Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0D4A27342A7E1849F8AFC489E93CA3DC3F65B9DCD36B04FD2B584CCD2B805C76/0/3136372e3235302e3130382e302f32322d3232203d3e20333934343734.roa
File: 3136372e3235302e3130382e302f32322d3232203d3e20333934343734.roa (raw, json)
Hash identifier: sl0kfOffxqUcv9AbLvpiYmQhgnuvYAAgTFbCtujXCr4=
Subject key identifier: EC:9D:1C:6D:1B:C9:63:3A:41:CE:6F:82:C6:69:6C:B0:CA:04:58:E5
Certificate issuer: /CN=01DFCD969398C7D14FA18E44D1649A0B21C96569
Certificate serial: 0264C301DC6FB54DB59D33F84C406456F5E9F927
Authority key identifier: 01:DF:CD:96:93:98:C7:D1:4F:A1:8E:44:D1:64:9A:0B:21:C9:65:69
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/01DFCD969398C7D14FA18E44D1649A0B21C96569.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0D4A27342A7E1849F8AFC489E93CA3DC3F65B9DCD36B04FD2B584CCD2B805C76/0/3136372e3235302e3130382e302f32322d3232203d3e20333934343734.roa
Signing time: Mon 22 Jul 2024 16:45:00 +0000
ROA not before: Mon 22 Jul 2024 16:40:00 +0000
ROA not after: Mon 21 Jul 2025 16:45:00 +0000
asID: 394474
IP address blocks: 167.250.108.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:64:c3:01:dc:6f:b5:4d:b5:9d:33:f8:4c:40:64:56:f5:e9:f9:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01DFCD969398C7D14FA18E44D1649A0B21C96569
Validity
Not Before: Jul 22 16:40:00 2024 GMT
Not After : Jul 21 16:45:00 2025 GMT
Subject: CN=EC9D1C6D1BC9633A41CE6F82C6696CB0CA0458E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:70:1f:7b:57:d2:11:87:0e:20:06:93:c1:51:
af:8e:0a:a3:31:02:7a:f5:c4:df:65:8f:3b:51:39:
3b:c6:8e:0a:08:e1:7b:46:a4:1e:c4:cb:26:7d:fe:
69:72:b7:db:74:37:6f:f7:21:a6:40:aa:16:03:fe:
56:ea:89:6d:90:ee:71:a6:e0:da:3e:1c:ff:85:e9:
4e:1b:48:63:ac:be:51:40:34:f6:2a:5e:f9:d6:f9:
66:d1:3b:03:da:8c:04:a5:16:5e:06:fe:cb:d0:6b:
bd:7b:11:f0:b5:ff:33:1f:ad:46:21:fe:89:77:d8:
81:af:ea:cc:90:e8:39:a0:a7:9f:be:e3:1c:c7:16:
80:fe:59:d6:ec:c5:e2:68:2b:30:0d:c8:74:be:fc:
d1:1e:cc:94:ff:33:32:9c:f9:f0:ef:a1:05:d0:7b:
ce:56:b7:23:8d:8f:16:c4:ff:57:df:61:98:38:c4:
a9:bb:a6:dc:f3:98:e9:58:80:82:18:35:a2:5f:9f:
bb:66:2a:11:ca:6a:67:f4:90:bd:8c:7a:9f:a5:7c:
10:82:54:10:fe:3d:2e:e5:61:85:9d:19:c6:b2:64:
19:bd:77:b2:07:ae:42:c1:ca:5d:ab:9e:36:2f:18:
61:fb:b4:8d:fd:54:f7:07:95:81:7c:46:25:b8:40:
e1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:9D:1C:6D:1B:C9:63:3A:41:CE:6F:82:C6:69:6C:B0:CA:04:58:E5
X509v3 Authority Key Identifier:
keyid:01:DF:CD:96:93:98:C7:D1:4F:A1:8E:44:D1:64:9A:0B:21:C9:65:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0D4A27342A7E1849F8AFC489E93CA3DC3F65B9DCD36B04FD2B584CCD2B805C76/0/01DFCD969398C7D14FA18E44D1649A0B21C96569.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/01DFCD969398C7D14FA18E44D1649A0B21C96569.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0D4A27342A7E1849F8AFC489E93CA3DC3F65B9DCD36B04FD2B584CCD2B805C76/0/3136372e3235302e3130382e302f32322d3232203d3e20333934343734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.250.108.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:60:df:8d:23:2c:2f:4d:19:f0:57:cb:33:d6:8a:f9:c6:57:
e8:d8:d3:51:d1:4c:a6:5d:e7:cb:10:b8:af:1a:df:51:0f:36:
98:3a:f0:f0:89:82:70:d1:02:84:52:53:75:fd:de:4b:19:b8:
2f:19:ee:95:2c:d4:fe:4f:42:5a:49:e9:95:6f:70:2f:c1:3e:
81:86:17:6f:20:62:8e:79:27:05:fd:bd:43:18:22:0c:1d:8b:
3b:71:8a:d3:d3:b8:16:58:33:a6:5c:37:cd:71:12:d0:08:01:
75:a2:d1:54:3e:77:85:aa:94:4f:43:27:7f:92:90:5b:99:33:
72:a0:5b:c9:51:80:9f:9a:ba:c6:c8:4c:20:73:d6:48:71:01:
12:ec:15:99:f1:57:40:fc:7b:aa:73:ac:7b:a4:71:e0:c3:ac:
ee:d2:21:aa:95:d2:6d:aa:79:eb:ba:7d:52:58:96:79:3f:0a:
66:cc:0b:46:f2:21:98:7b:96:dc:38:88:33:ec:1b:c3:f3:e0:
f2:ab:df:9d:0f:9a:bc:e1:0a:4c:98:27:3f:a0:aa:79:d7:5b:
8e:b6:75:76:25:c0:96:b1:42:2a:78:ea:21:d1:1e:74:d8:83:
bb:bd:c2:c3:54:3c:f6:0f:64:eb:89:9d:97:42:2c:da:e0:cf:
78:6d:f5:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:06:03 2025 by rpki-client