Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/23B7C697E988C14728015F75AD4BD621755BB39870EA2831B3CD053B988533F1/0/3134382e3230382e3136312e302f32342d3234203d3e20323730313439.roa
File: 3134382e3230382e3136312e302f32342d3234203d3e20323730313439.roa (raw, json)
Hash identifier: 9/P1V6DisvigIYJFxPcgxTn5aVc5/cEloZ5RA3ivsmg=
Subject key identifier: D1:91:AD:58:DB:24:6A:41:76:8B:9F:5D:59:71:EF:91:8C:3C:BE:AA
Certificate issuer: /CN=8A1267DCB4DC6FFA9FCDD7FEA9D7F9F78C3791DB
Certificate serial: 4AAC49CFB368B8D166BF0536B41B379DE6536C3A
Authority key identifier: 8A:12:67:DC:B4:DC:6F:FA:9F:CD:D7:FE:A9:D7:F9:F7:8C:37:91:DB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8A1267DCB4DC6FFA9FCDD7FEA9D7F9F78C3791DB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/23B7C697E988C14728015F75AD4BD621755BB39870EA2831B3CD053B988533F1/0/3134382e3230382e3136312e302f32342d3234203d3e20323730313439.roa
Signing time: Tue 04 Feb 2025 18:08:41 +0000
ROA not before: Tue 04 Feb 2025 18:03:41 +0000
ROA not after: Tue 03 Feb 2026 18:08:41 +0000
asID: 270149
IP address blocks: 148.208.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:ac:49:cf:b3:68:b8:d1:66:bf:05:36:b4:1b:37:9d:e6:53:6c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A1267DCB4DC6FFA9FCDD7FEA9D7F9F78C3791DB
Validity
Not Before: Feb 4 18:03:41 2025 GMT
Not After : Feb 3 18:08:41 2026 GMT
Subject: CN=D191AD58DB246A41768B9F5D5971EF918C3CBEAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:73:26:97:84:a1:e8:60:f4:05:b2:d1:d6:39:
c0:1a:5d:28:6e:6c:27:90:18:03:c3:a3:8a:58:0b:
ff:e1:28:8b:bf:52:bb:59:c7:77:4b:c8:a5:c1:20:
4b:f2:5b:78:4a:03:91:37:ce:53:27:60:52:42:2a:
d6:77:84:e3:3c:35:30:90:e5:7d:36:41:bd:d3:50:
be:7e:20:34:7b:ab:31:24:c1:ac:ea:73:1c:f7:9a:
9d:9d:a1:45:18:0e:16:a3:2b:75:b3:71:ee:6e:1c:
d7:da:70:53:cb:2e:c7:b8:23:c5:2b:9c:46:bb:59:
3f:b8:57:32:bd:5a:68:46:e3:39:db:af:4d:ac:f3:
90:08:02:f8:f5:5e:59:90:e4:81:31:4a:b8:9f:e0:
a7:d1:85:8b:ac:3d:22:de:56:d7:63:bd:47:56:92:
2b:df:04:0b:56:83:5f:81:c3:6a:a4:6d:dc:85:bd:
88:c8:c9:d1:23:d7:74:6a:0f:b5:70:24:90:cd:f9:
20:1d:56:e1:7d:2f:3f:97:09:b0:da:1c:6e:f1:13:
31:1c:26:b2:dc:bc:42:87:62:ab:c6:2c:05:18:40:
84:fe:ea:ef:5b:89:2d:83:76:26:c9:e3:f8:4c:c4:
85:08:48:22:06:94:3f:0a:e9:b0:10:e8:50:a1:9f:
48:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:91:AD:58:DB:24:6A:41:76:8B:9F:5D:59:71:EF:91:8C:3C:BE:AA
X509v3 Authority Key Identifier:
keyid:8A:12:67:DC:B4:DC:6F:FA:9F:CD:D7:FE:A9:D7:F9:F7:8C:37:91:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/23B7C697E988C14728015F75AD4BD621755BB39870EA2831B3CD053B988533F1/0/8A1267DCB4DC6FFA9FCDD7FEA9D7F9F78C3791DB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8A1267DCB4DC6FFA9FCDD7FEA9D7F9F78C3791DB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/23B7C697E988C14728015F75AD4BD621755BB39870EA2831B3CD053B988533F1/0/3134382e3230382e3136312e302f32342d3234203d3e20323730313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.208.161.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:37:38:cb:58:39:72:f0:80:9e:ee:32:09:71:96:80:6b:28:
3d:24:cd:03:84:df:51:18:4c:bf:bb:a1:66:60:71:e3:31:d1:
6e:9d:a4:f1:bb:ab:7e:30:e6:6a:d0:12:da:ca:ae:0d:49:79:
f1:05:7e:a1:cd:bc:c1:f3:7c:18:3f:46:89:0a:47:48:7f:e9:
f5:f6:36:0b:94:5a:3b:62:b2:c2:07:23:f2:81:bf:da:62:2b:
bb:64:35:24:ef:3b:8f:06:3f:e2:1e:f2:3d:77:a6:8d:d0:57:
f7:92:d8:e1:84:82:1f:bb:f6:a8:ca:17:89:90:6d:ce:15:19:
07:39:8e:5c:4d:1d:7e:b1:38:81:da:ef:a5:b1:64:3c:c0:9d:
58:c8:ea:9a:29:a7:86:49:58:0b:1a:df:e3:fd:72:91:e8:c6:
e0:ba:07:99:85:c5:11:c1:f0:5d:11:53:6c:0a:7e:f5:aa:18:
a2:95:09:98:39:d6:70:16:52:1b:4d:66:ab:7a:f1:60:78:cc:
0d:82:e6:ca:7c:18:00:77:e4:7a:83:ca:e3:bf:94:80:3d:fa:
ef:bc:86:d8:14:79:d3:7f:d3:e1:53:09:3e:09:82:0d:8d:92:
86:54:60:f1:94:a4:5f:e2:ce:15:41:45:39:6f:8d:86:2e:85:
6e:84:d8:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:25 2025 by rpki-client