Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5908941AC14891934A6AB9537E6AC980A20D5FEB8F41AC8436184D5C68486FC8/0/34352e37312e3230322e302f32332d3234203d3e203532343638.roa
File: 34352e37312e3230322e302f32332d3234203d3e203532343638.roa (raw, json)
Hash identifier: eQvuBQGJISoPwezoZaZWzI7tPWhkuTEMvwVD33K73q8=
Subject key identifier: A3:A6:5F:48:C7:27:80:B1:DF:1D:3A:42:58:FE:03:6A:B1:15:3E:25
Certificate issuer: /CN=F0922EC2833EAD17A747DBA885C8FF32611CEA72
Certificate serial: 13154CD6009EFAB08D942E9CB05662B0C220F066
Authority key identifier: F0:92:2E:C2:83:3E:AD:17:A7:47:DB:A8:85:C8:FF:32:61:1C:EA:72
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F0922EC2833EAD17A747DBA885C8FF32611CEA72.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5908941AC14891934A6AB9537E6AC980A20D5FEB8F41AC8436184D5C68486FC8/0/34352e37312e3230322e302f32332d3234203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:14:41 +0000
ROA not before: Tue 04 Feb 2025 18:09:41 +0000
ROA not after: Tue 03 Feb 2026 18:14:41 +0000
asID: 52468
IP address blocks: 45.71.202.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:15:4c:d6:00:9e:fa:b0:8d:94:2e:9c:b0:56:62:b0:c2:20:f0:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F0922EC2833EAD17A747DBA885C8FF32611CEA72
Validity
Not Before: Feb 4 18:09:41 2025 GMT
Not After : Feb 3 18:14:41 2026 GMT
Subject: CN=A3A65F48C72780B1DF1D3A4258FE036AB1153E25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ef:3a:6e:d1:6e:8c:37:db:6b:fd:ed:02:58:
0c:62:6e:69:b1:15:e8:22:15:e7:fd:32:90:2b:a4:
3f:d3:9e:00:f4:05:30:d8:79:15:66:48:88:26:48:
2c:03:1c:98:69:49:38:3c:90:eb:d8:4f:ed:ea:c1:
fb:9d:25:6c:d7:06:3d:a7:93:af:2e:a6:a5:ed:b9:
8b:ac:dc:aa:ea:90:f0:9e:86:09:35:48:97:cf:a6:
93:b5:b2:13:79:8a:74:bb:29:ba:f9:6f:80:85:9b:
cb:33:f2:7a:dc:dd:ac:ec:c3:ea:b3:24:9b:5e:ef:
e7:b8:35:b6:9e:95:3b:fd:5a:16:c6:c1:e0:6c:7f:
37:c5:ec:af:65:a3:b8:8b:e7:37:4f:fc:92:bc:b4:
8b:2a:53:e3:b0:3f:06:2a:0e:6d:bc:eb:8f:10:72:
c7:ad:7f:69:3b:69:4e:82:ac:39:a7:7c:49:26:e4:
62:de:c1:3f:0f:c3:84:59:94:cd:7e:a3:dc:3d:cf:
f6:a1:bb:d2:ae:7d:93:b3:ca:cd:c4:ea:9d:19:33:
5b:d1:f8:ed:ce:d1:f0:a5:3e:04:bb:c5:0f:c0:b1:
37:0c:17:ef:2e:77:75:5b:b6:39:dd:4a:f7:b1:67:
ca:29:ce:85:ff:a8:3d:52:ae:e3:51:82:91:af:84:
11:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:A6:5F:48:C7:27:80:B1:DF:1D:3A:42:58:FE:03:6A:B1:15:3E:25
X509v3 Authority Key Identifier:
keyid:F0:92:2E:C2:83:3E:AD:17:A7:47:DB:A8:85:C8:FF:32:61:1C:EA:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5908941AC14891934A6AB9537E6AC980A20D5FEB8F41AC8436184D5C68486FC8/0/F0922EC2833EAD17A747DBA885C8FF32611CEA72.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F0922EC2833EAD17A747DBA885C8FF32611CEA72.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5908941AC14891934A6AB9537E6AC980A20D5FEB8F41AC8436184D5C68486FC8/0/34352e37312e3230322e302f32332d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.71.202.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:d0:d3:e5:9d:e5:80:c8:f7:87:77:a9:35:d0:7e:1c:c2:10:
ad:9b:0e:2a:49:83:83:5a:2f:0d:18:c3:85:19:72:ff:d7:5f:
b2:d7:a9:62:96:e8:a5:2d:24:d2:8c:7c:38:dc:eb:7d:c6:5b:
76:d9:a9:8b:c0:fc:d8:30:ee:53:20:8b:f4:c2:ad:86:fe:04:
4b:65:f5:f6:7c:13:54:97:cf:47:87:a8:6b:51:d8:36:ba:bb:
74:0b:25:f7:ba:ea:39:e2:9e:88:fd:bf:a0:6b:e7:4b:45:52:
cb:8d:1f:a7:8e:00:c4:9b:a5:ca:c4:be:cc:e4:03:59:5d:73:
5c:78:d0:9c:62:e7:88:42:e3:73:9d:3d:e2:b0:f9:76:ed:c0:
f4:87:df:44:e6:01:93:d2:9a:e8:6e:bd:c8:82:f9:fe:37:78:
2b:21:4b:7e:d7:3b:a0:65:19:df:d3:d9:96:ab:cc:57:70:58:
6f:b5:3b:58:cb:03:32:29:43:f7:da:d7:17:b4:f7:93:d6:23:
3b:fd:25:1c:70:c6:7f:ce:f5:49:85:c9:a6:98:61:e8:74:d6:
a2:6a:c7:7c:63:3c:aa:85:cd:c0:f7:55:79:c0:77:c8:b5:7b:
da:96:eb:ad:e2:8b:4c:4f:62:c6:82:6c:a6:cc:09:3e:dd:e3:
c8:d3:fb:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:11:58 2025 by rpki-client