Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/59F36B0CBC171A077B2C875AF9E151B9693CD3C0EE3EE4D5E8B2B4A6A5BD7C50/0/3137392e302e3130342e302f32322d3234203d3e20323731393039.roa
File: 3137392e302e3130342e302f32322d3234203d3e20323731393039.roa (raw, json)
Hash identifier: iDju2AshPeC/nAPVv3lphaZcf7hiLvOphsGhZWTkq5M=
Subject key identifier: 42:C3:6D:AA:DF:7D:B6:C3:88:D5:4C:63:C2:7E:2E:02:FF:4D:FD:9B
Certificate issuer: /CN=923C8F2614D4C90EE12E7F692F19A572D92A35FC
Certificate serial: 213CEA24DA09C1AD2F795D3A13F1C0F3A48EDA54
Authority key identifier: 92:3C:8F:26:14:D4:C9:0E:E1:2E:7F:69:2F:19:A5:72:D9:2A:35:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/923C8F2614D4C90EE12E7F692F19A572D92A35FC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/59F36B0CBC171A077B2C875AF9E151B9693CD3C0EE3EE4D5E8B2B4A6A5BD7C50/0/3137392e302e3130342e302f32322d3234203d3e20323731393039.roa
Signing time: Tue 04 Feb 2025 18:41:02 +0000
ROA not before: Tue 04 Feb 2025 18:36:02 +0000
ROA not after: Tue 03 Feb 2026 18:41:02 +0000
asID: 271909
IP address blocks: 179.0.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:3c:ea:24:da:09:c1:ad:2f:79:5d:3a:13:f1:c0:f3:a4:8e:da:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=923C8F2614D4C90EE12E7F692F19A572D92A35FC
Validity
Not Before: Feb 4 18:36:02 2025 GMT
Not After : Feb 3 18:41:02 2026 GMT
Subject: CN=42C36DAADF7DB6C388D54C63C27E2E02FF4DFD9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:da:de:b3:96:79:ff:7d:a7:69:fb:eb:ea:35:
0a:82:f3:eb:15:c5:71:30:f3:4a:bd:19:2a:6e:8c:
73:46:d4:e0:96:92:eb:a7:3f:56:a3:e4:60:92:3e:
d0:fe:01:6b:e8:a9:fb:9e:7a:b0:e6:21:ea:29:f0:
4c:65:2c:ad:52:e2:f7:4d:63:d0:20:72:52:72:2a:
18:d5:79:56:ba:a2:11:8c:2f:d1:98:91:93:a9:25:
72:e6:d1:9c:ff:a8:0c:d3:c3:1a:d0:88:1a:0a:f9:
25:5f:ec:c2:20:60:36:cd:2d:c3:27:b5:04:a7:e3:
65:71:27:cf:c2:a9:ae:da:9c:2d:fb:c0:be:53:b7:
d8:be:86:7e:a2:09:8b:df:e0:19:33:94:12:55:29:
ea:86:4d:66:3c:0c:8f:2e:6b:b5:b7:d3:ad:88:ca:
b4:3a:bf:64:7c:b2:bf:05:37:d8:b9:fb:88:51:67:
31:1b:e9:5b:1f:72:bc:06:76:be:04:7c:72:49:50:
1e:8e:03:8d:6d:16:0f:e4:6e:bc:f6:a9:b6:ba:79:
1d:43:15:df:f1:1e:8d:bf:95:68:ce:79:d5:4d:29:
54:21:28:e3:be:47:3b:2a:8a:f8:b0:d1:ff:0a:32:
5c:cc:3a:65:31:35:0c:25:c6:d8:9e:7f:e3:83:4f:
9f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C3:6D:AA:DF:7D:B6:C3:88:D5:4C:63:C2:7E:2E:02:FF:4D:FD:9B
X509v3 Authority Key Identifier:
keyid:92:3C:8F:26:14:D4:C9:0E:E1:2E:7F:69:2F:19:A5:72:D9:2A:35:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/59F36B0CBC171A077B2C875AF9E151B9693CD3C0EE3EE4D5E8B2B4A6A5BD7C50/0/923C8F2614D4C90EE12E7F692F19A572D92A35FC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/923C8F2614D4C90EE12E7F692F19A572D92A35FC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/59F36B0CBC171A077B2C875AF9E151B9693CD3C0EE3EE4D5E8B2B4A6A5BD7C50/0/3137392e302e3130342e302f32322d3234203d3e20323731393039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.0.104.0/22
Signature Algorithm: sha256WithRSAEncryption
88:5d:73:5c:04:17:d2:a3:37:ff:60:05:9b:84:45:49:28:d7:
82:03:f0:99:50:e1:70:ae:17:90:ba:84:63:02:56:f2:90:1f:
80:ab:9e:37:18:17:53:5e:57:ab:7c:f3:d2:29:73:6e:15:c0:
b9:cd:3e:69:92:80:21:a3:a3:bd:46:ac:e2:d9:ec:ee:1b:31:
49:75:a8:0d:bf:56:55:c9:71:09:45:72:30:23:dd:c9:68:07:
5b:83:c6:97:89:5b:6d:d6:c6:26:b9:31:ac:42:a9:66:a2:e5:
3e:e1:c2:66:3e:74:1d:fb:51:1b:20:27:c9:1b:aa:47:0f:a9:
6a:4f:87:1f:e6:8a:2b:3c:7d:24:c6:ae:07:a1:1f:0f:d6:10:
8b:1d:b6:31:f6:e8:a9:26:c0:fd:22:1c:72:d8:86:ec:90:f1:
68:11:3f:de:80:05:61:c5:a9:3b:ec:be:2d:d1:26:7d:4b:d5:
ff:63:2d:aa:6a:a9:50:09:19:fe:02:88:34:d6:a8:29:54:ab:
a2:5e:14:29:ac:cc:e2:7b:59:d0:76:51:c4:48:11:22:6b:a7:
0d:e7:29:db:9d:2f:07:d2:23:99:65:ba:05:b1:31:3f:58:03:
d2:58:a6:7a:18:84:b7:48:bc:8f:5d:4b:40:d6:a2:83:16:95:
6a:eb:66:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:52:09 2025 by rpki-client