Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e38302e302f32302d3234203d3e20323632313636.roa
File: 3136382e3233342e38302e302f32302d3234203d3e20323632313636.roa (raw, json)
Hash identifier: AP5DAglXGc0cQGJp1WFERM57Vros8dpIle6Bv1h0Wo8=
Subject key identifier: 40:66:4F:8F:34:8D:B0:54:1F:52:23:6B:F6:86:88:9D:67:C9:E6:9D
Certificate issuer: /CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Certificate serial: 41D53718D7A618B1DD6827DDB78728B41EB633B0
Authority key identifier: 0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e38302e302f32302d3234203d3e20323632313636.roa
Signing time: Tue 04 Feb 2025 17:59:42 +0000
ROA not before: Tue 04 Feb 2025 17:54:42 +0000
ROA not after: Tue 03 Feb 2026 17:59:42 +0000
asID: 262166
IP address blocks: 168.234.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:d5:37:18:d7:a6:18:b1:dd:68:27:dd:b7:87:28:b4:1e:b6:33:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Validity
Not Before: Feb 4 17:54:42 2025 GMT
Not After : Feb 3 17:59:42 2026 GMT
Subject: CN=40664F8F348DB0541F52236BF686889D67C9E69D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1b:7d:74:c0:8d:f7:7a:ce:ab:b2:ff:ef:32:
df:97:6a:98:c1:6b:e2:29:51:06:c7:19:ac:e3:e4:
3c:ff:f2:d0:76:14:1e:d2:28:25:1d:f9:84:6e:05:
af:d5:8c:ff:8d:6f:8b:f9:42:bc:35:0b:21:1a:d0:
bd:42:dd:6b:97:3c:58:dd:60:21:9e:75:c3:f1:d7:
bd:01:fc:e8:95:2e:72:1e:32:e1:d4:f4:8d:f6:ad:
32:41:86:18:54:3e:67:aa:88:33:f1:d5:15:0d:dd:
ec:f1:2b:6e:2f:58:d5:f6:7f:6b:cf:97:ea:16:2e:
ea:41:2a:79:4d:ec:5e:9a:4e:99:78:e9:a2:45:57:
04:61:78:29:7d:2e:46:0c:f2:48:bb:ef:55:53:37:
e3:54:b6:36:3f:91:cc:f2:cf:bd:15:c1:fb:87:40:
fc:a4:ee:76:b3:a7:51:8c:4b:72:3e:d8:a2:6c:86:
82:64:c2:cc:28:a6:a7:e2:03:d5:4a:1a:10:b0:31:
d8:6f:da:0a:50:13:73:2d:4e:26:42:5d:d1:6d:02:
9c:42:77:fe:77:67:3e:71:7d:9d:84:c0:32:33:10:
b8:c1:e3:c1:e4:c6:af:57:c3:14:89:55:8e:7d:8a:
5d:af:36:78:c5:14:1d:69:f2:5f:f4:3a:68:58:2c:
0c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:66:4F:8F:34:8D:B0:54:1F:52:23:6B:F6:86:88:9D:67:C9:E6:9D
X509v3 Authority Key Identifier:
keyid:0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/0D1797043F7F529F13952CEE646AE7365392BBC3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e38302e302f32302d3234203d3e20323632313636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.234.80.0/20
Signature Algorithm: sha256WithRSAEncryption
83:3f:d1:54:8e:bc:a9:b3:a3:bd:69:e9:2b:e6:17:37:f7:89:
ca:5d:fa:7a:6c:01:79:11:07:02:81:23:45:f8:97:7b:76:a5:
23:0b:2a:46:df:56:b4:59:52:c1:10:77:91:48:5a:54:e6:f8:
8a:d3:62:cf:6b:0c:eb:f2:29:ac:da:a2:2f:28:bf:8f:60:66:
51:b8:2c:df:16:49:d0:8a:e6:8a:95:55:6e:c8:83:dd:8e:6f:
3f:ef:56:88:7a:01:45:1d:71:1a:5f:87:95:1a:be:5c:a7:64:
1b:12:2b:17:ef:39:55:e2:c4:65:9b:de:5d:9f:66:66:68:a8:
1c:84:db:a8:08:d6:38:5b:88:e4:be:6c:de:f5:3d:47:43:8f:
42:78:f8:22:d7:5d:3d:39:d9:e3:2d:a6:1b:5d:a1:93:f4:40:
9d:93:e1:ee:b5:f6:ea:78:fa:88:72:a3:6f:16:7c:51:70:0d:
f0:43:6f:94:66:4b:f1:00:46:79:b8:0a:6e:00:20:05:4c:bf:
da:e9:c9:df:93:62:90:41:d3:16:2e:a7:52:da:b5:37:ea:bb:
b1:26:28:f4:db:59:e4:84:c5:a8:1a:92:80:3d:00:02:73:cc:
eb:f2:b0:60:30:d7:aa:3f:98:b5:34:0c:d6:35:2d:84:ca:91:
6e:7f:05:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:18:53 2025 by rpki-client