Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3791B0F7B9B0A0F44434E8FDED11277147ED16CD9781BE55AC801FE3EFFFA896/0/34352e3232342e3134382e302f32322d3234203d3e203532343638.roa
File: 34352e3232342e3134382e302f32322d3234203d3e203532343638.roa (raw, json)
Hash identifier: ObKXz5ZFbgsH6aKoLNNBpf2XicT/8+e7tFSORMHxIBE=
Subject key identifier: FA:9F:02:A1:E2:EE:41:E0:99:6D:F6:96:4F:E7:AF:01:FD:AB:B8:87
Certificate issuer: /CN=DAADFF1BE65A83E411EFC02ED029233890DD0646
Certificate serial: 2435467EFE0C8A79894982110EFA29E876B343A2
Authority key identifier: DA:AD:FF:1B:E6:5A:83:E4:11:EF:C0:2E:D0:29:23:38:90:DD:06:46
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DAADFF1BE65A83E411EFC02ED029233890DD0646.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3791B0F7B9B0A0F44434E8FDED11277147ED16CD9781BE55AC801FE3EFFFA896/0/34352e3232342e3134382e302f32322d3234203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:46:14 +0000
ROA not before: Tue 04 Feb 2025 18:41:14 +0000
ROA not after: Tue 03 Feb 2026 18:46:14 +0000
asID: 52468
IP address blocks: 45.224.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:35:46:7e:fe:0c:8a:79:89:49:82:11:0e:fa:29:e8:76:b3:43:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DAADFF1BE65A83E411EFC02ED029233890DD0646
Validity
Not Before: Feb 4 18:41:14 2025 GMT
Not After : Feb 3 18:46:14 2026 GMT
Subject: CN=FA9F02A1E2EE41E0996DF6964FE7AF01FDABB887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c8:bd:6e:6c:e9:bd:c5:d0:c1:c3:2b:8d:ca:
05:11:9b:fc:e4:30:b5:6a:d6:e1:91:b8:e6:42:c6:
09:55:06:c6:9e:53:e6:f9:f1:f7:c4:02:65:61:0b:
cd:7f:df:54:f4:5c:b3:7a:15:c6:b0:ef:33:87:af:
5a:ca:ab:dd:c8:ec:1c:6f:2a:e2:66:13:c5:19:90:
79:f5:3f:a2:b7:79:59:4a:59:f1:c3:1f:22:15:6b:
43:bd:0e:b0:27:81:a2:b0:a2:fd:14:f6:9c:d9:f1:
d7:b6:e7:1d:00:b4:47:02:54:a3:92:42:dc:8f:73:
00:ac:bb:92:a8:91:d9:43:84:69:92:05:69:2f:ed:
82:f9:3e:dd:51:ce:2b:ad:3c:1d:ab:c2:34:bd:62:
64:10:9b:c4:ba:f9:17:b7:e7:05:c8:f0:29:3b:69:
30:ac:8e:5b:0f:d0:ef:23:c7:fd:3c:02:b2:66:fc:
42:f9:d5:d8:14:0f:61:d4:4b:18:34:a0:e7:de:2c:
80:f3:4a:3d:2c:58:64:1c:0e:99:9b:cf:a0:cc:41:
4e:9e:df:d3:6e:a0:78:c4:7d:93:53:d8:e5:81:9e:
0e:d4:09:ee:e7:ef:2f:93:af:d7:b0:cd:7e:cd:37:
59:32:3c:82:40:6c:94:4f:27:86:eb:ef:ed:9b:58:
9a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:9F:02:A1:E2:EE:41:E0:99:6D:F6:96:4F:E7:AF:01:FD:AB:B8:87
X509v3 Authority Key Identifier:
keyid:DA:AD:FF:1B:E6:5A:83:E4:11:EF:C0:2E:D0:29:23:38:90:DD:06:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3791B0F7B9B0A0F44434E8FDED11277147ED16CD9781BE55AC801FE3EFFFA896/0/DAADFF1BE65A83E411EFC02ED029233890DD0646.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DAADFF1BE65A83E411EFC02ED029233890DD0646.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3791B0F7B9B0A0F44434E8FDED11277147ED16CD9781BE55AC801FE3EFFFA896/0/34352e3232342e3134382e302f32322d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.224.148.0/22
Signature Algorithm: sha256WithRSAEncryption
09:d5:bd:cb:92:77:91:e4:94:c8:34:86:e0:2a:a9:72:58:70:
de:b5:a3:e2:f7:73:98:44:63:4b:ae:80:63:59:77:51:b9:4b:
1f:c4:41:c0:d8:9a:0c:99:62:e9:79:da:88:7f:29:78:9e:af:
6b:1f:8f:91:6e:09:29:b2:f1:7d:19:e6:91:89:ba:08:99:4e:
41:db:66:20:76:e8:80:a1:bf:5f:3f:8a:b5:97:66:20:22:08:
07:af:5e:2a:d5:da:1f:b0:ea:b7:23:91:f9:bb:7b:62:8a:0e:
31:a5:9e:24:4c:0b:66:0d:70:f3:c4:3b:94:24:60:eb:e3:71:
b3:ff:17:12:9a:3e:eb:a2:80:44:02:50:a0:04:04:ea:85:75:
dc:de:d5:68:bb:c1:4f:dc:eb:d8:b1:30:9e:e7:4e:b0:e2:cb:
7e:03:ce:82:06:e1:0e:44:1d:c2:b6:98:b9:a1:6b:18:e2:53:
f3:f9:34:71:d7:a2:d4:10:21:30:ac:23:89:e3:16:90:d1:6c:
b2:af:9e:c9:ab:57:d3:8e:cf:04:25:15:f3:b4:83:9f:84:93:
95:70:65:b1:74:ed:e7:1f:ce:60:45:ca:5f:91:02:9f:45:c3:
54:5c:df:d3:6e:cb:72:8c:04:09:d7:1b:64:44:de:0d:5a:9c:
40:fe:ad:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:58 2025 by rpki-client