Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/40F8D6DA61C8DECD5A1243993CF904D26C9DA8ED1BA3C995A125A4A88C01EF1D/0/34352e3233342e38362e302f32342d3234203d3e20323636373832.roa
File: 34352e3233342e38362e302f32342d3234203d3e20323636373832.roa (raw, json)
Hash identifier: z5mzjZkHifdGlViEIsGfefocMgWfcicH2JcpqGYKYio=
Subject key identifier: 7F:73:E9:61:B0:10:FF:7E:00:53:26:22:DD:2A:7D:85:50:9E:90:26
Certificate issuer: /CN=FF06C33FB0001EE28FFC3647C9C6B9FD0B0A39A7
Certificate serial: 45C617FFE166EF8DE961354EA9D36AC2F7582DBB
Authority key identifier: FF:06:C3:3F:B0:00:1E:E2:8F:FC:36:47:C9:C6:B9:FD:0B:0A:39:A7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FF06C33FB0001EE28FFC3647C9C6B9FD0B0A39A7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/40F8D6DA61C8DECD5A1243993CF904D26C9DA8ED1BA3C995A125A4A88C01EF1D/0/34352e3233342e38362e302f32342d3234203d3e20323636373832.roa
Signing time: Tue 04 Feb 2025 18:52:03 +0000
ROA not before: Tue 04 Feb 2025 18:47:03 +0000
ROA not after: Tue 03 Feb 2026 18:52:03 +0000
asID: 266782
IP address blocks: 45.234.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:c6:17:ff:e1:66:ef:8d:e9:61:35:4e:a9:d3:6a:c2:f7:58:2d:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF06C33FB0001EE28FFC3647C9C6B9FD0B0A39A7
Validity
Not Before: Feb 4 18:47:03 2025 GMT
Not After : Feb 3 18:52:03 2026 GMT
Subject: CN=7F73E961B010FF7E00532622DD2A7D85509E9026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ad:94:04:a0:26:57:e3:a6:38:fd:a5:47:8d:
e3:68:0f:d9:77:a4:50:fc:98:d9:bd:ae:5a:8a:d3:
04:82:20:f8:e0:ba:b4:80:e8:81:b1:f1:0f:7e:e5:
b5:b0:33:b2:df:63:0c:69:18:ca:30:f6:23:36:e1:
57:34:5f:c8:34:68:91:ce:3a:01:22:a1:b1:fa:36:
6d:74:6a:21:a1:01:b3:1e:36:e2:7a:4e:0c:08:a8:
85:0d:20:26:dd:c9:38:6d:49:c4:4d:a6:74:81:50:
36:98:25:d6:aa:06:a6:38:b7:04:d6:a7:e0:3a:60:
6d:6a:da:c0:96:9d:75:c0:50:aa:93:08:70:01:59:
ef:97:ab:81:ae:8a:a8:15:48:36:57:a3:dc:40:96:
83:be:7a:53:1d:d7:84:61:b5:93:8c:cf:b7:46:ea:
44:c8:91:ff:d7:4a:7c:6f:dd:d1:77:98:88:58:aa:
5d:b0:9a:c1:f6:84:cf:b7:c9:a3:97:70:c3:6f:09:
e2:1c:23:fc:5d:fb:6b:8d:89:a2:6b:d8:c8:cf:65:
17:d1:ea:06:97:b9:21:d6:a8:55:bd:9b:f7:a8:77:
97:2c:e7:96:0d:90:2d:f5:f2:16:50:d9:40:2c:a8:
9d:2f:a7:dd:8a:22:c4:12:74:9d:88:c5:4d:6d:a1:
c8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:73:E9:61:B0:10:FF:7E:00:53:26:22:DD:2A:7D:85:50:9E:90:26
X509v3 Authority Key Identifier:
keyid:FF:06:C3:3F:B0:00:1E:E2:8F:FC:36:47:C9:C6:B9:FD:0B:0A:39:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/40F8D6DA61C8DECD5A1243993CF904D26C9DA8ED1BA3C995A125A4A88C01EF1D/0/FF06C33FB0001EE28FFC3647C9C6B9FD0B0A39A7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FF06C33FB0001EE28FFC3647C9C6B9FD0B0A39A7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/40F8D6DA61C8DECD5A1243993CF904D26C9DA8ED1BA3C995A125A4A88C01EF1D/0/34352e3233342e38362e302f32342d3234203d3e20323636373832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.234.86.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:a1:98:54:61:a2:c8:15:93:c7:c8:77:d4:72:61:dd:49:71:
25:55:38:5c:28:20:f9:62:dd:c0:ce:89:56:d4:11:98:b9:d2:
a8:59:91:4d:86:b7:ca:3e:40:45:4e:53:ed:1e:7a:16:51:f1:
6d:2e:6d:ba:2d:b8:e9:52:0b:2c:e1:87:10:47:fe:90:94:b3:
89:8d:36:9b:18:a8:cb:23:51:17:3d:fb:fc:63:0b:25:66:12:
e9:5f:6b:14:a2:79:aa:ce:7d:fd:32:5c:0d:c0:ee:63:d8:6a:
bb:25:fb:16:f0:3b:13:69:52:75:43:84:7e:af:1f:f9:80:30:
ed:72:54:54:d9:14:84:1c:1d:1b:e9:69:8e:26:af:d0:9e:d1:
be:84:3d:4b:ca:ab:4d:78:bb:1a:57:c5:ac:cd:a6:db:0d:df:
04:0b:b4:94:5a:ca:ce:03:6d:28:0e:61:af:02:64:d2:5f:be:
67:5a:54:f6:97:93:c5:91:d5:ce:57:0c:8a:5e:c1:03:fb:bc:
36:5b:85:b7:65:a2:25:f8:71:a1:b3:dc:59:d3:c7:e9:60:44:
a0:5b:f2:fd:5a:61:31:a6:39:bb:1c:c0:9f:9e:e7:3e:0a:55:
f0:cb:3c:fe:77:36:33:f2:a8:d5:3f:0e:de:f1:3b:bf:1d:e8:
1a:9c:11:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:30:46 2025 by rpki-client