Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1125F809A6DEDDE6D10AB06AFA3D36E79A73795912C90F47FCE7817A54CA41C9/0/3137302e3234372e3232302e302f32322d3232203d3e203532343439.roa
File: 3137302e3234372e3232302e302f32322d3232203d3e203532343439.roa (raw, json)
Hash identifier: oQPCCkK9QtEWgscXCz9NJqjxMIDM6CBzKHqIJPCYd9E=
Subject key identifier: 3A:98:09:CC:76:01:9D:2F:96:DC:52:9E:9A:FC:57:19:F2:B3:F4:C0
Certificate issuer: /CN=A6092CA6DF0448374137DE890AB584D961C1028E
Certificate serial: 7A7581C4A58F9E8B3B52E18BB2615610578F51A1
Authority key identifier: A6:09:2C:A6:DF:04:48:37:41:37:DE:89:0A:B5:84:D9:61:C1:02:8E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A6092CA6DF0448374137DE890AB584D961C1028E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1125F809A6DEDDE6D10AB06AFA3D36E79A73795912C90F47FCE7817A54CA41C9/0/3137302e3234372e3232302e302f32322d3232203d3e203532343439.roa
Signing time: Tue 04 Feb 2025 18:34:03 +0000
ROA not before: Tue 04 Feb 2025 18:29:03 +0000
ROA not after: Tue 03 Feb 2026 18:34:03 +0000
asID: 52449
IP address blocks: 170.247.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:75:81:c4:a5:8f:9e:8b:3b:52:e1:8b:b2:61:56:10:57:8f:51:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6092CA6DF0448374137DE890AB584D961C1028E
Validity
Not Before: Feb 4 18:29:03 2025 GMT
Not After : Feb 3 18:34:03 2026 GMT
Subject: CN=3A9809CC76019D2F96DC529E9AFC5719F2B3F4C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:78:96:d5:a2:4f:84:e2:02:2d:e6:95:b0:b8:
7c:74:8e:2d:90:76:53:8a:cd:37:5e:77:e1:23:54:
62:9a:a1:94:80:70:a8:5f:e2:a6:1e:e3:14:23:ea:
cb:5c:46:6e:ad:2c:c4:15:1f:0f:46:7a:05:bc:2b:
b5:53:5d:f0:29:3e:3b:e3:0f:64:f8:a9:95:c8:4c:
c8:a3:71:f5:3a:a5:0e:e0:95:a4:5e:66:43:67:d1:
4d:35:54:2f:b8:99:8c:90:e9:bc:26:4e:ce:42:00:
fe:93:e3:ea:74:49:49:f8:d5:c1:88:0a:c7:63:5e:
78:91:b3:19:a2:e3:ff:d3:9f:0f:d8:3c:91:fd:a0:
45:a6:28:1a:63:f3:b3:f6:65:01:7d:51:56:34:d7:
88:cb:85:5c:e4:14:0a:30:bb:14:f5:83:fc:ea:8b:
66:bf:6c:bb:40:6a:06:32:b9:03:5c:56:f3:a0:ea:
fa:ee:f3:48:7c:9d:99:7a:9a:fa:0e:88:11:2a:ad:
84:e4:46:ab:e6:0e:d7:80:a8:af:90:ca:ce:e9:96:
db:6a:be:a9:84:1c:da:af:a9:d0:76:a7:79:d3:d6:
5d:42:69:19:9f:42:a1:ea:56:05:1b:ad:ff:9b:24:
2f:05:6d:50:42:a9:41:be:29:62:86:cd:51:d2:ca:
7a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:98:09:CC:76:01:9D:2F:96:DC:52:9E:9A:FC:57:19:F2:B3:F4:C0
X509v3 Authority Key Identifier:
keyid:A6:09:2C:A6:DF:04:48:37:41:37:DE:89:0A:B5:84:D9:61:C1:02:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1125F809A6DEDDE6D10AB06AFA3D36E79A73795912C90F47FCE7817A54CA41C9/0/A6092CA6DF0448374137DE890AB584D961C1028E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A6092CA6DF0448374137DE890AB584D961C1028E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1125F809A6DEDDE6D10AB06AFA3D36E79A73795912C90F47FCE7817A54CA41C9/0/3137302e3234372e3232302e302f32322d3232203d3e203532343439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.247.220.0/22
Signature Algorithm: sha256WithRSAEncryption
82:8d:5d:3b:e4:5e:b9:31:14:f7:bc:3e:b4:94:ce:47:df:48:
b5:ff:84:f4:cb:85:14:73:29:5f:63:8b:71:67:a4:3d:b0:22:
27:89:ef:18:70:04:65:28:cf:95:f2:f4:5b:98:5a:47:8d:83:
5c:14:a7:42:16:36:d0:52:d8:c1:d6:4d:c6:85:09:d5:97:4d:
2f:c2:94:e5:bc:52:2e:19:8a:a9:d6:5f:7a:6b:6c:81:d3:28:
d3:3d:86:b9:15:3d:f5:a8:23:f0:f4:33:38:96:bf:34:20:27:
6d:26:72:d8:8e:11:be:49:de:5a:45:72:47:eb:bf:5c:b3:da:
b2:b0:38:a9:04:c5:b1:b1:1c:fd:2c:b5:1f:db:63:40:bd:88:
ec:52:ab:b1:e9:51:2e:a7:c6:69:cd:88:0b:2f:ec:32:12:01:
b8:34:f1:86:09:61:63:3b:a3:51:54:3c:20:91:7b:82:98:e2:
01:5e:d6:ef:8b:3c:8d:9b:07:93:8a:6a:a0:73:00:85:9f:fc:
5b:7b:41:68:3f:5d:7c:eb:a2:bb:95:5d:b5:c6:61:4a:48:73:
58:75:86:67:40:8e:88:1d:09:e4:92:34:fe:d3:1c:47:4f:93:
52:1f:c9:52:73:9b:dd:66:73:2c:21:f4:1b:50:88:b8:30:7d:
0a:7c:36:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:23:05 2025 by rpki-client