Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS52367.roa
File: AS52367.roa (raw, json)
Hash identifier: 934UGfUXZDqu+bSuB45VaVwf/7F0B7HUQYo9Ma0KdXI=
Subject key identifier: A8:1B:4A:C0:74:AE:03:ED:31:FB:8A:E5:91:C2:88:F3:49:5C:C2:80
Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial: 35E084821A38BA49BBD61E49A73B06498686B01B
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS52367.roa
Signing time: Tue 04 Feb 2025 18:13:40 +0000
ROA not before: Tue 04 Feb 2025 18:08:40 +0000
ROA not after: Tue 03 Feb 2026 18:13:40 +0000
asID: 52367
IP address blocks: 186.56.48.0/24 maxlen: 24
186.56.49.0/24 maxlen: 24
186.56.57.0/24 maxlen: 24
186.56.58.0/24 maxlen: 24
201.251.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:e0:84:82:1a:38:ba:49:bb:d6:1e:49:a7:3b:06:49:86:86:b0:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Validity
Not Before: Feb 4 18:08:40 2025 GMT
Not After : Feb 3 18:13:40 2026 GMT
Subject: CN=A81B4AC074AE03ED31FB8AE591C288F3495CC280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3c:c1:9b:c0:19:c0:3c:6d:b2:7e:4d:fa:9d:
da:73:85:9d:62:fd:a3:9e:08:75:7e:13:71:05:18:
f9:da:72:89:97:20:61:4e:3e:bd:60:89:c1:cb:27:
f1:16:c6:c3:34:72:2e:e5:93:c3:b5:a9:8d:2e:81:
6a:89:1a:b1:b0:69:60:4e:a9:07:20:32:37:90:c7:
89:8e:99:08:54:28:2c:e1:a7:a5:a2:ae:61:80:1a:
bc:c6:ec:dd:f5:50:2f:a2:de:3e:c3:f2:94:96:88:
34:14:ce:03:89:f2:bf:bf:44:5d:b0:06:70:13:74:
35:10:11:6f:12:c9:96:b2:89:cb:5a:b0:08:e4:da:
68:bb:7a:a1:07:08:f0:7e:b4:bf:56:d4:f3:a7:9e:
11:96:b1:28:76:a2:68:60:38:31:e5:95:38:62:7d:
1e:e0:86:68:32:76:04:42:07:71:02:61:22:f1:7a:
de:33:21:56:9e:1c:f6:7b:db:41:69:26:a5:c3:94:
8f:8a:2b:95:c9:c3:5b:bc:7e:a1:25:16:3d:ce:5a:
5f:e0:96:08:a2:fe:8f:4c:65:f5:56:72:20:f0:c7:
a7:b4:69:99:6d:28:2f:ad:8a:34:01:a3:51:87:1c:
b9:03:34:7e:dc:3d:d2:86:e0:7a:cd:ad:e5:eb:94:
b1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:1B:4A:C0:74:AE:03:ED:31:FB:8A:E5:91:C2:88:F3:49:5C:C2:80
X509v3 Authority Key Identifier:
keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS52367.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.56.48.0/23
186.56.57.0-186.56.58.255
201.251.140.0/24
Signature Algorithm: sha256WithRSAEncryption
32:31:c6:52:49:2e:a5:75:9f:7f:46:fb:82:7c:af:6c:ca:49:
9f:c8:4b:07:c3:0d:85:0e:e2:8e:9d:cf:0e:dc:a5:cf:73:01:
a8:e5:92:87:5b:b5:81:4f:0a:96:8e:4a:13:09:96:47:60:99:
14:2c:e6:28:ce:af:ec:90:95:31:31:bb:e3:54:0d:55:1b:6a:
72:cb:cd:e2:56:2c:45:a4:14:6f:ca:08:f9:6d:7c:3e:57:a7:
b2:df:ff:ec:04:4a:af:e1:0c:7d:31:e5:3f:62:4b:17:31:55:
8d:17:6c:4e:2e:3f:f4:95:c0:8a:37:08:ff:ca:02:56:6c:7c:
7b:e3:35:e1:fa:cd:f2:c3:8e:4a:60:c1:5d:fb:b5:52:09:46:
6a:2e:27:b1:e3:62:22:88:96:42:f6:27:27:02:c3:c8:6d:c3:
d7:44:d9:8a:88:8e:11:d9:b9:c5:4f:12:81:1c:a0:8a:e6:09:
a7:30:cb:77:7a:01:02:35:e6:ac:72:12:e3:72:80:07:70:59:
9c:dc:72:a2:f0:fa:06:ba:0c:e1:92:3e:a7:9c:c5:bc:19:a2:
f6:e0:49:9b:2c:7b:04:bd:bc:42:f1:a7:1d:2b:d3:37:fd:ed:
d5:78:50:b9:0a:8a:b1:b5:99:c6:44:96:be:24:63:47:46:1d:
51:17:17:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:34 2025 by rpki-client