Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F5E52B7B2E39B1BEFD92F6DA5E0C5E6414396BD8C1335E234062C29F76A38F3A/0/3230302e322e3132302e302f32312d3234203d3e203237373932.roa
File: 3230302e322e3132302e302f32312d3234203d3e203237373932.roa (raw, json)
Hash identifier: D5DMKHlHzw9CvA1rcnA1jSrkcOaXf2GeyYaX/Dm4vgg=
Subject key identifier: 33:BE:E6:9D:45:48:6F:AF:3F:DD:41:37:F1:24:06:0F:5B:B4:8E:0C
Certificate issuer: /CN=AF3F9A6BD149BB2CB7627F3B2E5B7429C55B7BF6
Certificate serial: 7A26AA897ADE29661B62B59F14DF8253AE4569E7
Authority key identifier: AF:3F:9A:6B:D1:49:BB:2C:B7:62:7F:3B:2E:5B:74:29:C5:5B:7B:F6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AF3F9A6BD149BB2CB7627F3B2E5B7429C55B7BF6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F5E52B7B2E39B1BEFD92F6DA5E0C5E6414396BD8C1335E234062C29F76A38F3A/0/3230302e322e3132302e302f32312d3234203d3e203237373932.roa
Signing time: Tue 04 Feb 2025 18:19:48 +0000
ROA not before: Tue 04 Feb 2025 18:14:48 +0000
ROA not after: Tue 03 Feb 2026 18:19:48 +0000
asID: 27792
IP address blocks: 200.2.120.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:26:aa:89:7a:de:29:66:1b:62:b5:9f:14:df:82:53:ae:45:69:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF3F9A6BD149BB2CB7627F3B2E5B7429C55B7BF6
Validity
Not Before: Feb 4 18:14:48 2025 GMT
Not After : Feb 3 18:19:48 2026 GMT
Subject: CN=33BEE69D45486FAF3FDD4137F124060F5BB48E0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b2:a0:65:49:3d:70:b3:b4:0e:ed:86:26:e2:
b9:d1:a6:61:66:9c:79:a4:29:dc:cf:28:0b:81:5f:
e2:50:72:ed:71:c1:15:a1:3a:c0:79:9c:4c:83:25:
70:06:31:e4:2d:e8:92:8b:7b:38:f5:f0:0a:41:37:
2b:39:44:79:17:a4:e1:d6:e7:d0:68:df:a7:e3:7b:
7f:4b:5e:c1:0d:f8:2a:46:7c:8c:30:df:4f:9a:3e:
36:8b:ce:68:28:10:9c:26:60:54:08:40:fa:58:18:
57:4f:57:60:43:c7:d8:23:44:d8:f9:1b:80:67:c1:
eb:b7:f2:61:a7:44:48:05:96:65:bb:55:d3:42:70:
db:03:93:20:42:94:03:2c:de:37:3a:be:25:ee:c5:
7f:6b:3d:eb:a8:9c:87:29:19:3e:c6:8e:1d:45:be:
61:a9:a8:32:3b:c1:eb:14:61:56:8d:48:9b:09:f1:
0e:f4:25:c6:f9:e0:db:ff:5e:1b:2e:d7:9b:b4:38:
06:31:8f:1f:0e:9c:ec:13:ce:bb:ea:64:aa:d4:97:
70:29:c1:48:24:90:ef:04:32:99:83:35:87:d4:60:
c4:ea:f1:2a:d8:f8:1d:29:d8:d1:a5:b6:15:f6:be:
57:cb:47:34:02:e4:25:44:30:4a:42:1f:96:0a:4b:
0c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:BE:E6:9D:45:48:6F:AF:3F:DD:41:37:F1:24:06:0F:5B:B4:8E:0C
X509v3 Authority Key Identifier:
keyid:AF:3F:9A:6B:D1:49:BB:2C:B7:62:7F:3B:2E:5B:74:29:C5:5B:7B:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F5E52B7B2E39B1BEFD92F6DA5E0C5E6414396BD8C1335E234062C29F76A38F3A/0/AF3F9A6BD149BB2CB7627F3B2E5B7429C55B7BF6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AF3F9A6BD149BB2CB7627F3B2E5B7429C55B7BF6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F5E52B7B2E39B1BEFD92F6DA5E0C5E6414396BD8C1335E234062C29F76A38F3A/0/3230302e322e3132302e302f32312d3234203d3e203237373932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.2.120.0/21
Signature Algorithm: sha256WithRSAEncryption
59:0a:01:14:f8:5f:af:f7:e7:e0:4b:4c:71:08:1f:fb:b6:1b:
4a:0f:6d:85:76:3c:74:2f:b2:8c:6e:89:eb:7d:96:cc:11:99:
02:7d:57:e8:27:b6:f3:e3:72:4f:29:ea:d2:d5:fd:62:65:d9:
fc:5e:fa:bc:ec:23:41:d3:ac:e9:30:4e:33:56:1a:7e:9b:81:
01:e0:bc:6c:6d:2a:02:27:a8:34:d0:4a:63:6b:c8:44:30:a6:
ad:7f:b5:a7:ac:82:47:63:ab:e1:ff:39:98:70:b1:13:61:68:
a1:4f:88:4d:55:12:f3:08:5a:49:55:f0:e6:58:25:fc:0f:f7:
64:33:f7:8b:89:24:96:f4:1f:a0:2e:a2:4c:f4:c5:b3:52:9a:
9b:59:ad:98:c3:9c:55:76:7f:f8:c3:53:45:5e:28:3e:1b:4c:
51:e1:84:47:1d:03:6c:42:68:06:ca:55:e7:91:58:09:bd:89:
64:a4:f2:dd:1f:3c:cb:1c:5c:04:4e:09:59:a9:be:ff:78:b6:
e5:6f:a3:c8:e3:1b:ec:e3:6e:ca:93:f4:25:69:91:90:bd:1f:
09:b8:1f:2b:c7:cf:21:25:4c:a5:b4:f4:93:24:6f:a5:4a:7f:
56:20:69:a0:ce:d5:89:a4:8e:5c:4f:11:b4:3f:36:4f:e2:9f:
d8:e3:c5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:39 2025 by rpki-client