Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0FEB2D15EF7A21A4882978847D7133DEF84945DE1ABA96FA43EB91A0AF773EC5/0/3137302e38332e3130382e302f32322d3234203d3e20323633373636.roa
File: 3137302e38332e3130382e302f32322d3234203d3e20323633373636.roa (raw, json)
Hash identifier: w1lZZvcCQydSwe6Wqx2JD3quCt3Fk2zsqxBc6DJGrHQ=
Subject key identifier: 7A:5E:9B:BE:FD:0F:4A:08:AE:3D:6D:04:50:CD:68:D5:A2:49:C1:58
Certificate issuer: /CN=B9E6C43D762E93FD87830A253F11922C7BC63907
Certificate serial: 799F9BA4BF4CC41918710442870EEFAC2317178F
Authority key identifier: B9:E6:C4:3D:76:2E:93:FD:87:83:0A:25:3F:11:92:2C:7B:C6:39:07
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9E6C43D762E93FD87830A253F11922C7BC63907.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0FEB2D15EF7A21A4882978847D7133DEF84945DE1ABA96FA43EB91A0AF773EC5/0/3137302e38332e3130382e302f32322d3234203d3e20323633373636.roa
Signing time: Tue 04 Feb 2025 20:06:36 +0000
ROA not before: Tue 04 Feb 2025 20:01:36 +0000
ROA not after: Tue 03 Feb 2026 20:06:36 +0000
asID: 263766
IP address blocks: 170.83.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:9f:9b:a4:bf:4c:c4:19:18:71:04:42:87:0e:ef:ac:23:17:17:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B9E6C43D762E93FD87830A253F11922C7BC63907
Validity
Not Before: Feb 4 20:01:36 2025 GMT
Not After : Feb 3 20:06:36 2026 GMT
Subject: CN=7A5E9BBEFD0F4A08AE3D6D0450CD68D5A249C158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5c:3b:82:f3:ee:ff:db:18:a7:0a:dc:c8:19:
ea:b7:67:fb:95:ce:89:1b:30:9f:71:29:48:99:b9:
f5:bf:0c:06:42:c0:b1:9e:27:ad:d2:5d:46:ff:ff:
ef:f6:d6:9d:e2:e0:87:0e:fe:d4:a6:ce:35:8d:b9:
00:5f:e4:39:77:7c:5d:6c:95:b0:fd:a0:8c:d0:b3:
44:94:30:64:e7:72:63:8d:e2:e8:c9:b1:57:92:6f:
d8:70:5e:95:c2:bd:4e:3c:2a:bd:f6:ca:7a:08:11:
dc:1f:e2:c3:50:b4:5e:07:c4:96:21:ff:a0:f0:fa:
72:fe:59:89:92:73:f7:47:4c:b4:f3:ac:cf:cb:9f:
e3:27:ce:e1:22:55:c1:ea:29:b3:4b:ed:b6:da:94:
c5:b7:49:fe:d8:14:f4:7a:a0:3a:c2:47:03:88:96:
0c:97:c2:fa:62:dc:e3:33:8d:1f:b8:d5:bc:3b:ac:
ea:56:ea:5f:4e:f1:40:50:59:98:8a:2b:13:62:14:
f1:05:48:0d:4e:3f:a8:32:6a:76:83:7a:d7:85:34:
af:c9:1c:b1:cb:f3:52:b9:d3:a2:00:f7:24:f6:27:
d8:a6:c4:f0:db:c0:06:0d:cb:1d:d4:3b:7b:02:32:
17:c7:8f:37:8f:ea:0d:17:d1:05:9b:62:f6:ce:c7:
a8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:5E:9B:BE:FD:0F:4A:08:AE:3D:6D:04:50:CD:68:D5:A2:49:C1:58
X509v3 Authority Key Identifier:
keyid:B9:E6:C4:3D:76:2E:93:FD:87:83:0A:25:3F:11:92:2C:7B:C6:39:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0FEB2D15EF7A21A4882978847D7133DEF84945DE1ABA96FA43EB91A0AF773EC5/0/B9E6C43D762E93FD87830A253F11922C7BC63907.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9E6C43D762E93FD87830A253F11922C7BC63907.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0FEB2D15EF7A21A4882978847D7133DEF84945DE1ABA96FA43EB91A0AF773EC5/0/3137302e38332e3130382e302f32322d3234203d3e20323633373636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.83.108.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:a0:32:52:85:7c:b8:fe:cc:87:ef:e5:5b:46:84:9c:72:af:
4a:4d:2b:7b:a2:96:81:4b:a4:d1:fe:d3:0b:15:8d:7c:02:2b:
b1:7a:6b:3f:83:b3:dd:90:49:e2:5a:bf:02:b9:00:0d:09:99:
f5:c3:e2:03:ee:53:34:75:8a:a5:a0:a1:b7:4a:e4:ff:4f:07:
72:4a:16:0a:db:fa:1f:36:80:5c:06:1e:f9:d6:62:e9:44:c5:
b1:ee:06:fb:b8:d8:99:a8:9b:35:48:a2:16:e2:78:17:5e:f8:
15:d0:19:d9:8d:54:c8:5b:b0:1e:e9:28:08:58:a8:bd:69:f7:
9a:b8:10:80:25:cf:07:fe:95:cb:56:d9:5a:18:e1:35:20:70:
c1:de:a6:6c:bd:2a:d9:e4:60:12:51:a5:6c:a2:57:7d:7c:c6:
d5:b2:67:8d:e2:73:10:b0:f6:2c:b1:1c:63:e5:e3:1f:a8:8e:
dc:af:2b:96:2d:79:50:9f:8d:42:82:e3:08:e9:c3:64:f5:71:
a9:c7:aa:7e:12:3d:c7:e4:cd:5d:82:94:a7:84:b3:6f:2e:55:
25:fb:27:82:4a:aa:5a:fa:0b:a1:59:a4:31:f9:8d:00:c0:9a:
50:b5:af:c3:da:75:70:cb:1d:65:b4:72:b8:9a:27:2b:76:b4:
ec:8f:09:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:14:23 2025 by rpki-client