Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e3230342e302f32342d3234203d3e20323731393336.roa
File: 3135372e3130302e3230342e302f32342d3234203d3e20323731393336.roa (raw, json)
Hash identifier: DHldPbBpXk9Ijv7b9I2tn0kmqvRo8xc8RdAHDFLxDnA=
Subject key identifier: 57:64:60:A5:85:39:9A:76:D2:6F:4F:D1:FD:D2:50:4E:1E:AE:84:0D
Certificate issuer: /CN=77570511D6CF51E3ABAFB2F756FE17F5291D8648
Certificate serial: 44C4B5D306CD70DD4300B39655EF1D60C2087F4F
Authority key identifier: 77:57:05:11:D6:CF:51:E3:AB:AF:B2:F7:56:FE:17:F5:29:1D:86:48
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e3230342e302f32342d3234203d3e20323731393336.roa
Signing time: Tue 04 Feb 2025 20:08:26 +0000
ROA not before: Tue 04 Feb 2025 20:03:26 +0000
ROA not after: Tue 03 Feb 2026 20:08:26 +0000
asID: 271936
IP address blocks: 157.100.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:c4:b5:d3:06:cd:70:dd:43:00:b3:96:55:ef:1d:60:c2:08:7f:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77570511D6CF51E3ABAFB2F756FE17F5291D8648
Validity
Not Before: Feb 4 20:03:26 2025 GMT
Not After : Feb 3 20:08:26 2026 GMT
Subject: CN=576460A585399A76D26F4FD1FDD2504E1EAE840D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c6:eb:e8:8f:8c:09:a5:02:f3:8d:04:a1:9a:
85:6a:53:7d:11:88:76:5e:9c:ef:3c:04:37:08:a1:
66:4c:3a:9c:39:ad:66:3b:ba:0a:9e:85:8d:10:e9:
94:04:4f:3d:a7:72:33:9f:85:a1:de:40:f7:79:53:
7f:04:68:bf:35:6e:39:60:22:12:37:39:08:69:14:
1f:d5:60:8f:99:c8:34:04:19:1e:0a:f3:2a:38:62:
e5:0f:71:e2:da:fd:37:c2:ff:7c:f6:ed:3e:2d:89:
99:25:cf:1e:db:50:10:2f:20:ab:44:85:9c:26:1d:
02:b6:50:e1:93:57:d9:8f:a7:aa:ba:52:7f:4a:22:
be:83:b8:57:f3:90:70:e7:e1:ad:a1:ca:9f:25:96:
df:19:d9:5d:14:86:c1:39:c0:08:ff:9a:9f:55:32:
87:32:f8:7e:63:f5:f8:c3:27:b7:5b:d2:aa:dc:44:
2a:bf:98:d1:a6:45:77:da:9c:b0:72:ff:ac:52:00:
e1:25:ba:1a:06:88:b8:3a:c6:e2:70:f4:68:ca:df:
0c:89:bf:44:94:f3:bc:b2:d4:33:dd:02:c8:4e:d0:
16:d9:5f:cb:51:ad:9a:0f:96:7c:d3:c4:a3:bc:80:
7b:f5:e1:45:32:20:4d:86:d7:91:cf:a8:d2:d8:97:
36:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:64:60:A5:85:39:9A:76:D2:6F:4F:D1:FD:D2:50:4E:1E:AE:84:0D
X509v3 Authority Key Identifier:
keyid:77:57:05:11:D6:CF:51:E3:AB:AF:B2:F7:56:FE:17:F5:29:1D:86:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e3230342e302f32342d3234203d3e20323731393336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.100.204.0/24
Signature Algorithm: sha256WithRSAEncryption
84:c1:f8:2d:48:82:b6:a2:55:ea:59:0a:b4:71:3e:7b:62:5b:
a9:e9:b9:b7:17:06:5f:a4:7f:53:7a:33:97:59:b8:55:e0:58:
b0:75:8f:ae:4d:77:20:70:aa:b3:31:d8:ed:a8:70:1f:a1:c5:
00:d4:46:67:02:eb:84:dd:66:00:1c:1a:75:28:12:9a:ff:f3:
5e:40:04:1a:22:9a:3d:a7:65:1d:ee:c3:6f:2e:fe:00:50:a2:
c6:c1:4c:e4:a7:fd:1a:f5:4b:b6:48:96:7c:36:fa:62:fd:32:
d6:2b:6f:b8:4a:b4:e4:f9:68:d8:fb:96:1c:70:c4:77:71:d7:
4b:3d:df:63:f1:bc:3e:31:f1:2e:c9:fd:fe:d0:75:63:b3:23:
f6:e3:29:48:da:6b:ce:f3:3f:b8:6b:a1:ee:dd:dd:25:8a:45:
29:47:43:89:00:61:d8:64:7e:cf:0b:2b:53:d6:84:55:ab:f8:
3a:c7:2e:7a:a3:54:76:99:f4:1d:bf:3c:83:19:54:ca:05:2d:
ca:78:42:e2:63:5a:86:72:df:77:a2:82:cb:e7:0a:f1:c9:3e:
de:88:9c:5b:a0:ea:11:1d:e8:a8:62:a8:10:7d:e7:fd:93:24:
06:00:20:b0:48:cc:02:df:dd:f0:45:33:cc:b4:eb:29:39:3d:
01:c3:51:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:56 2025 by rpki-client