Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0D4370C5419038DFAFE42339E6D2362DBF9F48F5A1A225DFD8EDC70969C1C230/0/3137302e3235342e3231382e302f32342d3234203d3e20323634373730.roa
File: 3137302e3235342e3231382e302f32342d3234203d3e20323634373730.roa (raw, json)
Hash identifier: qAvw7+zRG0pCAG3SJJU8FWxOW+BZeqK+NJ++z2P8Jzw=
Subject key identifier: B7:46:2F:89:57:6A:AB:27:D8:50:F2:7B:07:9B:C0:C3:4A:49:D4:53
Certificate issuer: /CN=F7AC0CE553F93FC5CE942F12360E6A144723F82D
Certificate serial: 45952185EA13AC715F02811A3B1998C8D35CB15D
Authority key identifier: F7:AC:0C:E5:53:F9:3F:C5:CE:94:2F:12:36:0E:6A:14:47:23:F8:2D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F7AC0CE553F93FC5CE942F12360E6A144723F82D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0D4370C5419038DFAFE42339E6D2362DBF9F48F5A1A225DFD8EDC70969C1C230/0/3137302e3235342e3231382e302f32342d3234203d3e20323634373730.roa
Signing time: Tue 04 Feb 2025 18:01:33 +0000
ROA not before: Tue 04 Feb 2025 17:56:33 +0000
ROA not after: Tue 03 Feb 2026 18:01:33 +0000
asID: 264770
IP address blocks: 170.254.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:95:21:85:ea:13:ac:71:5f:02:81:1a:3b:19:98:c8:d3:5c:b1:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F7AC0CE553F93FC5CE942F12360E6A144723F82D
Validity
Not Before: Feb 4 17:56:33 2025 GMT
Not After : Feb 3 18:01:33 2026 GMT
Subject: CN=B7462F89576AAB27D850F27B079BC0C34A49D453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2f:80:cd:4e:bc:64:0d:03:e8:5e:d8:e5:ec:
18:bb:f5:8a:53:74:9f:5b:45:ca:d4:be:c9:b3:86:
2b:3a:5e:a7:92:84:85:d8:3c:99:f0:7f:97:1e:4b:
3e:e7:15:d6:a5:2d:27:39:bc:21:60:70:37:a1:35:
d4:f6:e1:04:fc:90:ee:fb:79:7e:38:da:4d:8c:88:
1b:8d:7b:4a:6f:1e:fb:ad:a3:5a:f4:98:49:6b:24:
da:94:54:9a:62:8b:7f:e5:48:41:d0:62:ac:56:76:
69:63:d0:db:e1:6b:b5:3a:56:38:18:02:b1:22:05:
68:21:0f:5e:92:d8:97:da:c5:35:66:3f:c7:ff:64:
1a:a8:f8:1d:1a:bb:2a:c6:39:b9:0e:0e:a2:8a:e4:
cf:0e:22:2a:13:cc:81:07:bf:f0:53:63:d4:35:6f:
b8:5e:20:48:70:20:ea:62:8f:84:60:17:26:f8:dd:
6e:de:2b:ac:a6:a9:ad:40:a5:8b:0d:9b:37:35:4e:
c9:cb:86:a2:d3:c6:c2:52:91:c6:94:c3:e2:73:99:
a9:f5:f2:32:2d:af:ba:a6:b1:40:3c:8b:55:04:15:
d6:70:c5:74:2c:65:33:42:62:6d:aa:79:17:ac:3f:
31:20:84:04:6a:4d:ec:ab:db:8f:82:81:91:1f:19:
b7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:46:2F:89:57:6A:AB:27:D8:50:F2:7B:07:9B:C0:C3:4A:49:D4:53
X509v3 Authority Key Identifier:
keyid:F7:AC:0C:E5:53:F9:3F:C5:CE:94:2F:12:36:0E:6A:14:47:23:F8:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0D4370C5419038DFAFE42339E6D2362DBF9F48F5A1A225DFD8EDC70969C1C230/0/F7AC0CE553F93FC5CE942F12360E6A144723F82D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F7AC0CE553F93FC5CE942F12360E6A144723F82D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0D4370C5419038DFAFE42339E6D2362DBF9F48F5A1A225DFD8EDC70969C1C230/0/3137302e3235342e3231382e302f32342d3234203d3e20323634373730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.254.218.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:c9:c6:d8:8e:ca:31:67:c3:1a:f8:1b:f5:4c:5d:f8:48:5f:
1b:12:eb:c3:50:46:d2:42:d1:4a:84:fd:61:b8:d7:76:fb:89:
2a:d5:60:81:cb:6d:22:07:6f:8e:67:0e:99:f7:99:4e:31:5d:
dd:c4:15:36:37:46:c0:93:f9:9b:ca:32:06:b5:52:a1:a1:e1:
65:9d:1d:10:67:b4:2c:7e:88:20:34:c6:1c:82:87:48:32:b3:
f5:bf:fd:11:83:c0:20:61:16:8b:c3:da:a2:d5:ba:16:17:53:
72:b9:a4:e8:82:d1:26:c5:1d:8d:1a:d0:eb:5a:d3:92:a7:37:
d1:3a:c4:f0:e8:3b:16:3e:f4:21:9f:a6:30:f4:11:d9:bd:27:
69:b1:9d:89:44:6a:c8:72:c4:84:3d:9c:ab:38:51:67:fc:2b:
cc:0d:bc:d0:b3:4f:af:72:0c:24:45:98:fa:24:02:6f:83:67:
8c:2c:5b:af:a3:c9:09:1d:3f:34:94:2d:77:49:ef:2e:80:8f:
0a:92:2b:57:c3:f0:09:f6:30:a6:8f:c9:5d:f6:cf:4d:08:fc:
53:5d:b3:0f:7d:f7:1a:fa:4d:7b:ec:2a:3a:f2:2d:32:b2:a4:
17:7f:59:a7:6e:a7:55:5a:b4:24:a6:26:b8:eb:1a:a6:f5:e8:
06:59:72:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:56:38 2025 by rpki-client