Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2108EF77108CB43EE1F30F5C9C76FBDF27779FCE3E29A842623D82968B3616DB/0/34352e3232372e38392e302f32342d3234203d3e203236353036.roa
File: 34352e3232372e38392e302f32342d3234203d3e203236353036.roa (raw, json)
Hash identifier: Rm6vShyo97QxepggjqkbAA+nNxHuOrdgkuNIrtCbWeI=
Subject key identifier: B1:FB:78:D3:F0:01:94:97:9B:2C:0D:34:BB:7D:AE:C3:36:A4:35:97
Certificate issuer: /CN=FB1AE1E14C5A33EDEDE977285C7B107E534504EA
Certificate serial: 529D5C5E7D831A25AF40B691F88697008E6803A7
Authority key identifier: FB:1A:E1:E1:4C:5A:33:ED:ED:E9:77:28:5C:7B:10:7E:53:45:04:EA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FB1AE1E14C5A33EDEDE977285C7B107E534504EA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2108EF77108CB43EE1F30F5C9C76FBDF27779FCE3E29A842623D82968B3616DB/0/34352e3232372e38392e302f32342d3234203d3e203236353036.roa
Signing time: Tue 04 Feb 2025 18:18:44 +0000
ROA not before: Tue 04 Feb 2025 18:13:44 +0000
ROA not after: Tue 03 Feb 2026 18:18:44 +0000
asID: 26506
IP address blocks: 45.227.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:9d:5c:5e:7d:83:1a:25:af:40:b6:91:f8:86:97:00:8e:68:03:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB1AE1E14C5A33EDEDE977285C7B107E534504EA
Validity
Not Before: Feb 4 18:13:44 2025 GMT
Not After : Feb 3 18:18:44 2026 GMT
Subject: CN=B1FB78D3F00194979B2C0D34BB7DAEC336A43597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:81:ab:45:fd:d7:d9:b4:3f:b8:12:77:0e:76:
a8:e0:7c:bb:2e:54:da:23:bf:6c:cb:c1:f1:90:76:
ba:d0:fe:07:15:ac:47:8d:00:3b:7d:45:be:80:b3:
74:6b:0f:4b:d9:c9:25:e5:8f:fb:a5:e3:1e:a6:ed:
f3:f1:b0:59:22:cf:7d:ab:82:0e:33:fc:82:d1:7c:
cb:d2:68:15:a2:17:81:89:fe:bb:8c:ce:a1:75:81:
8a:5f:fe:4c:f1:81:f0:cc:26:e4:2c:41:95:8f:ff:
a5:57:74:db:b6:bb:06:f5:2d:91:fa:c7:3d:7a:43:
7a:d1:fe:1a:53:b2:ef:ef:e1:3e:da:ea:56:3b:90:
2b:bb:18:ec:ca:a2:26:d5:d1:b0:89:4d:9a:28:a1:
be:d3:d7:fb:79:32:e6:d4:91:a3:52:b7:a1:b4:9a:
94:bb:3b:a8:47:0f:f3:1a:27:4b:0f:3a:71:30:47:
f0:7a:c3:09:cb:b2:50:fc:32:f7:9f:74:2e:81:39:
e4:c3:0b:06:b6:ce:e6:43:90:ac:9b:16:40:aa:fb:
a4:15:b1:42:4b:d9:03:e2:45:25:59:ab:63:10:17:
fe:75:71:24:ce:fd:92:3d:4c:31:61:72:11:37:c7:
23:72:e0:d4:71:ab:d7:eb:f6:d0:ea:f4:0a:3e:af:
e9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:FB:78:D3:F0:01:94:97:9B:2C:0D:34:BB:7D:AE:C3:36:A4:35:97
X509v3 Authority Key Identifier:
keyid:FB:1A:E1:E1:4C:5A:33:ED:ED:E9:77:28:5C:7B:10:7E:53:45:04:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2108EF77108CB43EE1F30F5C9C76FBDF27779FCE3E29A842623D82968B3616DB/0/FB1AE1E14C5A33EDEDE977285C7B107E534504EA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FB1AE1E14C5A33EDEDE977285C7B107E534504EA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2108EF77108CB43EE1F30F5C9C76FBDF27779FCE3E29A842623D82968B3616DB/0/34352e3232372e38392e302f32342d3234203d3e203236353036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.227.89.0/24
Signature Algorithm: sha256WithRSAEncryption
32:66:3e:db:4a:a6:73:da:f7:be:70:15:68:75:5d:4e:b6:02:
b4:78:a2:f6:33:ee:6e:ec:7f:dc:25:a5:54:82:2e:8b:ac:99:
ff:80:e3:12:54:06:c1:33:9f:ec:45:3c:d3:99:d3:e5:16:6e:
39:e3:a4:bb:36:0c:bd:59:ac:1a:22:58:c0:9d:02:ba:ff:2b:
80:a5:c2:a0:ad:11:ce:da:45:39:14:62:cc:8a:0e:b7:90:6e:
6d:40:69:18:82:23:fe:82:4a:1a:fd:be:24:8f:3c:68:88:29:
8c:5c:64:d9:b2:0d:fd:c1:de:67:07:d7:f1:08:f9:7e:72:bc:
47:c2:25:01:85:f3:d9:5b:ae:47:e0:df:1a:2b:2c:64:b5:f9:
d3:27:fc:c7:9c:99:35:83:29:88:dd:db:7e:80:39:33:15:85:
6b:6e:f6:77:3d:8d:25:ed:c3:32:0e:b2:b1:61:29:04:b4:88:
bd:ef:b0:ff:1b:e4:9d:23:fb:14:ba:20:75:26:a3:af:68:8b:
93:8c:ce:3f:90:07:d5:36:3c:92:ea:6d:c3:a6:8d:f0:88:d2:
b3:04:a5:7d:b8:e6:c8:2c:71:10:2c:04:a3:ff:e2:c5:1d:c7:
e4:50:bd:fa:5c:c7:ba:8d:1d:48:eb:a0:71:9e:b3:2f:0c:75:
fc:87:2d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:04:50 2025 by rpki-client