Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3136382e3232382e3132372e302f32342d3234203d3e20323632313931.roa
File: 3136382e3232382e3132372e302f32342d3234203d3e20323632313931.roa (raw, json)
Hash identifier: 70bCLIpjeyZms7e/USwRoJbEpW1gSpfu3Sl+Si8xfi8=
Subject key identifier: FF:36:80:77:F6:5B:95:A0:9F:C9:84:4F:FE:77:D3:99:75:F5:66:1D
Certificate issuer: /CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Certificate serial: 56B0B9A6A0DE911ED0E00667E2A3C90CE93E88F3
Authority key identifier: 85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3136382e3232382e3132372e302f32342d3234203d3e20323632313931.roa
Signing time: Tue 04 Feb 2025 20:04:37 +0000
ROA not before: Tue 04 Feb 2025 19:59:37 +0000
ROA not after: Tue 03 Feb 2026 20:04:37 +0000
asID: 262191
IP address blocks: 168.228.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:b0:b9:a6:a0:de:91:1e:d0:e0:06:67:e2:a3:c9:0c:e9:3e:88:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Validity
Not Before: Feb 4 19:59:37 2025 GMT
Not After : Feb 3 20:04:37 2026 GMT
Subject: CN=FF368077F65B95A09FC9844FFE77D39975F5661D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4f:8c:cc:5c:5c:39:26:67:e7:f9:d2:94:2a:
0b:24:76:6c:68:cf:49:44:1a:07:a1:00:c5:9e:82:
71:98:06:ca:40:b7:7a:03:59:8f:d3:64:f3:29:97:
0d:7e:ba:6a:e8:51:d1:48:29:f4:40:74:2c:45:84:
7b:36:f2:83:b4:e3:56:11:3b:d5:ba:a0:f1:76:28:
2e:5f:e5:39:07:52:ef:83:49:ae:f2:03:c7:cc:d0:
7f:43:3c:41:ce:ce:5b:cd:6b:6d:ca:d0:18:2b:55:
4f:af:73:77:db:b0:c4:bd:0c:41:1d:59:02:1a:b6:
f9:b5:b7:6b:25:d1:b6:14:35:5e:cf:0c:5b:f2:68:
78:0f:46:fd:01:68:74:bb:8c:68:b6:fe:35:05:7e:
65:29:36:55:94:e0:44:ef:95:33:64:05:41:21:bd:
44:18:9c:95:69:f0:6c:3b:30:3f:97:5a:82:17:7d:
32:7a:08:50:e6:49:8d:9b:f3:44:57:53:2e:9d:cd:
5c:5c:f6:e7:78:9f:d1:da:b9:93:8e:2b:90:6e:c3:
c5:3a:8a:b5:40:27:87:82:6e:ef:e0:d8:fe:88:bc:
b8:2a:31:9f:17:39:d0:21:e9:8f:aa:6c:76:17:53:
3c:4f:cc:2e:6d:85:1f:60:d0:88:9d:af:af:03:8d:
63:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:36:80:77:F6:5B:95:A0:9F:C9:84:4F:FE:77:D3:99:75:F5:66:1D
X509v3 Authority Key Identifier:
keyid:85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3136382e3232382e3132372e302f32342d3234203d3e20323632313931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.228.127.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:da:c3:cb:01:69:5e:aa:b9:c7:d0:c0:98:ea:91:ac:98:ec:
15:be:a3:30:55:32:f0:7a:5c:84:82:5e:05:24:79:1a:2c:f2:
0c:6c:ec:36:e7:4b:10:54:b8:16:a6:e1:e1:19:91:b9:76:69:
dc:36:dd:69:53:81:60:5f:27:89:a6:5b:51:4e:4b:ce:e0:2c:
90:13:c6:84:f6:6d:ca:e6:a9:eb:39:6b:74:30:2a:3f:02:ad:
26:f6:0c:15:10:3b:76:b3:cb:06:0c:b4:5d:73:3e:84:fd:a6:
85:28:ac:67:df:d3:4f:5a:45:89:70:0c:51:33:46:48:f3:42:
72:08:2d:c2:93:24:17:83:0f:1c:e4:13:b8:4d:66:7b:e3:cf:
31:47:e4:24:00:c1:64:d1:b2:e0:99:d9:76:ac:dc:05:e4:e4:
8a:43:af:c1:a7:db:d0:b4:e5:b8:98:3a:f8:51:f3:05:ab:57:
7f:55:b2:a7:4a:42:a8:50:b2:15:3c:9c:d9:fc:dc:6c:73:1f:
c2:c8:d0:48:e3:c3:c9:44:f1:15:11:05:c4:f4:d4:19:44:3a:
e8:4f:77:1d:35:67:3e:a6:c0:cd:70:fa:21:d9:3f:db:ac:91:
20:c5:0c:15:76:65:03:aa:94:0c:80:c6:96:2e:c1:3e:f1:ed:
13:fe:5c:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:29:23 2025 by rpki-client