Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3FC5A7998A9BECC6EB7251611FF8F04BFF65CDD862A8D5C6CE86542753A77108/0/34352e3137332e3136382e302f32322d3234203d3e203532333939.roa
File: 34352e3137332e3136382e302f32322d3234203d3e203532333939.roa (raw, json)
Hash identifier: 1EeKSuRIex0z3/chejcE74qTMqCbft135wbG3LN7li8=
Subject key identifier: 8D:EA:BC:19:C9:4F:F4:F6:42:61:B2:55:41:D5:31:0C:D5:F7:37:72
Certificate issuer: /CN=0A205E1E925EE30681B338EF41B0939B89AE8FB5
Certificate serial: 0D9B324DCF761F02CD0F6F882DEA27FD469C7EDE
Authority key identifier: 0A:20:5E:1E:92:5E:E3:06:81:B3:38:EF:41:B0:93:9B:89:AE:8F:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0A205E1E925EE30681B338EF41B0939B89AE8FB5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3FC5A7998A9BECC6EB7251611FF8F04BFF65CDD862A8D5C6CE86542753A77108/0/34352e3137332e3136382e302f32322d3234203d3e203532333939.roa
Signing time: Tue 04 Feb 2025 20:06:43 +0000
ROA not before: Tue 04 Feb 2025 20:01:43 +0000
ROA not after: Tue 03 Feb 2026 20:06:43 +0000
asID: 52399
IP address blocks: 45.173.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:9b:32:4d:cf:76:1f:02:cd:0f:6f:88:2d:ea:27:fd:46:9c:7e:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A205E1E925EE30681B338EF41B0939B89AE8FB5
Validity
Not Before: Feb 4 20:01:43 2025 GMT
Not After : Feb 3 20:06:43 2026 GMT
Subject: CN=8DEABC19C94FF4F64261B25541D5310CD5F73772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:08:5a:6f:38:91:d6:18:cd:7c:76:31:14:c7:
fe:05:a2:3b:f4:e5:c1:24:33:77:06:bc:eb:85:87:
f1:db:af:55:e1:49:70:1b:d1:af:dc:79:00:03:40:
ff:3d:4d:53:22:01:66:55:92:19:18:8a:ef:95:0e:
ed:e8:90:ca:9b:65:a0:9c:d9:f0:5e:68:04:3b:0f:
e6:06:c8:1a:aa:18:fc:69:98:de:bd:16:cb:ba:0f:
55:ca:2a:96:ac:5d:60:ea:c9:b1:19:0c:3b:f1:77:
b5:ea:7d:e0:cf:64:dc:f0:96:84:5b:a7:43:4f:4d:
f4:d5:20:c3:7c:ec:a8:86:d9:ad:f4:47:d5:ba:64:
47:8b:32:35:22:d7:45:85:ee:50:f8:10:09:fc:e2:
4f:87:94:dc:11:31:d0:24:91:22:30:3a:a9:05:25:
65:6b:1e:23:8d:37:30:37:5d:0c:f5:59:32:95:96:
31:bc:50:1e:2a:79:f9:e6:4f:d9:3f:ee:e2:6e:0e:
46:ed:d3:e2:16:a6:f9:1d:1d:94:c9:b5:f6:ef:b3:
b9:45:36:5b:9f:b8:d7:4a:7d:f6:f3:40:1c:62:1b:
85:80:d1:46:04:ac:6d:f6:4a:c7:07:4d:84:1c:c5:
57:3c:0e:e4:b3:3c:0c:a4:9e:d7:0f:f5:0c:cd:ee:
3f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:EA:BC:19:C9:4F:F4:F6:42:61:B2:55:41:D5:31:0C:D5:F7:37:72
X509v3 Authority Key Identifier:
keyid:0A:20:5E:1E:92:5E:E3:06:81:B3:38:EF:41:B0:93:9B:89:AE:8F:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3FC5A7998A9BECC6EB7251611FF8F04BFF65CDD862A8D5C6CE86542753A77108/0/0A205E1E925EE30681B338EF41B0939B89AE8FB5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0A205E1E925EE30681B338EF41B0939B89AE8FB5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3FC5A7998A9BECC6EB7251611FF8F04BFF65CDD862A8D5C6CE86542753A77108/0/34352e3137332e3136382e302f32322d3234203d3e203532333939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.173.168.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:38:d8:5e:8e:c5:81:85:d3:d5:92:6c:ca:49:8e:f0:f0:49:
17:b0:89:04:79:ac:4f:88:1e:78:aa:76:4d:e9:7f:03:e9:1c:
ec:71:41:a2:12:43:bb:c7:06:57:bf:d6:5f:79:e1:f1:4a:55:
e6:29:75:88:f4:d2:9e:a6:f1:15:cf:d1:ec:81:9a:55:83:00:
1b:5e:66:a3:55:6a:b1:c8:f0:66:5d:48:0b:9b:6e:e4:6a:9f:
94:2f:08:21:52:29:86:d8:a7:5d:58:84:50:c5:e3:ae:d3:4b:
c8:0b:11:6b:62:f5:ce:92:5d:29:a4:6a:75:d0:a4:2c:b8:13:
f1:dc:f3:84:5a:07:78:0f:68:fb:fc:a5:1d:1c:dc:9b:ca:be:
0c:9d:f5:83:d6:24:d6:98:3d:6a:37:a2:ff:8b:7b:f9:5b:84:
08:9c:86:78:d1:8c:b7:89:8c:fe:da:57:9c:53:59:7a:ad:eb:
04:7d:2a:bd:1d:29:b2:56:70:6e:3b:43:85:aa:4b:55:6a:4c:
1c:d0:4a:ea:0b:db:cf:de:63:dc:41:9f:2c:a7:d3:80:e9:78:
19:18:2f:9e:59:3e:dd:b7:c6:09:e7:e5:b6:74:39:a8:bc:d8:
af:5b:be:c4:b5:bc:be:28:08:4f:8b:21:72:72:8e:1d:d4:3a:
dc:1f:04:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:58 2025 by rpki-client