Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4DB7C5AAE9676CA8208B3D8721D1314553F1FC4BE5B500B3A8955E9362E8C00F/0/34352e342e3230342e302f32332d3233203d3e20323034333030.roa
File: 34352e342e3230342e302f32332d3233203d3e20323034333030.roa (raw, json)
Hash identifier: nx1yLcuAdbgK4NQlgbj03LkwyRCxGZN5ME6T9LZXFi4=
Subject key identifier: D7:40:35:BE:33:DC:7A:F4:2D:F5:CD:AE:03:D4:3C:39:9B:32:B0:EB
Certificate issuer: /CN=B4CF94EC7154D2BC51066D5BB556A7589514A5C6
Certificate serial: 63DF028E8647A2D43658244A0887342B5E73B5C0
Authority key identifier: B4:CF:94:EC:71:54:D2:BC:51:06:6D:5B:B5:56:A7:58:95:14:A5:C6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B4CF94EC7154D2BC51066D5BB556A7589514A5C6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4DB7C5AAE9676CA8208B3D8721D1314553F1FC4BE5B500B3A8955E9362E8C00F/0/34352e342e3230342e302f32332d3233203d3e20323034333030.roa
Signing time: Tue 04 Feb 2025 18:21:55 +0000
ROA not before: Tue 04 Feb 2025 18:16:55 +0000
ROA not after: Tue 03 Feb 2026 18:21:55 +0000
asID: 204300
IP address blocks: 45.4.204.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:df:02:8e:86:47:a2:d4:36:58:24:4a:08:87:34:2b:5e:73:b5:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4CF94EC7154D2BC51066D5BB556A7589514A5C6
Validity
Not Before: Feb 4 18:16:55 2025 GMT
Not After : Feb 3 18:21:55 2026 GMT
Subject: CN=D74035BE33DC7AF42DF5CDAE03D43C399B32B0EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e7:18:4b:90:a7:9d:31:85:be:de:eb:f7:da:
bf:15:d4:2c:a5:5d:43:2e:e9:c5:2e:fb:6d:1f:26:
a6:44:a1:2d:c9:92:3c:4f:d4:9c:88:a5:a9:ae:7e:
34:92:59:38:c4:e2:ec:74:0e:71:a5:c2:7a:9e:4c:
1e:1a:5e:4a:16:0d:64:82:ec:b2:cc:33:0d:88:8b:
51:26:ea:41:cc:2b:b4:47:a5:8d:d0:ea:05:2b:71:
54:fe:80:50:64:b4:a1:92:e2:be:f6:99:65:25:60:
b3:fb:3c:22:7f:1d:3a:35:3f:f0:9e:95:12:2b:52:
0c:5d:e7:13:b6:58:e3:16:99:ee:29:91:93:18:1d:
0f:4f:ae:1a:05:af:8a:c7:08:38:8e:ce:e6:5c:54:
81:a7:5f:1b:27:98:6c:fb:45:bd:39:98:79:0d:e0:
63:cb:dc:60:3d:66:b0:b6:07:33:fe:72:0e:1b:ba:
18:fd:dc:83:e8:a1:b6:e1:ec:fc:97:11:48:f6:61:
29:bd:7a:cd:15:a8:0f:b5:e0:80:e3:67:11:59:12:
ad:d5:b8:87:62:b6:88:2f:fb:31:3b:50:73:a1:a0:
99:aa:b5:b0:70:ad:24:bc:10:24:51:d7:26:18:ac:
43:d4:31:72:08:fd:98:98:1c:3d:03:04:a6:77:9c:
cf:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:40:35:BE:33:DC:7A:F4:2D:F5:CD:AE:03:D4:3C:39:9B:32:B0:EB
X509v3 Authority Key Identifier:
keyid:B4:CF:94:EC:71:54:D2:BC:51:06:6D:5B:B5:56:A7:58:95:14:A5:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4DB7C5AAE9676CA8208B3D8721D1314553F1FC4BE5B500B3A8955E9362E8C00F/0/B4CF94EC7154D2BC51066D5BB556A7589514A5C6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B4CF94EC7154D2BC51066D5BB556A7589514A5C6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4DB7C5AAE9676CA8208B3D8721D1314553F1FC4BE5B500B3A8955E9362E8C00F/0/34352e342e3230342e302f32332d3233203d3e20323034333030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.204.0/23
Signature Algorithm: sha256WithRSAEncryption
42:74:d9:81:ad:30:83:19:fd:79:c0:47:2c:8b:4f:76:0c:05:
06:1f:8f:71:ae:6e:e4:37:1b:49:91:3b:4c:e0:43:10:93:86:
6a:02:0e:a9:13:61:8e:70:98:82:9c:78:19:b7:c8:9b:e1:ea:
92:31:9e:d1:35:80:f4:79:ac:ca:e1:e5:5b:c6:82:b1:11:1a:
d1:7b:96:d4:3c:60:c3:57:26:1f:b3:db:bf:e8:f1:68:86:26:
0a:67:ac:8f:09:97:87:12:4c:c7:f1:02:8e:f9:44:9d:91:10:
6b:db:29:26:1f:53:66:5d:ba:20:e4:e7:5e:63:a5:f0:46:89:
12:fa:cc:e2:a7:45:ba:13:dd:1c:f7:41:53:c9:54:12:86:a4:
3d:dd:b5:a3:43:e7:13:25:a3:3b:30:eb:0c:42:9e:16:75:6a:
58:a6:b1:7a:81:b0:8e:da:5a:1c:e7:bd:ab:39:b3:29:6d:c1:
b2:44:b1:e5:b8:a3:20:d8:18:ef:f3:55:95:54:4d:13:26:6e:
fd:71:ce:12:9d:6d:7a:5f:a2:36:7c:58:46:bf:ca:80:d1:72:
9c:3f:75:1b:7c:d4:4e:b8:a3:5b:ca:7c:9b:1d:34:30:63:1b:
37:18:62:13:4b:df:a1:a3:35:6d:5f:32:1b:10:97:16:1a:5d:
37:17:09:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:56 2025 by rpki-client