Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/57589A8BF177909F244576702F17B86B4BC4685F46F06EF478DECC21499046D7/0/34352e3233392e32382e302f32322d3234203d3e20323636383430.roa
File: 34352e3233392e32382e302f32322d3234203d3e20323636383430.roa (raw, json)
Hash identifier: CdMXlLdecFhSquAGw0jCmGBjEEjhXvKtgydyEjrL4WQ=
Subject key identifier: 87:CA:66:AF:E1:41:3A:0C:F6:15:39:2F:2C:C8:31:14:14:1C:99:E1
Certificate issuer: /CN=B8BC6BCB8E518D55BFD4FE5B069DBDBA40C44A74
Certificate serial: 5FF2DEA896306A925AD272AA50157A93C7700CBF
Authority key identifier: B8:BC:6B:CB:8E:51:8D:55:BF:D4:FE:5B:06:9D:BD:BA:40:C4:4A:74
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B8BC6BCB8E518D55BFD4FE5B069DBDBA40C44A74.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/57589A8BF177909F244576702F17B86B4BC4685F46F06EF478DECC21499046D7/0/34352e3233392e32382e302f32322d3234203d3e20323636383430.roa
Signing time: Tue 04 Feb 2025 18:27:33 +0000
ROA not before: Tue 04 Feb 2025 18:22:33 +0000
ROA not after: Tue 03 Feb 2026 18:27:33 +0000
asID: 266840
IP address blocks: 45.239.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:f2:de:a8:96:30:6a:92:5a:d2:72:aa:50:15:7a:93:c7:70:0c:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B8BC6BCB8E518D55BFD4FE5B069DBDBA40C44A74
Validity
Not Before: Feb 4 18:22:33 2025 GMT
Not After : Feb 3 18:27:33 2026 GMT
Subject: CN=87CA66AFE1413A0CF615392F2CC83114141C99E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:be:da:a2:92:3c:be:30:90:eb:91:37:fb:87:
0c:17:f8:54:2b:5f:40:9f:9c:bd:de:75:7f:f4:83:
47:4d:c9:d0:d1:fc:86:6a:90:3a:14:73:dc:c4:5e:
b6:a3:38:65:38:68:fa:f3:6b:e9:b2:b5:85:39:40:
2b:9f:c1:b7:dd:19:52:ef:72:29:f5:5b:4b:1f:b1:
a9:9e:eb:4d:41:20:cc:16:09:11:eb:50:e6:0c:00:
2e:a6:27:c4:67:75:1d:74:af:24:aa:25:a0:c8:aa:
06:17:b0:71:50:b3:0e:2a:95:e8:9d:71:0c:11:7b:
83:03:23:cf:38:bb:58:1a:e9:af:c7:a9:04:e0:f2:
43:47:b5:e5:09:68:93:93:a3:d9:f0:4d:a6:45:99:
b7:c7:99:3d:3c:0b:6a:12:2f:59:d5:64:35:ef:85:
ed:27:c4:df:31:20:7a:53:49:31:7f:68:2b:84:4a:
d6:4e:4a:06:0f:12:a6:c1:38:37:f9:fb:79:25:e4:
0d:57:7d:bf:ce:9a:14:1b:ad:55:9a:49:1f:e6:52:
b4:19:36:07:07:6c:8d:13:ef:47:54:8c:ec:59:cc:
f1:d4:2d:9f:95:05:16:cb:ee:f1:4b:92:0c:7c:8a:
c8:e1:11:26:f7:b3:37:f0:57:20:a8:92:ec:a2:f4:
01:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CA:66:AF:E1:41:3A:0C:F6:15:39:2F:2C:C8:31:14:14:1C:99:E1
X509v3 Authority Key Identifier:
keyid:B8:BC:6B:CB:8E:51:8D:55:BF:D4:FE:5B:06:9D:BD:BA:40:C4:4A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/57589A8BF177909F244576702F17B86B4BC4685F46F06EF478DECC21499046D7/0/B8BC6BCB8E518D55BFD4FE5B069DBDBA40C44A74.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B8BC6BCB8E518D55BFD4FE5B069DBDBA40C44A74.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/57589A8BF177909F244576702F17B86B4BC4685F46F06EF478DECC21499046D7/0/34352e3233392e32382e302f32322d3234203d3e20323636383430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.239.28.0/22
Signature Algorithm: sha256WithRSAEncryption
df:7a:a3:5b:9a:65:7e:4f:72:0b:0c:4b:92:60:37:15:5f:27:
b2:be:2f:d5:14:10:b7:75:8a:74:87:12:f2:fd:25:4f:d1:2e:
99:4c:12:61:d6:7e:5e:a3:68:1d:85:fa:11:15:83:42:72:b3:
01:51:a2:99:c2:71:2e:b2:9f:f8:07:a4:54:67:84:ca:74:dd:
b0:6c:50:ba:a4:5f:9a:0e:40:2a:e5:2c:93:2a:a0:98:d3:d5:
3b:39:16:17:4f:f1:8b:75:c5:97:0c:07:ec:81:2b:9d:b7:0a:
6f:ed:09:88:5b:c8:62:43:ef:cc:b5:21:b8:da:b6:22:68:3f:
5e:7e:ed:d6:25:0b:6b:2c:ef:d6:cd:0e:a7:21:f1:9a:13:1a:
dc:74:b1:f1:b1:23:71:5d:d2:7e:df:87:b9:c5:fb:d0:cc:9a:
3b:a3:f0:7b:c6:1c:64:b6:f2:2d:99:fa:05:89:b1:11:1f:bc:
5b:6e:2c:5e:e9:b0:4e:b1:1c:b6:a7:91:29:50:ea:20:9c:c9:
6b:1a:83:db:c7:ef:5f:6f:86:d5:78:f2:ed:51:8a:f6:b2:e2:
b1:5b:a3:67:b4:0c:df:07:8a:29:52:78:24:6b:cc:15:1b:38:
ec:9b:5c:1f:35:4a:8f:a5:0f:66:3f:0e:a8:cb:7a:df:3e:40:
82:65:46:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:02:35 2025 by rpki-client