Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e37312e302f32342d3234203d3e20323634363638.roa
File: 3135372e3130302e37312e302f32342d3234203d3e20323634363638.roa (raw, json)
Hash identifier: ooioW0akL90/ZL1PFvDkG3Jhsd40rc52FrbPj0TcxQc=
Subject key identifier: 3A:90:44:F4:36:10:C7:13:D4:11:FA:9D:4C:73:E2:C9:2B:9B:0F:2A
Certificate issuer: /CN=77570511D6CF51E3ABAFB2F756FE17F5291D8648
Certificate serial: 4C31FF6C8C85D3D3C2479B2609FB6FCC9CA843EA
Authority key identifier: 77:57:05:11:D6:CF:51:E3:AB:AF:B2:F7:56:FE:17:F5:29:1D:86:48
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e37312e302f32342d3234203d3e20323634363638.roa
Signing time: Tue 04 Feb 2025 20:08:28 +0000
ROA not before: Tue 04 Feb 2025 20:03:28 +0000
ROA not after: Tue 03 Feb 2026 20:08:28 +0000
asID: 264668
IP address blocks: 157.100.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:31:ff:6c:8c:85:d3:d3:c2:47:9b:26:09:fb:6f:cc:9c:a8:43:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77570511D6CF51E3ABAFB2F756FE17F5291D8648
Validity
Not Before: Feb 4 20:03:28 2025 GMT
Not After : Feb 3 20:08:28 2026 GMT
Subject: CN=3A9044F43610C713D411FA9D4C73E2C92B9B0F2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d9:58:1d:46:3e:81:10:19:fc:ee:4f:2c:c5:
c2:72:98:a2:c2:84:e3:d1:00:36:68:ef:61:26:c2:
3d:f9:8b:34:a3:bd:9e:21:d0:2c:75:1f:d0:ed:59:
79:8b:69:3f:94:27:35:15:af:f3:4e:ce:bf:e9:4d:
68:1d:7b:8c:73:00:dd:68:d4:24:48:5b:66:13:7b:
78:da:5b:16:87:22:85:d2:cf:30:4c:08:dd:3e:c6:
bc:81:ed:bf:fd:86:82:9d:de:04:7d:4e:f9:a2:29:
22:47:41:6c:08:5a:82:40:3c:18:ff:20:23:39:9a:
6b:dc:83:f1:02:94:93:60:6c:99:df:2a:05:37:65:
2f:91:4c:70:25:26:8a:3a:8e:58:38:c5:90:98:f7:
3d:8f:eb:98:57:e2:86:b1:e3:f7:e9:1e:4b:b7:55:
5c:2b:2b:0e:a1:dd:68:43:6f:f9:b2:da:63:71:93:
38:15:8c:18:e4:13:47:7b:0d:a8:50:1a:40:66:97:
a7:de:8f:b5:41:ad:50:1d:b2:1f:92:d2:82:eb:91:
0f:bd:8c:10:28:0a:72:58:0b:84:d4:3f:79:9c:12:
0e:08:05:2f:a5:bf:a9:4e:5b:9a:76:70:48:5c:c1:
40:ae:a8:0b:92:f9:ef:15:44:1a:72:22:ce:dc:e5:
55:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:90:44:F4:36:10:C7:13:D4:11:FA:9D:4C:73:E2:C9:2B:9B:0F:2A
X509v3 Authority Key Identifier:
keyid:77:57:05:11:D6:CF:51:E3:AB:AF:B2:F7:56:FE:17:F5:29:1D:86:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77570511D6CF51E3ABAFB2F756FE17F5291D8648.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/583869DF9D6A8CD6686F11C2A1040F7FE8AB686AB267D2871BE97291B398F1CA/0/3135372e3130302e37312e302f32342d3234203d3e20323634363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.100.71.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:e6:78:ea:04:2a:22:7d:b1:fc:0e:7c:4e:87:6a:ce:dc:37:
ac:d0:00:09:ed:4e:96:a1:d4:b0:c6:7f:5b:7a:9f:37:f1:00:
eb:57:b2:86:38:06:36:05:53:5c:46:08:f9:11:ff:17:ab:f1:
b8:bd:98:b9:1d:8b:3a:c1:b3:24:de:cd:bd:5f:a4:92:a2:f1:
53:84:bd:25:94:6c:8e:8a:36:ba:70:4e:7c:78:e7:99:53:2e:
99:8b:43:d2:d4:c9:f9:78:ae:f8:2a:51:20:62:67:c4:5a:59:
95:a1:5d:eb:be:1f:f9:10:8c:99:47:cf:67:ae:6f:d3:00:6a:
68:e9:f9:18:cf:5f:76:0e:03:4a:e2:ae:69:a8:af:22:3d:ec:
ab:6d:6b:18:55:eb:e6:e6:c2:f5:39:6f:69:f1:54:6a:93:23:
fc:d1:28:d9:58:a0:83:28:55:f6:a9:f3:8d:00:fb:18:1d:c4:
c2:3e:61:21:6f:c0:37:75:18:3c:7a:24:9b:bb:c1:01:7e:54:
ad:46:11:d6:f8:2f:33:ec:5f:96:64:ee:d3:09:23:86:f0:61:
b2:de:cf:b4:65:78:cb:f7:bf:c6:f2:43:29:ef:c7:a8:ff:31:
d3:6e:32:3f:84:e5:31:48:80:c8:6f:e4:05:1b:77:c2:cb:08:
7a:f9:60:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:00:09 2025 by rpki-client