Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3FEF661EC2ABA29EEF3E07E04168ED1D783502C60A99873200BA37F191B44049/0/3137302e3233332e3134342e302f32322d3234203d3e203237383433.roa
File: 3137302e3233332e3134342e302f32322d3234203d3e203237383433.roa (raw, json)
Hash identifier: 2OYXxmclU+zn+8DO74N5fJYMP5Hfgkm2n4bJx3AgWhM=
Subject key identifier: D7:2A:AF:B4:80:41:51:5D:0A:75:C2:F9:15:62:06:06:7F:B4:69:88
Certificate issuer: /CN=1D8A96BE43E9FE347873058CD625D12612C5B798
Certificate serial: 5D74AE6CEA83D2D854E77BF2914FAA7701FB9FC3
Authority key identifier: 1D:8A:96:BE:43:E9:FE:34:78:73:05:8C:D6:25:D1:26:12:C5:B7:98
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1D8A96BE43E9FE347873058CD625D12612C5B798.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3FEF661EC2ABA29EEF3E07E04168ED1D783502C60A99873200BA37F191B44049/0/3137302e3233332e3134342e302f32322d3234203d3e203237383433.roa
Signing time: Tue 04 Feb 2025 18:18:33 +0000
ROA not before: Tue 04 Feb 2025 18:13:33 +0000
ROA not after: Tue 03 Feb 2026 18:18:33 +0000
asID: 27843
IP address blocks: 170.233.144.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:74:ae:6c:ea:83:d2:d8:54:e7:7b:f2:91:4f:aa:77:01:fb:9f:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D8A96BE43E9FE347873058CD625D12612C5B798
Validity
Not Before: Feb 4 18:13:33 2025 GMT
Not After : Feb 3 18:18:33 2026 GMT
Subject: CN=D72AAFB48041515D0A75C2F9156206067FB46988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:72:8b:18:21:93:b8:3c:a7:ad:15:64:c8:20:
df:5b:93:a3:7e:86:65:1b:af:de:8e:e7:cd:e0:03:
a1:5f:e0:77:bc:a9:d3:4d:c4:13:2b:6d:1b:a1:64:
d7:bf:fe:a9:29:46:22:f5:d9:9f:c7:94:63:9b:51:
bf:c7:9c:59:1c:cb:3f:f6:0a:5f:2f:29:a2:2b:8f:
42:8c:64:94:63:74:b5:88:b0:c4:51:cd:14:fd:b8:
f1:c1:5e:d7:5a:eb:64:e0:55:f5:83:ea:90:5b:66:
42:bd:6e:6b:8a:03:9e:55:47:21:ff:be:fd:3a:a5:
0f:27:1b:ce:39:60:de:19:83:4a:0e:a5:fd:da:75:
82:9f:5f:33:d2:82:8b:d6:eb:11:ff:c3:42:9b:8f:
5d:65:f3:8d:ab:70:e9:9b:0e:d2:d2:f9:25:1f:dd:
23:4d:ad:46:f4:a4:b4:86:cc:eb:83:be:c5:8d:9b:
cf:9d:38:ef:88:b5:b2:66:4d:d3:68:d1:e7:26:d0:
31:75:36:db:86:2b:63:b9:0d:14:3f:01:66:1f:8a:
73:e9:2a:1f:f9:fc:d1:56:8b:1c:18:e9:01:34:8a:
71:15:00:c2:7d:ad:89:18:63:97:7e:0c:0a:46:61:
35:8e:9d:68:04:f4:6f:71:5b:af:6f:bf:09:a4:44:
25:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:2A:AF:B4:80:41:51:5D:0A:75:C2:F9:15:62:06:06:7F:B4:69:88
X509v3 Authority Key Identifier:
keyid:1D:8A:96:BE:43:E9:FE:34:78:73:05:8C:D6:25:D1:26:12:C5:B7:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3FEF661EC2ABA29EEF3E07E04168ED1D783502C60A99873200BA37F191B44049/0/1D8A96BE43E9FE347873058CD625D12612C5B798.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1D8A96BE43E9FE347873058CD625D12612C5B798.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3FEF661EC2ABA29EEF3E07E04168ED1D783502C60A99873200BA37F191B44049/0/3137302e3233332e3134342e302f32322d3234203d3e203237383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.144.0/22
Signature Algorithm: sha256WithRSAEncryption
27:d2:4a:dc:c9:03:0d:fd:e2:ce:74:99:58:71:e6:20:ad:04:
c5:80:6b:04:d1:b1:0f:1b:1c:32:3b:38:ee:35:bd:84:3d:00:
fd:89:b8:66:10:79:56:0a:4b:65:89:a7:6b:03:9d:2c:e1:ac:
47:de:4c:6e:8c:43:3a:fa:89:e4:f2:4e:26:6a:f0:0f:1a:49:
7c:e3:0e:71:de:09:7b:a8:14:d9:35:6d:dd:71:f3:c2:ac:fd:
4e:1a:72:ca:ad:75:4d:09:e8:09:f2:d3:55:9e:81:d6:e4:00:
b6:45:18:01:60:2e:46:1b:ea:b6:bc:50:27:4f:1e:84:bf:06:
3a:73:7e:05:5d:67:01:5d:26:c6:15:1b:82:fd:dc:5b:cd:d0:
e0:fc:f1:ae:ed:39:2a:5f:b1:14:41:cf:28:1e:2d:81:d9:e1:
5c:76:9b:cf:bf:72:59:44:b8:18:40:fb:aa:96:ca:e2:84:70:
8e:77:78:75:5e:41:a5:27:67:9f:90:41:76:15:3f:e3:72:a5:
ce:55:7c:95:37:47:22:c8:2c:a0:fd:ca:ea:1b:f8:ba:20:f4:
a2:5a:94:27:ad:a6:33:f8:e5:75:c7:f9:ae:c2:6a:a7:57:6d:
7c:a9:b2:af:8f:a6:36:e5:ec:02:48:42:02:c9:11:de:ed:fb:
60:c3:a7:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:15 2025 by rpki-client