Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/14B0D2E9E63B0401B3DA49460C54C7F7C27C997D4DDFEBBDEB44507F5AB4C26B/0/34352e3137312e34382e302f32332d3234203d3e20323635363735.roa
File: 34352e3137312e34382e302f32332d3234203d3e20323635363735.roa (raw, json)
Hash identifier: J/U1f3nXpKmHVicobeX1lv8aBe5Dh7AcoKxnAzqp9aY=
Subject key identifier: AB:A7:1F:15:DA:C0:44:BF:B0:76:2C:27:81:AF:5E:8F:07:9D:93:DB
Certificate issuer: /CN=9BA0AE71B8F72C164479BAC088253D5E8C918F46
Certificate serial: 2CE6841CDD9C2AD9C82A565FDB31E8B5D4CFED29
Authority key identifier: 9B:A0:AE:71:B8:F7:2C:16:44:79:BA:C0:88:25:3D:5E:8C:91:8F:46
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BA0AE71B8F72C164479BAC088253D5E8C918F46.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/14B0D2E9E63B0401B3DA49460C54C7F7C27C997D4DDFEBBDEB44507F5AB4C26B/0/34352e3137312e34382e302f32332d3234203d3e20323635363735.roa
Signing time: Tue 04 Feb 2025 18:48:19 +0000
ROA not before: Tue 04 Feb 2025 18:43:19 +0000
ROA not after: Tue 03 Feb 2026 18:48:19 +0000
asID: 265675
IP address blocks: 45.171.48.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:e6:84:1c:dd:9c:2a:d9:c8:2a:56:5f:db:31:e8:b5:d4:cf:ed:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BA0AE71B8F72C164479BAC088253D5E8C918F46
Validity
Not Before: Feb 4 18:43:19 2025 GMT
Not After : Feb 3 18:48:19 2026 GMT
Subject: CN=ABA71F15DAC044BFB0762C2781AF5E8F079D93DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:dd:f2:89:2f:76:9a:c7:11:ca:9c:a1:11:33:
7e:35:4d:0d:52:98:28:91:78:e8:c4:e1:6d:4f:ae:
69:1a:20:8d:0c:ec:23:a0:61:7e:70:18:ad:43:03:
cd:ea:ec:ee:79:c5:30:0c:88:e3:b8:e5:79:83:eb:
74:c4:89:0e:dc:b3:73:ff:05:62:2b:7c:fe:f1:24:
fe:42:3c:97:04:fb:54:d1:63:37:bc:b9:a1:45:65:
c4:da:57:15:d4:49:8b:b1:a4:e9:d2:37:df:4f:cb:
94:fb:24:0c:05:e5:4c:6b:13:e0:6e:88:e7:4f:e6:
ae:04:d1:0a:99:e5:4c:eb:58:fd:88:ee:b3:06:6a:
3f:7c:2e:a8:65:1a:b4:c1:1b:78:ab:1e:74:41:69:
cf:31:82:2d:e0:2b:48:0c:b2:a9:81:d8:ae:2b:c0:
59:56:05:40:93:a7:35:2a:e9:ad:70:58:60:bd:3a:
0e:11:fe:0b:65:3b:c6:c9:ae:51:a2:6a:81:4f:ed:
d8:87:da:da:2d:69:7a:f6:15:d9:1b:a1:ec:8d:56:
35:20:00:7c:cf:91:0a:36:24:7e:00:8d:72:36:b9:
12:a2:dc:35:4f:8a:6f:7e:fd:23:87:0b:f0:00:d9:
a9:b5:56:c9:d9:d4:01:5b:33:c2:c0:77:18:56:7f:
a7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A7:1F:15:DA:C0:44:BF:B0:76:2C:27:81:AF:5E:8F:07:9D:93:DB
X509v3 Authority Key Identifier:
keyid:9B:A0:AE:71:B8:F7:2C:16:44:79:BA:C0:88:25:3D:5E:8C:91:8F:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/14B0D2E9E63B0401B3DA49460C54C7F7C27C997D4DDFEBBDEB44507F5AB4C26B/0/9BA0AE71B8F72C164479BAC088253D5E8C918F46.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BA0AE71B8F72C164479BAC088253D5E8C918F46.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/14B0D2E9E63B0401B3DA49460C54C7F7C27C997D4DDFEBBDEB44507F5AB4C26B/0/34352e3137312e34382e302f32332d3234203d3e20323635363735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.171.48.0/23
Signature Algorithm: sha256WithRSAEncryption
97:34:c8:bb:c9:86:7a:69:56:49:1d:88:e2:2d:dd:03:2b:c6:
a0:9a:ca:a4:c1:c1:58:54:17:d4:9a:20:c8:3a:12:82:96:ae:
f1:da:33:ed:51:db:07:32:5e:cb:8b:b5:95:cd:31:ee:d7:5d:
af:a8:cc:1a:cf:66:1b:1d:7f:35:b6:21:2b:d9:2f:fc:39:59:
c4:3a:5e:08:b9:24:43:62:52:c3:5b:f2:2d:2e:e2:70:ce:a2:
26:1d:73:bf:fb:ca:e8:63:a9:0d:04:8d:1f:55:c5:87:ec:2f:
2a:72:fd:29:dc:55:cc:30:e5:66:28:10:1d:d7:5d:51:51:45:
ce:b1:5b:f6:14:f4:88:a4:17:b6:46:58:a2:b7:61:28:3c:71:
b6:5a:1c:4f:4e:21:9b:09:7f:3c:87:24:e0:c9:eb:55:72:b7:
1b:92:6d:4b:16:d9:d5:58:f9:4d:98:35:d2:ce:cd:2d:13:ba:
40:ce:e7:eb:d9:40:a1:0a:c7:94:04:4f:e4:b4:81:5b:98:0a:
61:2e:44:ca:86:46:ce:37:78:58:aa:7b:b1:68:75:63:92:ea:
87:e1:d0:24:85:a4:dc:bd:37:7e:cc:77:22:91:32:47:c0:91:
0f:53:b1:c4:e6:6a:dc:13:09:07:25:fb:08:a6:22:ea:5c:21:
f5:a9:54:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:27:09 2025 by rpki-client