Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2266F9BF1CE1B242B9EE1C4243C40E20F99438E9F4FBCF9108C0B44D4C7A9AB5/0/3136382e3230352e382e302f32322d3234203d3e20323634363736.roa
File: 3136382e3230352e382e302f32322d3234203d3e20323634363736.roa (raw, json)
Hash identifier: ca0XLgdoAx3vBHChuYC/MVtfL/7EBs2KTSeHWi59GLs=
Subject key identifier: D1:F6:0C:B9:E1:55:C4:F8:6F:E4:13:CD:B2:DD:64:A2:37:00:2F:A9
Certificate issuer: /CN=89DCBBA4D9ED151FE9FC0AE66F94CA13C687EDCD
Certificate serial: 5EA826F7FE6D64B0AE20D2887DAD67EC73EC26B3
Authority key identifier: 89:DC:BB:A4:D9:ED:15:1F:E9:FC:0A:E6:6F:94:CA:13:C6:87:ED:CD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89DCBBA4D9ED151FE9FC0AE66F94CA13C687EDCD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2266F9BF1CE1B242B9EE1C4243C40E20F99438E9F4FBCF9108C0B44D4C7A9AB5/0/3136382e3230352e382e302f32322d3234203d3e20323634363736.roa
Signing time: Tue 04 Feb 2025 18:39:24 +0000
ROA not before: Tue 04 Feb 2025 18:34:24 +0000
ROA not after: Tue 03 Feb 2026 18:39:24 +0000
asID: 264676
IP address blocks: 168.205.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:a8:26:f7:fe:6d:64:b0:ae:20:d2:88:7d:ad:67:ec:73:ec:26:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89DCBBA4D9ED151FE9FC0AE66F94CA13C687EDCD
Validity
Not Before: Feb 4 18:34:24 2025 GMT
Not After : Feb 3 18:39:24 2026 GMT
Subject: CN=D1F60CB9E155C4F86FE413CDB2DD64A237002FA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ff:cf:08:7f:59:e7:4e:c0:31:be:0b:e1:f1:
bc:6b:10:ef:a6:e6:29:bc:49:72:77:27:9c:96:5a:
2c:43:fe:a2:ce:16:a6:d7:54:41:28:85:da:2c:0d:
0c:c6:f2:88:e0:16:c0:48:46:52:8a:d4:21:70:14:
de:be:80:36:86:75:95:fe:84:a0:ea:aa:59:ab:3d:
ad:fc:02:5f:2c:41:7b:ad:3a:b2:db:64:73:09:2f:
a4:19:ee:ff:95:a5:d5:a8:e3:8a:fa:41:44:61:2b:
82:2d:5a:d2:2d:b5:49:ab:77:63:04:df:ad:4b:69:
1c:4a:98:41:65:01:36:5e:5c:7e:10:81:7d:1d:d2:
97:66:67:86:69:48:bd:c4:b4:96:fe:ba:ee:50:c0:
04:03:04:25:a1:0c:51:90:7f:8e:2f:2e:31:ba:9c:
a8:c7:73:b4:5f:e4:ec:fe:80:c6:1f:fe:4c:89:0f:
e4:8c:2d:9f:2d:50:d2:62:e4:e1:1a:e9:5e:5f:a0:
77:41:38:d0:b9:6b:6c:d7:b0:e5:98:0a:3a:46:cb:
2e:e8:26:66:4e:48:c0:92:b2:c5:ec:8b:5b:fc:35:
0a:ff:36:08:bc:3b:22:94:4c:d1:78:6c:40:65:06:
2f:2b:4e:10:ca:fc:60:58:0d:8b:ac:ac:66:f3:18:
76:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F6:0C:B9:E1:55:C4:F8:6F:E4:13:CD:B2:DD:64:A2:37:00:2F:A9
X509v3 Authority Key Identifier:
keyid:89:DC:BB:A4:D9:ED:15:1F:E9:FC:0A:E6:6F:94:CA:13:C6:87:ED:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2266F9BF1CE1B242B9EE1C4243C40E20F99438E9F4FBCF9108C0B44D4C7A9AB5/0/89DCBBA4D9ED151FE9FC0AE66F94CA13C687EDCD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89DCBBA4D9ED151FE9FC0AE66F94CA13C687EDCD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2266F9BF1CE1B242B9EE1C4243C40E20F99438E9F4FBCF9108C0B44D4C7A9AB5/0/3136382e3230352e382e302f32322d3234203d3e20323634363736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.205.8.0/22
Signature Algorithm: sha256WithRSAEncryption
83:1a:5c:fd:a3:35:9d:7c:8b:c8:eb:c6:a0:6e:a8:32:27:c2:
f9:3f:bc:5f:94:bf:9d:aa:1c:77:88:a7:72:72:8e:1e:9e:ed:
46:d2:b1:4a:e0:c4:01:17:d3:2a:91:84:1b:d5:10:fd:f9:88:
e9:7d:cb:06:9d:eb:7f:b0:bc:e7:0a:21:a0:63:d2:a6:3d:e5:
0b:45:fd:19:4d:96:f4:c3:e0:61:8c:02:70:03:eb:1b:88:cc:
7d:6b:68:5d:05:93:78:a8:57:17:49:1b:59:a5:89:64:65:d8:
f1:94:30:36:b9:0a:59:ac:0a:8d:dc:7b:15:25:92:3c:52:58:
c9:4a:53:fc:d1:ec:0b:99:b0:a8:58:0c:e0:8f:5d:a7:54:89:
7e:e4:a1:94:c0:44:1b:44:18:ab:53:dd:89:64:bd:33:72:ba:
2c:59:45:04:6a:0b:de:5b:7c:47:35:cf:3e:e6:c7:94:76:59:
ea:6b:27:69:01:c5:22:70:40:65:ce:16:4f:4a:8c:36:48:7a:
35:56:44:8a:a5:f5:0b:58:88:c4:66:d5:d3:ac:0b:e9:2a:2c:
7a:1a:ef:81:b5:5c:fe:11:5d:91:12:08:24:fa:5d:79:04:e6:
17:b6:5f:38:0f:9c:28:fd:c3:f0:82:d5:76:94:00:16:9b:e5:
5e:f1:90:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:57 2025 by rpki-client