Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3130382e302f32322d3234203d3e20323632313636.roa
File: 3136382e3233342e3130382e302f32322d3234203d3e20323632313636.roa (raw, json)
Hash identifier: 23G2yDow6RwPcRPQWwtStPxhJQiRc+PDZaqBT1XLHx4=
Subject key identifier: 90:3A:57:2C:DA:AB:B3:5D:D6:69:96:1B:85:D3:08:B9:99:76:64:36
Certificate issuer: /CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Certificate serial: 3D3ACF4D360646C0B3989DEF5C3AD4D21D2055E9
Authority key identifier: 0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3130382e302f32322d3234203d3e20323632313636.roa
Signing time: Tue 04 Feb 2025 17:59:40 +0000
ROA not before: Tue 04 Feb 2025 17:54:40 +0000
ROA not after: Tue 03 Feb 2026 17:59:40 +0000
asID: 262166
IP address blocks: 168.234.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:3a:cf:4d:36:06:46:c0:b3:98:9d:ef:5c:3a:d4:d2:1d:20:55:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Validity
Not Before: Feb 4 17:54:40 2025 GMT
Not After : Feb 3 17:59:40 2026 GMT
Subject: CN=903A572CDAABB35DD669961B85D308B999766436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e8:51:8a:7a:45:a0:c6:9f:75:49:70:53:45:
20:fc:9e:fd:37:de:e5:f6:29:20:5d:97:10:4c:48:
7a:b4:41:bb:90:c7:89:d8:71:95:67:7b:d0:9e:ef:
23:c3:4f:41:35:93:c7:2c:1c:06:18:f7:50:ef:93:
a2:57:a3:ea:e6:4c:45:b9:06:62:3e:b7:9b:6a:5e:
71:a5:a6:8a:91:a8:65:23:40:01:20:73:2e:2b:a6:
42:ac:81:3c:cf:20:ee:b3:b9:35:e9:39:95:cb:88:
f7:80:e8:5d:b7:7d:42:8d:4c:c2:d1:09:12:6d:f4:
55:2f:97:fd:a5:6a:4d:43:0c:bb:db:5a:ea:f6:55:
98:92:bb:f4:5b:1c:8c:2f:d2:62:c1:40:13:62:b8:
94:b7:2c:89:9f:d8:65:1f:22:12:1c:a0:03:5b:aa:
85:46:94:47:d6:c6:12:e0:32:3e:7f:96:3b:08:b7:
5d:d2:34:ff:12:c0:ae:54:a3:38:d9:92:e5:6e:4f:
f2:f3:dd:9d:66:c6:10:4c:57:35:f9:ff:75:75:d0:
4a:c3:55:17:28:90:47:b4:53:fb:af:50:56:89:a4:
06:c3:80:45:24:e2:17:97:f1:62:34:ea:90:e8:ab:
32:9b:3e:c5:30:be:aa:6b:48:09:3d:f7:b1:18:36:
1a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:3A:57:2C:DA:AB:B3:5D:D6:69:96:1B:85:D3:08:B9:99:76:64:36
X509v3 Authority Key Identifier:
keyid:0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/0D1797043F7F529F13952CEE646AE7365392BBC3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3130382e302f32322d3234203d3e20323632313636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.234.108.0/22
Signature Algorithm: sha256WithRSAEncryption
16:95:37:48:53:61:27:5e:08:aa:be:56:aa:a5:90:eb:4e:3e:
88:e9:cc:c4:97:b4:4a:5d:d3:78:05:17:ae:87:94:34:43:ab:
b1:81:8d:26:ff:cb:57:e6:9e:3b:d7:29:1e:e6:40:2d:de:eb:
62:35:7e:6b:30:e9:3c:a9:f4:8e:11:33:4e:7c:d0:79:65:eb:
3d:3f:f8:9e:b1:60:d1:61:cf:12:d5:ee:29:ee:30:9c:9e:7c:
96:04:45:eb:5a:7b:f6:0f:60:25:2c:49:c5:cd:2d:cd:23:83:
89:86:8c:25:1a:8a:02:dc:4d:e7:39:cc:c0:ea:7c:3c:47:4e:
5a:22:f7:7d:d7:90:5b:93:53:15:02:81:78:e0:b5:0c:58:9b:
86:59:a4:5d:b0:47:f4:7f:47:43:3e:cb:30:a7:fb:b0:fe:3e:
29:cc:87:09:c8:1f:34:78:f5:5a:3b:66:88:c6:01:bb:f7:4d:
74:ba:e6:2b:89:5d:d9:1b:17:8f:c2:cf:8f:15:ea:55:04:1d:
7d:72:e9:2d:79:17:fb:c5:67:d7:c0:23:dd:63:46:70:82:7e:
d0:7a:03:9a:c7:1e:bd:5c:46:06:70:bd:5b:da:8b:c8:f3:92:
49:01:b8:fb:4e:8a:f4:a0:19:be:a9:49:69:99:44:b6:e9:1d:
48:6c:e4:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:23:22 2025 by rpki-client