Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/34613EE4AD25884516963E168FF68101D8ACA5D9B37354A534BAFDC76D437C2C/0/34352e3136382e3233362e302f32322d3234203d3e20323730313538.roa
File: 34352e3136382e3233362e302f32322d3234203d3e20323730313538.roa (raw, json)
Hash identifier: owAOIueAUNtWFQeP2m8Fdd56iO4TCrLMJwKqU8JaX1I=
Subject key identifier: 4E:98:DB:EC:E0:9D:F3:5F:2C:6C:39:89:DC:EA:59:D1:EB:02:BB:1E
Certificate issuer: /CN=9A758BF09145BEC830A7EE000666C15B37354654
Certificate serial: 70F8C5E6701B5FEBAC25B7A1BE62BEA6EE8C09CB
Authority key identifier: 9A:75:8B:F0:91:45:BE:C8:30:A7:EE:00:06:66:C1:5B:37:35:46:54
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9A758BF09145BEC830A7EE000666C15B37354654.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/34613EE4AD25884516963E168FF68101D8ACA5D9B37354A534BAFDC76D437C2C/0/34352e3136382e3233362e302f32322d3234203d3e20323730313538.roa
Signing time: Tue 04 Feb 2025 18:41:00 +0000
ROA not before: Tue 04 Feb 2025 18:36:00 +0000
ROA not after: Tue 03 Feb 2026 18:41:00 +0000
asID: 270158
IP address blocks: 45.168.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:f8:c5:e6:70:1b:5f:eb:ac:25:b7:a1:be:62:be:a6:ee:8c:09:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A758BF09145BEC830A7EE000666C15B37354654
Validity
Not Before: Feb 4 18:36:00 2025 GMT
Not After : Feb 3 18:41:00 2026 GMT
Subject: CN=4E98DBECE09DF35F2C6C3989DCEA59D1EB02BB1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:12:2b:b2:ce:5b:14:7f:fe:de:11:3f:89:36:
64:72:71:0a:72:f1:f7:95:4a:63:5d:87:a1:13:11:
bd:4b:e1:2c:2e:35:c7:a6:38:8d:e0:d7:a7:6a:49:
5b:ba:b9:af:cb:74:08:a4:85:61:09:84:6b:f7:03:
f4:8c:cb:a3:d4:38:7b:05:80:a7:db:2c:10:14:29:
60:86:f9:47:46:a7:bc:be:e5:59:b2:98:e6:e9:c6:
8e:6a:5d:39:62:bd:dc:37:93:10:b2:9e:52:37:b9:
5f:ed:f9:d5:b3:10:75:4c:3a:0f:99:cc:a7:83:b2:
f2:af:3c:c4:61:7a:59:cb:54:15:1f:56:cc:89:b6:
2d:31:39:01:0a:33:4a:ef:50:a7:7b:f9:47:c5:d1:
6d:f1:11:29:52:c9:aa:b6:a0:b6:5f:53:7e:4d:34:
d9:07:32:27:fd:58:80:8c:84:a6:ad:c1:c2:c5:c5:
e6:44:5f:0e:96:e9:6c:01:19:ac:5e:a0:b7:c4:ce:
f3:4b:fa:ae:7f:e7:b1:fb:b7:a7:2f:4a:55:86:c4:
1c:bb:32:ea:4c:33:e5:1f:63:db:87:1f:3d:03:e4:
8f:c5:27:22:2f:8a:cb:67:4f:89:0c:dc:38:a7:49:
48:48:1a:d3:9e:de:4c:3c:2a:e6:5f:10:10:a2:ca:
c0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:98:DB:EC:E0:9D:F3:5F:2C:6C:39:89:DC:EA:59:D1:EB:02:BB:1E
X509v3 Authority Key Identifier:
keyid:9A:75:8B:F0:91:45:BE:C8:30:A7:EE:00:06:66:C1:5B:37:35:46:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/34613EE4AD25884516963E168FF68101D8ACA5D9B37354A534BAFDC76D437C2C/0/9A758BF09145BEC830A7EE000666C15B37354654.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9A758BF09145BEC830A7EE000666C15B37354654.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/34613EE4AD25884516963E168FF68101D8ACA5D9B37354A534BAFDC76D437C2C/0/34352e3136382e3233362e302f32322d3234203d3e20323730313538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.168.236.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:d7:ff:64:37:b3:f0:2b:a5:6c:a5:6b:c5:fe:0d:f8:c2:26:
8e:eb:32:59:5a:b8:8e:dd:e4:04:1a:b7:bf:2a:7e:3c:1b:45:
34:2a:db:ed:8c:b3:57:a6:be:00:25:28:af:ec:6b:6b:2a:45:
a3:1d:7a:db:3e:17:53:19:c3:5f:db:93:88:cf:41:5b:cb:38:
ec:e2:36:f7:1d:e0:3f:fb:b8:82:81:b6:6a:b1:1c:bc:1e:8d:
91:0d:03:5d:b9:a4:83:09:00:97:5a:d3:6f:14:a6:cc:a9:08:
b9:a7:23:6e:e8:74:10:86:ab:23:50:11:6b:5d:e2:f4:cb:65:
4d:8d:14:86:dd:1f:da:34:da:4d:bf:f6:b7:29:56:23:7d:27:
6f:7d:36:59:83:46:bf:ff:8f:ee:e7:d7:8c:ae:3c:42:db:f6:
05:35:e3:4b:13:b2:35:37:a4:36:70:97:57:ce:2b:6c:eb:a0:
83:31:c3:76:5f:7a:ac:79:bd:a3:75:fc:95:cd:9a:96:36:14:
63:93:2f:07:6f:e1:d3:00:c8:b6:08:62:fc:c3:ac:3e:46:80:
06:fa:da:0e:c3:11:34:8b:44:0f:d2:c6:1a:3a:f2:91:d5:0f:
11:48:65:cb:b0:26:5f:33:a5:44:1c:7b:23:74:7d:27:5c:c5:
15:28:eb:e8
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUcPjF5nAbX+usJbehvmK+pu6MCcswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUE3NThCRjA5MTQ1QkVDODMwQTdFRTAwMDY2NkMxNUIz
NzM1NDY1NDAeFw0yNTAyMDQxODM2MDBaFw0yNjAyMDMxODQxMDBaMDMxMTAvBgNV
BAMTKDRFOThEQkVDRTA5REYzNUYyQzZDMzk4OURDRUE1OUQxRUIwMkJCMUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUEiuyzlsUf/7eET+JNmRycQpy
8feVSmNdh6ETEb1L4SwuNcemOI3g16dqSVu6ua/LdAikhWEJhGv3A/SMy6PUOHsF
gKfbLBAUKWCG+UdGp7y+5VmymObpxo5qXTlivdw3kxCynlI3uV/t+dWzEHVMOg+Z
zKeDsvKvPMRhelnLVBUfVsyJti0xOQEKM0rvUKd7+UfF0W3xESlSyaq2oLZfU35N
NNkHMif9WICMhKatwcLFxeZEXw6W6WwBGaxeoLfEzvNL+q5/57H7t6cvSlWGxBy7
MupMM+UfY9uHHz0D5I/FJyIvistnT4kM3DinSUhIGtOe3kw8KuZfEBCiysD3AgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUTpjb7OCd818sbDmJ3OpZ0esCux4wHwYDVR0j
BBgwFoAUmnWL8JFFvsgwp+4ABmbBWzc1RlQwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zNDYxM0VFNEFEMjU4ODQ1MTY5NjNFMTY4RkY2ODEwMUQ4
QUNBNUQ5QjM3MzU0QTUzNEJBRkRDNzZENDM3QzJDLzAvOUE3NThCRjA5MTQ1QkVD
ODMwQTdFRTAwMDY2NkMxNUIzNzM1NDY1NC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85QTc1OEJGMDkxNDVCRUM4MzBB
N0VFMDAwNjY2QzE1QjM3MzU0NjU0LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzQ2MTNFRTRBRDI1ODg0NTE2OTYzRTE2OEZGNjgxMDFEOEFDQTVEOUIz
NzM1NEE1MzRCQUZEQzc2RDQzN0MyQy8wLzM0MzUyZTMxMzYzODJlMzIzMzM2MmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNzMwMzEzNTM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLajs
MA0GCSqGSIb3DQEBCwUAA4IBAQCa1/9kN7PwK6VspWvF/g34wiaO6zJZWriO3eQE
Gre/Kn48G0U0KtvtjLNXpr4AJSiv7GtrKkWjHXrbPhdTGcNf25OIz0Fbyzjs4jb3
HeA/+7iCgbZqsRy8Ho2RDQNduaSDCQCXWtNvFKbMqQi5pyNu6HQQhqsjUBFrXeL0
y2VNjRSG3R/aNNpNv/a3KVYjfSdvfTZZg0a//4/u59eMrjxC2/YFNeNLE7I1N6Q2
cJdXzits66CDMcN2X3qseb2jdfyVzZqWNhRjky8Hb+HTAMi2CGL8w6w+RoAG+toO
wxE0i0QP0sYaOvKR1Q8RSGXLsCZfM6VEHHsjdH0nXMUVKOvo
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:20 2025 by rpki-client