Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3231362e302f32332d3234203d3e20323632313636.roa
File: 3136382e3233342e3231362e302f32332d3234203d3e20323632313636.roa (raw, json)
Hash identifier: gLmQk0cR6uQMpCRepOTMhl84kOJwZvlkz4gv7gtAwDs=
Subject key identifier: BA:3D:3D:4A:20:1F:A9:A1:F9:81:40:77:CA:61:C4:AF:ED:C2:AA:A3
Certificate issuer: /CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Certificate serial: 7BAE7D9D406F9AB4C3F5AFB1E8C901894C946301
Authority key identifier: 0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3231362e302f32332d3234203d3e20323632313636.roa
Signing time: Tue 04 Feb 2025 17:59:43 +0000
ROA not before: Tue 04 Feb 2025 17:54:43 +0000
ROA not after: Tue 03 Feb 2026 17:59:43 +0000
asID: 262166
IP address blocks: 168.234.216.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:ae:7d:9d:40:6f:9a:b4:c3:f5:af:b1:e8:c9:01:89:4c:94:63:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Validity
Not Before: Feb 4 17:54:43 2025 GMT
Not After : Feb 3 17:59:43 2026 GMT
Subject: CN=BA3D3D4A201FA9A1F9814077CA61C4AFEDC2AAA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ab:86:8e:d4:5b:82:5e:04:af:67:65:49:7b:
49:6e:3e:1c:3d:3e:1a:ca:d4:c2:92:45:d2:86:1d:
a8:db:59:30:c6:a6:ed:dd:67:38:1a:c1:3c:66:62:
1e:dc:f2:ed:13:11:3c:3b:90:0c:0d:96:21:32:6d:
28:77:62:59:07:75:64:84:d8:0e:5d:15:8b:09:4e:
46:c0:57:ac:66:27:3b:ff:ea:da:56:12:f6:ea:d2:
80:1e:c1:14:28:fb:39:c6:60:7d:e9:55:e6:60:f3:
9d:c4:7a:a3:16:47:5c:a7:0a:84:14:7a:68:64:d6:
88:4d:e1:96:b5:ce:93:5c:cc:f5:f8:be:3b:6e:bf:
e2:d5:ff:af:a6:ca:b6:97:47:da:54:f9:80:f1:db:
47:91:8f:96:bc:c3:11:d6:1a:7c:91:c7:d5:18:b9:
ff:e5:5d:89:69:ad:f6:94:d7:c5:3e:cf:c0:40:4c:
be:e2:4f:2f:46:6a:12:ae:4d:78:d2:42:af:ff:19:
b2:41:ed:cc:fc:d6:44:62:27:71:42:47:0b:be:71:
ef:b8:5e:29:80:9e:8b:a2:e3:48:7f:cf:08:cd:4d:
49:18:b1:00:49:f3:8f:3e:3b:29:29:b1:c3:b6:b4:
b2:bc:68:e5:42:78:68:f2:33:6c:16:67:9e:35:2d:
1c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3D:3D:4A:20:1F:A9:A1:F9:81:40:77:CA:61:C4:AF:ED:C2:AA:A3
X509v3 Authority Key Identifier:
keyid:0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/0D1797043F7F529F13952CEE646AE7365392BBC3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e3231362e302f32332d3234203d3e20323632313636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.234.216.0/23
Signature Algorithm: sha256WithRSAEncryption
77:e3:7e:66:1e:8a:b5:1b:9b:4d:48:c0:21:04:e0:16:f4:5b:
5f:7c:7e:50:c9:7d:8e:5e:d7:3c:d7:e4:22:ab:ce:5b:33:67:
aa:a4:cf:41:27:aa:30:5a:af:e6:5a:94:08:06:c2:5b:03:5f:
a4:90:cc:0a:b0:4b:57:79:d5:7c:4b:30:66:30:90:da:7f:c7:
14:16:a5:01:64:f8:e9:dd:88:96:d8:b9:ba:78:58:db:3a:3f:
ac:71:29:52:7f:98:8f:8e:9c:13:8f:12:9e:2c:50:3e:9f:77:
ba:56:71:e0:b2:3f:d0:fd:f1:63:0c:3f:88:bc:13:6a:58:6b:
7e:00:fe:68:ff:17:d5:e6:67:40:ef:b6:94:32:aa:ac:1c:e7:
7f:b9:74:6d:5f:40:3b:13:11:49:a0:58:33:48:d5:19:02:f8:
b3:e7:dd:13:13:a8:fc:e9:00:5e:1a:d0:50:26:23:bf:e9:53:
28:b9:24:05:31:2a:34:66:cb:28:14:ef:29:27:06:89:cd:a3:
18:7f:21:17:ac:76:c7:61:fa:3b:98:5a:8a:e3:c0:33:20:f7:
f2:70:15:2d:71:d1:99:70:56:7d:fc:44:28:ce:59:f0:83:df:
92:91:66:a4:b9:ca:0c:85:48:5c:e9:ba:f7:9d:b6:e7:cb:d3:
e0:35:d2:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:23:29 2025 by rpki-client