Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5CAF293FC3AA169F9690CE471F4B18FEA4540C0274DAA76E908E4E0BBE15EA90/0/3137302e3233382e32302e302f32322d3234203d3e20323633373639.roa
File: 3137302e3233382e32302e302f32322d3234203d3e20323633373639.roa (raw, json)
Hash identifier: tU4zjnaW9J0DJSqkYYpa+MkzyQ4NJsYa/CeCBEtMv2Y=
Subject key identifier: A7:2A:D0:69:E2:85:00:1F:50:26:E0:A7:2E:97:28:BC:02:87:54:39
Certificate issuer: /CN=1A49578DBEACE7E265A25522F50005E6878A40E4
Certificate serial: 60858DEF2B16BAD409ACD6513AF2DB7D75E2C4EF
Authority key identifier: 1A:49:57:8D:BE:AC:E7:E2:65:A2:55:22:F5:00:05:E6:87:8A:40:E4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1A49578DBEACE7E265A25522F50005E6878A40E4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5CAF293FC3AA169F9690CE471F4B18FEA4540C0274DAA76E908E4E0BBE15EA90/0/3137302e3233382e32302e302f32322d3234203d3e20323633373639.roa
Signing time: Tue 04 Feb 2025 18:26:13 +0000
ROA not before: Tue 04 Feb 2025 18:21:13 +0000
ROA not after: Tue 03 Feb 2026 18:26:13 +0000
asID: 263769
IP address blocks: 170.238.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:85:8d:ef:2b:16:ba:d4:09:ac:d6:51:3a:f2:db:7d:75:e2:c4:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1A49578DBEACE7E265A25522F50005E6878A40E4
Validity
Not Before: Feb 4 18:21:13 2025 GMT
Not After : Feb 3 18:26:13 2026 GMT
Subject: CN=A72AD069E285001F5026E0A72E9728BC02875439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d7:d3:1f:63:b9:79:c2:8f:fa:6b:a8:b8:f3:
75:8c:57:bc:33:a5:14:1d:66:f0:37:4f:a8:67:74:
99:72:b5:ad:d1:ff:9c:2e:f4:c3:14:7d:eb:f7:ca:
fc:ab:00:6c:c4:a5:90:96:5f:12:24:f6:4b:cc:6b:
5f:3a:1b:76:18:90:db:6c:92:cd:05:31:29:9e:0a:
09:55:aa:3e:9b:31:89:fa:6a:25:5a:51:93:59:64:
be:96:86:62:a3:b0:f3:02:53:d1:79:ab:81:10:4c:
f3:98:b0:93:74:2d:9d:77:26:b2:4b:b4:c3:d5:3e:
db:1c:26:d6:21:5d:4b:26:b4:ac:ee:a6:df:94:42:
2d:14:1e:d9:fb:95:d6:66:9d:e4:44:95:d5:e1:55:
a7:1d:52:4f:d8:38:d5:36:52:ee:71:f1:dc:27:70:
b5:2d:b7:c0:f1:79:3d:15:4c:56:6f:d7:c1:be:4f:
ff:cc:ec:71:cc:77:1b:66:fc:60:8f:f2:bc:8a:fc:
29:1f:09:ce:77:be:79:b9:be:3b:73:9d:7f:47:26:
b5:00:ba:89:ee:e1:74:27:90:fe:2e:e8:01:f5:24:
64:9d:e5:24:1c:d7:b3:ea:7b:73:aa:35:e9:9b:12:
40:df:63:83:21:f9:3b:09:ac:4a:18:61:26:5b:5e:
ae:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2A:D0:69:E2:85:00:1F:50:26:E0:A7:2E:97:28:BC:02:87:54:39
X509v3 Authority Key Identifier:
keyid:1A:49:57:8D:BE:AC:E7:E2:65:A2:55:22:F5:00:05:E6:87:8A:40:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5CAF293FC3AA169F9690CE471F4B18FEA4540C0274DAA76E908E4E0BBE15EA90/0/1A49578DBEACE7E265A25522F50005E6878A40E4.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1A49578DBEACE7E265A25522F50005E6878A40E4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5CAF293FC3AA169F9690CE471F4B18FEA4540C0274DAA76E908E4E0BBE15EA90/0/3137302e3233382e32302e302f32322d3234203d3e20323633373639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.238.20.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:82:87:24:93:b1:23:6a:c6:f0:1c:4d:f7:dc:57:f2:b3:f4:
9d:dc:96:3a:1c:3f:12:d0:c4:00:f1:9a:90:fc:0c:a4:1a:1d:
3f:d8:fd:72:17:1a:6c:d1:7f:ba:20:84:09:fc:b7:48:e9:1b:
19:1c:06:ae:0c:7e:f4:32:28:56:31:1d:9c:1d:21:bb:a8:a1:
2e:9f:6e:d9:0d:cf:6c:22:e4:6d:d2:89:3f:19:59:f4:5b:b1:
0c:ba:f4:e1:5a:53:2a:86:73:cf:ab:99:7d:a4:41:1e:ca:ee:
89:cd:3d:ad:df:e4:74:78:cd:82:80:11:93:ef:a7:cb:1d:be:
46:ba:69:cf:68:7e:51:de:6d:cf:4c:c3:7a:35:c3:47:ca:fd:
42:e6:65:33:f6:dc:cd:c9:29:ef:9d:19:fd:b9:7a:18:49:5f:
f5:91:ac:41:e6:62:c8:17:84:55:32:04:6e:fa:16:e5:96:95:
55:e1:41:a1:c4:10:3d:1d:c8:3a:30:7e:5e:89:78:bc:35:73:
c0:fd:d9:33:f5:ce:33:41:14:26:59:95:db:b4:f3:42:e4:0a:
e5:43:97:fa:ea:f3:d9:03:f2:40:64:c1:fc:46:c7:75:58:6f:
ea:13:13:53:47:bc:31:84:d6:4c:9d:83:e6:33:eb:07:a7:76:
44:f1:27:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:05:09 2025 by rpki-client