Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3232322e302f32332d3233203d3e203232313232.roa
File: 3134382e3230392e3232322e302f32332d3233203d3e203232313232.roa (raw, json)
Hash identifier: NCbCUM1heaRzt2Vekw9qMtpPo3tNAePAFmffmboKw/0=
Subject key identifier: 5F:68:3F:78:CA:22:78:FF:A0:FA:62:96:73:EC:1F:D9:34:72:5A:2A
Certificate issuer: /CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Certificate serial: 5D8063F4A9895A815F6C488F2A4CE2EF0681E0C4
Authority key identifier: 8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3232322e302f32332d3233203d3e203232313232.roa
Signing time: Tue 04 Feb 2025 18:38:54 +0000
ROA not before: Tue 04 Feb 2025 18:33:54 +0000
ROA not after: Tue 03 Feb 2026 18:38:54 +0000
asID: 22122
IP address blocks: 148.209.222.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:80:63:f4:a9:89:5a:81:5f:6c:48:8f:2a:4c:e2:ef:06:81:e0:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Validity
Not Before: Feb 4 18:33:54 2025 GMT
Not After : Feb 3 18:38:54 2026 GMT
Subject: CN=5F683F78CA2278FFA0FA629673EC1FD934725A2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d1:c6:1e:79:06:b3:6b:74:78:38:fe:ff:dd:
03:4f:07:d2:64:6a:ea:a6:5c:13:7e:04:ec:4c:df:
b0:e5:ee:4a:f6:19:65:80:82:eb:87:c9:c0:04:95:
2e:88:0b:7d:c7:1c:a5:6e:e3:eb:c1:17:f7:43:5d:
98:db:22:e7:24:30:25:b3:79:72:3b:88:6f:ac:63:
9e:3c:65:4f:55:cb:45:ca:9f:61:8d:3b:c5:68:3c:
90:29:5f:71:27:f4:e1:09:e0:33:91:64:35:a4:a6:
13:02:e4:83:5d:90:0f:c7:2a:f7:c9:a8:9d:72:72:
b1:11:12:c8:d9:79:f4:08:89:de:fa:9d:d2:56:0f:
ee:07:ef:8a:59:4a:ec:cb:7a:e7:bc:2b:9b:bf:f3:
76:94:42:c4:65:f5:6e:fb:69:61:ce:de:11:f2:73:
10:d4:5d:3b:e9:a2:1a:5f:3f:d9:fa:5c:83:1e:cf:
62:18:87:b9:ee:59:b7:79:72:29:f3:2f:da:05:f7:
4a:81:5d:ec:83:51:4e:54:6e:87:18:c7:1c:13:9d:
a1:33:9e:e6:ad:48:f0:77:20:1c:00:ed:be:05:17:
80:e4:eb:23:bf:9e:81:0f:96:0e:78:39:9d:80:c7:
3f:e1:68:8d:ff:11:a0:ee:75:de:89:94:7d:98:8e:
65:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:68:3F:78:CA:22:78:FF:A0:FA:62:96:73:EC:1F:D9:34:72:5A:2A
X509v3 Authority Key Identifier:
keyid:8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3232322e302f32332d3233203d3e203232313232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.209.222.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:38:da:c0:85:c9:a2:83:19:1a:3e:b9:f8:ef:c6:50:c3:f4:
05:ef:cb:f7:8e:d5:74:1c:96:10:84:aa:e6:f6:ea:f2:df:c4:
52:db:d2:59:e0:56:4f:82:d9:01:3d:f2:b8:61:b0:a3:8f:ee:
ab:36:8c:f0:89:41:a6:bc:24:22:4d:41:ca:35:40:0a:4b:51:
ae:a5:39:b5:62:af:b2:33:96:49:85:89:e1:43:0c:b1:b0:57:
d5:ae:a8:be:31:fe:16:2d:49:44:88:60:4c:3e:5b:34:36:d2:
34:eb:da:0f:68:29:a5:39:d8:25:9f:8f:e4:a8:fb:7f:e7:01:
9e:a8:e9:22:11:5f:ac:73:38:f8:43:a8:16:8d:b3:28:d6:38:
69:79:c8:8c:58:9a:1a:cc:d6:83:d3:90:db:6d:91:cd:f1:73:
09:71:ec:09:0a:c4:d3:9e:3c:2a:1c:71:8b:7a:ce:b0:f8:9d:
3c:84:32:43:d2:cc:47:d0:cc:9d:a4:da:0c:96:33:b8:48:c9:
9d:f5:be:38:28:0f:4e:d5:b4:8f:ec:cf:61:51:63:c2:72:2f:
4a:12:65:93:8e:d1:30:e6:ad:12:1e:8a:b8:9d:9b:e6:6c:a6:
4b:8c:ca:ae:27:d1:75:2d:40:d0:09:6e:02:10:ab:7b:61:15:
62:34:e1:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:09:35 2025 by rpki-client