Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0AF62B4175952DB361DCE557BE522179AC716A56A36A743D8E7268AFF1A4307B/0/34352e352e32302e302f32342d3234203d3e20323635363835.roa
File: 34352e352e32302e302f32342d3234203d3e20323635363835.roa (raw, json)
Hash identifier: 07z1fA6c/yfjwMu8Dr6sqW2ojadDtcHHEIY+qnH5vig=
Subject key identifier: 52:E4:11:83:09:18:9C:9F:44:E3:03:2F:BD:1E:3B:E7:A4:BD:90:38
Certificate issuer: /CN=895B4D927A602F9CA222D8FCAF756DD4A38DC945
Certificate serial: 165D1C5787E3B5D3F4008526207E0996E372A48F
Authority key identifier: 89:5B:4D:92:7A:60:2F:9C:A2:22:D8:FC:AF:75:6D:D4:A3:8D:C9:45
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/895B4D927A602F9CA222D8FCAF756DD4A38DC945.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0AF62B4175952DB361DCE557BE522179AC716A56A36A743D8E7268AFF1A4307B/0/34352e352e32302e302f32342d3234203d3e20323635363835.roa
Signing time: Tue 04 Feb 2025 18:54:11 +0000
ROA not before: Tue 04 Feb 2025 18:49:11 +0000
ROA not after: Tue 03 Feb 2026 18:54:11 +0000
asID: 265685
IP address blocks: 45.5.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:5d:1c:57:87:e3:b5:d3:f4:00:85:26:20:7e:09:96:e3:72:a4:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=895B4D927A602F9CA222D8FCAF756DD4A38DC945
Validity
Not Before: Feb 4 18:49:11 2025 GMT
Not After : Feb 3 18:54:11 2026 GMT
Subject: CN=52E4118309189C9F44E3032FBD1E3BE7A4BD9038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:09:64:6d:17:97:ee:eb:97:50:3a:fb:d9:a0:
35:0a:e0:ab:59:7e:45:c0:f0:6f:46:d9:61:05:f0:
a8:43:80:4e:d5:88:4c:1e:fd:43:77:76:bb:46:41:
55:17:f4:8a:8e:8b:64:fd:5c:3e:3c:35:06:c1:32:
c1:59:7d:68:ac:9c:1f:5b:66:96:45:22:08:2e:2f:
d8:c4:ea:ce:8f:54:35:52:8b:b4:88:f0:48:a7:1e:
a0:12:a7:9e:55:ac:89:57:96:ef:36:90:7c:0f:5c:
3e:d6:4c:e7:3c:11:a9:8c:c2:b3:78:91:62:40:01:
7c:c3:d4:89:98:5b:8d:8c:e0:1b:c3:33:0d:3c:4e:
e3:05:03:04:6f:d1:a6:95:39:4d:ef:84:f8:92:24:
2e:c2:32:f1:05:52:23:c7:c1:76:06:85:e8:0f:fc:
4d:25:0c:6e:59:07:6a:92:48:ad:31:1c:f6:cb:e3:
ce:0f:4c:7a:a6:e0:70:d6:4e:9b:6f:32:f8:1b:56:
17:12:7b:bc:60:26:88:69:1e:a9:03:60:32:08:cf:
54:f3:ab:31:2f:d2:f2:42:e6:15:fa:01:82:94:25:
a4:ad:11:0f:ac:ea:c3:5a:15:88:29:74:27:51:90:
b1:c0:4c:23:4f:7a:84:b6:4a:2e:9f:2a:cc:2b:70:
b3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E4:11:83:09:18:9C:9F:44:E3:03:2F:BD:1E:3B:E7:A4:BD:90:38
X509v3 Authority Key Identifier:
keyid:89:5B:4D:92:7A:60:2F:9C:A2:22:D8:FC:AF:75:6D:D4:A3:8D:C9:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0AF62B4175952DB361DCE557BE522179AC716A56A36A743D8E7268AFF1A4307B/0/895B4D927A602F9CA222D8FCAF756DD4A38DC945.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/895B4D927A602F9CA222D8FCAF756DD4A38DC945.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0AF62B4175952DB361DCE557BE522179AC716A56A36A743D8E7268AFF1A4307B/0/34352e352e32302e302f32342d3234203d3e20323635363835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.5.20.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:bb:8f:21:57:70:33:27:82:eb:48:5c:79:58:46:f4:f6:5a:
07:be:f6:75:10:5a:4a:64:07:61:78:f8:16:0f:38:01:0c:da:
57:60:00:f3:98:95:47:40:48:fe:59:66:b3:a7:1a:85:ec:59:
f2:dd:03:22:28:c1:ca:c6:22:05:16:8a:11:ca:7d:fb:a2:63:
1c:03:fe:7e:71:fd:87:c8:a0:c2:88:02:46:dd:6a:6b:22:31:
1a:86:d3:9b:58:9d:cf:04:6f:46:97:68:f9:e4:c6:d8:d5:55:
f7:24:c1:bd:15:31:6d:16:33:9d:a4:1b:54:f1:7e:2f:44:de:
d9:e5:13:1d:73:73:aa:be:9a:d1:63:c4:59:ae:1e:41:81:1a:
2f:98:80:91:be:9f:7a:50:c5:11:38:2d:4f:fd:09:5b:b6:7f:
80:71:db:cf:98:3d:47:67:4d:a2:08:7d:58:ac:2a:ce:60:5c:
68:73:3a:bf:b2:27:87:54:a8:33:8e:98:0c:38:a4:bc:07:3c:
7a:c4:46:c6:e9:1f:f2:0f:7d:53:2a:ae:e1:db:cb:a9:cb:1d:
49:b7:a5:22:d6:2b:ad:5a:2e:73:de:e7:79:34:2a:98:a2:f8:
bb:95:86:74:05:d9:69:bf:08:f5:f6:5c:b2:e5:b8:86:7f:db:
62:3a:b3:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:34 2025 by rpki-client