Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/233AD49F73560C2B37D27E413F61E80F38E6EC17B906D03C20F0DFB891EE99BC/0/34352e3233382e3139362e302f32322d3232203d3e20323636383438.roa
File: 34352e3233382e3139362e302f32322d3232203d3e20323636383438.roa (raw, json)
Hash identifier: 69LV1YMiGWPXDnH4qJDxjn2ZwnMoS9QBRbGbzs8ZtPw=
Subject key identifier: A9:B9:D4:4E:3E:E5:69:84:CE:AC:80:1A:4D:7E:21:03:20:A8:08:C4
Certificate issuer: /CN=CDE536D5F0A919DDF1AD2A0D6DF37608F789A4E8
Certificate serial: 356AC18DAF7A91738C6A50132D3B9269ECCF0C43
Authority key identifier: CD:E5:36:D5:F0:A9:19:DD:F1:AD:2A:0D:6D:F3:76:08:F7:89:A4:E8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CDE536D5F0A919DDF1AD2A0D6DF37608F789A4E8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/233AD49F73560C2B37D27E413F61E80F38E6EC17B906D03C20F0DFB891EE99BC/0/34352e3233382e3139362e302f32322d3232203d3e20323636383438.roa
Signing time: Tue 04 Feb 2025 18:52:53 +0000
ROA not before: Tue 04 Feb 2025 18:47:53 +0000
ROA not after: Tue 03 Feb 2026 18:52:53 +0000
asID: 266848
IP address blocks: 45.238.196.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:6a:c1:8d:af:7a:91:73:8c:6a:50:13:2d:3b:92:69:ec:cf:0c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CDE536D5F0A919DDF1AD2A0D6DF37608F789A4E8
Validity
Not Before: Feb 4 18:47:53 2025 GMT
Not After : Feb 3 18:52:53 2026 GMT
Subject: CN=A9B9D44E3EE56984CEAC801A4D7E210320A808C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:e3:ad:61:b8:1f:5f:7b:8c:a9:4a:63:b9:73:
01:a9:9d:30:3c:7b:29:c3:5f:b9:b0:60:f4:c5:9c:
73:30:62:03:8f:32:78:36:ca:32:c6:8f:c3:30:67:
cb:2a:1e:3c:f7:97:6e:55:e3:d8:df:1d:4c:4e:03:
4a:b3:0a:cb:2a:58:56:a6:5f:cc:d2:40:2b:76:ec:
ca:b8:9a:a6:b4:55:29:07:d5:a2:af:71:79:b4:7b:
eb:b9:42:f0:c7:2c:da:af:f6:09:67:08:31:b1:94:
5b:6e:5c:0b:62:bb:ef:91:3c:6c:1f:6c:5e:76:4e:
23:58:d0:ba:8a:49:e8:3e:46:f5:c6:67:2f:cc:4f:
ea:32:de:1e:b7:b8:0d:80:a6:9f:48:23:bf:8c:f7:
78:61:c5:71:70:5d:4f:2e:5d:19:a8:bd:c3:fa:6d:
b2:6e:ea:f7:1e:65:3a:98:58:e2:08:d3:f9:88:cb:
15:71:15:4b:62:b7:fb:0a:e2:9b:12:be:28:9e:46:
22:9d:df:c5:39:23:32:03:45:7b:93:51:86:5f:2a:
ad:23:b8:92:fd:58:6f:19:ed:fb:e5:fb:da:c2:89:
88:23:6e:ba:d7:0c:0e:f3:83:0f:c3:75:27:ff:1d:
5a:ab:12:6d:f8:d0:74:09:f4:6d:a0:aa:83:fa:8a:
af:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:B9:D4:4E:3E:E5:69:84:CE:AC:80:1A:4D:7E:21:03:20:A8:08:C4
X509v3 Authority Key Identifier:
keyid:CD:E5:36:D5:F0:A9:19:DD:F1:AD:2A:0D:6D:F3:76:08:F7:89:A4:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/233AD49F73560C2B37D27E413F61E80F38E6EC17B906D03C20F0DFB891EE99BC/0/CDE536D5F0A919DDF1AD2A0D6DF37608F789A4E8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CDE536D5F0A919DDF1AD2A0D6DF37608F789A4E8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/233AD49F73560C2B37D27E413F61E80F38E6EC17B906D03C20F0DFB891EE99BC/0/34352e3233382e3139362e302f32322d3232203d3e20323636383438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.238.196.0/22
Signature Algorithm: sha256WithRSAEncryption
93:37:07:2e:2c:81:e8:49:66:5d:ae:19:97:8b:33:f0:a7:e5:
2c:64:14:94:fd:94:57:00:fc:99:58:65:45:44:a0:e3:07:55:
cd:a7:0a:d4:9f:06:9b:f5:a8:69:2d:63:c0:16:ed:d7:7d:26:
b8:4d:79:c2:4e:e2:93:84:5b:af:e8:cf:0b:c3:4b:75:25:9f:
0f:c1:42:26:3b:06:41:9c:25:78:4d:02:43:d1:15:95:15:07:
e2:7c:2c:ac:40:2f:4d:43:b3:4d:32:c4:4e:86:a8:1e:af:05:
00:cf:e0:d2:83:5f:5f:d0:9d:23:a4:eb:b3:ca:8a:34:89:75:
dc:43:c3:14:98:ac:b5:79:d4:51:4c:a4:7c:4e:27:0f:fb:0c:
e5:d3:36:42:63:1d:5c:9d:23:15:df:89:4b:e9:c9:19:3a:8e:
b3:27:41:c1:5f:50:fa:4c:fd:5e:65:f6:e1:53:7a:f6:67:0a:
a7:61:b6:9d:cc:3b:90:f7:d7:13:3d:cb:f0:10:fd:66:78:a7:
e3:7d:3a:e5:84:7e:12:d3:40:c7:ef:0f:51:03:93:87:e7:d6:
ab:ef:f7:d6:21:65:4d:90:c4:18:80:1a:f0:68:7a:89:ca:e0:
6e:6f:c2:d8:8b:e2:45:ed:c0:87:67:b7:2c:68:26:e1:cf:a0:
8f:ba:95:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:56:32 2025 by rpki-client