Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e35362e302f32322d3232203d3e203232313232.roa
File: 3134382e3230392e35362e302f32322d3232203d3e203232313232.roa (raw, json)
Hash identifier: b8guCasbkjDSznKxEUwpHL/zxdgh5sf++tki786uF/w=
Subject key identifier: CA:B4:B3:01:D3:DA:65:2F:77:F2:E5:2F:80:07:B5:A5:23:45:EB:CD
Certificate issuer: /CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Certificate serial: 793C79A2F688F92F347C36BBD35BF50FE6D6A704
Authority key identifier: 8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e35362e302f32322d3232203d3e203232313232.roa
Signing time: Tue 04 Feb 2025 18:38:49 +0000
ROA not before: Tue 04 Feb 2025 18:33:49 +0000
ROA not after: Tue 03 Feb 2026 18:38:49 +0000
asID: 22122
IP address blocks: 148.209.56.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:3c:79:a2:f6:88:f9:2f:34:7c:36:bb:d3:5b:f5:0f:e6:d6:a7:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Validity
Not Before: Feb 4 18:33:49 2025 GMT
Not After : Feb 3 18:38:49 2026 GMT
Subject: CN=CAB4B301D3DA652F77F2E52F8007B5A52345EBCD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:77:e7:72:8e:54:51:0b:02:c9:d0:85:aa:40:
60:8c:d3:ce:1e:22:2d:00:a9:fd:6e:d7:b9:b9:9a:
d8:a5:4e:ef:5d:23:d5:a5:23:81:98:a3:4c:48:23:
52:8f:a0:ad:f8:0f:ac:4f:62:05:27:08:9b:53:5e:
0a:17:68:b3:cd:b5:3b:0e:29:50:8f:4c:f6:fe:da:
6f:21:23:2b:7e:9b:cf:03:db:63:4a:a5:1c:95:b4:
93:05:4b:c5:e2:f2:cf:84:3e:17:c1:7d:df:ca:f3:
a5:eb:9e:a9:0c:4e:81:3a:77:fa:3d:31:fd:10:47:
8b:0d:0e:61:d5:bc:de:39:7f:33:6b:be:4f:fa:a2:
f9:64:43:36:49:3d:4d:7d:61:54:8d:97:2c:c5:2c:
db:34:10:20:4b:d8:44:a3:e6:df:fb:50:d8:bf:15:
fe:c2:45:53:2f:82:e1:bb:9d:45:6c:8f:98:e3:36:
39:53:ba:5d:68:c4:5e:d7:7d:69:5b:60:ba:33:81:
ea:90:a6:14:73:e0:ca:1c:2e:f2:ea:2b:bb:e6:7e:
18:1b:59:2e:42:00:10:46:38:55:6d:64:76:78:a8:
57:7e:72:c3:55:54:a5:d9:7a:23:1d:b4:91:cd:26:
f3:59:41:1a:cd:6b:b6:5b:02:08:fb:a5:b5:b3:6f:
c4:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B4:B3:01:D3:DA:65:2F:77:F2:E5:2F:80:07:B5:A5:23:45:EB:CD
X509v3 Authority Key Identifier:
keyid:8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e35362e302f32322d3232203d3e203232313232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.209.56.0/22
Signature Algorithm: sha256WithRSAEncryption
37:16:35:91:3b:0a:e0:c4:a3:8e:4f:05:e0:bb:34:24:01:56:
ee:16:f5:a2:57:54:98:86:14:3d:c9:9a:7b:53:b1:ce:44:43:
ad:8c:28:16:3a:bb:6a:4f:b9:9d:06:81:22:7a:27:95:53:d7:
26:00:5d:e0:23:38:9d:55:b9:d0:1f:74:7a:5c:ff:3b:83:81:
9a:4f:11:ab:ad:f8:b7:7e:d5:5f:07:fe:65:eb:b0:1c:db:f0:
8a:19:f5:2b:07:02:52:df:78:f8:79:e5:e5:95:89:4a:6e:91:
27:3a:92:1f:41:41:a8:93:a6:43:67:36:4a:15:d7:4a:d7:22:
2d:5d:ca:53:52:68:18:ae:7d:23:6a:1d:32:1b:c7:e8:db:3a:
93:e6:cf:82:7c:09:74:87:d0:f2:3f:d4:2d:ba:89:2d:37:c6:
cd:53:82:5c:28:31:d0:8c:71:e5:82:0a:5c:f4:ca:f6:20:95:
30:80:bb:e3:f4:1a:2c:77:d6:f0:e1:96:0c:1f:d5:00:33:81:
85:6c:0f:38:a7:80:b7:54:67:ab:a6:83:d0:47:35:35:3d:f4:
b8:5c:a0:16:e2:44:61:20:64:69:93:ad:a6:5c:10:0f:ec:e5:
3d:84:57:c7:be:26:d7:a5:bd:0b:25:83:e7:08:53:65:f6:72:
2f:67:35:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:23:45 2025 by rpki-client