Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/09F9E0A0FA6F9AC66A133D8A8EEC5686AF036E3DF09331A90EC1F99B02D94088/0/3137302e3234372e35362e302f32322d3234203d3e20323635363436.roa
File: 3137302e3234372e35362e302f32322d3234203d3e20323635363436.roa (raw, json)
Hash identifier: rNIo5yShBq8vmBlTmgl4Ot/qWwNHJ3/C7FkAGRt18+k=
Subject key identifier: ED:7A:50:E4:41:09:B5:F4:66:78:39:F8:1F:83:CB:00:A7:E2:77:B7
Certificate issuer: /CN=125312172ACB5206FC23726C19566C8F6B3F0B99
Certificate serial: 64CD2CE92EC56012D60032545B608E41422D5A7D
Authority key identifier: 12:53:12:17:2A:CB:52:06:FC:23:72:6C:19:56:6C:8F:6B:3F:0B:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/125312172ACB5206FC23726C19566C8F6B3F0B99.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/09F9E0A0FA6F9AC66A133D8A8EEC5686AF036E3DF09331A90EC1F99B02D94088/0/3137302e3234372e35362e302f32322d3234203d3e20323635363436.roa
Signing time: Tue 04 Feb 2025 18:35:50 +0000
ROA not before: Tue 04 Feb 2025 18:30:50 +0000
ROA not after: Tue 03 Feb 2026 18:35:50 +0000
asID: 265646
IP address blocks: 170.247.56.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:cd:2c:e9:2e:c5:60:12:d6:00:32:54:5b:60:8e:41:42:2d:5a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=125312172ACB5206FC23726C19566C8F6B3F0B99
Validity
Not Before: Feb 4 18:30:50 2025 GMT
Not After : Feb 3 18:35:50 2026 GMT
Subject: CN=ED7A50E44109B5F4667839F81F83CB00A7E277B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6b:3a:4e:f5:ed:a7:08:50:70:bc:ee:63:ab:
10:9e:7a:d8:81:31:ca:dc:4b:40:19:98:d4:f4:89:
c5:9d:4f:c4:e2:5d:27:8a:64:02:fe:31:95:84:df:
9d:31:01:c2:85:1e:e3:72:d1:5d:72:96:1e:ec:0e:
1f:d8:ed:7f:2c:cd:dd:54:5b:69:67:df:32:a7:8d:
63:4b:0d:13:27:7c:33:db:fa:f4:f5:41:8d:12:ab:
d7:32:5d:4e:0f:b8:73:10:40:20:5a:88:91:76:71:
d0:d8:28:f9:4a:a7:f0:6f:1b:54:46:55:07:5c:87:
46:d8:7b:79:18:91:18:e7:4f:d7:b8:79:56:3f:a4:
bd:61:37:fc:7d:c8:ec:9e:a4:04:b5:d7:94:6c:cf:
c6:0a:bd:41:34:a4:c9:0b:2e:40:68:a0:9e:88:2f:
26:2c:df:45:55:51:97:5f:b5:a3:89:f8:b7:7c:8b:
0e:37:05:c7:3e:1a:ab:28:b8:b0:e1:9d:99:c5:5f:
b2:7d:9a:a1:b7:49:4a:82:9f:e2:b7:50:15:6f:83:
f3:6f:8b:59:d6:07:2f:15:ef:fc:75:92:e7:d9:c2:
b3:80:f1:bc:eb:6c:b8:01:60:75:0d:8e:81:67:bd:
18:4d:dc:d7:66:90:1c:f4:ec:5c:17:32:b3:1e:8e:
56:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:7A:50:E4:41:09:B5:F4:66:78:39:F8:1F:83:CB:00:A7:E2:77:B7
X509v3 Authority Key Identifier:
keyid:12:53:12:17:2A:CB:52:06:FC:23:72:6C:19:56:6C:8F:6B:3F:0B:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/09F9E0A0FA6F9AC66A133D8A8EEC5686AF036E3DF09331A90EC1F99B02D94088/0/125312172ACB5206FC23726C19566C8F6B3F0B99.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/125312172ACB5206FC23726C19566C8F6B3F0B99.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/09F9E0A0FA6F9AC66A133D8A8EEC5686AF036E3DF09331A90EC1F99B02D94088/0/3137302e3234372e35362e302f32322d3234203d3e20323635363436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.247.56.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:b9:57:84:4d:0a:40:3e:79:8f:aa:a1:34:49:3b:e0:ea:c8:
e1:85:aa:11:69:a5:1c:7d:b0:b2:6d:f8:ab:6e:32:38:32:19:
be:d9:40:f2:ee:47:75:cc:ff:7e:77:56:17:7e:a8:00:82:c3:
01:76:75:96:c9:f5:78:2c:02:25:a8:c4:1a:69:22:1a:57:1d:
ae:af:91:ca:bd:1b:21:21:21:c2:34:67:0a:5e:23:43:16:d4:
e3:32:92:da:1b:00:61:2c:89:83:14:09:95:d9:e4:cf:ad:4f:
c7:fd:38:cb:d0:15:7e:2e:17:a2:d0:37:60:ac:96:cc:c6:3f:
94:8b:6a:e0:3b:0d:da:b2:fe:80:d2:87:d3:97:c9:87:82:25:
17:97:00:a4:2b:9e:55:46:fa:d6:fe:67:b3:ae:e7:f2:b9:40:
2d:34:ac:1d:34:a7:e4:1b:f1:35:39:2b:40:46:95:ce:3c:ca:
be:91:5d:4f:a5:70:43:3b:f8:fd:c1:db:04:5f:7e:ed:f9:65:
ef:6a:96:38:03:d0:73:7c:9c:4d:d8:ac:7c:c7:9b:23:f1:7d:
1b:86:7e:52:54:69:af:b9:ed:72:62:aa:7d:f7:fd:e5:5f:06:
68:4d:9f:2e:51:d9:08:d0:3f:da:7d:11:09:2c:b1:9c:5a:f5:
15:77:b6:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:08 2025 by rpki-client