Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3221D3654886B789AD128138DBEA2BF5CDFC9E89D3849DAC0AD56D5D29329070/0/3137302e3234362e35372e302f32342d3234203d3e20323731383134.roa
File: 3137302e3234362e35372e302f32342d3234203d3e20323731383134.roa (raw, json)
Hash identifier: tJoyaz5iRwK/eam9/wvekVgDiBvmiqZ2Crs4gaLgkUc=
Subject key identifier: B1:D0:41:36:FB:94:CC:96:66:35:5A:82:0B:C6:E4:A7:A7:14:4E:F4
Certificate issuer: /CN=E8415F203EB930F191C0398A880C11B310EE5884
Certificate serial: 3300BCECF3242CD87B3E3D58ECBD9D4B5EF722E6
Authority key identifier: E8:41:5F:20:3E:B9:30:F1:91:C0:39:8A:88:0C:11:B3:10:EE:58:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E8415F203EB930F191C0398A880C11B310EE5884.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3221D3654886B789AD128138DBEA2BF5CDFC9E89D3849DAC0AD56D5D29329070/0/3137302e3234362e35372e302f32342d3234203d3e20323731383134.roa
Signing time: Tue 04 Feb 2025 18:01:14 +0000
ROA not before: Tue 04 Feb 2025 17:56:14 +0000
ROA not after: Tue 03 Feb 2026 18:01:14 +0000
asID: 271814
IP address blocks: 170.246.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:00:bc:ec:f3:24:2c:d8:7b:3e:3d:58:ec:bd:9d:4b:5e:f7:22:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E8415F203EB930F191C0398A880C11B310EE5884
Validity
Not Before: Feb 4 17:56:14 2025 GMT
Not After : Feb 3 18:01:14 2026 GMT
Subject: CN=B1D04136FB94CC9666355A820BC6E4A7A7144EF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:71:84:46:43:a7:12:0d:55:27:f0:36:ca:4d:
e5:2f:97:a7:50:29:11:13:fd:b7:2a:0e:53:a5:19:
c1:e6:47:73:fd:55:ff:4f:40:c8:e6:60:8e:06:52:
24:63:1a:7f:68:be:4f:fa:41:0c:01:f2:f0:e0:1b:
55:85:bd:2d:1a:13:58:ba:2d:d3:df:50:16:63:8b:
d0:27:f2:f9:30:83:58:47:09:19:c8:7f:ae:9f:85:
55:b9:46:6b:c2:df:f2:a7:88:94:d7:85:da:1d:bf:
06:f7:54:bf:7b:d4:f9:4f:f4:e8:4e:08:38:51:1b:
f6:a7:e2:42:2d:8d:61:31:ae:60:c8:43:b6:9c:69:
c6:a3:3b:ff:50:8e:b3:90:ab:83:2a:ae:27:14:cb:
a4:49:a9:5a:53:eb:da:eb:3a:d3:85:51:c8:fb:cb:
54:92:52:a3:55:1b:23:f4:8e:45:47:58:e4:4c:6b:
23:d5:3d:bf:eb:2f:98:39:e0:47:6f:d2:55:a6:0f:
e3:8c:63:15:4a:3d:7c:53:c7:5a:c4:b7:ef:91:a7:
b1:1f:29:ca:96:0f:80:52:cf:bf:6c:da:ed:91:4a:
4f:39:e1:b3:d3:3d:e4:31:ad:eb:8e:78:73:97:43:
a3:eb:5b:45:17:d8:4e:63:a5:3c:17:80:15:a2:e5:
c3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D0:41:36:FB:94:CC:96:66:35:5A:82:0B:C6:E4:A7:A7:14:4E:F4
X509v3 Authority Key Identifier:
keyid:E8:41:5F:20:3E:B9:30:F1:91:C0:39:8A:88:0C:11:B3:10:EE:58:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3221D3654886B789AD128138DBEA2BF5CDFC9E89D3849DAC0AD56D5D29329070/0/E8415F203EB930F191C0398A880C11B310EE5884.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E8415F203EB930F191C0398A880C11B310EE5884.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3221D3654886B789AD128138DBEA2BF5CDFC9E89D3849DAC0AD56D5D29329070/0/3137302e3234362e35372e302f32342d3234203d3e20323731383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.246.57.0/24
Signature Algorithm: sha256WithRSAEncryption
15:d5:61:60:d4:f2:37:f1:22:34:65:65:05:f5:eb:4d:e8:9b:
9d:16:6f:0a:35:3d:0b:91:4d:44:ce:77:3e:79:c7:da:7f:f6:
75:32:13:52:39:79:70:c2:9d:cc:f9:2c:c1:4d:38:28:e6:13:
11:da:c3:9a:e9:d2:a1:28:e7:cc:d6:0b:78:57:21:b0:30:da:
80:dc:42:df:dd:a9:d9:8b:61:62:ae:42:e4:17:ed:47:5c:af:
77:63:98:2c:28:76:43:37:ca:3b:41:58:95:98:fc:f0:69:b9:
ea:7c:21:9b:a7:fb:6d:72:91:66:27:c4:a3:a1:f2:09:a3:13:
86:d1:f3:8d:34:90:f8:a3:3c:68:8f:9e:6c:85:60:d8:b8:be:
fc:f5:0d:e8:f3:bd:b1:3e:12:b5:b6:7e:72:73:1e:70:ac:c9:
60:91:6d:2f:e9:31:fb:c6:1b:46:f0:3c:4d:d4:d5:c4:63:cf:
0f:42:a1:64:41:ad:2f:4e:45:21:72:78:2c:95:bb:c0:4e:43:
a3:e4:12:4f:6c:a3:f3:bf:69:74:03:4b:cc:bc:9e:77:e8:5f:
2b:0a:bf:7d:5f:c5:72:15:2d:95:79:cb:f6:55:60:e3:1c:c4:
aa:e3:58:3a:54:cf:01:35:7c:3e:2e:cf:25:46:83:5a:35:5d:
08:f6:43:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:07:06 2025 by rpki-client