2c:98:ec:a6:8a:fd:ea:61:58:c7:8a:dc:ef:12:17:f6:
2d:a6:ad:e3:62:81:cb:ae:ea:0c:fd:43:7e:d7:c5:17:d3:25:
44:5b:9f:18:e3:28:94:c5:ab:30:08:f2:44:09:65:8a:5d:2b:
60:d1:a6:d6:90:13:c2:c8:cb:ae:f5:78:27:25:8b:c2:46:53:
2c:6e:9d:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:09 2025 by rpki-client