Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3ABEDFCB2F2ED120F0851CE2E87BD736EF8190C173ABC85DB5A1047E58187136/0/34352e3232382e35362e302f32322d3235203d3e20323632313936.roa
File: 34352e3232382e35362e302f32322d3235203d3e20323632313936.roa (raw, json)
Hash identifier: 1paSyIbcNo09aB8KkRmC8FkyosP+fpYmegEmdh3Smck=
Subject key identifier: F8:41:BB:F5:D0:8B:36:CB:E4:49:39:C2:4C:78:6B:62:2F:29:B5:E7
Certificate issuer: /CN=476EB61F17B49CD88A0DB6ABED2E966A61AAAA97
Certificate serial: 726B787CE851538F1CC4DD7DF1D4F2676703E0F4
Authority key identifier: 47:6E:B6:1F:17:B4:9C:D8:8A:0D:B6:AB:ED:2E:96:6A:61:AA:AA:97
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/476EB61F17B49CD88A0DB6ABED2E966A61AAAA97.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3ABEDFCB2F2ED120F0851CE2E87BD736EF8190C173ABC85DB5A1047E58187136/0/34352e3232382e35362e302f32322d3235203d3e20323632313936.roa
Signing time: Tue 04 Feb 2025 18:13:05 +0000
ROA not before: Tue 04 Feb 2025 18:08:05 +0000
ROA not after: Tue 03 Feb 2026 18:13:05 +0000
asID: 262196
IP address blocks: 45.228.56.0/22 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:6b:78:7c:e8:51:53:8f:1c:c4:dd:7d:f1:d4:f2:67:67:03:e0:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=476EB61F17B49CD88A0DB6ABED2E966A61AAAA97
Validity
Not Before: Feb 4 18:08:05 2025 GMT
Not After : Feb 3 18:13:05 2026 GMT
Subject: CN=F841BBF5D08B36CBE44939C24C786B622F29B5E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:44:06:4c:7e:e2:11:c9:e8:cc:7c:9d:54:7a:
db:57:33:bd:26:92:fe:2e:4a:81:93:1a:81:0f:b6:
62:af:a7:87:aa:2c:8d:43:9b:c0:00:95:80:e9:6f:
d6:50:ac:6d:3d:af:f8:b4:b2:ab:23:f9:8a:41:36:
7c:0f:34:de:1f:9b:12:99:ef:4d:55:bb:77:4e:62:
a9:a1:75:30:74:b2:4e:9b:f3:2f:f7:7f:03:9e:ae:
d6:16:09:5d:c9:c3:3d:5d:41:e7:1b:a7:51:1b:58:
4d:bb:b7:47:3d:01:01:78:ea:8c:c1:9d:96:0c:4e:
7f:af:91:02:3e:83:13:e2:3e:37:3b:12:f7:f2:27:
3b:b2:af:c8:d8:fa:b0:3f:d3:d9:11:db:95:89:6a:
53:2c:fd:c6:e6:23:47:ea:d3:ac:1f:aa:5b:62:41:
49:3e:7c:e0:44:ac:5c:f3:18:48:3a:0b:e6:fb:4e:
b5:e5:42:f8:5d:2e:56:04:c6:b7:c5:88:88:6a:0c:
d0:5b:26:f9:77:67:fa:dc:58:1c:6f:eb:5e:34:48:
2a:93:89:ce:a4:e7:8d:3c:8f:9a:fc:dd:5a:57:f8:
2b:d0:46:1d:ad:70:5e:22:83:3a:dd:bb:a5:e8:ee:
6e:b4:45:9d:55:9a:75:b9:85:7c:5f:c4:dc:60:c9:
00:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:41:BB:F5:D0:8B:36:CB:E4:49:39:C2:4C:78:6B:62:2F:29:B5:E7
X509v3 Authority Key Identifier:
keyid:47:6E:B6:1F:17:B4:9C:D8:8A:0D:B6:AB:ED:2E:96:6A:61:AA:AA:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3ABEDFCB2F2ED120F0851CE2E87BD736EF8190C173ABC85DB5A1047E58187136/0/476EB61F17B49CD88A0DB6ABED2E966A61AAAA97.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/476EB61F17B49CD88A0DB6ABED2E966A61AAAA97.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3ABEDFCB2F2ED120F0851CE2E87BD736EF8190C173ABC85DB5A1047E58187136/0/34352e3232382e35362e302f32322d3235203d3e20323632313936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.228.56.0/22
Signature Algorithm: sha256WithRSAEncryption
39:ca:be:11:f1:57:6e:db:76:2d:2a:44:bc:cd:87:1b:9a:33:
c7:5f:89:ca:94:84:8b:f1:6c:c7:3e:79:c4:a8:c7:eb:02:d4:
8f:e9:b1:f1:6f:0e:26:d7:d1:d0:41:db:a2:b3:fa:a4:9c:a6:
41:a5:1d:e9:5c:cf:b6:91:ab:4f:10:60:05:b2:11:19:61:20:
76:02:66:b6:1a:1f:9d:7f:a6:5e:43:1c:58:ff:27:fc:92:ce:
13:a8:e7:79:08:bd:08:3d:1e:be:c6:87:e9:10:f7:73:12:e8:
6a:c8:b0:0f:26:74:bb:53:1c:bf:9d:4c:a0:29:77:1f:2c:32:
91:e0:a1:6e:9c:56:f2:26:d8:40:a7:ad:1f:d1:e3:e9:a0:1f:
51:54:ac:f9:2d:a8:8e:1a:b5:c4:b2:a9:b1:03:63:76:5a:44:
21:06:a5:09:85:44:d7:f5:3f:36:2e:e4:5e:41:37:0c:42:e1:
a0:6d:d5:fb:65:d5:e8:9d:c2:7d:9f:39:88:7d:82:7b:d0:63:
74:85:a4:32:2c:97:f6:b3:56:6c:48:59:b0:55:05:2a:58:64:
e0:9e:d9:54:ca:82:0d:9a:6f:d7:61:02:2a:72:c6:cb:4a:1b:
c0:81:e5:81:ff:58:26:ab:f4:8a:0f:31:59:5d:b3:d1:ed:eb:
2e:b1:0c:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:17 2025 by rpki-client