Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/22C22A0764E4CD4584E43059513763E943365C9305045EFB301F51547350A540/0/34352e3137302e3133342e302f32332d3234203d3e20323635353534.roa
File: 34352e3137302e3133342e302f32332d3234203d3e20323635353534.roa (raw, json)
Hash identifier: RIgb5icKuHMz9C3jXNywXMn33mp77AfaOYFQYhJomJ8=
Subject key identifier: 03:B8:57:1D:A1:19:05:FB:B5:64:80:8E:69:6F:44:48:46:FD:B9:50
Certificate issuer: /CN=643132A8FE5198797F39AACB314EC77EE8C6D84D
Certificate serial: 27D570F3426923A2E5D7CEEBF0ABD49A9817CF77
Authority key identifier: 64:31:32:A8:FE:51:98:79:7F:39:AA:CB:31:4E:C7:7E:E8:C6:D8:4D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/643132A8FE5198797F39AACB314EC77EE8C6D84D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/22C22A0764E4CD4584E43059513763E943365C9305045EFB301F51547350A540/0/34352e3137302e3133342e302f32332d3234203d3e20323635353534.roa
Signing time: Tue 04 Feb 2025 18:51:57 +0000
ROA not before: Tue 04 Feb 2025 18:46:57 +0000
ROA not after: Tue 03 Feb 2026 18:51:57 +0000
asID: 265554
IP address blocks: 45.170.134.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:d5:70:f3:42:69:23:a2:e5:d7:ce:eb:f0:ab:d4:9a:98:17:cf:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643132A8FE5198797F39AACB314EC77EE8C6D84D
Validity
Not Before: Feb 4 18:46:57 2025 GMT
Not After : Feb 3 18:51:57 2026 GMT
Subject: CN=03B8571DA11905FBB564808E696F444846FDB950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e2:7a:09:97:48:22:d5:40:5b:6e:c8:ed:4a:
2e:27:8c:56:02:33:89:f8:c2:71:15:6e:af:12:46:
fd:c7:07:cd:9c:b6:58:c5:51:25:f2:bb:0b:01:2a:
5e:b7:c5:be:90:53:b2:48:6b:88:43:48:cc:bf:4b:
2e:3b:ac:0a:11:7d:7f:49:3c:86:29:b6:bd:c6:80:
64:e9:2f:00:7b:ad:c4:af:ee:c7:6a:9b:e7:d0:a7:
a5:ec:00:b8:65:72:5f:3b:e9:76:64:78:b8:f5:bc:
40:6c:3f:2d:f8:38:0b:16:d9:62:b5:06:15:b1:08:
e6:9b:80:0e:50:ec:51:49:08:ba:f6:bf:c8:9f:fe:
22:8a:a6:1d:c3:01:b5:f5:bc:bd:1c:f0:78:dc:21:
92:3b:8f:bd:8b:fc:ed:69:de:7b:b6:48:e2:48:1b:
51:2d:9a:21:36:00:54:34:75:1a:23:88:bc:fb:9c:
08:ed:d7:8b:97:da:23:bc:8c:4f:ff:30:d6:5b:06:
52:25:00:f8:5e:da:90:20:08:6a:96:8c:77:60:85:
39:e2:13:97:66:be:76:8c:76:68:8e:81:03:ce:aa:
ed:f2:c6:cc:81:22:12:7e:5b:ef:9a:33:cb:47:99:
f2:7a:4e:98:2e:e0:a3:62:2d:7f:99:21:3f:48:1b:
49:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B8:57:1D:A1:19:05:FB:B5:64:80:8E:69:6F:44:48:46:FD:B9:50
X509v3 Authority Key Identifier:
keyid:64:31:32:A8:FE:51:98:79:7F:39:AA:CB:31:4E:C7:7E:E8:C6:D8:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/22C22A0764E4CD4584E43059513763E943365C9305045EFB301F51547350A540/0/643132A8FE5198797F39AACB314EC77EE8C6D84D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/643132A8FE5198797F39AACB314EC77EE8C6D84D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/22C22A0764E4CD4584E43059513763E943365C9305045EFB301F51547350A540/0/34352e3137302e3133342e302f32332d3234203d3e20323635353534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.170.134.0/23
Signature Algorithm: sha256WithRSAEncryption
01:e8:e9:34:0d:68:90:2c:cc:5a:bd:1b:4e:8a:ec:11:a8:2b:
e0:0e:71:b9:5c:f6:a6:47:f3:4f:7e:5d:f4:6e:f0:78:da:38:
e6:fc:0a:90:c1:48:d0:cd:b7:c3:76:83:fa:f2:b2:32:29:bd:
bf:4c:1c:49:93:50:63:0e:b7:87:44:3e:c0:68:ee:ed:1f:e4:
b6:98:fc:27:c4:bb:41:9f:e1:ff:9c:0e:56:c9:c3:7a:e0:11:
f1:55:f4:5a:bd:e6:fa:cf:23:cf:80:0c:70:2d:92:a3:d5:1d:
3e:8a:8a:84:e9:57:1e:dc:73:d0:89:95:40:d4:2b:e5:c3:ac:
de:af:b2:bf:cb:42:c2:2d:55:e6:b5:43:3f:25:2f:92:99:a8:
ac:d1:c5:3e:c2:5a:12:1a:17:20:63:4e:d8:f4:22:77:90:dd:
2a:16:ee:14:ec:7a:82:39:2b:52:1d:1b:88:97:73:c8:5a:b0:
cb:2c:b6:87:06:9d:e7:d0:f8:95:9b:54:9b:74:5b:3a:a8:ab:
31:c3:8f:d9:a9:3e:ce:a6:cd:8d:f1:32:91:f0:dc:97:22:2b:
51:da:87:9c:40:f6:87:fb:49:a6:16:0c:7e:6d:41:45:3f:1f:
f9:67:d2:c4:35:72:76:12:af:78:ff:f2:e4:f2:9c:f8:53:d6:
88:54:f8:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:05 2025 by rpki-client