Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/57589A8BF177909F244576702F17B86B4BC4685F46F06EF478DECC21499046D7/0/34352e3233392e32392e302f32342d3234203d3e20323636383738.roa
File: 34352e3233392e32392e302f32342d3234203d3e20323636383738.roa (raw, json)
Hash identifier: UimkctfyxnV3xFa5i2BHEXqLQSnoHsG6FNWcdZEgjRI=
Subject key identifier: 61:B7:30:44:CE:2D:95:D0:C9:9C:73:CD:BF:83:CE:CB:03:C0:C1:B2
Certificate issuer: /CN=B8BC6BCB8E518D55BFD4FE5B069DBDBA40C44A74
Certificate serial: 0DBACEFCBAD138B1412974E7B3B4E372A78C9770
Authority key identifier: B8:BC:6B:CB:8E:51:8D:55:BF:D4:FE:5B:06:9D:BD:BA:40:C4:4A:74
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B8BC6BCB8E518D55BFD4FE5B069DBDBA40C44A74.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/57589A8BF177909F244576702F17B86B4BC4685F46F06EF478DECC21499046D7/0/34352e3233392e32392e302f32342d3234203d3e20323636383738.roa
Signing time: Tue 04 Feb 2025 18:27:33 +0000
ROA not before: Tue 04 Feb 2025 18:22:33 +0000
ROA not after: Tue 03 Feb 2026 18:27:33 +0000
asID: 266878
IP address blocks: 45.239.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:ba:ce:fc:ba:d1:38:b1:41:29:74:e7:b3:b4:e3:72:a7:8c:97:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B8BC6BCB8E518D55BFD4FE5B069DBDBA40C44A74
Validity
Not Before: Feb 4 18:22:33 2025 GMT
Not After : Feb 3 18:27:33 2026 GMT
Subject: CN=61B73044CE2D95D0C99C73CDBF83CECB03C0C1B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:50:56:73:51:24:c2:42:9b:05:1a:c1:c4:4e:
ed:a0:cc:bc:3b:69:1a:00:b7:51:bb:e0:e0:22:7b:
81:f2:e5:fa:a6:53:ce:db:19:c9:fa:c8:43:e6:a5:
f1:dd:21:ee:c6:46:cf:ee:57:b2:23:9a:ff:9b:67:
5d:4d:95:d7:79:a4:12:f5:1d:df:e8:98:70:b2:c3:
ab:88:f2:fb:d6:f8:09:c4:11:08:a9:14:ff:85:54:
d8:d5:21:50:54:a8:aa:55:86:6a:47:81:d2:1d:a7:
db:91:0e:12:9c:7f:cc:9b:0e:01:d4:89:56:c6:ce:
22:b3:bb:99:8d:b5:6e:c3:7f:d5:a6:da:b8:6b:a4:
0e:1e:5f:48:05:70:f0:31:80:cb:d5:04:bb:4c:62:
66:90:b7:41:58:96:65:2c:30:b5:3a:aa:16:8f:6e:
16:67:2a:09:fa:2e:19:93:2c:be:e0:4f:ae:9c:ef:
fd:5b:51:7b:8c:f5:a4:6f:7c:d5:e2:e1:e8:95:28:
52:f3:55:1f:3b:c6:31:71:5f:0c:0f:4f:45:68:53:
7f:6f:d0:08:2d:79:c2:b8:98:b9:db:ce:58:32:0a:
d1:97:f0:a4:16:b2:0b:d2:0b:f0:19:a7:ac:9e:fc:
f0:91:5d:62:6b:bf:32:2f:2c:10:69:80:f5:e2:14:
57:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B7:30:44:CE:2D:95:D0:C9:9C:73:CD:BF:83:CE:CB:03:C0:C1:B2
X509v3 Authority Key Identifier:
keyid:B8:BC:6B:CB:8E:51:8D:55:BF:D4:FE:5B:06:9D:BD:BA:40:C4:4A:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/57589A8BF177909F244576702F17B86B4BC4685F46F06EF478DECC21499046D7/0/B8BC6BCB8E518D55BFD4FE5B069DBDBA40C44A74.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B8BC6BCB8E518D55BFD4FE5B069DBDBA40C44A74.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/57589A8BF177909F244576702F17B86B4BC4685F46F06EF478DECC21499046D7/0/34352e3233392e32392e302f32342d3234203d3e20323636383738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.239.29.0/24
Signature Algorithm: sha256WithRSAEncryption
57:cf:f1:e3:9c:2c:07:60:b8:b5:d1:2f:c3:14:9c:db:9e:f8:
08:1d:68:c7:37:9c:20:1f:ac:af:d4:aa:0a:bd:2c:be:a6:27:
2d:ad:61:84:7c:52:33:44:46:5e:1e:2a:32:1b:7d:84:1a:90:
cd:b4:21:82:39:92:e7:6a:69:ee:ec:af:f3:ca:a2:3f:6e:b7:
29:53:15:90:a2:72:22:ba:72:40:64:2e:e2:54:88:a6:4a:ff:
f4:36:07:7b:b3:2d:14:df:11:b1:8d:9f:75:b3:1e:62:c8:8f:
0e:59:53:24:99:0c:9e:30:f4:0d:1d:91:32:11:3d:47:70:71:
23:8d:d2:73:e4:c0:55:26:3f:ae:6d:0e:f7:a0:40:85:93:57:
94:fc:51:ae:a0:26:e2:c2:30:09:49:1e:d3:b6:be:ac:36:af:
f0:dc:99:78:13:21:4c:75:7c:84:64:c0:e5:58:51:80:14:7f:
5e:f5:b2:c7:62:82:7e:4c:89:b4:0e:88:58:fe:de:41:20:c5:
ac:0b:96:0e:57:36:aa:0e:ad:e3:da:5f:73:ee:06:6d:8d:b4:
1f:89:a2:f5:19:52:91:0e:75:41:e9:44:7c:3a:6c:80:2a:7f:
05:e6:84:22:6a:24:ea:95:0b:c9:a8:e3:52:23:37:1b:56:a8:
bf:e1:c3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:05:05 2025 by rpki-client