Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0E597C2E55717FFA47EAD911355A0160D13BBE8BDEF6DE946352E9B3C6BB800F/0/34352e362e342e302f32322d3234203d3e20323635363836.roa
File: 34352e362e342e302f32322d3234203d3e20323635363836.roa (raw, json)
Hash identifier: bQ0nB3ZxXACwoC+g0yndzC23jngY1AbE0KUti9Hl7hg=
Subject key identifier: 88:9E:58:01:74:00:4D:02:16:14:61:64:9A:1D:36:8B:96:0A:04:26
Certificate issuer: /CN=402821049CC9FB75337290977B92EA2D1BEAFC7B
Certificate serial: 7543586AA82F165EF422A921F1FEA278C406221D
Authority key identifier: 40:28:21:04:9C:C9:FB:75:33:72:90:97:7B:92:EA:2D:1B:EA:FC:7B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/402821049CC9FB75337290977B92EA2D1BEAFC7B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0E597C2E55717FFA47EAD911355A0160D13BBE8BDEF6DE946352E9B3C6BB800F/0/34352e362e342e302f32322d3234203d3e20323635363836.roa
Signing time: Tue 04 Feb 2025 20:06:48 +0000
ROA not before: Tue 04 Feb 2025 20:01:48 +0000
ROA not after: Tue 03 Feb 2026 20:06:48 +0000
asID: 265686
IP address blocks: 45.6.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:43:58:6a:a8:2f:16:5e:f4:22:a9:21:f1:fe:a2:78:c4:06:22:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=402821049CC9FB75337290977B92EA2D1BEAFC7B
Validity
Not Before: Feb 4 20:01:48 2025 GMT
Not After : Feb 3 20:06:48 2026 GMT
Subject: CN=889E580174004D02161461649A1D368B960A0426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7d:be:d3:7a:15:67:99:de:ab:23:fa:9a:b2:
4d:5a:cf:e4:e8:3e:cd:46:ba:98:4d:c9:2f:d0:92:
a3:ae:12:6f:3e:6b:c1:04:fd:90:be:70:86:82:e3:
f2:44:ff:f8:7e:0c:83:90:d0:43:ab:b1:c5:fe:c4:
b1:ff:1e:22:2d:4a:c3:f0:7a:9b:26:7b:59:df:03:
29:24:af:62:44:b8:07:4c:61:e9:8b:3d:ac:02:06:
52:58:c4:90:6b:d3:09:34:aa:96:de:2e:d3:01:2d:
39:ce:2d:b0:66:b4:d6:e7:71:07:f2:ed:18:b7:40:
7e:1a:f2:38:56:0f:38:bc:50:70:d7:e9:97:d6:e7:
df:4a:8f:30:03:cb:cd:ab:b7:66:d8:27:6f:f0:b0:
0b:fb:e1:9a:fa:b5:2f:06:3b:fe:6e:b8:18:4d:02:
2f:8a:3d:e7:ed:1e:52:00:28:31:aa:7b:2d:20:63:
95:ae:de:a4:ac:32:8f:6b:3c:c8:4e:86:2d:41:a9:
3a:bd:cb:88:6a:ef:cc:16:6e:89:dc:2b:b6:3a:a9:
e9:02:8b:ee:40:95:90:7d:91:ff:70:7e:c1:8c:59:
e8:e9:e0:fd:58:5d:86:41:68:90:26:02:a3:fb:86:
09:43:2e:31:00:09:02:f1:d4:75:8a:e6:84:3a:96:
1f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:9E:58:01:74:00:4D:02:16:14:61:64:9A:1D:36:8B:96:0A:04:26
X509v3 Authority Key Identifier:
keyid:40:28:21:04:9C:C9:FB:75:33:72:90:97:7B:92:EA:2D:1B:EA:FC:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0E597C2E55717FFA47EAD911355A0160D13BBE8BDEF6DE946352E9B3C6BB800F/0/402821049CC9FB75337290977B92EA2D1BEAFC7B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/402821049CC9FB75337290977B92EA2D1BEAFC7B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0E597C2E55717FFA47EAD911355A0160D13BBE8BDEF6DE946352E9B3C6BB800F/0/34352e362e342e302f32322d3234203d3e20323635363836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.6.4.0/22
Signature Algorithm: sha256WithRSAEncryption
78:68:ff:9c:67:69:68:61:89:89:83:6d:98:df:b2:53:1f:bf:
06:a9:82:84:b4:07:10:fa:c8:2b:17:9d:31:f8:6d:0c:82:82:
39:00:08:70:72:28:51:4a:af:0e:e7:e0:a6:04:bc:17:9d:1f:
91:88:8a:f1:13:8c:c3:d3:cc:a1:f8:46:2e:5a:53:28:6d:17:
ad:20:59:a3:9b:2c:49:5b:93:75:6d:29:9a:50:ec:14:73:9b:
34:af:6d:37:d7:d5:d6:a8:e7:bb:84:12:8e:7b:44:4e:93:27:
c6:dc:d5:9c:6f:82:58:db:98:75:98:10:96:b9:8f:1e:26:78:
06:22:14:88:fe:40:09:c1:73:65:5b:b1:7e:e9:1b:6a:8d:28:
d5:ee:86:a2:bf:5a:f1:b5:cd:1b:4c:36:c9:a2:f6:82:f9:0c:
3a:d4:8f:8f:48:f2:65:e8:9e:cc:cc:0a:43:72:a1:5f:43:83:
07:33:42:1b:53:c0:22:f2:fc:17:3f:47:36:8b:6b:83:bc:0a:
b5:e7:0e:4a:44:3a:98:84:e9:71:71:06:50:25:c3:bd:cd:a3:
2e:e3:88:7c:0b:a4:dc:cb:a0:76:94:5a:ca:da:b2:c1:77:e2:
ce:58:48:ed:c1:e2:26:f6:04:5b:8c:e3:c0:31:5b:58:05:6b:
bf:fd:20:1d
-----BEGIN CERTIFICATE-----
MIIFuDCCBKCgAwIBAgIUdUNYaqgvFl70Iqkh8f6ieMQGIh0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDAyODIxMDQ5Q0M5RkI3NTMzNzI5MDk3N0I5MkVBMkQx
QkVBRkM3QjAeFw0yNTAyMDQyMDAxNDhaFw0yNjAyMDMyMDA2NDhaMDMxMTAvBgNV
BAMTKDg4OUU1ODAxNzQwMDREMDIxNjE0NjE2NDlBMUQzNjhCOTYwQTA0MjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWfb7TehVnmd6rI/qask1az+To
Ps1GuphNyS/QkqOuEm8+a8EE/ZC+cIaC4/JE//h+DIOQ0EOrscX+xLH/HiItSsPw
epsme1nfAykkr2JEuAdMYemLPawCBlJYxJBr0wk0qpbeLtMBLTnOLbBmtNbncQfy
7Ri3QH4a8jhWDzi8UHDX6ZfW599KjzADy82rt2bYJ2/wsAv74Zr6tS8GO/5uuBhN
Ai+KPeftHlIAKDGqey0gY5Wu3qSsMo9rPMhOhi1BqTq9y4hq78wWboncK7Y6qekC
i+5AlZB9kf9wfsGMWejp4P1YXYZBaJAmAqP7hglDLjEACQLx1HWK5oQ6lh9XAgMB
AAGjggLCMIICvjAdBgNVHQ4EFgQUiJ5YAXQATQIWFGFkmh02i5YKBCYwHwYDVR0j
BBgwFoAUQCghBJzJ+3UzcpCXe5LqLRvq/HswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wRTU5N0MyRTU1NzE3RkZBNDdFQUQ5MTEzNTVBMDE2MEQx
M0JCRThCREVGNkRFOTQ2MzUyRTlCM0M2QkI4MDBGLzAvNDAyODIxMDQ5Q0M5RkI3
NTMzNzI5MDk3N0I5MkVBMkQxQkVBRkM3Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80MDI4MjEwNDlDQzlGQjc1MzM3
MjkwOTc3QjkyRUEyRDFCRUFGQzdCLmNlcjCBwQYIKwYBBQUHAQsEgbQwgbEwga4G
CCsGAQUFBzALhoGhcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMEU1OTdDMkU1NTcxN0ZGQTQ3RUFEOTExMzU1QTAxNjBEMTNCQkU4QkRF
RjZERTk0NjM1MkU5QjNDNkJCODAwRi8wLzM0MzUyZTM2MmUzNDJlMzAyZjMyMzIy
ZDMyMzQyMDNkM2UyMDMyMzYzNTM2MzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi0GBDANBgkqhkiG
9w0BAQsFAAOCAQEAeGj/nGdpaGGJiYNtmN+yUx+/BqmChLQHEPrIKxedMfhtDIKC
OQAIcHIoUUqvDufgpgS8F50fkYiK8ROMw9PMofhGLlpTKG0XrSBZo5ssSVuTdW0p
mlDsFHObNK9tN9fV1qjnu4QSjntETpMnxtzVnG+CWNuYdZgQlrmPHiZ4BiIUiP5A
CcFzZVuxfukbao0o1e6Gor9a8bXNG0w2yaL2gvkMOtSPj0jyZeiezMwKQ3KhX0OD
BzNCG1PAIvL8Fz9HNotrg7wKtecOSkQ6mITpcXEGUCXDvc2jLuOIfAuk3MugdpRa
ytqywXfizlhI7cHiJvYEW4zjwDFbWAVrv/0gHQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:27 2025 by rpki-client