Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3230342e302f32332d3233203d3e203232313232.roa
File: 3134382e3230392e3230342e302f32332d3233203d3e203232313232.roa (raw, json)
Hash identifier: M+VZ3Yrna8EmyRbfCUpXXocvOdXa4SO4+/EjJcUHTZk=
Subject key identifier: A4:ED:50:A8:62:F7:24:F6:52:82:38:6D:C9:CB:AF:81:30:F0:EB:08
Certificate issuer: /CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Certificate serial: 5EA81C75401BC68A9D17DAFF2F77D8153ACEBE70
Authority key identifier: 8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3230342e302f32332d3233203d3e203232313232.roa
Signing time: Tue 04 Feb 2025 18:38:52 +0000
ROA not before: Tue 04 Feb 2025 18:33:52 +0000
ROA not after: Tue 03 Feb 2026 18:38:52 +0000
asID: 22122
IP address blocks: 148.209.204.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:a8:1c:75:40:1b:c6:8a:9d:17:da:ff:2f:77:d8:15:3a:ce:be:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Validity
Not Before: Feb 4 18:33:52 2025 GMT
Not After : Feb 3 18:38:52 2026 GMT
Subject: CN=A4ED50A862F724F65282386DC9CBAF8130F0EB08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:aa:50:b1:2f:f0:86:13:10:8b:2c:26:52:09:
81:fc:06:6c:08:76:cb:94:60:f9:2a:45:4f:77:eb:
5c:b8:21:c1:0e:24:7a:19:e7:e8:a9:ac:9f:40:f4:
2b:5e:34:16:92:cc:8c:4c:a6:3d:cf:0b:1d:71:45:
c1:19:6e:0a:58:25:5a:e7:11:bc:7a:1e:66:1b:18:
06:f5:9d:92:81:5f:58:1a:db:c1:fd:00:2d:58:d0:
34:5d:e9:d8:19:54:76:a0:7f:22:db:c4:c6:d0:35:
82:6a:81:ef:f1:bd:df:34:67:73:69:e0:ac:26:55:
e1:33:93:1d:ac:32:62:ef:37:af:d9:67:65:7c:d3:
c9:b9:12:ac:74:d8:b4:4d:b3:f6:1f:d5:48:5b:54:
b3:be:60:82:8c:1d:45:77:c5:ef:0c:2e:2f:df:2c:
8a:48:75:6a:61:2a:40:86:83:7d:96:62:56:b1:01:
9e:ae:37:94:d7:0f:e7:3c:72:7b:7e:f8:e9:ea:d2:
f9:17:b2:24:40:7e:9f:e1:c7:92:90:8b:aa:78:75:
81:df:f9:3b:b8:ae:35:2a:bb:9e:06:cd:84:ac:ee:
4e:1e:71:1b:dd:de:c9:81:59:49:ab:34:26:fc:9a:
e2:8b:ef:3f:e0:36:28:2f:43:f0:06:4c:ef:9f:a5:
12:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:ED:50:A8:62:F7:24:F6:52:82:38:6D:C9:CB:AF:81:30:F0:EB:08
X509v3 Authority Key Identifier:
keyid:8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3230342e302f32332d3233203d3e203232313232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.209.204.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:8f:af:ff:27:9d:7b:77:e2:40:0c:49:2b:34:d9:cb:2b:de:
bc:a5:3d:75:38:0b:e7:61:c2:81:19:fb:bc:c1:5d:42:b3:61:
7e:9c:f0:fa:56:79:78:a6:35:da:43:40:0a:bb:26:8d:b0:11:
83:41:a5:6c:cf:cb:2d:70:6d:15:12:76:98:e4:30:a2:9d:2d:
80:7c:68:49:2f:6a:24:dd:15:2d:ef:7c:8e:5c:d8:3f:bf:4f:
8e:e4:e4:a5:e9:ab:0d:95:91:0b:45:e2:f6:62:5b:3d:dd:45:
1c:4b:d1:0a:b0:17:f2:b2:00:96:aa:0c:8a:73:0a:d3:86:4b:
41:c9:4c:c0:2e:ba:39:01:d6:9b:a3:62:59:43:95:05:ec:dd:
da:d1:31:38:d1:ee:dd:15:1b:23:d4:a8:7f:d1:b7:54:79:c9:
96:56:87:f3:b0:0b:ca:78:74:ae:ec:8a:5f:9f:72:20:2c:ba:
70:20:0d:89:89:23:a6:33:c1:f2:b6:f5:fc:6d:85:16:39:75:
85:56:03:11:83:40:28:21:5f:4d:6a:94:13:4f:6d:9b:30:f6:
4d:36:9f:17:b0:eb:ec:9f:d2:7d:36:57:c1:35:df:8e:43:29:
c3:96:c2:ff:5e:ec:37:3d:78:28:8c:1e:3c:26:c9:fb:f7:dc:
c5:c8:e2:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:28:41 2025 by rpki-client