Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5ED81E3C41EC842A2DCCA01F3F27C3D303FE9AB92540B9A025C9015D06A59906/0/34352e3136372e3136382e302f32322d3234203d3e20323637373338.roa
File: 34352e3136372e3136382e302f32322d3234203d3e20323637373338.roa (raw, json)
Hash identifier: b3vgQbUO3RxC9A/RGbTs2IwZXC56pQbu4CJRlyBzwLY=
Subject key identifier: 6C:21:B9:C9:9F:CF:4F:AC:D1:E5:95:95:09:1D:B0:86:BE:60:13:0F
Certificate issuer: /CN=8731934F50EFF6B6DBAA4DFB4F709849DE02FFB1
Certificate serial: 4C877BC89050E4942B4E3D4F1BC36FD6481CB078
Authority key identifier: 87:31:93:4F:50:EF:F6:B6:DB:AA:4D:FB:4F:70:98:49:DE:02:FF:B1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8731934F50EFF6B6DBAA4DFB4F709849DE02FFB1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5ED81E3C41EC842A2DCCA01F3F27C3D303FE9AB92540B9A025C9015D06A59906/0/34352e3136372e3136382e302f32322d3234203d3e20323637373338.roa
Signing time: Tue 04 Feb 2025 19:57:14 +0000
ROA not before: Tue 04 Feb 2025 19:52:14 +0000
ROA not after: Tue 03 Feb 2026 19:57:14 +0000
asID: 267738
IP address blocks: 45.167.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:87:7b:c8:90:50:e4:94:2b:4e:3d:4f:1b:c3:6f:d6:48:1c:b0:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8731934F50EFF6B6DBAA4DFB4F709849DE02FFB1
Validity
Not Before: Feb 4 19:52:14 2025 GMT
Not After : Feb 3 19:57:14 2026 GMT
Subject: CN=6C21B9C99FCF4FACD1E59595091DB086BE60130F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:9a:12:97:15:71:23:15:93:f5:dd:3a:20:ff:
d8:3d:4d:d5:ba:0e:fe:2a:3b:4f:f7:e3:df:27:bd:
98:b6:87:35:58:1a:36:5b:6a:3a:eb:5b:31:a3:1e:
79:5d:62:0e:c3:b7:9b:cb:4f:f3:72:58:ad:65:8b:
4c:a1:2d:16:0c:58:4c:72:00:1a:92:a2:6b:1f:25:
81:6f:e9:cd:d6:89:26:96:6e:85:9f:90:15:6f:bd:
c2:02:b0:10:b9:3a:a4:42:19:57:7f:7b:69:c1:95:
47:8d:4c:fe:39:04:81:eb:34:6f:d4:52:db:1b:f5:
83:a9:90:16:c4:9f:74:c2:3b:cf:ee:74:96:4c:da:
0e:9a:e1:f9:c2:71:98:2d:ba:f5:ac:c0:d2:0d:e1:
cb:fd:45:49:7f:16:28:c0:27:38:fc:5b:2c:e9:c7:
bd:42:0f:35:3c:67:17:29:08:22:8e:56:4e:78:af:
71:3f:e2:09:18:e5:86:c8:92:e6:ef:ac:de:18:8c:
fc:40:50:1c:89:53:09:e2:6d:83:99:5f:3b:a6:96:
09:93:35:b7:0c:78:2f:c3:e9:9b:ed:3f:ad:f2:b5:
c9:1a:c2:6d:5d:38:65:1b:bb:85:af:1e:9d:52:0f:
c5:2f:0a:7d:38:cf:22:58:04:af:9d:ef:96:de:92:
5c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:21:B9:C9:9F:CF:4F:AC:D1:E5:95:95:09:1D:B0:86:BE:60:13:0F
X509v3 Authority Key Identifier:
keyid:87:31:93:4F:50:EF:F6:B6:DB:AA:4D:FB:4F:70:98:49:DE:02:FF:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5ED81E3C41EC842A2DCCA01F3F27C3D303FE9AB92540B9A025C9015D06A59906/0/8731934F50EFF6B6DBAA4DFB4F709849DE02FFB1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8731934F50EFF6B6DBAA4DFB4F709849DE02FFB1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5ED81E3C41EC842A2DCCA01F3F27C3D303FE9AB92540B9A025C9015D06A59906/0/34352e3136372e3136382e302f32322d3234203d3e20323637373338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.167.168.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:a6:c7:dc:0a:30:de:fc:35:e6:ba:12:9a:65:33:df:ed:a8:
89:53:7d:72:d8:2a:e6:71:ed:93:d4:4b:a5:10:c4:5a:ec:b2:
0f:1a:aa:ea:fe:f1:2b:44:8b:17:14:a9:18:4a:06:4d:69:ab:
01:f8:c4:ae:5c:aa:6c:25:7e:21:13:5b:f8:2e:66:dc:a2:33:
38:4f:d7:51:2d:92:cf:36:00:8d:82:4c:53:ce:b1:71:2f:91:
88:90:ce:5f:73:9e:5e:93:3a:32:e4:78:f3:10:9d:d3:dc:08:
e4:65:b7:6e:46:68:5a:88:ad:f3:75:41:de:e6:0c:7a:36:e5:
3f:56:7b:6e:d1:73:dc:0e:45:d8:0d:af:cc:17:04:c2:26:e2:
46:9b:a9:16:dc:8a:77:e0:1b:17:12:ed:5f:c6:bf:85:6e:f5:
93:9c:84:52:e6:2d:27:13:93:3e:b4:e4:c1:03:4c:69:4b:cf:
02:2f:6a:d4:d0:3a:e1:78:20:ef:11:0d:7a:a2:d6:12:02:91:
7c:92:e6:9d:24:60:46:c4:0c:a6:e1:da:be:6e:02:11:4b:05:
8a:d2:df:76:11:34:80:d6:3f:0d:f2:9a:7d:ed:20:02:c1:d1:
e5:0d:34:8a:e7:d4:7d:88:8f:9d:c4:1b:f5:3a:e5:ad:b2:80:
a9:34:85:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:57:49 2025 by rpki-client