Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4FC63630D0F196900A7C318E0112B8FEE334A6AB6987D9C52FFFFC1563EDF675/0/3133322e3235352e382e302f32322d3232203d3e20323635383233.roa
File: 3133322e3235352e382e302f32322d3232203d3e20323635383233.roa (raw, json)
Hash identifier: HpVFwEyr/tYzxyfIHSCmVTecedqlaP9vzn82B4zWn/s=
Subject key identifier: C1:11:0A:28:FC:65:5E:53:BC:9A:09:8E:06:72:87:B6:16:78:FA:4A
Certificate issuer: /CN=147B7D55918A2F6911996FA0232FC4A257FC3C1B
Certificate serial: 43A4807D45593D972A98BDE39A5479D70AB25E90
Authority key identifier: 14:7B:7D:55:91:8A:2F:69:11:99:6F:A0:23:2F:C4:A2:57:FC:3C:1B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/147B7D55918A2F6911996FA0232FC4A257FC3C1B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4FC63630D0F196900A7C318E0112B8FEE334A6AB6987D9C52FFFFC1563EDF675/0/3133322e3235352e382e302f32322d3232203d3e20323635383233.roa
Signing time: Tue 04 Feb 2025 18:40:00 +0000
ROA not before: Tue 04 Feb 2025 18:35:00 +0000
ROA not after: Tue 03 Feb 2026 18:40:00 +0000
asID: 265823
IP address blocks: 132.255.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:a4:80:7d:45:59:3d:97:2a:98:bd:e3:9a:54:79:d7:0a:b2:5e:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=147B7D55918A2F6911996FA0232FC4A257FC3C1B
Validity
Not Before: Feb 4 18:35:00 2025 GMT
Not After : Feb 3 18:40:00 2026 GMT
Subject: CN=C1110A28FC655E53BC9A098E067287B61678FA4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8d:b7:9d:3a:ef:54:b1:90:83:cd:aa:55:41:
09:38:4c:7f:06:2b:9e:05:8f:e0:1e:a9:a0:0d:30:
86:be:3d:2d:54:0b:84:e4:c6:ae:db:8f:b3:75:0b:
50:f7:e7:46:9f:06:0f:30:18:ef:ef:17:e3:02:85:
2a:2f:20:61:25:0d:0a:a2:b0:3a:0f:0e:b2:4c:34:
f0:2e:84:f6:4e:12:a6:fb:77:10:7c:f8:1f:af:df:
5a:f2:81:b7:3b:5d:fa:a3:0f:16:cd:73:47:19:0c:
59:cd:a1:35:48:d2:2d:9b:98:e7:a2:1a:22:28:bb:
80:78:60:6b:99:24:e5:c8:99:fc:db:d8:d6:82:b0:
3e:97:68:2c:f5:5a:5f:af:5b:b4:c1:36:56:fc:42:
17:82:9c:81:c7:03:e3:0c:fc:3a:36:df:10:cd:69:
4a:92:45:b0:b6:5f:90:f0:7f:77:52:51:b7:3b:97:
55:0d:8d:0d:c1:f3:b6:e6:f9:da:c6:21:8e:aa:cf:
ca:b0:7c:8b:cb:c1:1e:b5:c2:ee:64:ce:15:80:2c:
49:2b:46:6c:ac:aa:62:15:f4:85:00:0e:e8:21:a1:
76:07:a0:ba:7d:d9:f9:1d:22:e5:4d:67:26:6d:8e:
5a:7a:8b:25:39:a3:e9:1d:4a:d4:b4:7b:b8:21:22:
1b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:11:0A:28:FC:65:5E:53:BC:9A:09:8E:06:72:87:B6:16:78:FA:4A
X509v3 Authority Key Identifier:
keyid:14:7B:7D:55:91:8A:2F:69:11:99:6F:A0:23:2F:C4:A2:57:FC:3C:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4FC63630D0F196900A7C318E0112B8FEE334A6AB6987D9C52FFFFC1563EDF675/0/147B7D55918A2F6911996FA0232FC4A257FC3C1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/147B7D55918A2F6911996FA0232FC4A257FC3C1B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4FC63630D0F196900A7C318E0112B8FEE334A6AB6987D9C52FFFFC1563EDF675/0/3133322e3235352e382e302f32322d3232203d3e20323635383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.255.8.0/22
Signature Algorithm: sha256WithRSAEncryption
60:63:aa:3c:26:99:af:75:c3:54:5b:fb:30:fe:ab:99:09:87:
49:e5:cb:5b:a1:34:a2:5f:67:cd:6b:9d:25:b3:dc:15:a1:d7:
78:be:07:c7:1e:1d:22:7c:06:25:32:14:df:8f:54:31:bf:d0:
11:2c:7e:64:1f:67:0b:6b:dd:fa:bd:b4:96:3e:db:b8:44:8d:
a9:09:0f:4a:24:c9:68:81:23:18:ca:a7:4c:ab:07:0e:e2:fc:
69:03:5f:7f:23:02:38:29:9d:8a:c0:54:fb:1d:72:db:37:d6:
92:a8:c1:33:93:d9:59:b9:b6:05:a7:d2:e7:25:f2:32:ae:ce:
83:d7:f6:30:df:1a:8d:b2:15:ef:9b:d5:50:18:65:6e:01:69:
15:ad:66:e3:87:4a:05:ac:aa:43:6e:f1:26:68:cf:b1:a8:3b:
53:41:aa:fa:87:33:bc:98:36:08:a4:eb:de:51:58:4b:1f:b3:
cb:91:58:7c:11:5f:07:e1:b4:60:82:ef:a2:a9:e4:d5:20:69:
75:dc:e8:b6:fb:1e:be:51:9f:13:2f:d2:f7:c5:be:c5:c4:cf:
1c:f0:6b:d1:91:7b:cf:09:b9:4e:c7:49:db:d6:95:c8:c3:a7:
40:ed:a1:e3:09:66:b0:c1:36:e2:6a:cc:d7:22:54:1c:98:77:
3f:6e:f7:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:28:50 2025 by rpki-client