Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4ED6EB0CD247E17FF0A8DCE6B46C64555E8B6E899F5580B5E4C02BE5DC9F96EF/0/3136382e3139362e3234302e302f32322d3232203d3e20323633373434.roa
File: 3136382e3139362e3234302e302f32322d3232203d3e20323633373434.roa (raw, json)
Hash identifier: Vn1cDkZmbd0RXuyPNryeV0C8I0VUqB4ihW33tJx9T3o=
Subject key identifier: 77:02:D6:49:20:7B:0C:73:AD:3E:BD:F6:38:0A:22:C0:D5:3A:80:6D
Certificate issuer: /CN=DB11B7707911064B45F88A13AD77795D0BCE5CC6
Certificate serial: 577F4AF7E716564DB4DC790CF3D9FBE602D7AA67
Authority key identifier: DB:11:B7:70:79:11:06:4B:45:F8:8A:13:AD:77:79:5D:0B:CE:5C:C6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DB11B7707911064B45F88A13AD77795D0BCE5CC6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4ED6EB0CD247E17FF0A8DCE6B46C64555E8B6E899F5580B5E4C02BE5DC9F96EF/0/3136382e3139362e3234302e302f32322d3232203d3e20323633373434.roa
Signing time: Tue 04 Feb 2025 18:28:57 +0000
ROA not before: Tue 04 Feb 2025 18:23:57 +0000
ROA not after: Tue 03 Feb 2026 18:28:57 +0000
asID: 263744
IP address blocks: 168.196.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:7f:4a:f7:e7:16:56:4d:b4:dc:79:0c:f3:d9:fb:e6:02:d7:aa:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB11B7707911064B45F88A13AD77795D0BCE5CC6
Validity
Not Before: Feb 4 18:23:57 2025 GMT
Not After : Feb 3 18:28:57 2026 GMT
Subject: CN=7702D649207B0C73AD3EBDF6380A22C0D53A806D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c0:d4:21:79:86:2b:73:2f:57:0e:fd:a9:9e:
95:6d:ca:3a:b1:3c:ae:57:76:45:3a:81:31:ce:bb:
0b:4d:fb:c4:48:8d:33:f1:66:ba:1b:60:97:2f:dc:
a1:a3:f7:e7:f9:e8:4a:2b:fc:90:13:c0:0c:87:76:
6d:0c:9d:8d:1a:cd:9c:6a:47:3a:ab:34:24:70:14:
94:e9:de:15:39:66:6f:3c:c5:50:6a:6c:06:eb:ed:
80:63:92:0e:f3:7f:70:9e:7a:6b:60:5a:5e:8c:e1:
9a:99:cb:78:b7:47:2d:55:b7:d2:3e:37:e7:67:25:
97:71:7d:0b:e8:3c:d7:a9:d7:56:03:ba:da:15:cb:
25:df:4d:e0:94:75:0b:00:7e:84:f1:e1:82:0d:9c:
b5:77:f6:47:a9:df:7b:82:b8:d0:5e:c3:52:86:6e:
1f:1f:13:c6:63:10:0c:5b:39:0f:8c:65:45:3d:66:
5d:35:93:c6:8f:d7:30:7a:6b:c1:16:71:b7:6b:dd:
e0:c8:8a:fd:fc:3e:7c:95:03:35:9e:3e:0d:2e:ae:
47:ac:5f:44:48:06:2f:3c:82:a3:2a:4d:ba:cf:5e:
8b:f4:a2:83:9c:7a:fb:f4:0f:84:e0:11:49:a0:6a:
1d:94:5e:a9:6f:4f:6a:0b:9d:c6:58:e2:a6:fd:84:
64:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:02:D6:49:20:7B:0C:73:AD:3E:BD:F6:38:0A:22:C0:D5:3A:80:6D
X509v3 Authority Key Identifier:
keyid:DB:11:B7:70:79:11:06:4B:45:F8:8A:13:AD:77:79:5D:0B:CE:5C:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4ED6EB0CD247E17FF0A8DCE6B46C64555E8B6E899F5580B5E4C02BE5DC9F96EF/0/DB11B7707911064B45F88A13AD77795D0BCE5CC6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DB11B7707911064B45F88A13AD77795D0BCE5CC6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4ED6EB0CD247E17FF0A8DCE6B46C64555E8B6E899F5580B5E4C02BE5DC9F96EF/0/3136382e3139362e3234302e302f32322d3232203d3e20323633373434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.196.240.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:b2:ca:d5:8f:9b:e5:a8:d9:74:a8:bf:29:e6:9c:1f:b0:00:
10:0d:e3:23:89:80:7e:ac:0f:1f:fa:35:40:9c:bb:b1:71:4c:
5a:89:b0:17:2e:b4:df:ba:b4:19:10:16:ab:a0:0b:8a:8f:cb:
0b:1d:39:b5:3d:db:a2:14:75:c0:b4:85:65:be:cc:e0:e3:27:
5a:0b:af:0d:2f:7f:c3:5c:80:a4:89:bc:e3:d0:29:68:2b:85:
00:cd:be:56:f3:93:2a:77:44:1e:6c:65:ed:60:c2:02:fd:76:
7d:33:cf:d2:24:78:82:c1:29:f5:1c:82:a0:0c:27:90:c0:8c:
1a:17:bd:c5:88:ec:5f:a6:77:32:7e:e6:8f:97:63:ba:8a:54:
4d:94:9f:f2:23:29:58:0e:ac:30:f4:62:02:8f:72:07:50:a6:
70:d3:03:4f:8b:84:dd:ce:6e:c6:df:3d:41:24:b5:69:bc:df:
6b:f5:2b:5f:96:38:13:ac:04:90:08:04:9d:44:92:2a:1f:a8:
40:26:de:89:f4:7f:78:56:3b:4a:b4:ed:dd:cb:00:09:69:75:
d8:35:9c:71:d9:85:3c:c9:55:29:42:1b:0f:52:5e:b8:90:ab:
00:14:65:03:b4:e7:4a:e8:f0:cd:dc:35:a0:4b:a4:75:76:db:
f4:3a:59:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:11:53 2025 by rpki-client