Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e35362e302f32332d3234203d3e20323632313636.roa
File: 3136382e3233342e35362e302f32332d3234203d3e20323632313636.roa (raw, json)
Hash identifier: MI5tz1ZK/DPpqiA9GUt+2keJK8vlJXx7zXANzyJ6XcI=
Subject key identifier: 91:B7:D9:BC:EC:66:4C:71:B5:BB:D4:A0:07:76:3D:81:50:A0:E4:AC
Certificate issuer: /CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Certificate serial: 64B2DEC733AEF12F9CF8729F1B3F08AEB0B9F9C2
Authority key identifier: 0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e35362e302f32332d3234203d3e20323632313636.roa
Signing time: Tue 04 Feb 2025 17:59:47 +0000
ROA not before: Tue 04 Feb 2025 17:54:47 +0000
ROA not after: Tue 03 Feb 2026 17:59:47 +0000
asID: 262166
IP address blocks: 168.234.56.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:b2:de:c7:33:ae:f1:2f:9c:f8:72:9f:1b:3f:08:ae:b0:b9:f9:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Validity
Not Before: Feb 4 17:54:47 2025 GMT
Not After : Feb 3 17:59:47 2026 GMT
Subject: CN=91B7D9BCEC664C71B5BBD4A007763D8150A0E4AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c7:c2:2c:93:5c:f6:b3:e7:e8:b5:e0:b5:17:
ae:bf:c6:e3:e9:38:92:05:55:b3:95:2a:57:0b:83:
95:9a:4c:c1:0c:ae:08:48:23:df:e5:98:e8:53:a4:
a0:78:f3:58:23:06:c5:f6:4e:eb:86:56:f9:b8:62:
7c:a2:5a:dc:ad:7d:31:78:28:a3:bb:12:9a:7b:7e:
45:e6:b2:13:b1:6a:90:5f:08:ca:1f:84:44:ba:81:
74:67:c3:1a:5b:77:76:7c:e9:66:91:d5:eb:7b:f2:
a8:1a:e2:7a:58:25:5a:20:2e:e1:15:fa:4a:26:c9:
68:b9:26:aa:47:9c:a0:9a:6c:d8:0d:c0:0f:a8:a1:
8e:b8:f8:30:56:1c:bb:91:df:67:dc:e3:e5:9e:c9:
98:8f:b8:a9:21:a4:c5:c0:3c:fa:87:6f:38:d9:ef:
9b:2a:53:2b:76:6d:fe:6c:41:de:8e:a3:06:35:b3:
26:56:99:42:f0:5a:56:9e:83:b3:9d:16:9f:c4:e8:
fa:61:7c:44:96:f2:1a:06:9b:ed:ea:b3:c6:a9:f1:
6f:62:d1:69:73:c8:cf:1f:66:fb:1c:e0:3d:a0:d6:
91:8f:f0:2f:15:79:f6:bd:97:14:31:15:e8:31:e6:
8d:78:80:16:a0:15:5c:0e:ee:67:fd:5f:a7:84:07:
f5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B7:D9:BC:EC:66:4C:71:B5:BB:D4:A0:07:76:3D:81:50:A0:E4:AC
X509v3 Authority Key Identifier:
keyid:0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/0D1797043F7F529F13952CEE646AE7365392BBC3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e35362e302f32332d3234203d3e20323632313636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.234.56.0/23
Signature Algorithm: sha256WithRSAEncryption
81:bd:1d:da:40:29:4d:42:a2:c6:1d:90:9d:bc:85:d4:31:f8:
08:dd:f0:2e:21:66:72:7a:64:78:dc:6f:70:bd:fe:9c:a0:70:
bd:ac:52:7b:8d:c9:c9:c7:57:f8:c2:b9:83:e6:f6:79:60:a2:
42:89:27:e8:88:60:c0:8e:9f:30:67:58:a3:bd:3a:23:de:55:
49:15:d0:e2:37:93:11:d6:fe:c6:52:2c:34:69:94:64:c8:3b:
70:b4:a8:f2:9e:55:ea:b6:5e:7f:b1:1c:c0:da:fb:a9:09:66:
c6:5a:ea:d8:6f:3b:71:22:04:92:ab:1e:5b:db:c5:1a:0d:11:
df:c7:0a:38:13:c7:cf:d3:9d:85:c6:31:75:b1:45:b3:7a:20:
34:0b:ba:24:00:2a:91:ba:12:3e:55:97:37:81:5d:69:8e:ab:
32:1b:ff:e7:b4:80:03:72:c6:47:0d:44:97:ca:e2:62:49:e4:
26:e2:ab:dd:af:46:37:22:e0:89:74:5a:e0:91:4a:27:b6:25:
00:22:a4:eb:04:9d:ba:6f:50:9d:33:bd:b0:d4:36:87:d5:c6:
4f:6c:8c:b0:1b:d8:57:14:7c:4b:c4:2f:3b:27:24:7c:d6:51:
78:85:91:83:ef:44:0f:d4:35:7d:20:23:21:54:0e:02:f4:5c:
d0:9c:bd:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:22:11 2025 by rpki-client