Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/354A3E4D205849409AD697183E6B77310BBE00D4D1FFB5CDD63E3E7C339BB10D/0/34352e3136352e3135342e302f32332d3233203d3e20323635383136.roa
File: 34352e3136352e3135342e302f32332d3233203d3e20323635383136.roa (raw, json)
Hash identifier: YA7l3V3Wce5lInr2UUxdtMn7ji91fDU1GXpwsiVb+ro=
Subject key identifier: CF:49:26:27:02:60:F3:C7:AE:BA:DC:7C:29:EC:96:DB:E7:F3:37:3F
Certificate issuer: /CN=1D659E7F406978CCF0042D2379FC560A6CE966A1
Certificate serial: 25863BB149D6756B8809C2AA40456DD4CFE30DE2
Authority key identifier: 1D:65:9E:7F:40:69:78:CC:F0:04:2D:23:79:FC:56:0A:6C:E9:66:A1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1D659E7F406978CCF0042D2379FC560A6CE966A1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/354A3E4D205849409AD697183E6B77310BBE00D4D1FFB5CDD63E3E7C339BB10D/0/34352e3136352e3135342e302f32332d3233203d3e20323635383136.roa
Signing time: Tue 04 Feb 2025 18:07:11 +0000
ROA not before: Tue 04 Feb 2025 18:02:11 +0000
ROA not after: Tue 03 Feb 2026 18:07:11 +0000
asID: 265816
IP address blocks: 45.165.154.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:86:3b:b1:49:d6:75:6b:88:09:c2:aa:40:45:6d:d4:cf:e3:0d:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D659E7F406978CCF0042D2379FC560A6CE966A1
Validity
Not Before: Feb 4 18:02:11 2025 GMT
Not After : Feb 3 18:07:11 2026 GMT
Subject: CN=CF4926270260F3C7AEBADC7C29EC96DBE7F3373F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5e:09:da:66:97:6b:81:7e:84:a9:af:c5:62:
fe:bf:e9:4d:49:cc:8f:aa:ec:e6:80:7f:28:6a:20:
cc:1e:45:e9:a5:6c:ed:05:23:b9:07:e3:c3:ae:a9:
0a:8d:20:eb:36:24:43:be:59:3f:8c:f8:02:b2:e6:
5e:02:d5:df:59:b0:a9:22:cb:e5:55:bf:b8:7a:4e:
d0:ea:59:5e:82:a7:81:85:e4:cd:7a:d4:9a:17:05:
75:d8:91:1d:30:95:ee:0c:42:82:f3:cd:4a:7d:7a:
f2:11:ea:05:86:90:c9:da:d7:cf:a3:17:51:84:9d:
45:ab:f6:21:00:1e:a1:ed:c8:c0:c9:6e:2e:81:02:
32:63:39:e6:0d:38:a6:7e:6d:17:e9:42:6a:18:e3:
68:5c:43:72:f7:fb:54:9d:8c:c0:f5:cf:4b:e4:3b:
b8:40:06:6f:6a:01:1e:9f:ec:14:5f:ef:18:f1:40:
ea:08:5c:be:9d:14:b5:b2:1b:27:f3:23:7b:a9:89:
01:58:37:14:6e:78:d0:1b:87:8a:e7:a1:37:4e:d7:
c8:19:67:52:09:ce:11:30:9e:18:d8:40:e6:90:7f:
d7:13:df:35:4e:e0:1b:cb:ab:b1:4b:ef:57:59:2d:
4e:d1:85:1a:99:4b:8e:48:43:73:f5:c6:f3:28:f6:
a1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:49:26:27:02:60:F3:C7:AE:BA:DC:7C:29:EC:96:DB:E7:F3:37:3F
X509v3 Authority Key Identifier:
keyid:1D:65:9E:7F:40:69:78:CC:F0:04:2D:23:79:FC:56:0A:6C:E9:66:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/354A3E4D205849409AD697183E6B77310BBE00D4D1FFB5CDD63E3E7C339BB10D/0/1D659E7F406978CCF0042D2379FC560A6CE966A1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1D659E7F406978CCF0042D2379FC560A6CE966A1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/354A3E4D205849409AD697183E6B77310BBE00D4D1FFB5CDD63E3E7C339BB10D/0/34352e3136352e3135342e302f32332d3233203d3e20323635383136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.165.154.0/23
Signature Algorithm: sha256WithRSAEncryption
07:a9:ba:04:d0:54:c9:cd:cc:b3:af:23:7a:77:5d:32:fa:c2:
10:e2:6f:7e:ca:db:47:41:af:8f:ee:8d:26:9f:74:75:03:27:
1b:29:ad:ae:27:a5:c8:d3:03:42:77:11:5a:b1:c2:d0:11:e1:
2b:04:61:e3:e9:52:17:1c:f0:c1:75:a1:21:cf:71:3b:a0:05:
71:67:84:a7:9f:d4:2f:dd:bb:a5:46:00:57:ae:07:15:b9:ec:
cd:e8:d3:a5:3e:00:b5:49:ad:b0:97:b4:8d:31:ed:f9:ad:f3:
6e:50:9f:de:7b:06:be:3f:bf:53:e8:4a:62:6e:3f:04:87:57:
f6:54:7b:66:cf:1b:50:b4:f2:b8:da:bb:43:00:04:7c:6d:71:
bc:77:a0:12:84:b0:4b:ac:2a:3c:31:ac:e3:58:40:6c:8d:5f:
d8:f4:b3:0d:b3:2b:74:91:3f:8b:6b:55:c3:1e:29:39:08:d7:
58:b0:d3:40:70:b2:42:99:1f:9d:64:cb:2b:70:78:7b:18:7c:
2c:9a:c6:a5:8b:89:66:f7:46:80:2c:3a:31:4a:72:46:98:21:
bd:de:eb:46:c0:53:4f:c4:01:6e:16:bf:e6:03:89:68:2d:1e:
0b:b0:77:f9:ae:06:32:06:cc:71:3c:6c:9f:5a:9d:cc:37:94:
ad:cb:35:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:49:59 2025 by rpki-client