Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4F3638C8DF693002EB8C051A778FCFE2CE757B735E1CFA668B3F601E7CF617D7/0/3137302e38312e3134342e302f32322d3234203d3e20323634383337.roa
File: 3137302e38312e3134342e302f32322d3234203d3e20323634383337.roa (raw, json)
Hash identifier: lRlm9k5NI1Vutod+PMco7PWz3s5bhcsYvNKScmeljRo=
Subject key identifier: 07:08:D3:58:39:BA:FC:B3:87:18:9B:36:C9:49:AD:97:53:66:7B:8C
Certificate issuer: /CN=4F1AF54C46F29B17E758E9F9463DCF9650C71A8F
Certificate serial: 305CE4D82236F83E57891E1367B71FAE8A9A7134
Authority key identifier: 4F:1A:F5:4C:46:F2:9B:17:E7:58:E9:F9:46:3D:CF:96:50:C7:1A:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4F1AF54C46F29B17E758E9F9463DCF9650C71A8F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4F3638C8DF693002EB8C051A778FCFE2CE757B735E1CFA668B3F601E7CF617D7/0/3137302e38312e3134342e302f32322d3234203d3e20323634383337.roa
Signing time: Tue 04 Feb 2025 18:21:28 +0000
ROA not before: Tue 04 Feb 2025 18:16:28 +0000
ROA not after: Tue 03 Feb 2026 18:21:28 +0000
asID: 264837
IP address blocks: 170.81.144.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:5c:e4:d8:22:36:f8:3e:57:89:1e:13:67:b7:1f:ae:8a:9a:71:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4F1AF54C46F29B17E758E9F9463DCF9650C71A8F
Validity
Not Before: Feb 4 18:16:28 2025 GMT
Not After : Feb 3 18:21:28 2026 GMT
Subject: CN=0708D35839BAFCB387189B36C949AD9753667B8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8b:c5:64:0f:01:5f:58:e4:ce:4e:01:ac:ce:
4a:5f:44:6a:6d:c5:40:03:d6:11:cf:c0:31:e5:e0:
f4:35:b7:69:4e:86:f2:b6:a1:bb:63:02:00:59:1c:
16:fc:76:00:b5:79:b5:21:e0:ef:7b:99:84:3e:84:
f4:e6:a7:88:1e:63:79:b0:6d:1d:db:c9:6f:08:06:
33:1c:66:1a:e3:c3:d8:79:c2:0f:35:8b:15:e0:98:
83:aa:22:42:9a:7a:e1:fc:55:83:b2:bd:36:14:0d:
e6:92:89:64:72:2f:56:70:a7:62:72:a0:8d:bc:eb:
7f:76:f3:d6:7b:f8:a7:81:f6:4f:4d:b6:58:eb:0c:
52:05:3f:60:d1:ad:b2:75:24:d8:49:2f:96:4e:fd:
92:4f:ff:74:0c:2a:44:ba:02:24:e4:bd:c6:36:09:
7b:0d:1c:6c:2c:e7:af:ee:27:84:4b:8e:6f:5b:a1:
a8:40:09:00:98:cd:b1:cd:85:a2:8a:d7:e2:07:28:
49:13:7f:6b:44:2d:f9:e8:61:d2:6b:4e:59:0c:43:
22:9f:f2:41:06:6a:58:fc:a8:e2:91:a8:f4:5e:03:
5a:bd:c9:d1:59:00:f9:2d:15:9d:14:ee:c5:3a:38:
06:63:ec:4f:5d:6b:d7:fb:45:bb:96:74:e1:93:eb:
ae:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:08:D3:58:39:BA:FC:B3:87:18:9B:36:C9:49:AD:97:53:66:7B:8C
X509v3 Authority Key Identifier:
keyid:4F:1A:F5:4C:46:F2:9B:17:E7:58:E9:F9:46:3D:CF:96:50:C7:1A:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4F3638C8DF693002EB8C051A778FCFE2CE757B735E1CFA668B3F601E7CF617D7/0/4F1AF54C46F29B17E758E9F9463DCF9650C71A8F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4F1AF54C46F29B17E758E9F9463DCF9650C71A8F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4F3638C8DF693002EB8C051A778FCFE2CE757B735E1CFA668B3F601E7CF617D7/0/3137302e38312e3134342e302f32322d3234203d3e20323634383337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.81.144.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:2e:d4:d4:bb:ce:4f:c1:39:f5:ed:b2:ad:7f:db:5b:7d:53:
bc:7f:03:da:73:c6:ea:97:45:29:e3:e6:2d:ed:e3:f9:83:3d:
44:c2:a5:05:2c:6a:43:73:ef:07:7b:df:2c:6b:6f:4d:2a:ae:
3e:14:75:67:06:04:7c:5d:b0:57:6c:8b:21:78:b2:d5:7a:46:
37:74:70:99:6e:7b:ee:ea:4d:f0:1d:15:e3:e7:6e:aa:4f:89:
f3:8b:95:12:ff:06:af:ab:46:90:59:28:66:d6:96:e5:9d:4c:
ef:6d:0e:f6:96:2c:b7:b0:e5:de:ed:5c:63:41:98:51:d4:96:
da:f0:83:94:0e:37:b4:29:f8:8c:1a:b1:9d:5b:7e:fe:12:66:
ab:0e:0e:ca:4e:e6:f4:bb:1f:de:bc:fe:f4:14:98:26:a3:56:
40:f4:e6:63:84:97:0f:4c:9e:5d:d0:56:2e:13:4d:f9:4a:ab:
8e:34:90:47:4a:61:fb:2f:93:1c:41:af:d8:7f:f4:73:10:d4:
05:ba:38:a7:bd:21:c8:49:8d:ba:18:6e:91:19:9c:0e:25:c3:
f0:3e:b1:7b:0a:b4:e1:3c:f3:64:12:ac:9c:0d:de:27:74:2f:
d9:be:5c:0c:08:9b:ea:14:0d:8e:79:a7:da:0c:7c:99:66:8d:
3a:c1:d4:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:30 2025 by rpki-client