
Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/46AA70DCBED89305C56286B2D479399AC5133D09597ACEEF8837E4E6ED78BDB5/0/3137302e3234372e3133362e302f32322d3234203d3e20323634373830.roa
File: 3137302e3234372e3133362e302f32322d3234203d3e20323634373830.roa (raw, json)
Hash identifier: I2ua20SVmTvexQDgDcx13C8HeWOZcfaDBSEHTSWdNRk=
Subject key identifier: 2E:FF:AA:17:F2:DF:0C:3F:55:1A:1E:C4:67:8D:D5:CE:49:40:A0:94
Certificate issuer: /CN=20B9C47C5E606454FC314AD7D8CD786FB8049FF1
Certificate serial: 1344B95E4494771395A59AB2FC00E7DA6D92AE47
Authority key identifier: 20:B9:C4:7C:5E:60:64:54:FC:31:4A:D7:D8:CD:78:6F:B8:04:9F:F1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20B9C47C5E606454FC314AD7D8CD786FB8049FF1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/46AA70DCBED89305C56286B2D479399AC5133D09597ACEEF8837E4E6ED78BDB5/0/3137302e3234372e3133362e302f32322d3234203d3e20323634373830.roa
Signing time: Tue 04 Feb 2025 18:26:08 +0000
ROA not before: Tue 04 Feb 2025 18:21:08 +0000
ROA not after: Tue 03 Feb 2026 18:26:08 +0000
asID: 264780
IP address blocks: 170.247.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:44:b9:5e:44:94:77:13:95:a5:9a:b2:fc:00:e7:da:6d:92:ae:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20B9C47C5E606454FC314AD7D8CD786FB8049FF1
Validity
Not Before: Feb 4 18:21:08 2025 GMT
Not After : Feb 3 18:26:08 2026 GMT
Subject: CN=2EFFAA17F2DF0C3F551A1EC4678DD5CE4940A094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:0c:7a:12:aa:c6:0a:8d:65:38:f5:85:6f:ad:
86:76:9b:3c:a4:fa:40:93:75:bf:40:1f:c3:98:13:
21:86:47:7e:13:fc:2b:44:e4:fe:5d:17:08:62:01:
d6:1f:c7:85:50:59:53:4a:7e:42:ea:1c:8d:38:37:
25:82:f2:df:e0:cb:b4:99:31:41:86:ea:38:3d:b5:
32:e8:66:23:a7:ab:a1:24:69:c0:30:df:4a:2b:42:
82:6e:4d:bf:0c:fb:20:e9:63:ce:ae:d8:02:3f:96:
43:0d:cf:58:51:7b:fe:8a:df:0f:f5:ac:d9:51:38:
9e:b9:da:82:2f:54:f0:07:da:62:da:7d:75:3a:8e:
f4:76:a6:a3:fc:54:9f:be:13:87:19:72:a6:05:50:
d2:56:3e:94:1f:01:fe:8a:c8:13:4f:c1:53:42:66:
20:9a:26:41:2c:e3:ae:c1:db:8f:6e:50:1a:d7:99:
13:0a:4f:a3:19:b3:34:72:d6:07:e7:fd:1c:f7:7b:
41:66:10:96:e8:e4:f5:8c:e5:20:a9:cd:d3:a3:5c:
2d:39:b9:73:22:7b:68:c6:55:ef:d2:68:29:8c:ad:
23:c3:2d:e6:ff:a1:ec:9d:05:63:81:78:64:9b:1b:
8e:3f:58:14:e4:bb:a4:64:cf:eb:6f:24:60:84:4a:
44:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:FF:AA:17:F2:DF:0C:3F:55:1A:1E:C4:67:8D:D5:CE:49:40:A0:94
X509v3 Authority Key Identifier:
keyid:20:B9:C4:7C:5E:60:64:54:FC:31:4A:D7:D8:CD:78:6F:B8:04:9F:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/46AA70DCBED89305C56286B2D479399AC5133D09597ACEEF8837E4E6ED78BDB5/0/20B9C47C5E606454FC314AD7D8CD786FB8049FF1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20B9C47C5E606454FC314AD7D8CD786FB8049FF1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/46AA70DCBED89305C56286B2D479399AC5133D09597ACEEF8837E4E6ED78BDB5/0/3137302e3234372e3133362e302f32322d3234203d3e20323634373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.247.136.0/22
Signature Algorithm: sha256WithRSAEncryption
80:3a:d1:bc:bb:dc:b1:90:39:e2:f2:ed:90:15:1a:f1:f8:a6:
79:90:f0:7d:ce:d9:d6:7e:69:2f:84:ac:25:b9:ce:de:24:90:
f2:4c:18:67:d5:d5:42:44:f6:01:7b:ad:7d:8e:0b:d5:84:36:
8d:18:a3:8c:58:6b:33:29:5b:dc:30:78:cd:4b:c5:aa:cd:04:
ed:d9:34:98:5a:f6:e0:35:25:28:73:a9:da:be:b6:e0:b6:bd:
4c:97:c7:1b:bd:95:a9:9d:86:d7:31:b5:9a:57:83:fb:ce:61:
7d:99:e5:1c:34:53:0c:f2:dd:bb:ea:77:6a:d4:d5:51:26:e6:
af:23:cb:9d:06:14:2d:59:a2:45:34:2a:60:28:9e:40:c8:f1:
8d:87:a7:36:48:aa:fa:42:cb:a6:80:1f:a1:7d:10:72:41:4f:
2f:fd:5b:36:3b:ee:47:25:c1:0d:1a:57:4b:ab:f0:f9:2a:97:
31:b1:8b:3e:04:57:be:c3:b4:aa:63:37:a5:57:a2:65:1b:0e:
98:07:43:7e:6f:78:94:7d:0e:57:c4:95:91:f2:48:33:91:92:
7e:c2:b9:99:a3:13:2a:fc:11:12:41:24:e2:ed:dc:8f:71:6e:
4b:95:ef:5a:c7:ef:b3:bb:da:0e:ec:42:47:85:8e:2d:d6:cd:
95:a2:5f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 13 18:23:05 2025 by rpki-client