Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/58987EAFB0C2B7C4CEE1389DF7A75BA8E5134C60DBB53093024E2471BDA66276/0/34352e3232352e34332e302f32342d3234203d3e20323636363535.roa
File: 34352e3232352e34332e302f32342d3234203d3e20323636363535.roa (raw, json)
Hash identifier: Bpd+GlFWnDqaG6j34WPalZdCeH3C6e2dku4hZ6kliG4=
Subject key identifier: 4C:EA:BE:CB:ED:D6:B1:E2:67:10:8B:D6:F1:6A:02:FE:59:83:43:F5
Certificate issuer: /CN=97D1E81CAFD7CF1F5FEE08285EA1177A46AB17CB
Certificate serial: 1A9C74C31C53B763A11806365CC56A78A13FCDCE
Authority key identifier: 97:D1:E8:1C:AF:D7:CF:1F:5F:EE:08:28:5E:A1:17:7A:46:AB:17:CB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/97D1E81CAFD7CF1F5FEE08285EA1177A46AB17CB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/58987EAFB0C2B7C4CEE1389DF7A75BA8E5134C60DBB53093024E2471BDA66276/0/34352e3232352e34332e302f32342d3234203d3e20323636363535.roa
Signing time: Tue 04 Feb 2025 18:24:16 +0000
ROA not before: Tue 04 Feb 2025 18:19:16 +0000
ROA not after: Tue 03 Feb 2026 18:24:16 +0000
asID: 266655
IP address blocks: 45.225.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:9c:74:c3:1c:53:b7:63:a1:18:06:36:5c:c5:6a:78:a1:3f:cd:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97D1E81CAFD7CF1F5FEE08285EA1177A46AB17CB
Validity
Not Before: Feb 4 18:19:16 2025 GMT
Not After : Feb 3 18:24:16 2026 GMT
Subject: CN=4CEABECBEDD6B1E267108BD6F16A02FE598343F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:29:be:7d:2a:33:af:62:5d:85:c8:2b:4a:ef:
7e:b4:af:f1:0e:51:08:73:33:5a:ef:98:c8:cf:7b:
9e:ed:57:7d:e7:89:89:5e:b5:3b:62:66:8f:01:b1:
76:43:9e:48:f7:c6:b9:5a:e4:51:ee:ab:d7:bc:78:
3d:14:94:01:33:5a:e8:ff:ff:e7:69:fa:f8:0b:26:
96:ed:0f:20:bb:8f:e4:27:a6:dc:1d:33:e2:88:1e:
a8:f3:e8:10:03:de:fe:78:a6:58:31:44:86:f1:93:
6b:04:6c:8a:54:04:12:a6:67:bc:5b:d9:f0:2f:31:
cd:e9:d6:5e:09:85:16:09:90:3e:2d:65:f6:e7:db:
a0:64:6e:fc:33:14:d3:10:bc:69:cc:24:b8:df:8e:
88:55:0b:99:cc:24:d8:c9:2e:45:36:73:09:76:8d:
10:49:0c:64:d3:03:2e:dd:1b:ac:e0:21:de:51:af:
13:57:6c:60:2e:ea:4c:5d:92:0f:62:19:04:88:55:
91:8d:84:07:9a:e1:b9:8c:35:84:ae:73:e2:7c:2f:
f6:73:5b:dc:cc:55:f7:c3:77:52:b4:e8:a4:6c:2d:
19:03:eb:fc:bd:2a:28:af:a4:27:70:cf:b5:b3:8b:
19:66:18:07:d7:d0:79:9b:77:6d:68:37:f7:0a:16:
03:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EA:BE:CB:ED:D6:B1:E2:67:10:8B:D6:F1:6A:02:FE:59:83:43:F5
X509v3 Authority Key Identifier:
keyid:97:D1:E8:1C:AF:D7:CF:1F:5F:EE:08:28:5E:A1:17:7A:46:AB:17:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/58987EAFB0C2B7C4CEE1389DF7A75BA8E5134C60DBB53093024E2471BDA66276/0/97D1E81CAFD7CF1F5FEE08285EA1177A46AB17CB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/97D1E81CAFD7CF1F5FEE08285EA1177A46AB17CB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/58987EAFB0C2B7C4CEE1389DF7A75BA8E5134C60DBB53093024E2471BDA66276/0/34352e3232352e34332e302f32342d3234203d3e20323636363535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.225.43.0/24
Signature Algorithm: sha256WithRSAEncryption
63:a9:71:e6:c3:39:f0:8d:77:c3:47:78:a4:bf:bd:f6:90:0c:
1d:66:d2:61:9b:05:70:a5:35:19:68:97:a0:9f:a6:d2:43:10:
a1:72:ef:23:1e:9f:4c:6f:2c:c7:a6:31:a9:a9:86:5a:99:8d:
4f:38:5c:2d:b0:0c:a3:2b:32:49:ad:dc:7a:ce:1f:1b:59:ea:
d2:9c:e6:20:21:78:90:ac:b3:fb:bc:4b:4b:a1:9b:7c:61:0a:
18:a1:56:4d:4f:a9:2b:91:fa:90:0c:f8:51:7c:02:88:2a:b5:
ad:59:1b:c5:72:04:d7:7f:b1:44:ee:92:bb:ac:1a:45:af:9f:
9b:b2:ef:f0:40:e1:13:5e:f0:f1:f8:fd:b8:0d:3d:40:3a:eb:
c8:de:e3:ee:58:4c:ff:88:bb:e8:d4:5d:ef:00:08:c2:e1:2d:
da:02:76:44:d9:1e:4c:38:21:43:ab:3b:dc:01:2d:69:c9:a4:
b0:cf:8c:96:74:60:52:59:38:fd:4b:9e:9f:d4:7f:78:20:fd:
1d:71:12:40:03:46:99:7e:be:02:fd:57:8c:57:82:aa:da:42:
7c:bb:1b:24:c3:fd:f2:9c:bc:43:85:e7:2d:85:30:50:9e:c2:
a9:70:f3:db:e3:e2:70:96:6f:f7:11:15:b5:bf:fe:c5:8c:9f:
2f:ea:9e:1a
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUGpx0wxxTt2OhGAY2XMVqeKE/zc4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTdEMUU4MUNBRkQ3Q0YxRjVGRUUwODI4NUVBMTE3N0E0
NkFCMTdDQjAeFw0yNTAyMDQxODE5MTZaFw0yNjAyMDMxODI0MTZaMDMxMTAvBgNV
BAMTKDRDRUFCRUNCRURENkIxRTI2NzEwOEJENkYxNkEwMkZFNTk4MzQzRjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRKb59KjOvYl2FyCtK7360r/EO
UQhzM1rvmMjPe57tV33niYletTtiZo8BsXZDnkj3xrla5FHuq9e8eD0UlAEzWuj/
/+dp+vgLJpbtDyC7j+QnptwdM+KIHqjz6BAD3v54plgxRIbxk2sEbIpUBBKmZ7xb
2fAvMc3p1l4JhRYJkD4tZfbn26BkbvwzFNMQvGnMJLjfjohVC5nMJNjJLkU2cwl2
jRBJDGTTAy7dG6zgId5RrxNXbGAu6kxdkg9iGQSIVZGNhAea4bmMNYSuc+J8L/Zz
W9zMVffDd1K06KRsLRkD6/y9KiivpCdwz7WzixlmGAfX0Hmbd21oN/cKFgOlAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUTOq+y+3WseJnEIvW8WoC/lmDQ/UwHwYDVR0j
BBgwFoAUl9HoHK/Xzx9f7ggoXqEXekarF8swDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81ODk4N0VBRkIwQzJCN0M0Q0VFMTM4OURGN0E3NUJBOEU1
MTM0QzYwREJCNTMwOTMwMjRFMjQ3MUJEQTY2Mjc2LzAvOTdEMUU4MUNBRkQ3Q0Yx
RjVGRUUwODI4NUVBMTE3N0E0NkFCMTdDQi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85N0QxRTgxQ0FGRDdDRjFGNUZF
RTA4Mjg1RUExMTc3QTQ2QUIxN0NCLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTg5ODdFQUZCMEMyQjdDNENFRTEzODlERjdBNzVCQThFNTEzNEM2MERC
QjUzMDkzMDI0RTI0NzFCREE2NjI3Ni8wLzM0MzUyZTMyMzIzNTJlMzQzMzJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzYzNjM2MzUzNS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC3hKzAN
BgkqhkiG9w0BAQsFAAOCAQEAY6lx5sM58I13w0d4pL+99pAMHWbSYZsFcKU1GWiX
oJ+m0kMQoXLvIx6fTG8sx6YxqamGWpmNTzhcLbAMoysySa3ces4fG1nq0pzmICF4
kKyz+7xLS6GbfGEKGKFWTU+pK5H6kAz4UXwCiCq1rVkbxXIE13+xRO6Su6waRa+f
m7Lv8EDhE17w8fj9uA09QDrryN7j7lhM/4i76NRd7wAIwuEt2gJ2RNkeTDghQ6s7
3AEtacmksM+MlnRgUlk4/Uuen9R/eCD9HXESQANGmX6+Av1XjFeCqtpCfLsbJMP9
8py8Q4XnLYUwUJ7CqXDz2+PicJZv9xEVtb/+xYyfL+qeGg==
-----END CERTIFICATE-----
Generated at Sun Apr 6 03:06:21 2025 by rpki-client