Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3136382e3139372e39382e302f32332d3234203d3e203532343233.roa
File: 3136382e3139372e39382e302f32332d3234203d3e203532343233.roa (raw, json)
Hash identifier: fXHFYxmXT+4GWgguK8YxhfrPlj7YtM0aSyrBlIq3xmM=
Subject key identifier: 98:15:FF:EC:D6:F2:BA:5F:74:64:26:97:B3:40:A8:25:03:9B:9B:97
Certificate issuer: /CN=044328B588D7E6AB4F049D26F9E6FDBB2FB51970
Certificate serial: 44AC55AB6E225525E31EFB8C8D68EAAF8D1FF232
Authority key identifier: 04:43:28:B5:88:D7:E6:AB:4F:04:9D:26:F9:E6:FD:BB:2F:B5:19:70
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3136382e3139372e39382e302f32332d3234203d3e203532343233.roa
Signing time: Tue 04 Feb 2025 18:54:31 +0000
ROA not before: Tue 04 Feb 2025 18:49:31 +0000
ROA not after: Tue 03 Feb 2026 18:54:31 +0000
asID: 52423
IP address blocks: 168.197.98.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:ac:55:ab:6e:22:55:25:e3:1e:fb:8c:8d:68:ea:af:8d:1f:f2:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=044328B588D7E6AB4F049D26F9E6FDBB2FB51970
Validity
Not Before: Feb 4 18:49:31 2025 GMT
Not After : Feb 3 18:54:31 2026 GMT
Subject: CN=9815FFECD6F2BA5F74642697B340A825039B9B97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:88:8f:1a:4d:e7:77:5e:a3:2e:d7:2e:6a:de:
3a:78:19:08:7c:75:06:d1:25:e4:ba:6f:be:6d:73:
15:6c:94:56:ee:cd:23:54:d8:a2:30:5c:21:e9:d7:
a4:1e:58:a0:19:57:a9:fd:48:78:3e:23:96:c0:2f:
1b:c0:68:d6:76:b9:2d:e4:0e:4e:7e:61:6a:0e:60:
f5:be:ec:82:a5:1e:6c:76:7c:db:bc:b5:ce:08:15:
2d:4d:ab:f3:25:47:25:3d:9b:04:11:99:f5:51:b0:
ce:d0:8f:3f:e6:02:a5:e6:3f:11:34:5b:73:6d:79:
60:c1:2a:9b:71:c0:8f:0d:06:58:0f:cd:ca:25:1d:
bc:d2:55:ec:2c:40:4c:84:21:f3:c8:46:b5:1d:9b:
68:c8:ae:37:f9:c4:c3:71:7b:82:fc:4c:a4:76:c2:
90:c4:dc:0d:93:42:9a:d9:67:27:8e:eb:56:58:2a:
5b:4f:d6:75:2c:bb:d1:b7:82:20:dc:09:35:d1:fc:
5a:0c:7a:e1:8b:d9:ac:7c:fd:49:16:6e:ac:4d:8a:
dc:c0:49:06:e7:6a:81:fa:cb:2a:2d:b7:06:56:65:
52:10:92:6b:f1:90:6d:70:a9:da:01:d6:29:ee:61:
f1:c9:39:c9:3e:20:41:a2:d3:bf:b8:65:40:e3:8f:
23:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:15:FF:EC:D6:F2:BA:5F:74:64:26:97:B3:40:A8:25:03:9B:9B:97
X509v3 Authority Key Identifier:
keyid:04:43:28:B5:88:D7:E6:AB:4F:04:9D:26:F9:E6:FD:BB:2F:B5:19:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3136382e3139372e39382e302f32332d3234203d3e203532343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.197.98.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:d6:85:63:a4:81:3e:9f:0f:63:02:e8:a8:bf:b8:f5:b5:18:
80:0a:ca:e6:be:68:9a:64:68:d2:45:f9:40:f3:ac:e4:b7:52:
21:d1:b9:c4:5a:eb:24:43:f1:2e:98:b7:9d:0f:c1:a1:8b:ad:
3d:55:fd:13:ea:5e:23:6d:da:7b:41:38:8b:b6:21:22:b8:eb:
30:50:21:07:03:dc:0a:61:db:22:da:80:30:18:be:12:08:b7:
6d:e3:2e:99:7e:92:89:13:76:a7:ba:2e:80:d5:55:b9:a1:37:
1c:76:4c:1c:d1:03:ed:91:d1:dd:ef:0c:b1:07:43:bf:bb:7a:
4d:d4:20:51:36:ed:c0:6b:f8:e4:6c:c8:f7:f8:dd:62:bc:72:
67:51:92:85:58:05:b6:36:a8:59:2d:5e:e1:0e:b4:12:95:66:
aa:23:fe:2d:5e:d3:b4:2e:f0:0c:ae:3d:79:59:30:2c:d0:8f:
22:4e:21:4e:78:97:06:f6:58:ae:37:ee:9e:22:08:d1:79:9c:
7f:26:8c:e1:5d:10:8d:d2:92:58:e7:fb:47:f1:b8:4e:f0:8f:
5a:1c:d4:70:60:de:91:71:fa:5e:e3:15:59:1d:ba:ad:9e:18:
86:b6:e7:80:57:b1:02:b9:9c:2d:7d:81:36:1c:ad:db:59:1c:
c9:68:bc:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:00:15 2025 by rpki-client