Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1FC9C142275D6E11A0ED9B4FAADDBB8C2A7D3F1C46D75320A7251C71996187F1/0/34352e372e36342e302f32322d3234203d3e20323730313433.roa
File: 34352e372e36342e302f32322d3234203d3e20323730313433.roa (raw, json)
Hash identifier: YY4/mdgzjUgnLmbVDKOy2IEpDvfxlpwOT9Cp4bsjkBA=
Subject key identifier: D5:CC:1D:CA:F9:51:39:2A:B0:2B:D7:84:10:6C:53:F6:71:B1:6C:56
Certificate issuer: /CN=3B7FBA3E1DF8AD691DB755372D731DFAB6E0CD8C
Certificate serial: 5A46BDC23B46AC77756F348A2D7B4FB7AF419B83
Authority key identifier: 3B:7F:BA:3E:1D:F8:AD:69:1D:B7:55:37:2D:73:1D:FA:B6:E0:CD:8C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3B7FBA3E1DF8AD691DB755372D731DFAB6E0CD8C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1FC9C142275D6E11A0ED9B4FAADDBB8C2A7D3F1C46D75320A7251C71996187F1/0/34352e372e36342e302f32322d3234203d3e20323730313433.roa
Signing time: Tue 04 Feb 2025 18:45:50 +0000
ROA not before: Tue 04 Feb 2025 18:40:50 +0000
ROA not after: Tue 03 Feb 2026 18:45:50 +0000
asID: 270143
IP address blocks: 45.7.64.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:46:bd:c2:3b:46:ac:77:75:6f:34:8a:2d:7b:4f:b7:af:41:9b:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3B7FBA3E1DF8AD691DB755372D731DFAB6E0CD8C
Validity
Not Before: Feb 4 18:40:50 2025 GMT
Not After : Feb 3 18:45:50 2026 GMT
Subject: CN=D5CC1DCAF951392AB02BD784106C53F671B16C56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:38:93:2f:d0:89:cf:2d:f7:8f:a8:1d:ac:f2:
78:f5:6f:74:b8:fa:26:7b:f4:3b:45:17:e1:ac:1a:
e7:46:11:fc:2b:0a:1c:a5:e3:79:ca:56:db:7e:e5:
53:03:21:8a:3f:88:ce:c9:43:75:83:37:79:4c:8e:
7a:11:3f:d9:3e:ab:9a:d2:58:c5:81:97:b9:92:52:
ed:6d:5b:ea:6a:3b:f8:b8:5a:5b:1f:69:cc:22:ff:
d9:74:b4:c0:2a:6c:c5:28:5d:c4:1c:74:3f:43:94:
97:e5:ad:87:9f:48:3a:ef:4f:1e:b4:c4:86:13:40:
50:b9:12:2c:5f:bc:00:98:41:03:08:76:2c:a5:9b:
56:e3:00:49:1b:3b:89:2e:f9:1c:4e:6a:16:d2:2c:
97:b8:ef:03:3e:41:27:fc:2a:5c:a3:17:29:43:2c:
89:c2:1d:4b:00:7c:32:e3:9f:87:f0:67:67:d7:80:
f4:2f:ba:06:17:72:2e:69:a6:46:68:4b:c5:0e:aa:
2e:98:d4:50:39:b7:0c:d3:52:93:c8:54:43:18:3b:
68:fa:02:c4:f8:ee:7a:02:34:be:4e:ed:a0:8f:41:
25:04:12:a0:33:fb:25:dc:0a:6e:6e:9a:b8:96:c9:
2c:2c:ef:d2:6e:2b:ad:0a:b3:9e:2f:f9:84:1d:4d:
74:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:CC:1D:CA:F9:51:39:2A:B0:2B:D7:84:10:6C:53:F6:71:B1:6C:56
X509v3 Authority Key Identifier:
keyid:3B:7F:BA:3E:1D:F8:AD:69:1D:B7:55:37:2D:73:1D:FA:B6:E0:CD:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1FC9C142275D6E11A0ED9B4FAADDBB8C2A7D3F1C46D75320A7251C71996187F1/0/3B7FBA3E1DF8AD691DB755372D731DFAB6E0CD8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3B7FBA3E1DF8AD691DB755372D731DFAB6E0CD8C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1FC9C142275D6E11A0ED9B4FAADDBB8C2A7D3F1C46D75320A7251C71996187F1/0/34352e372e36342e302f32322d3234203d3e20323730313433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.7.64.0/22
Signature Algorithm: sha256WithRSAEncryption
73:a7:c2:ac:c9:24:29:9d:06:c9:26:72:50:11:78:52:2f:ed:
8e:f3:20:da:c4:48:14:d6:fa:e1:ba:64:a1:41:3f:ba:96:5e:
38:4a:28:7d:6a:01:8d:e1:c8:a6:93:c1:90:f9:5d:3d:11:54:
db:53:e3:f6:3a:22:3e:55:99:08:9b:57:68:10:53:73:b0:87:
be:b7:09:15:d0:56:0e:21:3d:73:69:7d:e4:3b:42:1f:f4:02:
9e:86:f4:46:77:68:24:a2:9b:25:b1:a6:2d:a2:b7:83:05:98:
f2:ff:1b:df:95:50:19:46:97:2c:58:44:10:dc:9a:48:fb:98:
18:6d:b8:fe:05:06:2a:8d:c6:6c:cd:ee:f5:69:10:e6:40:b3:
d4:9d:01:aa:ca:f3:9a:fc:d6:20:33:12:4e:cc:14:31:ab:10:
e2:63:4a:e1:e5:8e:f7:54:94:a7:c2:e5:07:b1:ff:44:f3:61:
22:30:1d:0d:64:2d:02:fc:8d:e6:03:bf:e8:25:23:d7:57:04:
30:41:c8:52:83:5f:bb:06:6f:75:d3:04:24:73:44:e2:db:62:
fc:2b:fe:b8:c0:e8:6d:2c:6c:df:2f:d6:70:98:b8:83:cc:81:
f9:43:e1:bc:b1:29:45:3e:98:d9:c3:1a:4b:91:18:2b:68:c4:
66:ce:08:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:25:18 2025 by rpki-client