Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3135382e302f32332d3234203d3e20323632313636.roa
File: 3136382e3233342e3135382e302f32332d3234203d3e20323632313636.roa (raw, json)
Hash identifier: lkoepm0pzeYbNcZQPJciJDG5L6NQllOqTLzouHVC9+I=
Subject key identifier: 33:52:2A:CA:AB:BB:AE:A6:7C:D8:AD:2F:43:4F:F2:93:DE:3F:50:80
Certificate issuer: /CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Certificate serial: 1ECD88F79FC5066A8DC68009FB76D4C6B6FDE7F3
Authority key identifier: 0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3135382e302f32332d3234203d3e20323632313636.roa
Signing time: Tue 04 Feb 2025 17:59:45 +0000
ROA not before: Tue 04 Feb 2025 17:54:45 +0000
ROA not after: Tue 03 Feb 2026 17:59:45 +0000
asID: 262166
IP address blocks: 168.234.158.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:cd:88:f7:9f:c5:06:6a:8d:c6:80:09:fb:76:d4:c6:b6:fd:e7:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Validity
Not Before: Feb 4 17:54:45 2025 GMT
Not After : Feb 3 17:59:45 2026 GMT
Subject: CN=33522ACAABBBAEA67CD8AD2F434FF293DE3F5080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:65:ef:15:02:0b:c3:6d:0d:42:70:cd:3f:ff:
bc:3a:05:1b:1e:d4:aa:6c:66:30:0c:9e:fb:de:c5:
99:6f:a1:1f:fc:de:0b:aa:62:47:81:fc:6a:02:90:
ff:e9:06:cb:25:71:eb:ef:2e:13:9b:90:49:dd:a8:
67:c8:b7:02:3c:5b:cc:70:09:8d:16:03:14:65:00:
65:18:fe:78:22:39:f7:f5:b9:6b:0e:fc:37:64:07:
9f:a8:7f:d3:99:94:28:90:27:4e:8f:6f:06:b2:c9:
e0:61:ce:6d:22:4f:8b:9e:42:0e:39:08:53:52:be:
ea:fa:8d:da:b0:5b:22:ff:5a:09:aa:67:98:ca:84:
98:d3:f0:5f:bb:1f:b5:9c:83:2d:12:78:9e:46:8a:
e0:5d:81:36:0f:bb:c4:a2:59:e1:43:b1:e4:59:33:
76:c7:3a:c6:e3:a1:c4:7f:51:b6:6b:24:7e:06:78:
d7:5c:99:9f:0a:54:7e:a2:d4:72:45:f7:23:b7:5e:
d7:f3:bb:c2:02:25:e5:3a:f5:93:1c:a3:56:b4:bf:
fb:9a:a9:ee:87:aa:0b:b1:ea:46:1a:ad:4d:2a:06:
d5:16:5e:16:33:39:52:b8:2f:08:4a:af:10:f5:e4:
28:8b:41:d0:66:0d:9a:58:cf:97:3f:e8:37:36:c9:
d1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:52:2A:CA:AB:BB:AE:A6:7C:D8:AD:2F:43:4F:F2:93:DE:3F:50:80
X509v3 Authority Key Identifier:
keyid:0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/0D1797043F7F529F13952CEE646AE7365392BBC3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3135382e302f32332d3234203d3e20323632313636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.234.158.0/23
Signature Algorithm: sha256WithRSAEncryption
05:88:dc:2b:8d:cf:c7:80:c5:17:0f:66:5f:4c:3f:c0:6a:27:
5c:65:a7:9a:3a:61:b5:87:4d:7f:ab:78:a4:41:c5:48:f1:07:
e2:da:c1:3e:52:74:d3:44:a3:01:56:99:7d:0e:75:cf:a9:e1:
da:d0:22:2f:46:a3:c7:33:b2:29:9e:b7:54:61:72:3b:d7:fb:
17:95:1a:62:24:28:3b:45:2a:e4:34:72:13:bb:cf:47:62:08:
bb:63:c9:64:eb:cb:8f:d4:d0:f6:6e:a1:c1:0b:fd:f0:15:6c:
26:f3:6f:7a:99:12:53:82:96:f7:9c:fe:94:93:29:e5:c3:8e:
30:24:b0:5f:9f:da:11:51:4a:01:8b:15:46:5e:32:e6:f9:8c:
31:7d:79:cc:d9:d3:7d:13:73:83:8a:1c:b4:82:4c:fd:b7:b6:
88:e2:d0:c4:d7:82:7a:4c:48:ea:1e:39:26:a3:9b:d3:1b:c5:
56:52:ac:01:52:89:b1:08:42:ac:7b:ca:9f:81:e7:56:de:31:
fb:9b:23:6c:04:fd:3d:9f:b8:ba:30:ce:3c:8f:67:0c:3c:a7:
8b:c3:17:0c:d2:98:40:87:fb:a9:f6:dc:35:23:96:db:d3:25:
d7:0b:0c:75:3c:3b:87:a4:42:ff:9f:6d:48:75:f8:8f:21:f9:
76:e6:68:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:23:23 2025 by rpki-client