Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/57335F8FDF1714020F9E1AE69D767055C38FA7877A1D2D6527EC84AEB4D354A2/0/34352e3232392e3139312e302f32342d3234203d3e20323636373036.roa
File: 34352e3232392e3139312e302f32342d3234203d3e20323636373036.roa (raw, json)
Hash identifier: sz3S0CVsq3kkBNYyjWtCUza1fFwzCmkYBidmyMc7Aak=
Subject key identifier: D9:0D:5D:8F:B0:1E:A9:72:B7:E5:AF:41:DF:57:11:44:5C:AE:9F:38
Certificate issuer: /CN=BFF12804AD7A6B67DB33CA504BCC2BAC34A850D8
Certificate serial: 4FF60A232C1AA9C4747A3DAA8C397CD22D407713
Authority key identifier: BF:F1:28:04:AD:7A:6B:67:DB:33:CA:50:4B:CC:2B:AC:34:A8:50:D8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BFF12804AD7A6B67DB33CA504BCC2BAC34A850D8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/57335F8FDF1714020F9E1AE69D767055C38FA7877A1D2D6527EC84AEB4D354A2/0/34352e3232392e3139312e302f32342d3234203d3e20323636373036.roa
Signing time: Tue 04 Feb 2025 20:04:57 +0000
ROA not before: Tue 04 Feb 2025 19:59:57 +0000
ROA not after: Tue 03 Feb 2026 20:04:57 +0000
asID: 266706
IP address blocks: 45.229.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:f6:0a:23:2c:1a:a9:c4:74:7a:3d:aa:8c:39:7c:d2:2d:40:77:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFF12804AD7A6B67DB33CA504BCC2BAC34A850D8
Validity
Not Before: Feb 4 19:59:57 2025 GMT
Not After : Feb 3 20:04:57 2026 GMT
Subject: CN=D90D5D8FB01EA972B7E5AF41DF5711445CAE9F38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:98:81:57:08:a3:aa:dc:2c:4d:06:bb:d7:58:
9c:3e:fd:5e:14:fd:2f:b8:e7:98:3e:81:1d:69:b6:
cf:fe:6f:1a:c1:32:eb:e5:b8:02:35:56:21:5e:00:
f8:fa:87:4e:b2:04:d5:ae:5d:09:c1:b4:a4:45:1f:
7b:ff:03:86:2a:bc:41:73:89:70:01:c6:eb:88:3b:
a1:53:6c:ea:a2:83:3e:96:a9:a3:fe:c1:a7:75:1b:
27:df:7f:a7:62:a5:96:ed:c9:7a:d7:d3:f5:db:1c:
70:4f:22:30:92:9c:5f:9c:f1:6b:5d:6f:e4:b7:6a:
48:4e:d4:1e:c0:60:df:c5:69:b8:26:cb:77:2f:fe:
b4:13:8a:f6:4b:41:0a:af:f0:ff:c5:09:60:b6:eb:
12:db:99:e7:52:86:30:9b:76:0d:f7:e9:fe:40:33:
b8:91:b4:09:f2:3e:e6:6f:25:db:13:77:d5:a6:9c:
3b:76:cf:fb:7b:47:10:c1:4d:4d:c7:9d:1e:31:95:
47:08:25:67:84:68:87:ed:a7:04:2c:f9:ac:f3:e3:
0e:a5:61:bd:47:0b:35:de:b6:de:79:00:2e:2a:a1:
a9:3d:9e:90:2b:4b:24:4c:73:52:07:8c:59:c3:3e:
90:c9:35:33:4a:42:ab:db:dc:8a:ab:22:f1:df:bf:
55:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:0D:5D:8F:B0:1E:A9:72:B7:E5:AF:41:DF:57:11:44:5C:AE:9F:38
X509v3 Authority Key Identifier:
keyid:BF:F1:28:04:AD:7A:6B:67:DB:33:CA:50:4B:CC:2B:AC:34:A8:50:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/57335F8FDF1714020F9E1AE69D767055C38FA7877A1D2D6527EC84AEB4D354A2/0/BFF12804AD7A6B67DB33CA504BCC2BAC34A850D8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BFF12804AD7A6B67DB33CA504BCC2BAC34A850D8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/57335F8FDF1714020F9E1AE69D767055C38FA7877A1D2D6527EC84AEB4D354A2/0/34352e3232392e3139312e302f32342d3234203d3e20323636373036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.229.191.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a2:ab:77:7f:44:87:ce:de:02:ce:2d:73:14:87:ea:b7:3f:
87:a0:31:67:4a:04:05:57:18:bd:20:92:48:f8:a6:3f:d7:77:
33:e3:88:50:8a:5e:d4:c7:88:16:49:d7:8f:90:09:66:0b:5f:
83:0f:e5:ed:12:8e:28:6a:16:0d:e6:32:5b:9d:1d:d2:34:66:
ec:df:c7:ad:43:52:e9:4f:bd:b9:cc:23:4b:47:23:f6:e2:8c:
0b:de:fe:a7:1f:a5:ee:a1:53:6a:c8:97:ee:9a:82:be:f8:ce:
1e:95:04:c3:02:47:9f:83:fd:05:35:61:62:24:b3:3e:86:c5:
8b:6a:e6:d2:f7:97:0f:0b:e8:88:26:ab:05:4f:3a:1e:40:63:
65:a8:bb:90:d2:fa:bf:2f:0c:64:b8:38:4f:fc:bc:8f:cd:84:
f5:2d:96:fa:9f:43:d1:31:96:31:e3:21:f6:f5:71:b6:7d:be:
d5:02:cb:22:02:dd:41:77:69:ab:22:af:a9:9d:34:fb:a2:16:
b3:12:06:b4:ab:bf:fa:10:87:3a:7f:91:c9:8f:00:87:c5:6c:
8a:98:69:97:26:f8:ef:46:54:80:f7:44:8c:b9:50:f1:4a:27:
cb:79:87:73:e7:91:e6:07:32:df:8e:a6:94:ec:6d:ae:bd:f5:
40:de:80:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:14:10 2025 by rpki-client