Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3136302e3232332e3230332e302f32342d3234203d3e203532343233.roa
File: 3136302e3232332e3230332e302f32342d3234203d3e203532343233.roa (raw, json)
Hash identifier: Sh9kMJWoJiMp1F0ErmNX+iMFOK99M0N7/hycPr+fESc=
Subject key identifier: B8:5E:28:6E:49:96:FF:3A:D2:C4:AD:0A:34:0C:23:E5:18:F6:30:8B
Certificate issuer: /CN=044328B588D7E6AB4F049D26F9E6FDBB2FB51970
Certificate serial: 2A87AEF8D49EFAF52D6034C8CAD046C491787629
Authority key identifier: 04:43:28:B5:88:D7:E6:AB:4F:04:9D:26:F9:E6:FD:BB:2F:B5:19:70
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3136302e3232332e3230332e302f32342d3234203d3e203532343233.roa
Signing time: Tue 04 Feb 2025 18:54:30 +0000
ROA not before: Tue 04 Feb 2025 18:49:30 +0000
ROA not after: Tue 03 Feb 2026 18:54:30 +0000
asID: 52423
IP address blocks: 160.223.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:87:ae:f8:d4:9e:fa:f5:2d:60:34:c8:ca:d0:46:c4:91:78:76:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=044328B588D7E6AB4F049D26F9E6FDBB2FB51970
Validity
Not Before: Feb 4 18:49:30 2025 GMT
Not After : Feb 3 18:54:30 2026 GMT
Subject: CN=B85E286E4996FF3AD2C4AD0A340C23E518F6308B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:84:11:10:b0:d9:d6:5d:38:bc:65:68:70:0b:
24:d9:d8:12:2f:24:88:8a:3e:7b:04:43:ce:e9:4d:
11:92:01:00:6c:2c:be:13:f8:18:5b:f6:fd:07:e3:
10:d7:53:70:dc:89:47:e3:4d:de:37:22:94:31:b4:
bd:a6:c1:ec:72:aa:5a:cf:df:15:c5:0e:9e:74:53:
32:44:e2:5a:45:d0:c0:1e:f3:2f:e1:bb:0a:3b:39:
78:d6:2e:54:40:0c:7d:7b:31:0f:78:66:94:68:91:
54:49:ce:76:74:7b:f7:1a:b5:23:61:95:91:af:7f:
c2:da:46:e0:17:b4:26:35:bd:80:30:f9:12:c5:46:
b1:35:9d:00:b6:91:84:bc:fa:0a:14:77:f9:d9:b8:
3c:9d:8b:24:74:e5:cb:6b:b3:38:16:89:fa:f2:06:
c5:58:48:7c:64:e8:a4:88:a6:d1:9e:85:ac:8e:23:
08:f2:aa:f3:bc:c2:43:55:1f:f4:f2:65:a0:41:d4:
5d:6b:ae:69:43:ac:b9:18:97:85:bc:8d:d7:7b:5f:
3f:30:60:51:71:0c:89:65:5e:f5:ab:c9:75:58:5b:
35:4b:de:2f:42:79:16:d5:12:ba:49:f9:09:bb:c4:
a4:ec:eb:7a:d8:d5:70:39:cd:e9:ca:f2:36:13:de:
95:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:5E:28:6E:49:96:FF:3A:D2:C4:AD:0A:34:0C:23:E5:18:F6:30:8B
X509v3 Authority Key Identifier:
keyid:04:43:28:B5:88:D7:E6:AB:4F:04:9D:26:F9:E6:FD:BB:2F:B5:19:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3136302e3232332e3230332e302f32342d3234203d3e203532343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.223.203.0/24
Signature Algorithm: sha256WithRSAEncryption
48:6a:5c:b8:ef:4c:ac:56:d3:06:cb:4b:ed:a5:45:52:87:35:
50:58:b5:24:ce:a2:f1:f7:d1:e8:ac:28:b3:85:70:b2:0e:56:
9f:85:5c:f8:5f:95:76:10:8b:75:0e:02:85:9d:3f:55:95:78:
c7:0d:b8:48:08:d8:15:ad:37:a2:0e:c9:f1:e6:e7:f2:a5:24:
98:2c:59:da:73:5c:6b:64:ee:3e:34:3e:43:c9:15:90:2f:20:
e6:e8:c2:5e:98:d3:5e:22:1c:63:7b:7c:06:c7:2d:58:40:58:
f0:ff:d2:28:40:28:57:fa:1f:83:ab:23:02:60:18:81:b5:35:
4b:ae:ea:9e:35:44:d2:d1:cd:8e:fa:d0:e5:50:c9:68:99:ab:
62:2f:c4:38:c5:df:c5:fa:60:a8:a8:9f:af:62:23:ad:b2:f3:
34:2b:81:3b:f6:38:6e:14:ea:f2:42:bf:b0:fb:9f:f9:80:b9:
6a:c6:6e:8a:2c:86:57:6e:ea:c4:45:8c:97:e5:63:b1:4d:6c:
62:04:92:9b:f9:10:b3:99:43:ef:8a:b9:39:ea:6c:ea:ff:d8:
25:6b:ed:a2:65:c5:6f:33:ed:86:ca:a3:1f:8a:03:c1:70:22:
dd:31:64:2b:2c:83:77:65:45:53:4c:f6:93:1a:c2:96:8d:f0:
57:1f:8c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:00:07 2025 by rpki-client