Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4CEEE0FFE2EBBF33612BC0BDD3719D1E9BF936D963852F94917F42671184DE54/0/34352e3232392e33322e302f32322d3234203d3e203238303037.roa
File: 34352e3232392e33322e302f32322d3234203d3e203238303037.roa (raw, json)
Hash identifier: 8CmGauGhDld3ur2dXgXRNsopRJJWHNLKunjjG5tX9F8=
Subject key identifier: 60:66:D2:9B:1F:E0:D3:32:77:C0:EC:28:D7:E7:7F:3F:9E:EA:04:36
Certificate issuer: /CN=F9F5689FBCDF9A30610BE707A1430F2B1478CF34
Certificate serial: 288D7FB9F3917AD480FE4A7C4DBCAA439DDB80EB
Authority key identifier: F9:F5:68:9F:BC:DF:9A:30:61:0B:E7:07:A1:43:0F:2B:14:78:CF:34
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F9F5689FBCDF9A30610BE707A1430F2B1478CF34.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4CEEE0FFE2EBBF33612BC0BDD3719D1E9BF936D963852F94917F42671184DE54/0/34352e3232392e33322e302f32322d3234203d3e203238303037.roa
Signing time: Tue 04 Feb 2025 18:27:46 +0000
ROA not before: Tue 04 Feb 2025 18:22:46 +0000
ROA not after: Tue 03 Feb 2026 18:27:46 +0000
asID: 28007
IP address blocks: 45.229.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:8d:7f:b9:f3:91:7a:d4:80:fe:4a:7c:4d:bc:aa:43:9d:db:80:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F9F5689FBCDF9A30610BE707A1430F2B1478CF34
Validity
Not Before: Feb 4 18:22:46 2025 GMT
Not After : Feb 3 18:27:46 2026 GMT
Subject: CN=6066D29B1FE0D33277C0EC28D7E77F3F9EEA0436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2a:8a:a4:56:71:42:84:81:13:f8:a7:8b:9d:
84:9d:df:a4:9a:8d:b2:27:4a:f5:e4:7e:c5:91:b3:
d0:17:b9:f2:19:2f:08:7c:51:f7:85:7e:7e:05:d7:
15:af:61:2a:1e:07:77:7d:57:b1:94:76:93:2f:7b:
5b:62:b4:45:a0:27:f0:08:e9:c9:f1:ac:73:e0:92:
c3:b7:3b:70:9b:83:62:be:7b:2d:d2:b1:50:07:f0:
d4:f8:8d:07:ff:90:de:92:f2:38:4b:ad:80:9e:c0:
fc:2e:46:56:c5:ff:cd:3c:ca:ec:f1:c1:1c:da:28:
51:e0:8d:10:2a:54:65:f0:2f:5b:7d:dc:8f:b0:03:
7a:a8:92:6a:67:c8:23:5a:e3:20:54:c1:b8:a5:cb:
d4:56:b5:a2:9f:ec:8a:42:41:a0:ae:5e:fb:d9:a9:
5d:db:6f:7a:6b:48:34:6e:af:1f:04:a2:d5:5a:6d:
87:cc:9e:05:d8:08:2d:bd:8e:8e:d1:c3:f7:72:bc:
0c:12:4d:92:6d:7b:85:17:02:ae:77:17:1c:d4:df:
42:7b:66:4a:30:75:bf:6e:ec:47:71:e8:3f:70:21:
60:4f:58:a6:5a:73:24:40:84:fe:dd:73:74:c0:40:
9b:47:eb:02:df:1f:aa:50:5b:be:13:d2:ce:2d:7c:
ca:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:66:D2:9B:1F:E0:D3:32:77:C0:EC:28:D7:E7:7F:3F:9E:EA:04:36
X509v3 Authority Key Identifier:
keyid:F9:F5:68:9F:BC:DF:9A:30:61:0B:E7:07:A1:43:0F:2B:14:78:CF:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4CEEE0FFE2EBBF33612BC0BDD3719D1E9BF936D963852F94917F42671184DE54/0/F9F5689FBCDF9A30610BE707A1430F2B1478CF34.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F9F5689FBCDF9A30610BE707A1430F2B1478CF34.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4CEEE0FFE2EBBF33612BC0BDD3719D1E9BF936D963852F94917F42671184DE54/0/34352e3232392e33322e302f32322d3234203d3e203238303037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.229.32.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:42:a3:45:38:5e:73:01:f7:59:d2:76:05:30:c5:b2:86:3a:
d5:b5:39:bc:ec:12:3c:61:af:71:70:50:fa:98:fa:87:5a:da:
3b:8a:2f:9c:83:cb:71:c1:21:06:dc:f3:09:28:ff:6d:4b:a3:
b5:57:47:fa:b4:4a:e3:e8:45:25:d5:72:60:f9:7e:cf:f3:cd:
aa:d7:65:e9:e7:71:dd:37:bc:2c:e8:39:51:e8:66:db:c6:c6:
49:cc:ee:89:ba:15:ed:19:7c:f1:cb:ad:8a:3d:f6:fe:9d:f7:
06:a3:bc:89:33:3f:81:b9:b1:31:e9:56:61:3d:5c:93:39:e6:
3b:dc:d8:bd:90:37:ac:f4:a9:eb:fe:50:e4:7d:34:8e:b6:b7:
33:f4:e2:fc:32:a6:3a:cc:25:62:4b:31:87:3e:03:90:54:03:
a2:b2:29:c8:6f:ae:80:91:07:f2:e3:23:ab:6b:7b:9c:da:61:
b9:85:94:d3:48:bc:97:d5:fe:03:cd:6c:e5:6f:54:29:ba:c9:
e2:55:dc:44:69:61:af:c2:e1:43:91:fe:50:8e:ee:af:61:43:
80:a2:7a:55:73:0c:4d:d7:23:8f:e2:a6:07:de:d3:46:97:e0:
1b:f2:c6:46:bb:b2:59:8d:53:71:51:d2:93:fa:43:bd:f6:4a:
83:79:2c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:11 2025 by rpki-client