Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/34352e3136342e3130382e302f32322d3234203d3e20323730313733.roa
File: 34352e3136342e3130382e302f32322d3234203d3e20323730313733.roa (raw, json)
Hash identifier: 4VUCnUrOTEFJUAMerXLjzJe+4pxzRGbnHxoBswqshlY=
Subject key identifier: 40:6F:A6:F9:6B:48:8D:1F:31:BC:CF:71:6F:D0:6A:C3:C1:9F:9F:54
Certificate issuer: /CN=291BF264E3DFBE29A5D52AE24CE1243DF6F398C2
Certificate serial: 17B431BA4A940617946DE7CCD44FAA58844290BF
Authority key identifier: 29:1B:F2:64:E3:DF:BE:29:A5:D5:2A:E2:4C:E1:24:3D:F6:F3:98:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/34352e3136342e3130382e302f32322d3234203d3e20323730313733.roa
Signing time: Tue 04 Feb 2025 18:45:43 +0000
ROA not before: Tue 04 Feb 2025 18:40:43 +0000
ROA not after: Tue 03 Feb 2026 18:45:43 +0000
asID: 270173
IP address blocks: 45.164.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:b4:31:ba:4a:94:06:17:94:6d:e7:cc:d4:4f:aa:58:84:42:90:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291BF264E3DFBE29A5D52AE24CE1243DF6F398C2
Validity
Not Before: Feb 4 18:40:43 2025 GMT
Not After : Feb 3 18:45:43 2026 GMT
Subject: CN=406FA6F96B488D1F31BCCF716FD06AC3C19F9F54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:42:3a:89:48:b9:a5:1e:c2:30:1a:9e:0f:55:
0d:b9:87:4a:ac:d4:48:78:fa:f2:6d:68:16:84:f1:
66:32:7f:49:58:ce:dd:bb:d0:c6:72:0d:b3:96:4a:
0e:be:fa:e7:fa:c4:78:05:76:b2:86:f2:28:4a:9f:
84:0c:31:a8:e0:e7:6f:ee:7b:66:17:7b:85:20:30:
a3:ef:97:db:ed:04:fa:d7:46:ff:c6:6a:94:db:80:
29:b9:76:95:f0:24:68:48:26:98:e1:f7:ce:af:e6:
2a:f2:00:5b:02:1a:96:5b:a7:d2:fa:65:a6:60:33:
2f:9e:4e:4a:dd:3d:15:46:92:e1:4e:58:c1:36:9f:
d9:93:50:7e:48:a5:aa:a9:58:5c:30:7a:51:5b:cb:
94:d5:4f:9c:c1:a3:34:ad:62:80:16:75:b2:ee:a0:
23:7e:e0:6d:3b:f9:d3:67:d9:da:d4:be:a8:bc:18:
62:9b:26:e6:7a:b7:b2:b3:f5:55:fb:23:4b:83:ec:
85:89:25:65:cb:fe:37:df:89:c4:f6:c3:20:a1:8d:
d1:7f:a7:b5:d6:44:32:2c:f3:67:fe:11:8f:5a:c1:
c8:97:9b:6b:c5:fd:bc:7c:a5:d1:a3:d5:88:0d:0b:
27:e7:1d:ba:08:07:fd:36:98:31:c6:cb:32:85:57:
57:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:6F:A6:F9:6B:48:8D:1F:31:BC:CF:71:6F:D0:6A:C3:C1:9F:9F:54
X509v3 Authority Key Identifier:
keyid:29:1B:F2:64:E3:DF:BE:29:A5:D5:2A:E2:4C:E1:24:3D:F6:F3:98:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/34352e3136342e3130382e302f32322d3234203d3e20323730313733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.164.108.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:11:60:fa:cb:da:24:ec:85:6a:38:90:dc:49:e7:c6:93:56:
2e:d0:6a:5f:33:97:9b:84:8b:c5:2d:9b:4c:f0:97:33:c7:16:
9a:25:78:b4:30:b7:7a:86:90:24:67:de:87:5e:85:b9:f0:3f:
f5:0f:06:a1:dc:d6:fa:63:c1:14:08:e9:de:46:d9:e8:ac:84:
ea:ca:ed:b5:2e:21:db:13:ca:27:86:48:e7:7c:44:f2:86:99:
bb:35:f3:b2:06:a0:c5:f3:ef:d3:ca:42:a0:61:5c:bf:9b:a7:
b2:32:ba:83:46:72:7c:65:85:58:7e:ba:6e:91:18:56:cc:0f:
4c:a7:a0:a1:99:fc:ab:a8:91:5c:81:d7:d6:68:72:20:32:fe:
87:b1:78:62:6f:19:b2:3a:9e:dd:05:3e:b2:c5:42:dd:f3:f6:
0e:36:cc:9f:7b:43:47:0f:73:a7:fc:cc:db:4d:6c:2d:c9:3a:
43:32:99:bb:55:d8:25:49:02:5a:00:a2:af:21:a3:16:c9:50:
8b:10:65:2a:ed:3f:d0:3d:34:18:f9:d3:66:f8:19:df:96:60:
4b:e2:e8:47:25:0a:36:ec:fb:88:c6:9d:3c:c6:d4:27:36:9c:
61:39:92:96:73:24:95:b0:48:f3:81:77:57:8f:b6:fe:04:e1:
40:10:ad:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:00:08 2025 by rpki-client