Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/199149CA43EC64A0473D2BC1CF13F8E17F3B1E19CB42E246891B0DF0EDCC5862/0/36342e32382e3134332e302f32342d3234203d3e203238303637.roa
File: 36342e32382e3134332e302f32342d3234203d3e203238303637.roa (raw, json)
Hash identifier: KnAqLLr/Rllbxs7+scEA0RmMyZyHX4RSAojezFd9dck=
Subject key identifier: DD:34:B6:C6:D5:8A:77:DA:55:6C:2F:64:87:29:61:87:C7:46:64:3C
Certificate issuer: /CN=8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30
Certificate serial: 323D260324D746589A7C54206B81F1794C78CC39
Authority key identifier: 8F:CB:3D:AE:D8:FB:3A:82:F6:BD:E9:5F:BC:5A:C3:B7:9C:CE:FD:30
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/199149CA43EC64A0473D2BC1CF13F8E17F3B1E19CB42E246891B0DF0EDCC5862/0/36342e32382e3134332e302f32342d3234203d3e203238303637.roa
Signing time: Tue 04 Feb 2025 18:29:13 +0000
ROA not before: Tue 04 Feb 2025 18:24:13 +0000
ROA not after: Tue 03 Feb 2026 18:29:13 +0000
asID: 28067
IP address blocks: 64.28.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:3d:26:03:24:d7:46:58:9a:7c:54:20:6b:81:f1:79:4c:78:cc:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30
Validity
Not Before: Feb 4 18:24:13 2025 GMT
Not After : Feb 3 18:29:13 2026 GMT
Subject: CN=DD34B6C6D58A77DA556C2F6487296187C746643C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:06:d7:2b:7b:94:62:b9:00:9b:d1:f1:b6:3d:
f8:4b:23:0b:1a:fa:26:ec:73:c2:04:bf:b8:e7:3d:
9b:8f:ca:09:4c:87:ff:14:d4:15:e8:8a:71:66:eb:
32:50:da:cf:19:26:5c:29:d5:fe:46:cb:76:59:d9:
9a:28:e7:6f:cc:1b:1b:4e:e3:a1:be:b1:58:6a:7a:
69:e8:bf:ed:3f:a4:72:26:6a:a4:5c:ab:e3:67:4a:
3f:e4:a5:c2:32:d1:e4:29:a8:bc:a0:3d:d7:56:46:
bc:c6:35:71:d4:5c:b8:76:64:4c:e9:93:25:f0:70:
ca:a9:a0:41:a6:18:ea:51:80:45:88:bc:e8:9b:54:
e1:d7:f9:ac:79:60:2b:af:14:9e:a5:2c:da:b9:01:
ef:2f:89:2d:2c:37:e1:c2:da:93:15:9a:9b:ec:c2:
ba:ab:bf:64:51:56:05:62:eb:e2:a6:c1:2a:6d:0d:
c8:86:6f:57:e6:3a:be:63:ac:4c:7e:15:99:f0:b3:
de:74:74:86:b9:c2:4c:e7:f1:49:2c:88:4e:91:21:
02:13:96:1c:fa:0a:15:4b:53:b8:33:a1:a1:c6:3e:
af:a5:3b:9d:b1:53:17:45:e1:d4:7b:06:25:11:da:
d6:58:e9:5b:76:c5:63:1b:b1:ae:00:b6:b8:36:b4:
70:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:34:B6:C6:D5:8A:77:DA:55:6C:2F:64:87:29:61:87:C7:46:64:3C
X509v3 Authority Key Identifier:
keyid:8F:CB:3D:AE:D8:FB:3A:82:F6:BD:E9:5F:BC:5A:C3:B7:9C:CE:FD:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/199149CA43EC64A0473D2BC1CF13F8E17F3B1E19CB42E246891B0DF0EDCC5862/0/8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8FCB3DAED8FB3A82F6BDE95FBC5AC3B79CCEFD30.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/199149CA43EC64A0473D2BC1CF13F8E17F3B1E19CB42E246891B0DF0EDCC5862/0/36342e32382e3134332e302f32342d3234203d3e203238303637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.28.143.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:a3:4e:44:c3:ae:67:9f:a6:a9:bb:6f:37:df:fa:da:03:75:
42:57:4b:77:84:da:cd:2d:30:cf:ba:8f:57:a1:cf:99:d8:37:
a4:df:e5:4f:9e:d9:14:dd:e1:5f:19:b1:c0:7d:f2:50:b9:79:
1d:bc:03:dc:80:b8:18:43:1e:06:56:e5:75:3f:08:7a:b8:b1:
4c:48:7f:44:7f:7d:73:cd:3a:1c:e5:a6:da:ae:96:77:41:5e:
c5:00:84:3e:a5:71:4c:0d:11:5d:de:db:ec:af:4c:39:f4:58:
61:66:96:67:b0:96:29:ca:8c:36:d0:96:fe:12:bd:0c:99:60:
ff:58:79:9c:47:b0:08:9d:84:50:d5:52:d2:09:0f:83:74:21:
26:4d:c5:f6:ea:3e:56:05:64:13:62:f8:ea:d9:96:70:c0:04:
bd:a0:5b:f4:98:70:82:21:49:60:1b:f4:cb:91:68:2d:6d:48:
98:8e:b1:b6:7a:1d:12:b4:22:d9:a6:d1:f1:7c:ed:da:bb:a9:
e8:48:92:6a:6a:fd:08:0c:e0:58:62:fe:9b:52:93:d0:d1:5f:
24:fa:15:9d:90:80:05:45:0a:3b:b3:a1:1a:b5:28:d1:55:24:
4e:5f:a9:4c:e0:b8:ed:ee:9d:a9:15:35:bf:5d:19:e0:0d:43:
26:cb:6f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:02:35 2025 by rpki-client