Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3230332e302f32342d3234203d3e20323632313636.roa
File: 3136382e3233342e3230332e302f32342d3234203d3e20323632313636.roa (raw, json)
Hash identifier: U1w6IOcKo3KtwxDkeUaYd/Bl3K+mqhD7Vhf6waGeNsE=
Subject key identifier: 78:AB:51:B0:B3:6C:B2:63:D2:66:3E:A9:D5:48:18:BB:9C:32:45:75
Certificate issuer: /CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Certificate serial: 1C130C02B5DFC75133518EC077A5020AA3996376
Authority key identifier: 0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3230332e302f32342d3234203d3e20323632313636.roa
Signing time: Tue 04 Feb 2025 17:59:48 +0000
ROA not before: Tue 04 Feb 2025 17:54:48 +0000
ROA not after: Tue 03 Feb 2026 17:59:48 +0000
asID: 262166
IP address blocks: 168.234.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:13:0c:02:b5:df:c7:51:33:51:8e:c0:77:a5:02:0a:a3:99:63:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Validity
Not Before: Feb 4 17:54:48 2025 GMT
Not After : Feb 3 17:59:48 2026 GMT
Subject: CN=78AB51B0B36CB263D2663EA9D54818BB9C324575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:19:6f:68:ee:1a:9a:dc:1b:60:28:68:2e:9e:
a7:e1:a2:eb:32:41:34:cd:14:4d:a7:32:e7:cc:97:
c8:e1:92:8a:6b:7f:03:c6:18:09:0a:60:3f:6f:61:
d0:67:ad:ac:ea:d4:1f:b4:97:b2:8f:b9:7a:34:3c:
4b:c8:63:ab:cc:b5:64:34:21:11:1e:4a:5d:d7:2d:
f2:a8:4f:5d:f2:4d:b3:05:3c:d4:7d:a7:60:2c:9a:
83:6d:8e:a4:2a:98:27:f1:d1:eb:2c:03:7a:0d:18:
88:84:cf:4b:dd:ca:0b:56:89:9b:f7:fb:1f:f4:4b:
0a:c4:4a:1d:67:af:c6:87:a4:90:d5:77:0d:b1:dd:
0b:26:fa:63:45:2e:35:de:85:74:3f:93:bd:a0:b0:
e7:e2:d9:14:eb:11:15:4d:48:7d:37:be:e2:dc:c4:
54:e0:03:89:19:04:25:e5:5b:63:d8:1c:dc:56:30:
a2:0d:fb:17:f2:c1:c2:a3:0e:f6:58:9a:df:dc:91:
7b:a4:3b:0e:ff:5d:2b:1b:7e:d1:74:eb:71:c4:28:
35:d2:43:09:14:11:77:d1:9d:57:3d:f2:5b:b2:a7:
00:75:b2:76:9a:a2:50:8d:90:db:29:cd:dc:9d:81:
4f:b4:ac:c5:c1:30:ee:1a:45:ba:4f:27:17:50:1f:
b5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:AB:51:B0:B3:6C:B2:63:D2:66:3E:A9:D5:48:18:BB:9C:32:45:75
X509v3 Authority Key Identifier:
keyid:0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/0D1797043F7F529F13952CEE646AE7365392BBC3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3230332e302f32342d3234203d3e20323632313636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.234.203.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:38:a3:b0:42:1c:3d:44:be:cd:d1:a2:b6:70:03:6e:eb:5d:
30:cd:a4:5a:92:a1:ca:a0:ae:60:a2:5f:33:f9:f6:b5:f4:47:
09:d0:71:85:de:a9:2e:b8:13:c3:03:92:53:76:11:96:f6:7b:
06:28:24:f8:4e:9e:e3:e3:d1:81:43:85:ff:bf:25:9a:43:ff:
68:19:cd:ab:5e:f8:85:65:ee:4d:1c:48:d3:6a:9a:cf:ab:12:
fa:68:8b:e1:40:73:c0:b7:5d:b0:9b:7d:ad:b9:97:2f:c0:d9:
6a:e4:d6:e4:a4:81:3d:92:70:ff:83:25:6c:d1:56:94:58:25:
d0:82:41:a7:1e:20:7b:62:b8:ae:a5:ed:7c:47:46:47:34:60:
c6:20:aa:31:b4:0c:d9:71:48:8c:70:5a:f1:e7:71:a9:7b:a7:
d6:a2:80:83:db:c9:e4:61:68:05:b0:fc:bf:9d:4a:0f:7a:9f:
99:50:74:7a:3c:2d:36:3f:bb:3c:c1:dd:38:a7:58:fa:78:e8:
81:93:77:73:ea:e4:97:db:6a:e7:88:1e:b4:fd:f8:94:57:ab:
2d:cb:85:33:cf:d5:b1:fc:c7:84:db:35:43:20:b7:6a:59:07:
89:bf:d8:0a:df:79:4b:4a:46:ec:a0:b8:0c:48:9b:fa:c5:c3:
8c:3b:ad:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:23:20 2025 by rpki-client