Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e32382e302f32322d3234203d3e203236363137.roa
File: 3136382e3234332e32382e302f32322d3234203d3e203236363137.roa (raw, json)
Hash identifier: ddR3xX0YSvkJMv4PuEpPid0ovoN+pn4IUYcgdCgvrbI=
Subject key identifier: 10:1E:B0:14:72:2B:0C:EE:8F:58:A8:00:C7:95:D8:A0:28:C0:5D:D3
Certificate issuer: /CN=D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA
Certificate serial: 50FB3EFEF824207268BAB89946049D54AF1DBE98
Authority key identifier: D3:50:3D:03:E3:D4:DF:A0:76:7F:6D:FF:3B:A7:1D:D7:B6:23:6A:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e32382e302f32322d3234203d3e203236363137.roa
Signing time: Tue 17 Dec 2024 18:00:00 +0000
ROA not before: Tue 17 Dec 2024 17:55:00 +0000
ROA not after: Tue 16 Dec 2025 18:00:00 +0000
asID: 26617
IP address blocks: 168.243.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:fb:3e:fe:f8:24:20:72:68:ba:b8:99:46:04:9d:54:af:1d:be:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA
Validity
Not Before: Dec 17 17:55:00 2024 GMT
Not After : Dec 16 18:00:00 2025 GMT
Subject: CN=101EB014722B0CEE8F58A800C795D8A028C05DD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8c:50:df:08:ea:6b:97:f5:2c:0a:2f:77:2f:
f9:d8:7e:7c:3b:42:ac:91:c6:2d:98:00:89:06:d2:
8c:92:ed:0d:99:61:00:4a:e3:06:76:43:53:ae:4a:
5e:bf:72:f6:af:ff:9f:4f:38:6d:34:9d:7b:07:f3:
5f:e2:93:12:94:e1:94:2d:dc:0d:85:04:fb:12:7a:
e4:c9:a7:78:d3:f5:b2:6d:3f:0b:90:29:d9:27:c1:
78:c7:56:0a:bc:13:4a:01:28:73:5f:c4:02:e2:8f:
6e:3a:85:f8:34:18:02:67:69:47:10:3c:51:ef:cf:
15:d6:a0:25:96:72:0a:7c:fb:d0:b6:4d:71:c6:1c:
70:7f:5a:76:f7:a3:ab:01:48:ff:2e:d7:5e:a5:35:
16:fa:bc:4d:98:af:a2:37:44:74:74:e8:b4:60:4f:
b9:45:29:8f:32:f6:61:6e:42:08:24:27:72:fa:94:
b3:b4:c6:2a:03:3a:b8:f9:f0:bd:09:18:4e:53:4f:
92:5e:d9:b5:9a:4c:78:4d:f9:0c:d7:62:64:66:a7:
c7:f7:82:a1:ca:d6:c2:12:a8:6b:90:48:cb:b3:16:
eb:09:1b:d6:f6:59:49:d5:93:46:58:1a:a3:bb:ba:
38:75:7f:1d:92:ec:e3:20:c2:e5:99:0a:2f:17:7d:
89:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:1E:B0:14:72:2B:0C:EE:8F:58:A8:00:C7:95:D8:A0:28:C0:5D:D3
X509v3 Authority Key Identifier:
keyid:D3:50:3D:03:E3:D4:DF:A0:76:7F:6D:FF:3B:A7:1D:D7:B6:23:6A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e32382e302f32322d3234203d3e203236363137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.243.28.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:6f:1e:05:6b:45:dd:4a:39:d0:70:24:f7:40:48:e2:13:70:
d3:15:e4:b7:4a:bd:b3:2d:75:82:0a:dd:c6:a5:e4:5d:d4:83:
02:2c:f1:ec:6c:50:3b:63:42:57:10:50:2e:8d:02:18:f1:9a:
71:15:16:46:b1:99:49:80:21:51:2f:ec:7d:a0:e5:d8:a4:d8:
70:4d:16:14:b1:f1:45:ba:5f:a3:fc:2b:fa:2e:ac:68:01:15:
ad:69:69:40:a0:c7:de:d0:3f:e9:dd:9d:84:7d:2a:de:f5:41:
a9:60:6c:c1:c3:36:4a:a2:f9:48:e8:9d:48:93:b0:1c:1a:db:
22:25:d9:0c:f3:09:91:77:fe:9a:e6:5d:b9:f2:59:e1:d8:15:
62:66:c3:55:4c:e1:4d:24:39:85:f2:9e:96:c4:dc:78:bc:d6:
3f:2e:f8:7c:f2:cd:67:df:55:86:a3:73:0d:e9:13:41:67:35:
f6:55:5c:7e:05:2b:81:a5:a8:68:a1:11:ae:ee:f9:28:5b:4c:
6e:5e:bd:3a:66:a3:b8:07:b3:0c:8a:c9:46:4c:19:86:6a:66:
08:51:0d:04:88:bd:1b:69:f1:18:c8:6f:1c:75:02:ac:e7:a3:
f0:85:91:73:43:f9:e9:44:24:67:74:89:01:21:84:95:96:68:
09:96:54:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:54 2025 by rpki-client