Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3221D3654886B789AD128138DBEA2BF5CDFC9E89D3849DAC0AD56D5D29329070/0/3137302e3234362e35362e302f32342d3234203d3e20323731383134.roa
File: 3137302e3234362e35362e302f32342d3234203d3e20323731383134.roa (raw, json)
Hash identifier: LRFwdj+dXxICTmwQwuR+sBbWleLFS9usHerXYNC3bZo=
Subject key identifier: 5A:C1:82:E0:01:E9:68:38:CB:7D:A7:24:F8:0F:8F:11:A2:DE:09:F1
Certificate issuer: /CN=E8415F203EB930F191C0398A880C11B310EE5884
Certificate serial: 59E64AE954F3BE766F40A0D680D4A576326C58E9
Authority key identifier: E8:41:5F:20:3E:B9:30:F1:91:C0:39:8A:88:0C:11:B3:10:EE:58:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E8415F203EB930F191C0398A880C11B310EE5884.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3221D3654886B789AD128138DBEA2BF5CDFC9E89D3849DAC0AD56D5D29329070/0/3137302e3234362e35362e302f32342d3234203d3e20323731383134.roa
Signing time: Tue 04 Feb 2025 18:01:16 +0000
ROA not before: Tue 04 Feb 2025 17:56:16 +0000
ROA not after: Tue 03 Feb 2026 18:01:16 +0000
asID: 271814
IP address blocks: 170.246.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:e6:4a:e9:54:f3:be:76:6f:40:a0:d6:80:d4:a5:76:32:6c:58:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E8415F203EB930F191C0398A880C11B310EE5884
Validity
Not Before: Feb 4 17:56:16 2025 GMT
Not After : Feb 3 18:01:16 2026 GMT
Subject: CN=5AC182E001E96838CB7DA724F80F8F11A2DE09F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a6:12:2a:79:7e:f0:f8:de:68:7f:96:a8:43:
3a:46:f9:7d:dc:bb:1e:ef:ab:23:09:29:32:eb:fd:
b7:62:04:79:82:d0:cd:5b:e5:e7:9b:8d:4d:58:19:
b4:6b:f8:95:99:08:4d:65:d2:25:d3:c1:ad:9f:00:
33:8d:c9:ae:62:0c:04:3b:b5:2b:74:fe:04:78:d9:
a5:87:c7:dc:b9:3e:df:8c:f4:03:56:49:c8:dc:36:
86:eb:85:97:20:27:1b:ad:3b:bc:2f:29:b8:7e:c5:
71:2d:ef:13:cf:97:9b:68:a3:bf:1e:27:d6:bc:29:
0f:ce:fa:29:f9:84:da:05:4d:79:75:42:fe:ae:79:
ff:28:fa:a3:18:a0:2a:7c:12:b1:ae:61:f7:ac:3a:
8a:73:73:1f:0a:d6:a6:ac:dc:23:a8:c1:ec:c3:a2:
dc:1f:5d:41:0f:21:fd:20:5b:c8:03:e0:9d:76:cc:
9a:00:fb:56:6e:e3:2b:7f:e1:0e:25:7a:5f:04:e5:
5a:e3:b4:a2:7e:9e:5a:f4:0f:68:43:12:2a:aa:89:
30:46:e5:87:bc:d4:7e:ee:c8:65:4c:2b:97:d5:e1:
a9:c7:2f:44:1e:fb:9d:4a:a7:d5:e6:2c:29:aa:05:
90:b4:53:09:b0:4e:84:45:42:21:a7:16:15:c6:71:
01:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C1:82:E0:01:E9:68:38:CB:7D:A7:24:F8:0F:8F:11:A2:DE:09:F1
X509v3 Authority Key Identifier:
keyid:E8:41:5F:20:3E:B9:30:F1:91:C0:39:8A:88:0C:11:B3:10:EE:58:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3221D3654886B789AD128138DBEA2BF5CDFC9E89D3849DAC0AD56D5D29329070/0/E8415F203EB930F191C0398A880C11B310EE5884.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E8415F203EB930F191C0398A880C11B310EE5884.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3221D3654886B789AD128138DBEA2BF5CDFC9E89D3849DAC0AD56D5D29329070/0/3137302e3234362e35362e302f32342d3234203d3e20323731383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.246.56.0/24
Signature Algorithm: sha256WithRSAEncryption
14:16:0f:7f:07:71:3e:48:2a:31:25:70:63:9c:d1:0f:c8:8b:
51:a9:cd:dc:db:6d:76:ad:0d:05:02:90:db:5e:7e:35:ce:c1:
e5:49:d1:71:78:26:c3:aa:2e:87:a3:0c:a5:cf:a1:e0:e1:a8:
f0:9d:6d:13:a2:20:85:25:ce:90:65:ae:a1:c2:48:bd:2d:1f:
c2:99:53:30:c1:07:17:e4:67:64:88:f1:48:ba:80:16:82:ab:
59:b5:8d:53:ee:9e:bf:07:44:74:dd:b1:43:0c:83:74:03:67:
a2:9c:df:b0:3c:cd:05:cd:58:8e:b4:73:e5:b8:ce:8e:66:5e:
07:c9:2e:23:5e:8f:9b:1f:00:50:79:4a:0a:50:c1:63:0a:2c:
ff:a3:13:6b:b8:14:66:99:0d:63:98:2e:65:1b:e4:49:a7:f9:
0d:c2:12:a9:6a:ed:ae:f2:fb:47:58:30:a2:fd:22:95:6b:25:
01:0c:8f:8c:80:36:c7:5e:a3:52:da:e6:5a:79:49:be:f1:35:
30:79:c9:f2:ba:be:24:86:49:e6:4d:0a:3b:23:2d:7d:da:eb:
6f:6c:5c:8a:c6:3e:c3:00:ca:fb:68:fe:68:aa:cd:ea:ba:93:
6b:9d:fd:1b:d7:be:f7:88:23:4c:fd:20:6d:2a:19:91:b5:c3:
82:42:5c:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:21:59 2025 by rpki-client