Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4BECB9E2B3F5A22E924C370D2AD51C87A8EB028135C17D0BBB1C79BE10BCF52C/0/34352e37302e3230302e302f32332d3234203d3e203532343638.roa
File: 34352e37302e3230302e302f32332d3234203d3e203532343638.roa (raw, json)
Hash identifier: rmlXmPIbq/IijzqTzdNpwENDHdRIeQvRyToN8fwK2ec=
Subject key identifier: E9:04:46:AF:29:35:CE:AC:C4:6C:13:D3:3F:41:EA:3E:78:71:67:BC
Certificate issuer: /CN=E74DAABF7E260E0A0AAD795F69C95998705429E3
Certificate serial: 7407DC741AB05B360F7F5DFF45D43D0156E8116A
Authority key identifier: E7:4D:AA:BF:7E:26:0E:0A:0A:AD:79:5F:69:C9:59:98:70:54:29:E3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E74DAABF7E260E0A0AAD795F69C95998705429E3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4BECB9E2B3F5A22E924C370D2AD51C87A8EB028135C17D0BBB1C79BE10BCF52C/0/34352e37302e3230302e302f32332d3234203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:32:11 +0000
ROA not before: Tue 04 Feb 2025 18:27:11 +0000
ROA not after: Tue 03 Feb 2026 18:32:11 +0000
asID: 52468
IP address blocks: 45.70.200.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:07:dc:74:1a:b0:5b:36:0f:7f:5d:ff:45:d4:3d:01:56:e8:11:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E74DAABF7E260E0A0AAD795F69C95998705429E3
Validity
Not Before: Feb 4 18:27:11 2025 GMT
Not After : Feb 3 18:32:11 2026 GMT
Subject: CN=E90446AF2935CEACC46C13D33F41EA3E787167BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ce:7f:12:53:20:83:5c:24:64:a2:c3:c3:e1:
1f:45:26:e2:bb:ad:f6:d3:1c:41:57:c2:65:86:71:
11:07:42:fe:e1:e5:36:42:84:12:8a:47:77:ce:c0:
e6:a9:e7:33:54:13:da:bc:a5:31:7f:cf:8b:0d:54:
c3:26:61:23:9b:e8:91:d3:6a:d7:b9:db:f3:20:99:
62:93:c9:bc:95:50:15:c2:5e:97:40:81:e6:96:cc:
1c:7d:3d:22:c8:9b:20:0d:10:e7:47:d7:6d:30:2f:
2a:5e:63:c3:4b:ff:0c:59:11:c7:9f:a0:8d:47:49:
a0:17:ad:d5:2d:36:b1:a5:7a:37:82:c7:1b:b5:59:
7d:7f:d7:df:5b:25:62:5d:33:ac:6f:98:52:56:c4:
f2:35:af:84:23:97:13:04:10:4d:4c:da:ba:1d:98:
22:9a:89:b1:14:77:85:8a:de:a2:db:ab:0b:df:95:
82:21:83:96:56:bd:51:56:cf:57:c6:f8:56:c6:7b:
b9:1e:7e:ed:6d:08:57:22:8b:5d:a7:a7:1a:c5:c1:
d2:ee:5a:88:90:b5:8a:48:3f:53:59:05:63:0a:8f:
ef:19:a9:70:4c:b5:19:6b:49:ca:e0:6d:a0:6a:bc:
36:31:6d:ff:39:3e:90:33:34:5c:65:de:60:70:a6:
74:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:04:46:AF:29:35:CE:AC:C4:6C:13:D3:3F:41:EA:3E:78:71:67:BC
X509v3 Authority Key Identifier:
keyid:E7:4D:AA:BF:7E:26:0E:0A:0A:AD:79:5F:69:C9:59:98:70:54:29:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4BECB9E2B3F5A22E924C370D2AD51C87A8EB028135C17D0BBB1C79BE10BCF52C/0/E74DAABF7E260E0A0AAD795F69C95998705429E3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E74DAABF7E260E0A0AAD795F69C95998705429E3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4BECB9E2B3F5A22E924C370D2AD51C87A8EB028135C17D0BBB1C79BE10BCF52C/0/34352e37302e3230302e302f32332d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.70.200.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:3b:b3:1f:d2:97:81:7e:68:38:ac:29:36:23:c4:a8:85:4b:
57:47:95:56:67:18:5d:b6:ec:bd:00:4e:5d:7b:39:f1:b7:dc:
2d:4e:2f:9e:b1:c7:fe:4d:9c:2d:e0:da:87:65:2c:66:61:b0:
3b:a2:a8:38:c4:2b:90:0f:0f:7c:2f:a6:14:b4:c6:f0:76:d2:
4f:1c:53:a6:88:ac:7d:10:7b:d3:ed:3f:8b:61:e6:13:a9:a0:
f3:19:eb:6e:e6:63:e0:9e:4b:7c:10:3f:55:c5:0b:13:e7:cf:
85:bc:67:25:93:8c:81:16:8b:9d:af:77:ea:d9:db:a4:30:12:
02:9e:3d:44:08:9d:52:2a:8a:fd:c0:3a:e8:80:31:da:e3:1a:
12:65:b3:85:61:d8:7f:55:d8:46:5c:98:57:15:26:db:2e:dc:
6f:41:72:1a:c5:f6:8b:63:ef:37:38:90:5d:1f:98:20:42:ad:
61:b3:22:13:c7:1c:a1:6c:27:bf:5e:c4:65:f9:f6:9f:06:60:
53:4d:71:77:42:59:f6:a6:5a:d2:dc:21:db:a9:32:c0:08:c5:
63:fe:18:c7:d8:c7:ca:20:43:ca:0d:4d:9d:0a:55:9a:89:02:
67:12:5a:67:35:98:55:76:39:3c:2e:9f:7e:4d:c4:48:70:5e:
94:5f:06:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:06 2025 by rpki-client