Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS52444.roa
File: AS52444.roa (raw, json)
Hash identifier: 09jbezpA1Xrq2sLvFrAkjEVBQERmtwy5hxJZP1IlG8o=
Subject key identifier: 97:35:96:50:16:0C:34:E9:D6:62:F7:07:21:E4:25:FC:41:AB:BC:02
Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial: 2D977CCA8ED440226872108235353604BB573A32
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS52444.roa
Signing time: Tue 04 Feb 2025 18:13:42 +0000
ROA not before: Tue 04 Feb 2025 18:08:42 +0000
ROA not after: Tue 03 Feb 2026 18:13:42 +0000
asID: 52444
IP address blocks: 179.40.69.0/24 maxlen: 24
179.40.70.0/24 maxlen: 24
186.38.8.0/24 maxlen: 24
186.38.9.0/24 maxlen: 24
186.38.42.0/24 maxlen: 24
201.251.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:97:7c:ca:8e:d4:40:22:68:72:10:82:35:35:36:04:bb:57:3a:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Validity
Not Before: Feb 4 18:08:42 2025 GMT
Not After : Feb 3 18:13:42 2026 GMT
Subject: CN=97359650160C34E9D662F70721E425FC41ABBC02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f5:78:8b:05:05:53:40:66:0e:45:ee:6c:3f:
12:b8:29:9d:dc:57:0c:aa:2f:45:ab:d9:ae:a6:e2:
00:9a:38:03:0b:03:84:99:e6:a5:b4:bf:2e:f2:fd:
24:58:0b:07:6f:81:1e:99:7b:8c:e0:a4:b9:50:ea:
3f:09:a6:6e:49:1b:40:7f:97:c4:7a:88:82:c0:13:
be:4f:99:bc:77:13:0a:c8:86:0c:3e:79:21:de:81:
eb:33:75:5c:73:63:f4:47:09:39:71:87:9b:ef:6c:
98:29:03:fd:41:50:ed:da:12:bd:10:20:7a:89:7d:
1f:a1:a4:bd:c9:ff:39:ac:59:c1:0f:ef:84:ec:ca:
32:e1:03:05:d8:ef:e7:fe:84:7a:c5:db:77:a0:9a:
ca:88:4f:a8:8d:9a:ea:87:c1:54:f2:04:c8:13:27:
c2:d7:04:75:b3:7f:a0:c5:56:c2:f7:b7:b4:f8:b4:
e8:40:7a:f6:f5:be:5c:b6:1f:9b:d2:f3:f7:e9:11:
50:3c:70:d8:bd:4c:77:44:c0:c2:7a:a1:ca:25:dd:
93:a9:b7:80:32:23:5c:64:b1:e1:8f:7e:db:6e:90:
86:9b:46:d0:f4:86:8e:9b:6d:5b:2f:99:c9:22:b3:
c2:46:d2:15:00:23:9a:00:34:eb:2e:f5:47:b9:c8:
24:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:35:96:50:16:0C:34:E9:D6:62:F7:07:21:E4:25:FC:41:AB:BC:02
X509v3 Authority Key Identifier:
keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS52444.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.40.69.0-179.40.70.255
186.38.8.0/23
186.38.42.0/24
201.251.168.0/24
Signature Algorithm: sha256WithRSAEncryption
91:c4:5e:8a:0a:66:99:58:9d:fc:15:89:89:e1:34:eb:bd:d3:
ca:71:53:a5:84:5c:6f:b2:c8:3e:7d:51:cc:06:e2:f2:ff:e4:
47:4b:e0:a6:2f:0f:82:50:5f:b6:29:1d:f0:81:a9:35:c7:e4:
af:7a:c8:8c:41:9c:29:c8:e3:5f:15:1f:4a:84:93:71:8a:5a:
65:46:43:44:c8:1d:23:6d:f0:8c:0e:d6:64:a0:1b:cc:9d:c3:
02:c1:0c:15:ba:97:28:cd:ed:63:28:69:34:33:bb:15:d6:a3:
08:a0:27:8a:b0:0f:df:c6:5d:c2:aa:28:cb:21:04:12:1b:be:
39:7b:86:69:86:9e:8f:23:93:17:fc:56:46:42:ce:b6:17:68:
65:db:5d:af:f4:fd:48:ba:d4:17:5d:a2:f1:bf:dd:73:75:31:
83:ab:ef:fa:e0:6b:09:f4:1e:fd:3a:65:6f:33:da:e9:20:3a:
eb:f6:fb:08:18:be:bb:27:db:b1:63:b2:f1:7d:25:c8:e2:99:
85:a5:a5:e0:eb:4c:34:00:57:f5:69:66:90:f8:6a:55:ef:ca:
51:00:1f:d8:7e:51:c1:74:b3:51:ec:0d:2b:95:4d:28:d9:6a:
75:38:ad:b5:d5:0f:ca:fb:c2:1c:19:46:bc:eb:91:25:66:2c:
3d:65:dc:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:14:40 2025 by rpki-client