Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2DDB77BDFECD10C318201A65CED5B8BCE02C4D68E5CC5484F58784D44A4E0861/0/34352e3136362e3131312e302f32342d3234203d3e203238343233.roa
File: 34352e3136362e3131312e302f32342d3234203d3e203238343233.roa (raw, json)
Hash identifier: KzO907GtijtiXVV7M9QO1b2PGtzTrUGxBdxttM6ECRQ=
Subject key identifier: D4:26:B6:61:FB:48:3C:B3:48:04:3B:1F:4B:F2:A1:65:85:DE:95:11
Certificate issuer: /CN=2E53C3E1222D746A5EEABB43EDFC93BA4037CACD
Certificate serial: 18B1D08B729DBEB515CFACEC0D93D6573EE8F2DF
Authority key identifier: 2E:53:C3:E1:22:2D:74:6A:5E:EA:BB:43:ED:FC:93:BA:40:37:CA:CD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2E53C3E1222D746A5EEABB43EDFC93BA4037CACD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2DDB77BDFECD10C318201A65CED5B8BCE02C4D68E5CC5484F58784D44A4E0861/0/34352e3136362e3131312e302f32342d3234203d3e203238343233.roa
Signing time: Sun 26 Jan 2025 01:55:00 +0000
ROA not before: Sun 26 Jan 2025 01:50:00 +0000
ROA not after: Sun 25 Jan 2026 01:55:00 +0000
asID: 28423
IP address blocks: 45.166.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:b1:d0:8b:72:9d:be:b5:15:cf:ac:ec:0d:93:d6:57:3e:e8:f2:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E53C3E1222D746A5EEABB43EDFC93BA4037CACD
Validity
Not Before: Jan 26 01:50:00 2025 GMT
Not After : Jan 25 01:55:00 2026 GMT
Subject: CN=D426B661FB483CB348043B1F4BF2A16585DE9511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ab:d9:68:09:2c:5c:25:3c:79:90:50:1d:6a:
a7:89:72:3f:62:b7:2c:75:ab:33:2d:bb:17:86:0e:
63:fc:01:64:6e:67:cf:09:76:17:df:2b:95:c0:d9:
89:d2:2f:79:dd:71:51:23:03:c9:88:82:bf:ae:80:
58:dd:7f:78:96:f4:4c:2b:54:47:7c:37:f5:50:23:
50:3d:4b:63:61:2e:ee:f5:c9:d6:f7:9f:cb:5d:c2:
5e:ef:4b:af:33:69:81:55:20:0b:a6:c3:cc:43:8f:
aa:63:36:f0:45:bf:74:7f:c4:75:aa:97:bc:e8:81:
9b:68:5d:38:a1:e2:0a:69:dc:ed:7d:97:51:71:7e:
2f:07:e7:b3:a2:0b:14:2a:03:8f:19:38:ba:8b:ac:
74:2c:b5:eb:d1:c5:5f:01:52:e0:53:de:02:c6:3a:
34:2a:7b:e7:c5:1a:f3:d5:67:90:9d:4f:19:e8:eb:
33:b9:e1:c3:3f:80:af:21:c6:bb:75:51:cd:6c:11:
38:90:fa:ee:7f:c1:b0:d4:1a:93:98:45:4b:bd:d4:
21:e5:14:38:83:97:4d:5a:03:1f:07:5d:99:df:f2:
2e:05:48:d1:d3:9e:19:9b:8e:a6:2a:56:2b:63:a0:
66:7d:74:02:dd:35:83:bb:93:39:07:ea:9e:de:bf:
35:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:26:B6:61:FB:48:3C:B3:48:04:3B:1F:4B:F2:A1:65:85:DE:95:11
X509v3 Authority Key Identifier:
keyid:2E:53:C3:E1:22:2D:74:6A:5E:EA:BB:43:ED:FC:93:BA:40:37:CA:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2DDB77BDFECD10C318201A65CED5B8BCE02C4D68E5CC5484F58784D44A4E0861/0/2E53C3E1222D746A5EEABB43EDFC93BA4037CACD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2E53C3E1222D746A5EEABB43EDFC93BA4037CACD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2DDB77BDFECD10C318201A65CED5B8BCE02C4D68E5CC5484F58784D44A4E0861/0/34352e3136362e3131312e302f32342d3234203d3e203238343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.166.111.0/24
Signature Algorithm: sha256WithRSAEncryption
55:fd:e5:10:0a:b1:fe:5c:b1:40:c0:08:9f:83:cc:8e:4c:48:
5d:25:8a:65:14:44:32:30:6c:37:30:8a:4e:b7:96:39:74:f8:
75:0a:df:e5:15:d8:f0:68:45:70:58:65:bc:58:21:c3:02:ba:
5f:21:96:9e:c5:d4:38:84:00:8d:f5:dc:cd:70:1d:bd:a9:91:
b1:0e:8f:c1:eb:5d:c0:75:5a:7e:5c:43:8b:0c:56:d7:56:1f:
b5:09:63:b7:95:48:3a:d1:67:5e:e4:06:58:b7:18:02:5e:d0:
e6:2f:98:d3:b8:dc:e7:99:56:1d:74:32:69:3d:47:fd:57:81:
2e:b8:16:ee:f0:4c:5e:99:cf:cb:ac:6c:9f:be:64:04:38:3a:
2f:c4:3c:a6:93:52:ce:de:c1:40:df:27:5a:89:8a:00:3d:75:
a9:17:d3:87:19:d2:7a:7b:77:fa:f8:a3:03:2a:f4:d7:f4:d4:
79:79:a1:92:d8:2f:43:20:17:01:5d:b4:22:7c:d1:8a:22:46:
38:52:9a:b4:d2:cc:6c:44:09:7f:4b:83:1f:26:d7:0d:66:39:
c6:5b:e9:50:c5:e4:3b:9a:01:2d:a1:ae:8d:62:09:4d:7d:34:
36:fe:77:2a:a3:48:bd:0b:e4:fb:1e:56:cd:28:ad:a4:b1:7b:
1d:12:6b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:35:08 2025 by rpki-client