Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/3137302e38342e3130382e302f32322d3234203d3e20323633323438.roa
File: 3137302e38342e3130382e302f32322d3234203d3e20323633323438.roa (raw, json)
Hash identifier: 8WIrU4rxAdLdem4uhtqkZGj4qh+9hejyc+9jaXi4F+c=
Subject key identifier: AF:48:89:84:1B:12:2D:83:D7:F5:23:5E:AC:B5:16:C2:0F:A8:8A:EF
Certificate issuer: /CN=A4EC8475F98014B965F34B25A2A68F58AAEE199B
Certificate serial: 0D64992158C2D65961CF9CB63AA84125D6E4CCB1
Authority key identifier: A4:EC:84:75:F9:80:14:B9:65:F3:4B:25:A2:A6:8F:58:AA:EE:19:9B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A4EC8475F98014B965F34B25A2A68F58AAEE199B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/3137302e38342e3130382e302f32322d3234203d3e20323633323438.roa
Signing time: Tue 04 Feb 2025 18:14:14 +0000
ROA not before: Tue 04 Feb 2025 18:09:14 +0000
ROA not after: Tue 03 Feb 2026 18:14:14 +0000
asID: 263248
IP address blocks: 170.84.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:64:99:21:58:c2:d6:59:61:cf:9c:b6:3a:a8:41:25:d6:e4:cc:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A4EC8475F98014B965F34B25A2A68F58AAEE199B
Validity
Not Before: Feb 4 18:09:14 2025 GMT
Not After : Feb 3 18:14:14 2026 GMT
Subject: CN=AF4889841B122D83D7F5235EACB516C20FA88AEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0c:89:a1:03:00:10:49:be:75:1b:cb:81:d1:
78:be:fe:57:c3:79:2e:e6:0c:dc:90:90:70:98:7e:
18:43:ce:b0:91:04:45:a8:48:ad:6d:5e:64:14:36:
dd:fe:10:6d:78:af:e4:4f:87:66:00:d9:88:6a:9b:
a4:84:d7:fc:3e:1e:fb:57:79:81:ac:80:96:c2:56:
36:8a:c3:75:87:86:f4:3f:44:da:27:4a:0d:5b:aa:
a5:9b:fc:a4:38:d8:a4:8f:0d:c1:48:bf:9c:2b:b1:
2e:2e:40:ce:59:75:42:b8:2f:d7:62:12:53:d5:b8:
bd:8e:5e:ef:b1:ae:07:a7:f3:20:b0:3e:47:bd:57:
4c:33:60:ad:6a:9a:6b:ca:03:90:5b:b0:fe:49:41:
75:47:70:20:51:58:c1:78:09:a9:aa:6c:19:40:b2:
7f:1a:2c:cc:ea:2e:c4:c3:ec:84:47:c7:2e:2e:4a:
5f:56:55:8a:1b:94:3e:f3:9e:b9:0e:59:6b:ba:71:
5e:b8:fc:c4:49:13:5a:8a:31:38:0f:bd:d6:9e:35:
a7:4d:f0:fc:ea:e4:6c:07:eb:b6:e8:87:1a:41:aa:
c5:8a:f3:e0:c1:ee:2b:88:13:1e:5d:d2:f0:b5:1f:
91:f6:f9:b0:09:5d:40:bd:09:41:6a:6f:44:a2:ae:
de:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:48:89:84:1B:12:2D:83:D7:F5:23:5E:AC:B5:16:C2:0F:A8:8A:EF
X509v3 Authority Key Identifier:
keyid:A4:EC:84:75:F9:80:14:B9:65:F3:4B:25:A2:A6:8F:58:AA:EE:19:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/A4EC8475F98014B965F34B25A2A68F58AAEE199B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A4EC8475F98014B965F34B25A2A68F58AAEE199B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0C966AF2D667C71DB8F7DC6CBE7AA3B54C9A1341ACA871B57B438DF8EAC761DC/0/3137302e38342e3130382e302f32322d3234203d3e20323633323438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.84.108.0/22
Signature Algorithm: sha256WithRSAEncryption
27:fa:79:fe:5f:fd:ff:39:85:60:10:22:5c:80:9b:41:62:0f:
18:4d:d4:2f:ba:07:77:7c:cf:06:5a:fd:20:58:6a:5a:55:f0:
87:78:d4:52:0a:8f:89:1c:1d:9a:2d:38:da:14:34:e2:f0:b2:
65:8e:c6:15:9c:f1:4a:fe:72:36:61:f0:bd:92:41:db:19:ee:
d5:76:3d:e0:fd:8b:9f:d0:28:e3:44:4b:e0:28:c6:e2:ec:18:
16:b7:31:0b:29:f2:02:dd:85:77:5e:78:42:7f:d0:a9:83:b4:
a5:6a:16:29:76:d2:08:8f:39:4c:72:c1:ce:8d:2d:97:35:ad:
2a:60:79:ee:93:73:d1:e1:e7:49:a5:fe:18:fe:2c:44:c3:0c:
78:fb:48:d0:86:6e:65:3e:ff:1e:f1:be:92:77:e3:83:bc:47:
7e:c8:71:ce:b2:7a:a8:81:c0:b1:85:d1:11:a8:21:2c:de:42:
a9:04:3d:30:64:50:a1:1d:81:2f:b5:a8:b2:ef:c9:f9:e6:9f:
f2:05:44:d1:63:fc:84:e3:6a:82:e8:6c:11:e1:a1:c9:1f:85:
cb:f9:9f:52:57:46:13:ed:e4:9b:45:af:d1:c6:51:5d:42:2c:
5f:00:a5:07:73:50:67:8e:91:39:74:6d:72:02:ca:fc:18:bf:
a8:5a:29:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:17:44 2025 by rpki-client