Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1700DC2BCC12F3D28D94114FFF1C807B757714EAAB2CC7F010ED0AB7205C14EF/0/34352e3137352e36342e302f32322d3234203d3e20323633363836.roa
File: 34352e3137352e36342e302f32322d3234203d3e20323633363836.roa (raw, json)
Hash identifier: TJ+igW/YrUcosQrIwNfQipcoW/x6+LywdR0fClvRIfw=
Subject key identifier: 35:A6:50:08:A8:99:C3:40:C7:0C:69:D6:DE:AC:1F:6F:AB:DD:1C:D8
Certificate issuer: /CN=2FDAA3ACC9CA4BFC9219FB65CB464C9B9C4B94D0
Certificate serial: 7B85A912542D19E56A81A5A83406AF610968CA73
Authority key identifier: 2F:DA:A3:AC:C9:CA:4B:FC:92:19:FB:65:CB:46:4C:9B:9C:4B:94:D0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FDAA3ACC9CA4BFC9219FB65CB464C9B9C4B94D0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1700DC2BCC12F3D28D94114FFF1C807B757714EAAB2CC7F010ED0AB7205C14EF/0/34352e3137352e36342e302f32322d3234203d3e20323633363836.roa
Signing time: Tue 04 Feb 2025 20:07:39 +0000
ROA not before: Tue 04 Feb 2025 20:02:39 +0000
ROA not after: Tue 03 Feb 2026 20:07:39 +0000
asID: 263686
IP address blocks: 45.175.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:85:a9:12:54:2d:19:e5:6a:81:a5:a8:34:06:af:61:09:68:ca:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FDAA3ACC9CA4BFC9219FB65CB464C9B9C4B94D0
Validity
Not Before: Feb 4 20:02:39 2025 GMT
Not After : Feb 3 20:07:39 2026 GMT
Subject: CN=35A65008A899C340C70C69D6DEAC1F6FABDD1CD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:05:f9:e7:f4:dd:10:04:bc:84:3b:18:4b:3c:
68:60:79:ec:03:ee:fe:86:18:f6:a1:7f:7e:7b:e8:
90:87:10:5b:c9:b2:be:db:7a:86:d6:1d:83:c6:bf:
89:e7:22:7a:66:26:4a:a0:15:b2:d2:8c:93:f4:81:
61:46:a7:a8:a2:3f:ac:bd:06:7b:79:96:97:42:4e:
70:e0:28:6a:40:81:5f:b9:88:bc:79:74:6e:4e:29:
22:b2:e6:39:04:a1:61:11:86:12:03:4e:89:b5:d9:
7c:14:ee:7e:37:de:8e:0e:d3:7c:49:42:0b:75:e0:
58:1c:a1:34:53:40:ae:37:38:41:ff:07:37:9f:f7:
a8:ea:d4:20:bb:a6:83:27:be:9a:da:99:86:d4:88:
f2:f2:1d:d2:3d:2e:e8:ee:8e:88:73:c2:b6:07:ff:
dd:bc:ac:21:cf:1c:33:4b:84:4c:c4:06:6c:e5:60:
30:90:72:61:8d:d2:37:47:9b:cb:5a:16:58:56:b1:
38:a8:6f:fd:13:05:f5:4f:54:b1:28:29:d4:2d:37:
f0:b8:f9:0e:4f:11:f8:98:3a:94:23:8d:d6:56:be:
54:3f:f6:dd:24:b0:b6:8e:80:ec:40:6f:cc:b2:d4:
ad:51:6f:61:d4:a7:66:4e:5c:27:a9:bf:0b:aa:e4:
cc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A6:50:08:A8:99:C3:40:C7:0C:69:D6:DE:AC:1F:6F:AB:DD:1C:D8
X509v3 Authority Key Identifier:
keyid:2F:DA:A3:AC:C9:CA:4B:FC:92:19:FB:65:CB:46:4C:9B:9C:4B:94:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1700DC2BCC12F3D28D94114FFF1C807B757714EAAB2CC7F010ED0AB7205C14EF/0/2FDAA3ACC9CA4BFC9219FB65CB464C9B9C4B94D0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FDAA3ACC9CA4BFC9219FB65CB464C9B9C4B94D0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1700DC2BCC12F3D28D94114FFF1C807B757714EAAB2CC7F010ED0AB7205C14EF/0/34352e3137352e36342e302f32322d3234203d3e20323633363836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.175.64.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:82:63:ac:3d:cc:3f:6d:0d:06:28:07:85:26:14:2e:50:72:
06:fb:a1:33:a6:4c:8c:ff:71:0e:84:d9:1f:c7:f5:6a:49:15:
1c:47:7d:3d:5b:bb:66:9f:a5:b5:ff:25:1e:5e:74:05:9f:22:
42:f6:fd:59:a1:87:42:d9:cf:14:44:4a:38:d8:68:f5:57:85:
03:1f:d0:91:5e:0c:fc:1f:09:ac:f2:88:65:72:bd:f6:16:8b:
96:b8:e4:c6:81:11:67:fc:3a:cc:c2:7c:53:dd:95:06:2d:4b:
fa:68:3a:a6:7c:2b:78:38:66:b1:5a:77:5b:ea:e3:56:16:7b:
e3:e4:6a:59:dc:8d:84:0b:59:cc:2d:01:2f:68:5e:95:ff:93:
5d:25:66:74:92:c0:3a:fa:81:1a:a2:1a:33:08:ca:24:f0:c7:
b9:8f:af:70:d1:a1:3a:af:ce:eb:a1:85:d4:7f:7c:15:40:a7:
35:1e:5b:90:0f:20:d7:f2:a9:6f:5f:83:43:a7:4d:fe:d6:8d:
3a:0a:ad:5a:19:a9:42:09:e4:95:4f:54:4e:b4:a8:38:d1:1b:
bc:a8:85:77:ee:c3:a0:53:ad:30:03:3c:79:86:a3:2f:d5:39:
2e:0c:ef:63:b0:a6:b3:bf:14:57:fd:8c:b8:22:94:a3:e9:87:
f4:76:b2:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:25:04 2025 by rpki-client