Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/01BB6E0FC87B834BAF2BA2E1225203397532F5ACA15D9122BB347346F7D6E288/0/34352e3137342e3134382e302f32322d3234203d3e20323637383239.roa
File: 34352e3137342e3134382e302f32322d3234203d3e20323637383239.roa (raw, json)
Hash identifier: lEdxBwlgZmJ+hu5iUS0XCAMTCVCfcpY6yKsHn5KqtCA=
Subject key identifier: D4:A3:5A:ED:70:BC:70:94:B1:ED:7E:C4:A2:E5:38:01:63:CB:3B:92
Certificate issuer: /CN=38BB77D54066782A688F0637FD2B6B6CEF74FC3E
Certificate serial: 73449E9B6DC212FA71926647FE7B14F986648513
Authority key identifier: 38:BB:77:D5:40:66:78:2A:68:8F:06:37:FD:2B:6B:6C:EF:74:FC:3E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/38BB77D54066782A688F0637FD2B6B6CEF74FC3E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/01BB6E0FC87B834BAF2BA2E1225203397532F5ACA15D9122BB347346F7D6E288/0/34352e3137342e3134382e302f32322d3234203d3e20323637383239.roa
Signing time: Tue 04 Feb 2025 18:36:51 +0000
ROA not before: Tue 04 Feb 2025 18:31:51 +0000
ROA not after: Tue 03 Feb 2026 18:36:51 +0000
asID: 267829
IP address blocks: 45.174.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:44:9e:9b:6d:c2:12:fa:71:92:66:47:fe:7b:14:f9:86:64:85:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38BB77D54066782A688F0637FD2B6B6CEF74FC3E
Validity
Not Before: Feb 4 18:31:51 2025 GMT
Not After : Feb 3 18:36:51 2026 GMT
Subject: CN=D4A35AED70BC7094B1ED7EC4A2E5380163CB3B92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:14:8d:ff:fa:45:10:4c:c7:96:c4:b9:88:e4:
26:24:9e:3f:cc:62:0b:bb:59:54:67:cb:2d:6e:1b:
1b:e7:e2:0f:75:cd:9b:cd:cc:7c:41:04:2e:69:5e:
ac:db:e4:5f:44:7b:28:08:ef:81:3f:ec:d4:76:5f:
71:23:d9:2b:6f:2a:e5:7f:c7:5d:be:d8:d3:bb:e2:
0e:00:49:6a:75:83:95:90:4f:63:72:2f:86:28:d9:
b2:2a:5b:1e:0a:a5:de:1d:31:e2:c0:83:f5:41:51:
09:cd:a2:cd:1a:a5:94:bc:6a:29:9d:0d:36:b1:fe:
29:60:0d:f3:c0:6e:d5:5b:26:a0:cd:67:1e:c1:28:
c6:f2:50:02:5e:49:5b:61:1c:cd:5d:83:cc:55:d7:
19:30:a7:84:44:d8:bb:00:5a:68:c0:05:74:dd:b3:
45:c7:94:11:b1:85:26:a6:6a:f2:f9:2e:08:e7:36:
24:7b:0f:39:73:d4:4c:de:b0:27:17:08:a4:e0:99:
33:3d:c9:82:ec:08:e7:45:a6:9a:be:5f:51:60:ad:
7d:98:86:6b:11:19:a5:28:72:c7:55:42:85:71:a2:
4d:f8:ec:18:57:06:26:30:e5:5c:4b:a2:eb:e9:a5:
07:4e:35:07:64:c9:81:1e:f4:5b:1b:c3:c2:24:85:
0e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A3:5A:ED:70:BC:70:94:B1:ED:7E:C4:A2:E5:38:01:63:CB:3B:92
X509v3 Authority Key Identifier:
keyid:38:BB:77:D5:40:66:78:2A:68:8F:06:37:FD:2B:6B:6C:EF:74:FC:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/01BB6E0FC87B834BAF2BA2E1225203397532F5ACA15D9122BB347346F7D6E288/0/38BB77D54066782A688F0637FD2B6B6CEF74FC3E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/38BB77D54066782A688F0637FD2B6B6CEF74FC3E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/01BB6E0FC87B834BAF2BA2E1225203397532F5ACA15D9122BB347346F7D6E288/0/34352e3137342e3134382e302f32322d3234203d3e20323637383239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.174.148.0/22
Signature Algorithm: sha256WithRSAEncryption
46:67:57:79:85:5a:97:15:a9:3d:69:17:0e:09:cc:23:c6:90:
1e:84:40:b5:93:5a:88:45:e9:fb:e0:fd:ea:b2:3a:51:e1:a5:
7f:62:49:6c:e0:0b:66:4c:5a:27:68:48:8b:2f:5c:98:69:f0:
05:40:ef:a9:9e:f5:0e:2e:e4:ba:1d:59:e6:d0:8d:af:2a:33:
b0:cd:df:3d:42:03:6a:59:fa:85:4a:dd:ec:ef:07:b7:77:c2:
33:6b:a4:49:5b:c2:87:79:c8:c9:54:68:1b:b0:74:50:c2:40:
a3:f7:91:ef:bd:1f:fd:62:c4:0b:c8:f6:19:87:51:e0:6d:7c:
4c:f2:e1:af:13:c1:62:e9:9f:79:92:80:be:7d:4c:db:d9:33:
f5:41:6d:49:e4:f1:5a:b2:af:dc:6b:ba:00:78:58:26:ba:0f:
55:5e:15:03:f0:3f:58:7a:72:d5:37:23:57:22:84:6a:4b:96:
89:99:ec:4f:23:83:cc:d0:ef:aa:7c:de:70:a4:48:b2:2b:31:
98:fc:00:49:73:9d:7c:5e:95:56:f6:c8:25:c3:5f:ba:bb:9f:
2c:aa:9d:c5:93:03:9e:40:7d:19:cf:a7:bb:20:32:af:5e:f6:
91:90:ab:42:65:04:79:17:de:39:7f:77:cd:ad:24:73:92:fa:
2e:44:d1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:54 2025 by rpki-client