Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2FDE7FF9C3A66561AFE3B8D77A6F3D0600826CFAF42B1A0DADA0592B9E1D2E95/0/34352e36382e35322e302f32322d3234203d3e20323733313635.roa
File: 34352e36382e35322e302f32322d3234203d3e20323733313635.roa (raw, json)
Hash identifier: tCPioW8McZnG0gqQwT44RUyb7mL66woSnF9m9D6jBV4=
Subject key identifier: 8E:7C:16:B9:63:CF:36:5E:02:9A:6E:43:EA:F9:04:E2:12:BA:10:98
Certificate issuer: /CN=F4F8147BF99626D17AFEE91E12422301459D2C55
Certificate serial: 58485C98FE7F528BEE655D1CF674C0CB20424504
Authority key identifier: F4:F8:14:7B:F9:96:26:D1:7A:FE:E9:1E:12:42:23:01:45:9D:2C:55
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F4F8147BF99626D17AFEE91E12422301459D2C55.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2FDE7FF9C3A66561AFE3B8D77A6F3D0600826CFAF42B1A0DADA0592B9E1D2E95/0/34352e36382e35322e302f32322d3234203d3e20323733313635.roa
Signing time: Fri 07 Jun 2024 12:50:00 +0000
ROA not before: Fri 07 Jun 2024 12:45:00 +0000
ROA not after: Fri 06 Jun 2025 12:50:00 +0000
asID: 273165
IP address blocks: 45.68.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:48:5c:98:fe:7f:52:8b:ee:65:5d:1c:f6:74:c0:cb:20:42:45:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F4F8147BF99626D17AFEE91E12422301459D2C55
Validity
Not Before: Jun 7 12:45:00 2024 GMT
Not After : Jun 6 12:50:00 2025 GMT
Subject: CN=8E7C16B963CF365E029A6E43EAF904E212BA1098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bf:98:a0:84:eb:e3:09:ab:5c:b1:f4:61:28:
1d:e6:ac:e9:71:96:bc:52:da:1a:95:75:4a:5b:f3:
b5:9d:33:a0:26:b9:ba:2f:25:91:b0:f1:81:33:f5:
33:ca:c4:87:10:ee:48:b2:03:3b:bb:51:66:93:db:
4e:6f:12:88:06:13:cc:19:95:e7:6e:6d:d3:58:b6:
ec:54:42:36:2e:6d:d5:41:cb:b7:51:83:13:59:0f:
38:3a:f2:58:bf:d0:05:cb:7d:fb:1f:8a:cd:ca:41:
41:1e:28:47:c7:d8:19:4b:ad:3b:b5:d4:ed:24:c3:
69:95:cb:b4:5d:4b:5e:88:77:63:0d:4c:ea:5e:55:
bd:70:60:e7:9e:7a:9d:b9:9b:5e:a2:13:86:ad:33:
6b:95:2e:36:45:82:8f:06:1f:ae:c2:7a:23:71:80:
47:ea:76:38:f9:b4:4b:91:3a:be:58:2d:8d:82:90:
ed:4a:b1:ba:13:23:8c:b5:2c:07:fa:21:b5:25:bf:
15:a1:5f:d2:c6:29:10:ea:b1:6d:f1:3e:d4:2c:2d:
bc:47:a7:2e:89:88:82:a8:65:b8:77:fc:4f:3f:fb:
f1:dd:ae:b2:7d:ec:d5:f6:06:45:b2:49:fa:f4:62:
31:ad:83:a4:79:97:f5:06:7e:61:5f:25:d6:2a:3b:
ab:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:7C:16:B9:63:CF:36:5E:02:9A:6E:43:EA:F9:04:E2:12:BA:10:98
X509v3 Authority Key Identifier:
keyid:F4:F8:14:7B:F9:96:26:D1:7A:FE:E9:1E:12:42:23:01:45:9D:2C:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2FDE7FF9C3A66561AFE3B8D77A6F3D0600826CFAF42B1A0DADA0592B9E1D2E95/0/F4F8147BF99626D17AFEE91E12422301459D2C55.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F4F8147BF99626D17AFEE91E12422301459D2C55.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2FDE7FF9C3A66561AFE3B8D77A6F3D0600826CFAF42B1A0DADA0592B9E1D2E95/0/34352e36382e35322e302f32322d3234203d3e20323733313635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.68.52.0/22
Signature Algorithm: sha256WithRSAEncryption
71:d4:99:3f:ae:58:85:5a:8f:6f:38:55:b8:bb:e0:47:5a:48:
30:c7:b1:d1:70:0f:71:66:50:09:43:2e:56:1e:39:00:64:0b:
b2:a9:b4:76:de:57:89:11:7c:a3:30:47:2b:5d:44:ee:b0:bd:
34:56:da:61:02:be:c3:94:5c:b2:3e:de:56:43:24:58:3f:0d:
9e:58:78:10:c3:90:1e:a5:42:fe:12:ec:00:89:07:4c:95:79:
14:7d:44:f6:aa:a2:62:de:b6:c7:ae:57:2b:4f:15:c9:81:fb:
af:30:44:42:43:38:7c:73:55:06:af:48:4d:88:43:40:74:02:
84:6d:8e:4f:b2:be:76:f1:50:74:65:f3:be:0a:c3:da:3b:89:
e0:7c:71:ff:b1:8e:c8:0b:8a:ef:37:e0:4a:a6:a1:4f:6b:52:
61:8a:dd:e2:81:8c:ab:03:f6:f7:75:c7:2a:01:44:69:9b:c8:
2b:38:29:a9:6e:06:28:0a:b4:71:4a:72:79:d0:25:18:70:fc:
a3:c3:e3:11:a5:00:27:c7:5c:4d:5e:b0:4c:45:55:c0:59:e2:
4a:39:45:2d:51:12:49:3f:52:c5:dc:84:c7:d2:e1:4b:e8:f7:
33:5e:0a:89:62:7c:2d:91:fa:48:a5:f7:4d:02:79:e1:c1:5e:
2b:a2:96:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:28 2025 by rpki-client