Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1B52572E2652AA752E5F2A771D4B4F9735B51DCB6DD6E3E1A53C763AAC0D2C9C/0/3137392e302e31302e302f32342d3234203d3e203532343637.roa
File: 3137392e302e31302e302f32342d3234203d3e203532343637.roa (raw, json)
Hash identifier: Lhk0/eVS9n7RmiF4z6/mW1z55y1ILatPYkl9BK5Z+fg=
Subject key identifier: F4:19:5D:9A:F3:27:56:B0:D9:C2:B5:29:6B:65:68:EF:E4:25:27:69
Certificate issuer: /CN=641052DCEF37E758EF15254F7C2DAF03FCC99A62
Certificate serial: 79FEDFD2EECCA3B05204D2789A62899571922BB2
Authority key identifier: 64:10:52:DC:EF:37:E7:58:EF:15:25:4F:7C:2D:AF:03:FC:C9:9A:62
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/641052DCEF37E758EF15254F7C2DAF03FCC99A62.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1B52572E2652AA752E5F2A771D4B4F9735B51DCB6DD6E3E1A53C763AAC0D2C9C/0/3137392e302e31302e302f32342d3234203d3e203532343637.roa
Signing time: Tue 04 Feb 2025 18:05:46 +0000
ROA not before: Tue 04 Feb 2025 18:00:46 +0000
ROA not after: Tue 03 Feb 2026 18:05:46 +0000
asID: 52467
IP address blocks: 179.0.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:fe:df:d2:ee:cc:a3:b0:52:04:d2:78:9a:62:89:95:71:92:2b:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641052DCEF37E758EF15254F7C2DAF03FCC99A62
Validity
Not Before: Feb 4 18:00:46 2025 GMT
Not After : Feb 3 18:05:46 2026 GMT
Subject: CN=F4195D9AF32756B0D9C2B5296B6568EFE4252769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3a:fa:e9:7f:c3:e1:b1:9d:e0:77:d7:5f:fe:
07:b2:66:13:8f:a4:51:e6:38:0b:63:1b:7d:7f:5d:
76:be:f5:05:a8:cb:f4:62:5e:b8:04:e1:10:3b:90:
09:84:fa:08:cc:ed:8c:c5:5c:9c:de:ca:0a:bc:49:
dd:fd:98:7d:d9:af:28:56:1a:b9:3b:63:43:94:92:
5d:1b:fe:4e:5c:c6:9c:78:86:c5:d5:71:b7:f5:3f:
89:fe:05:2a:e4:92:22:df:d6:0c:3a:06:24:00:20:
79:52:7a:ce:8b:b7:28:68:98:e3:15:9d:75:af:4d:
ba:01:0e:74:7c:ab:48:3d:01:db:4b:f3:0f:8a:fb:
bf:28:59:bb:12:30:0d:0d:1f:6f:5d:f3:6d:af:85:
fa:11:d4:b1:bc:d3:68:eb:d7:5e:85:4e:7c:0b:dd:
23:70:58:b9:0d:c0:64:66:d8:06:55:bb:7a:b7:a8:
85:47:36:03:6f:65:99:a2:b6:be:17:06:c4:72:40:
31:88:94:02:b2:8b:54:32:57:3f:a8:44:b5:31:18:
34:57:d5:27:96:1b:04:39:13:1f:cc:44:d6:b9:69:
69:8b:99:0a:fe:1f:c4:68:d5:98:a8:1f:af:52:40:
64:2e:89:91:89:f7:30:bc:32:c6:9b:1c:5d:dd:33:
cf:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:19:5D:9A:F3:27:56:B0:D9:C2:B5:29:6B:65:68:EF:E4:25:27:69
X509v3 Authority Key Identifier:
keyid:64:10:52:DC:EF:37:E7:58:EF:15:25:4F:7C:2D:AF:03:FC:C9:9A:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1B52572E2652AA752E5F2A771D4B4F9735B51DCB6DD6E3E1A53C763AAC0D2C9C/0/641052DCEF37E758EF15254F7C2DAF03FCC99A62.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/641052DCEF37E758EF15254F7C2DAF03FCC99A62.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1B52572E2652AA752E5F2A771D4B4F9735B51DCB6DD6E3E1A53C763AAC0D2C9C/0/3137392e302e31302e302f32342d3234203d3e203532343637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.0.10.0/24
Signature Algorithm: sha256WithRSAEncryption
45:ae:aa:f8:30:e5:2d:20:6e:07:de:5f:5e:4f:f7:79:d1:20:
f7:80:f4:3b:cc:07:98:79:6b:de:7b:3f:1d:fc:46:03:ef:90:
95:01:cc:96:15:12:4d:0d:74:cd:f7:24:9e:18:d0:ff:40:95:
e3:25:35:2a:97:66:50:52:ef:2b:a0:e2:92:30:d4:ed:79:fc:
e7:d2:a5:90:7a:0b:e1:ca:7d:0e:37:f5:d1:d6:86:aa:de:8c:
b4:f0:cf:b2:eb:04:6d:7f:93:3a:2c:ec:5b:c7:b9:a8:83:a3:
37:f8:8c:af:d5:6d:4d:64:ae:d1:3d:cd:50:21:33:23:02:ab:
e4:cb:e4:53:3f:6a:f5:a6:b0:e7:c3:8b:39:d0:bd:39:03:3b:
64:33:be:f4:dc:a7:d3:13:d0:2d:3c:3e:6b:2a:0e:1a:c2:4d:
c6:9b:a2:82:b9:ca:d2:b0:ee:a5:05:d5:75:33:db:f7:0e:df:
4d:96:9c:e5:b2:fa:4c:c6:2b:cb:6a:03:78:a3:cf:dd:f1:b0:
53:80:cb:06:aa:b2:e0:8a:61:a6:f9:0c:96:44:9b:b8:82:ef:
e1:31:ac:6c:d8:17:d2:98:68:a4:77:27:43:b5:f4:65:83:0b:
92:5c:38:50:1c:c7:91:dd:49:d5:14:b7:18:bf:e4:21:a6:f9:
eb:79:e8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:57:37 2025 by rpki-client