Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F3EB1087C8B4BB3CA5678E41F4538BAA836DF0D1F0C8EE32359654DFD2B5E894/0/3230302e35302e3135332e302f32342d3234203d3e20323733313131.roa
File: 3230302e35302e3135332e302f32342d3234203d3e20323733313131.roa (raw, json)
Hash identifier: nzF5fK2UUk1LvveOVsuW1y9DGzggu34eimH04qe6CWI=
Subject key identifier: 37:5D:51:F6:AA:5A:D0:A5:4A:58:08:A0:D2:63:54:9A:8C:E6:9B:5B
Certificate issuer: /CN=D8B4D8CF7C53F893FA81A1E1115BC8E0267F9845
Certificate serial: 0230FFD3A1856ABFBD77BA79218937BB06AA5BD0
Authority key identifier: D8:B4:D8:CF:7C:53:F8:93:FA:81:A1:E1:11:5B:C8:E0:26:7F:98:45
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B4D8CF7C53F893FA81A1E1115BC8E0267F9845.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F3EB1087C8B4BB3CA5678E41F4538BAA836DF0D1F0C8EE32359654DFD2B5E894/0/3230302e35302e3135332e302f32342d3234203d3e20323733313131.roa
Signing time: Tue 04 Feb 2025 20:06:11 +0000
ROA not before: Tue 04 Feb 2025 20:01:11 +0000
ROA not after: Tue 03 Feb 2026 20:06:11 +0000
asID: 273111
IP address blocks: 200.50.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:30:ff:d3:a1:85:6a:bf:bd:77:ba:79:21:89:37:bb:06:aa:5b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8B4D8CF7C53F893FA81A1E1115BC8E0267F9845
Validity
Not Before: Feb 4 20:01:11 2025 GMT
Not After : Feb 3 20:06:11 2026 GMT
Subject: CN=375D51F6AA5AD0A54A5808A0D263549A8CE69B5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:33:3e:55:34:3a:47:f7:2a:b3:fb:55:56:e5:
ba:5f:59:6e:68:e0:01:c1:5c:f7:95:e9:28:b6:81:
98:f5:18:7c:35:92:b4:2c:71:65:d1:8d:ce:cc:00:
90:51:a9:10:e6:5f:5e:ff:ed:e3:60:4f:9b:28:97:
2b:08:46:cd:73:01:6b:c5:7d:c0:fd:e3:73:5c:bb:
d7:ea:4b:ed:7e:14:8b:27:f9:a0:cb:70:b9:34:12:
a0:2d:5f:24:16:b9:ad:1f:ee:b9:af:a8:b1:00:64:
27:8b:7c:88:59:3a:e0:7a:c6:ad:aa:2d:bf:ee:e7:
38:69:48:a8:ff:e8:84:3f:7e:d0:ef:a1:af:f6:cb:
d9:9a:78:4c:c1:d1:0b:27:6f:dd:fe:89:b6:69:a3:
a1:d3:8e:17:16:1f:85:de:44:0d:04:33:00:ab:38:
6c:74:96:49:53:91:c1:8c:01:02:8f:29:3a:78:7b:
27:85:25:43:c9:2d:7a:fd:0d:85:3a:79:b2:7e:29:
b4:63:35:0c:7a:58:77:aa:30:e6:6e:40:ab:23:6a:
7d:a7:cd:f0:c8:4c:9a:86:09:5f:11:22:f2:67:fe:
94:94:a3:77:c6:5d:7f:6f:be:68:ab:f1:d1:2a:64:
9b:4c:ab:08:e7:22:13:c9:11:0c:d4:b0:9c:56:4e:
a4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5D:51:F6:AA:5A:D0:A5:4A:58:08:A0:D2:63:54:9A:8C:E6:9B:5B
X509v3 Authority Key Identifier:
keyid:D8:B4:D8:CF:7C:53:F8:93:FA:81:A1:E1:11:5B:C8:E0:26:7F:98:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F3EB1087C8B4BB3CA5678E41F4538BAA836DF0D1F0C8EE32359654DFD2B5E894/0/D8B4D8CF7C53F893FA81A1E1115BC8E0267F9845.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B4D8CF7C53F893FA81A1E1115BC8E0267F9845.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F3EB1087C8B4BB3CA5678E41F4538BAA836DF0D1F0C8EE32359654DFD2B5E894/0/3230302e35302e3135332e302f32342d3234203d3e20323733313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.50.153.0/24
Signature Algorithm: sha256WithRSAEncryption
40:1c:5c:1c:32:2e:e1:dc:0b:7a:57:1e:cd:e0:8c:62:20:b2:
cb:aa:af:48:92:06:aa:01:11:4f:46:fe:5e:fc:30:05:66:61:
1d:b6:e5:b4:d7:c2:a9:0c:ca:e6:3f:fb:8f:31:32:81:2e:d6:
00:31:49:ad:11:61:07:2d:65:ff:9d:a1:0f:30:e2:15:02:e2:
8b:56:b5:57:7f:da:b7:5f:c4:0f:4d:df:cc:75:63:39:d1:ef:
7d:ef:91:2d:85:93:44:18:de:e0:8c:37:75:82:37:a2:6a:29:
77:b6:23:9e:9c:85:3f:e4:ff:ac:44:aa:12:11:fa:66:a1:3f:
e2:0e:6c:ec:ec:1c:cb:88:ce:59:2b:4d:87:ef:c3:88:9b:0f:
10:c5:fa:81:3f:d3:05:79:de:7e:e3:18:bd:4b:18:13:02:2b:
40:57:0d:18:ba:15:45:2b:3b:f7:a7:f2:7d:8b:ae:e0:a4:05:
a4:e2:ca:ca:a0:49:e8:65:46:25:e9:a1:dd:54:de:f1:df:b0:
60:42:ec:53:b1:0d:28:a6:5b:b9:37:b8:f5:b8:13:99:a9:d7:
cb:1f:03:26:97:57:a4:47:e6:00:8b:18:4c:1e:1e:f8:da:a5:
5c:14:46:b4:66:09:ff:24:9a:17:66:8e:23:8e:65:28:23:ce:
1e:a0:01:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:47:07 2025 by rpki-client