Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/34ABBC6AB6D41D02D5103803E24C8CE787F8E49AFD8F5359015DF889C43AF5E5/0/34352e3233392e38352e302f32342d3234203d3e20323636383733.roa
File: 34352e3233392e38352e302f32342d3234203d3e20323636383733.roa (raw, json)
Hash identifier: fPUVMXkzp+xKwcDmAlD72PSgq6pO1DrkJzq6xK1E5SY=
Subject key identifier: A8:D9:C2:0F:BF:A4:8F:72:60:C1:57:2D:7B:35:DC:C0:48:D3:2E:7F
Certificate issuer: /CN=792FCE054FD71DD6FC1999AD96B878769A102C50
Certificate serial: 407E11C3CF3FB24F75EE48334AF15EBBC4F505CF
Authority key identifier: 79:2F:CE:05:4F:D7:1D:D6:FC:19:99:AD:96:B8:78:76:9A:10:2C:50
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/792FCE054FD71DD6FC1999AD96B878769A102C50.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/34ABBC6AB6D41D02D5103803E24C8CE787F8E49AFD8F5359015DF889C43AF5E5/0/34352e3233392e38352e302f32342d3234203d3e20323636383733.roa
Signing time: Tue 12 Nov 2024 12:30:00 +0000
ROA not before: Tue 12 Nov 2024 12:25:00 +0000
ROA not after: Tue 11 Nov 2025 12:30:00 +0000
asID: 266873
IP address blocks: 45.239.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:7e:11:c3:cf:3f:b2:4f:75:ee:48:33:4a:f1:5e:bb:c4:f5:05:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=792FCE054FD71DD6FC1999AD96B878769A102C50
Validity
Not Before: Nov 12 12:25:00 2024 GMT
Not After : Nov 11 12:30:00 2025 GMT
Subject: CN=A8D9C20FBFA48F7260C1572D7B35DCC048D32E7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f3:1c:e5:5f:ba:d8:c4:48:0c:59:ba:c4:cf:
03:e6:81:6c:27:ae:7d:fb:41:57:47:82:dc:90:28:
8d:91:a8:d7:96:04:89:88:63:a9:81:66:8b:28:a3:
1c:23:4b:da:f2:ee:86:e3:0e:8b:0d:77:30:27:68:
9d:d7:70:6f:9e:16:2d:20:01:02:26:6a:4a:75:47:
8d:77:d4:5a:92:d6:df:cd:3b:fb:98:c3:5a:0b:49:
a1:70:8b:69:71:cd:82:aa:0f:bc:90:9a:e2:9c:19:
e6:18:ba:09:f6:d8:dc:f2:78:e1:56:73:28:81:3d:
36:1b:b5:ba:4d:6c:df:2b:34:00:56:a1:9a:98:2e:
54:f6:12:f7:fc:68:33:40:7f:b0:0f:60:de:89:3d:
90:79:bc:ce:c4:03:2a:50:06:b5:a2:a7:71:68:04:
7e:53:4c:a6:12:dc:85:be:5b:43:0c:c0:d0:f5:a6:
59:42:2f:f4:75:0c:a7:af:26:f1:d2:71:8c:fe:3d:
7c:07:5f:78:5c:5d:ac:00:c8:b9:aa:d4:6a:e8:f8:
54:0d:eb:a8:39:64:33:7e:22:31:70:eb:fb:58:f3:
7a:3e:5c:2b:5b:cf:60:17:2d:54:9e:6a:44:b4:61:
45:13:f4:c6:08:9c:ee:0b:42:af:4d:95:fc:1d:a4:
dd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:D9:C2:0F:BF:A4:8F:72:60:C1:57:2D:7B:35:DC:C0:48:D3:2E:7F
X509v3 Authority Key Identifier:
keyid:79:2F:CE:05:4F:D7:1D:D6:FC:19:99:AD:96:B8:78:76:9A:10:2C:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/34ABBC6AB6D41D02D5103803E24C8CE787F8E49AFD8F5359015DF889C43AF5E5/0/792FCE054FD71DD6FC1999AD96B878769A102C50.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/792FCE054FD71DD6FC1999AD96B878769A102C50.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/34ABBC6AB6D41D02D5103803E24C8CE787F8E49AFD8F5359015DF889C43AF5E5/0/34352e3233392e38352e302f32342d3234203d3e20323636383733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.239.85.0/24
Signature Algorithm: sha256WithRSAEncryption
83:37:c0:d9:80:ab:3f:95:02:e0:ab:54:2b:30:4f:22:e5:9c:
b2:bc:2f:53:9f:2f:f1:21:a6:d8:f9:1d:ff:fd:df:f2:fd:ed:
c8:7f:2a:48:bb:97:4e:fb:9f:d3:4e:9b:87:19:d8:e2:88:d2:
f8:40:b0:51:80:f5:19:32:df:f5:fa:76:3d:eb:4f:a2:0a:54:
ef:7b:a5:d6:66:01:d6:9f:ac:4d:73:6e:5a:03:43:18:ea:8a:
a9:7d:ac:37:51:9b:3e:41:e5:20:8c:64:07:b5:7b:13:a8:c7:
7c:7c:7b:a1:08:06:1a:8c:17:a4:9d:01:31:1d:c0:e9:30:3b:
0f:dd:8f:d2:31:75:b8:4c:94:e6:d8:8f:b1:b0:b2:00:f1:64:
8b:b3:78:e8:4c:24:2b:bf:36:4a:74:2b:88:cd:34:2a:70:34:
96:61:71:58:95:8e:14:5a:86:fb:25:ef:0e:83:ce:e7:eb:3c:
d9:64:ad:26:ca:91:38:c1:b7:9b:70:7c:f2:57:a7:d9:07:ed:
f9:84:29:64:bf:72:26:4d:31:66:d4:c0:ab:a0:86:8f:31:8e:
ab:41:53:f3:72:fa:f0:0b:4b:91:2d:a3:d1:d7:74:49:d7:dc:
6c:b8:b0:66:54:99:d8:09:c7:fb:76:45:34:3f:72:4e:e3:72:
4c:c8:5f:88
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUQH4Rw88/sk917kgzSvFeu8T1Bc8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzkyRkNFMDU0RkQ3MURENkZDMTk5OUFEOTZCODc4NzY5
QTEwMkM1MDAeFw0yNDExMTIxMjI1MDBaFw0yNTExMTExMjMwMDBaMDMxMTAvBgNV
BAMTKEE4RDlDMjBGQkZBNDhGNzI2MEMxNTcyRDdCMzVEQ0MwNDhEMzJFN0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX8xzlX7rYxEgMWbrEzwPmgWwn
rn37QVdHgtyQKI2RqNeWBImIY6mBZosooxwjS9ry7objDosNdzAnaJ3XcG+eFi0g
AQImakp1R4131FqS1t/NO/uYw1oLSaFwi2lxzYKqD7yQmuKcGeYYugn22NzyeOFW
cyiBPTYbtbpNbN8rNABWoZqYLlT2Evf8aDNAf7APYN6JPZB5vM7EAypQBrWip3Fo
BH5TTKYS3IW+W0MMwND1pllCL/R1DKevJvHScYz+PXwHX3hcXawAyLmq1Gro+FQN
66g5ZDN+IjFw6/tY83o+XCtbz2AXLVSeakS0YUUT9MYInO4LQq9NlfwdpN37AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUqNnCD7+kj3JgwVctezXcwEjTLn8wHwYDVR0j
BBgwFoAUeS/OBU/XHdb8GZmtlrh4dpoQLFAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zNEFCQkM2QUI2RDQxRDAyRDUxMDM4MDNFMjRDOENFNzg3
RjhFNDlBRkQ4RjUzNTkwMTVERjg4OUM0M0FGNUU1LzAvNzkyRkNFMDU0RkQ3MURE
NkZDMTk5OUFEOTZCODc4NzY5QTEwMkM1MC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83OTJGQ0UwNTRGRDcxREQ2RkMx
OTk5QUQ5NkI4Nzg3NjlBMTAyQzUwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzRBQkJDNkFCNkQ0MUQwMkQ1MTAzODAzRTI0QzhDRTc4N0Y4RTQ5QUZE
OEY1MzU5MDE1REY4ODlDNDNBRjVFNS8wLzM0MzUyZTMyMzMzOTJlMzgzNTJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzYzNjM4MzczMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC3vVTAN
BgkqhkiG9w0BAQsFAAOCAQEAgzfA2YCrP5UC4KtUKzBPIuWcsrwvU58v8SGm2Pkd
//3f8v3tyH8qSLuXTvuf006bhxnY4ojS+ECwUYD1GTLf9fp2PetPogpU73ul1mYB
1p+sTXNuWgNDGOqKqX2sN1GbPkHlIIxkB7V7E6jHfHx7oQgGGowXpJ0BMR3A6TA7
D92P0jF1uEyU5tiPsbCyAPFki7N46EwkK782SnQriM00KnA0lmFxWJWOFFqG+yXv
DoPO5+s82WStJsqROMG3m3B88len2Qft+YQpZL9yJk0xZtTAq6CGjzGOq0FT83L6
8AtLkS2j0dd0SdfcbLiwZlSZ2AnH+3ZFND9yTuNyTMhfiA==
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:09:44 2025 by rpki-client