Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/553E915C78B115ED1EF6B8D6134A2D64DB6515223B082FD4FB27AB8146AA88A2/0/3132382e3230312e3136382e302f32332d3233203d3e20323635373436.roa
File: 3132382e3230312e3136382e302f32332d3233203d3e20323635373436.roa (raw, json)
Hash identifier: 0y5cd72WVuypMCbGfKkoipakxo8YKrcvDEe55BKxSbk=
Subject key identifier: 52:AB:B4:86:FF:FE:C5:85:26:73:24:F4:5A:33:3A:A9:D0:76:CE:A3
Certificate issuer: /CN=D5490AC693B00C1BF51582B1691FC2DC46B71FA9
Certificate serial: 749DA6BBC65BC3DCCBC247D8479FBF1179ACC339
Authority key identifier: D5:49:0A:C6:93:B0:0C:1B:F5:15:82:B1:69:1F:C2:DC:46:B7:1F:A9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D5490AC693B00C1BF51582B1691FC2DC46B71FA9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/553E915C78B115ED1EF6B8D6134A2D64DB6515223B082FD4FB27AB8146AA88A2/0/3132382e3230312e3136382e302f32332d3233203d3e20323635373436.roa
Signing time: Tue 04 Feb 2025 18:34:36 +0000
ROA not before: Tue 04 Feb 2025 18:29:36 +0000
ROA not after: Tue 03 Feb 2026 18:34:36 +0000
asID: 265746
IP address blocks: 128.201.168.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:9d:a6:bb:c6:5b:c3:dc:cb:c2:47:d8:47:9f:bf:11:79:ac:c3:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D5490AC693B00C1BF51582B1691FC2DC46B71FA9
Validity
Not Before: Feb 4 18:29:36 2025 GMT
Not After : Feb 3 18:34:36 2026 GMT
Subject: CN=52ABB486FFFEC585267324F45A333AA9D076CEA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0e:3e:92:39:58:5a:c5:95:fe:00:1a:bc:e8:
24:81:a2:8c:57:e9:3f:eb:b4:e9:ef:f8:bf:20:81:
3e:78:78:a9:0c:c8:35:2e:32:3a:9d:8c:87:d1:48:
9e:6e:b1:18:36:42:24:b4:30:d1:f9:19:3d:ab:56:
12:15:24:9d:ea:0d:8f:a5:86:80:70:a7:7a:50:ba:
bd:45:ce:71:0c:ec:df:05:ba:84:07:ab:b5:bd:30:
1d:49:20:75:9b:47:e8:2b:17:bb:6b:b3:3f:c8:c8:
98:e4:60:be:d2:30:0e:62:dd:88:c8:60:63:c2:8d:
fe:1e:46:bd:41:12:3a:b9:97:7a:ec:d8:c2:d9:fe:
91:20:f8:34:f1:ea:7c:4c:2f:7b:85:b0:c2:d5:70:
6b:ad:54:ad:00:0e:60:79:3f:66:bc:ac:3a:39:98:
59:17:cc:63:df:c1:cf:cf:5b:d1:34:d7:8d:8d:c1:
31:46:9c:3d:d7:4d:ca:77:b8:ca:3b:39:13:4e:c0:
25:cf:25:94:15:b4:e0:32:04:fc:be:39:8d:d6:f2:
c5:dd:36:a4:03:ce:b9:30:cf:6d:2f:ea:99:be:a0:
bd:74:80:f1:e7:14:54:08:33:97:e5:fc:9c:1c:fe:
0f:f4:c5:0f:07:9a:0c:f1:a6:55:62:48:b0:9c:1c:
26:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:AB:B4:86:FF:FE:C5:85:26:73:24:F4:5A:33:3A:A9:D0:76:CE:A3
X509v3 Authority Key Identifier:
keyid:D5:49:0A:C6:93:B0:0C:1B:F5:15:82:B1:69:1F:C2:DC:46:B7:1F:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/553E915C78B115ED1EF6B8D6134A2D64DB6515223B082FD4FB27AB8146AA88A2/0/D5490AC693B00C1BF51582B1691FC2DC46B71FA9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D5490AC693B00C1BF51582B1691FC2DC46B71FA9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/553E915C78B115ED1EF6B8D6134A2D64DB6515223B082FD4FB27AB8146AA88A2/0/3132382e3230312e3136382e302f32332d3233203d3e20323635373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.201.168.0/23
Signature Algorithm: sha256WithRSAEncryption
91:7a:c8:bc:99:1d:46:29:a2:8f:0e:dc:3a:96:53:4a:49:f7:
84:42:55:f7:36:59:cb:95:7c:3d:10:74:6d:eb:8e:c0:60:00:
d2:03:c8:5a:88:29:a5:9a:db:7e:89:ce:89:07:cf:b2:21:05:
df:62:c6:a5:7a:b8:48:c6:7a:5e:10:06:3d:7b:a2:5c:3e:9f:
12:16:6f:9e:4b:5c:21:7c:19:dc:f8:ea:5e:38:ab:85:18:b2:
00:93:d8:2f:cd:d6:9c:60:5d:2c:fb:9e:1b:de:e2:e5:30:d0:
d6:4d:79:4c:fe:b4:5d:df:a4:c0:16:6e:16:ed:0a:f8:00:c7:
28:eb:07:b1:6f:aa:0e:a7:ed:e6:b5:0a:8b:8f:ba:a2:3b:7e:
3c:20:1f:c0:5c:86:2b:de:97:51:e9:c9:6f:17:19:a4:ba:04:
0f:65:57:85:b5:ad:90:43:f4:bd:dd:ec:08:36:26:b8:01:50:
98:a0:e6:8c:ff:32:d1:08:cd:c7:2e:7a:0c:cb:bf:c5:b3:64:
bb:65:da:d0:b4:5e:a6:3d:34:c6:33:c0:7c:02:29:db:1e:83:
fb:b8:28:dc:e5:17:a7:65:4c:b9:0d:8c:97:71:20:f4:11:22:
66:3d:22:fc:01:d6:7e:18:30:e5:5c:e7:ab:2f:37:f3:26:40:
80:7f:94:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:02:53 2025 by rpki-client