Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e3235322e302f32342d3234203d3e203532323537.roa
File: 3135372e3130302e3235322e302f32342d3234203d3e203532323537.roa (raw, json)
Hash identifier: AgHSgDOT2lUb7IY7EkgSkA1pkzKoxmYZul/hKZbyXSU=
Subject key identifier: 44:18:46:5E:37:72:D7:D0:13:C4:B1:CD:80:5D:AA:FB:11:02:88:03
Certificate issuer: /CN=77570511D6CF51E3ABAFB2F756FE17F5291D8648
Certificate serial: 2158EAABEBB398139D7ED9FBEA790FDC37611BEA
Authority key identifier: 77:57:05:11:D6:CF:51:E3:AB:AF:B2:F7:56:FE:17:F5:29:1D:86:48
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e3235322e302f32342d3234203d3e203532323537.roa
Signing time: Tue 04 Feb 2025 20:08:26 +0000
ROA not before: Tue 04 Feb 2025 20:03:26 +0000
ROA not after: Tue 03 Feb 2026 20:08:26 +0000
asID: 52257
IP address blocks: 157.100.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:58:ea:ab:eb:b3:98:13:9d:7e:d9:fb:ea:79:0f:dc:37:61:1b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77570511D6CF51E3ABAFB2F756FE17F5291D8648
Validity
Not Before: Feb 4 20:03:26 2025 GMT
Not After : Feb 3 20:08:26 2026 GMT
Subject: CN=4418465E3772D7D013C4B1CD805DAAFB11028803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5c:b6:00:1e:85:3f:22:d9:f7:fb:e2:e8:a2:
e4:5d:4b:2c:17:1f:d2:3b:7c:06:d4:64:62:c4:ae:
68:da:24:60:9c:00:81:89:b6:6c:9e:4e:55:39:61:
85:6f:6b:6e:06:6c:d5:d4:ca:46:92:31:3b:3a:e6:
53:41:3b:6f:7b:fd:bb:44:d6:e4:8e:8b:cc:ed:54:
48:dc:cd:91:e2:40:53:90:d0:c6:ec:6b:04:42:9f:
3e:be:fe:a9:93:50:4b:31:7a:c7:17:1a:b7:82:bf:
73:0c:fd:b8:0b:cc:54:d7:92:80:f1:e1:a2:b1:33:
2e:c6:f1:da:bc:10:d0:2e:bc:f3:39:ee:a8:08:5a:
e5:25:31:e2:55:b8:1c:28:cd:64:3b:74:36:b9:6d:
51:62:12:ee:74:0b:70:4d:ee:e7:00:22:f3:ee:e0:
d7:a2:60:a1:2d:25:7c:33:5f:12:83:a2:02:cc:1a:
19:f0:b1:cf:f6:0b:9b:ad:8d:9b:c3:40:6c:83:e5:
f5:3e:4b:bd:ed:6c:d4:3e:ac:9d:d7:c6:da:28:94:
1d:59:0e:87:47:8b:5e:a9:c5:35:42:c9:42:22:ba:
8b:1e:ca:ae:f8:09:bc:0b:01:26:db:2f:bc:2d:90:
72:53:c5:9d:61:5c:8e:4b:a6:0e:bd:de:4a:2d:ff:
10:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:18:46:5E:37:72:D7:D0:13:C4:B1:CD:80:5D:AA:FB:11:02:88:03
X509v3 Authority Key Identifier:
keyid:77:57:05:11:D6:CF:51:E3:AB:AF:B2:F7:56:FE:17:F5:29:1D:86:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e3235322e302f32342d3234203d3e203532323537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.100.252.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:84:61:93:56:c5:c3:79:be:2e:a4:c1:47:e8:a6:bd:5f:9c:
e3:1e:c7:c8:c7:34:47:a4:dd:17:aa:85:57:f4:97:43:bc:b4:
3c:ea:17:11:11:eb:d9:99:40:67:79:ad:6b:46:0e:cd:d2:3a:
fa:10:76:f3:4d:1b:f6:5d:a6:75:ee:a5:b1:4a:89:ca:89:d3:
67:1e:b3:3d:69:4c:49:dd:12:ab:41:b9:3d:ca:57:ab:96:cd:
36:87:49:83:4f:6f:f8:35:42:1c:ca:45:b3:24:75:b3:68:c3:
4e:ea:99:57:f6:78:fb:59:f0:49:51:11:97:d7:16:84:9b:07:
61:92:66:22:5c:e6:4e:b9:12:ea:a5:ef:ac:dc:4b:4f:50:65:
b4:17:a4:79:5c:10:64:24:a6:0f:51:b9:1c:ee:ba:98:ab:84:
c2:df:e2:c9:a7:96:19:76:57:d0:62:7a:48:03:58:b6:a4:51:
48:48:a4:f7:33:cc:34:f1:98:bc:9d:83:cc:a1:1b:e1:7b:12:
fd:bc:71:7d:74:08:24:5b:ac:32:e0:9c:fb:5f:9d:3b:f1:29:
31:eb:9a:c8:03:36:c1:c7:2a:d1:ce:5b:d3:a6:d3:76:fe:e9:
be:31:99:fd:0f:13:a2:0d:63:97:8a:20:37:7e:09:a8:48:fa:
f0:ef:3f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:32:51 2025 by rpki-client