Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0B4592EA1FBE99BB0E6E1524335D45CE6025A2A7399D3206FDF8C111D7D90E45/0/34352e3232382e31362e302f32342d3234203d3e20323636363835.roa
File: 34352e3232382e31362e302f32342d3234203d3e20323636363835.roa (raw, json)
Hash identifier: 3qZlRtvDZ/Q7f/nS8MiSdaSuDnZoiDULFdEk+357YT4=
Subject key identifier: 0C:C8:85:B4:C9:5B:D7:99:10:9D:0C:ED:CF:19:78:23:20:A4:34:E8
Certificate issuer: /CN=A91EA82506B0E7F6BACFA600950807C98CE9C2B3
Certificate serial: 3F59E61059BCEA2157CD50624A129947A24F6958
Authority key identifier: A9:1E:A8:25:06:B0:E7:F6:BA:CF:A6:00:95:08:07:C9:8C:E9:C2:B3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A91EA82506B0E7F6BACFA600950807C98CE9C2B3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0B4592EA1FBE99BB0E6E1524335D45CE6025A2A7399D3206FDF8C111D7D90E45/0/34352e3232382e31362e302f32342d3234203d3e20323636363835.roa
Signing time: Tue 04 Feb 2025 18:41:56 +0000
ROA not before: Tue 04 Feb 2025 18:36:56 +0000
ROA not after: Tue 03 Feb 2026 18:41:56 +0000
asID: 266685
IP address blocks: 45.228.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:59:e6:10:59:bc:ea:21:57:cd:50:62:4a:12:99:47:a2:4f:69:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EA82506B0E7F6BACFA600950807C98CE9C2B3
Validity
Not Before: Feb 4 18:36:56 2025 GMT
Not After : Feb 3 18:41:56 2026 GMT
Subject: CN=0CC885B4C95BD799109D0CEDCF19782320A434E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:94:a6:f9:b7:ed:e2:fb:00:14:cb:98:6b:48:
a2:43:a1:45:27:32:09:3e:e4:95:7f:bc:94:c4:f5:
0f:d2:9d:ad:96:19:38:92:2c:91:b7:0c:b1:50:79:
2f:c3:c4:ed:05:78:c8:a2:1a:55:53:fa:65:3e:92:
d7:3d:20:bb:b6:62:68:25:4a:14:98:3d:7f:ee:5a:
d3:b3:7f:d4:3b:b2:68:32:72:6a:d2:d7:96:06:69:
2e:43:de:66:1d:b0:c3:0c:98:e8:d0:8d:92:5c:56:
7f:00:03:ab:39:e1:ab:b1:50:ec:77:d1:97:b1:9b:
4c:10:c9:3d:d5:ed:02:d6:68:f7:15:13:f6:ab:cf:
ea:8d:35:60:fe:88:20:2c:51:38:7f:8a:9c:7d:c5:
4e:0e:15:f2:50:86:c4:42:4d:64:f0:cb:e4:88:41:
59:83:d5:2d:14:ca:59:62:54:44:63:80:8f:45:dd:
73:f5:94:0f:ee:ff:06:cc:f3:a7:c4:ab:a6:54:63:
80:71:58:79:f8:de:0a:ff:6e:d0:ad:5b:67:14:a5:
59:d0:44:53:31:d9:52:2e:24:df:7b:d4:cc:59:93:
2d:e4:81:5a:e0:1e:b2:48:3b:7c:6d:cf:09:d5:c6:
b5:90:5b:d4:cc:a5:a6:39:0e:c9:8c:0a:c2:9a:50:
a1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C8:85:B4:C9:5B:D7:99:10:9D:0C:ED:CF:19:78:23:20:A4:34:E8
X509v3 Authority Key Identifier:
keyid:A9:1E:A8:25:06:B0:E7:F6:BA:CF:A6:00:95:08:07:C9:8C:E9:C2:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0B4592EA1FBE99BB0E6E1524335D45CE6025A2A7399D3206FDF8C111D7D90E45/0/A91EA82506B0E7F6BACFA600950807C98CE9C2B3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A91EA82506B0E7F6BACFA600950807C98CE9C2B3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0B4592EA1FBE99BB0E6E1524335D45CE6025A2A7399D3206FDF8C111D7D90E45/0/34352e3232382e31362e302f32342d3234203d3e20323636363835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.228.16.0/24
Signature Algorithm: sha256WithRSAEncryption
70:b5:b9:73:1e:c6:cf:12:03:5b:d0:a0:6b:b9:dc:ae:fa:cc:
c8:b0:e3:79:d1:ee:c0:b2:23:ee:44:88:93:68:b6:e5:ab:f3:
2f:91:49:3c:79:7d:5c:02:bf:cb:e5:65:c3:5c:62:fe:02:40:
44:2c:3a:9f:57:a5:c4:c0:65:78:f4:f6:11:ed:3b:94:bb:05:
d4:91:38:d3:77:15:72:f3:d7:8b:22:f2:07:7a:90:8d:21:d4:
0d:c0:73:5c:9d:80:85:2c:10:06:d2:00:86:33:65:be:e1:bf:
22:e0:3d:c1:93:19:be:60:1f:8e:ca:c5:c8:58:6e:c8:f0:24:
3d:f0:32:8f:6c:ef:c0:7e:bc:85:ec:52:b5:cd:db:c6:30:5d:
e6:c7:9e:25:2e:af:17:ab:a9:ba:fc:bd:77:f9:8b:64:66:58:
24:8b:a4:ba:c3:4c:43:1c:9e:f9:0f:93:4a:b4:d3:3d:54:16:
42:55:df:8c:4f:ca:78:e7:62:00:e3:74:15:3c:96:a4:55:f4:
c4:b8:a1:a0:81:68:57:69:9e:3f:cd:c6:68:94:e4:a6:0c:af:
9d:ad:5e:23:a8:5c:17:6a:16:b5:d7:c7:c6:c3:d0:7c:a5:b7:
87:14:b2:71:c9:f4:88:79:48:f2:fe:75:51:ad:b8:c9:d9:8f:
68:07:1c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:20:10 2025 by rpki-client