Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/34352e36352e3133362e302f32322d3232203d3e20323733303031.roa
File: 34352e36352e3133362e302f32322d3232203d3e20323733303031.roa (raw, json)
Hash identifier: viVAAd/wJN0BgkRStvnB1o+E0qacunenogz1x6rbU/g=
Subject key identifier: 70:06:11:02:E9:2E:8A:F6:BD:3D:15:86:98:37:A9:FF:15:FA:74:BB
Certificate issuer: /CN=2F03E5143F966EB03984AA596151B47F0A7C38E2
Certificate serial: 7A052744C056CDCA820FDB2FD45B044AE4C72B65
Authority key identifier: 2F:03:E5:14:3F:96:6E:B0:39:84:AA:59:61:51:B4:7F:0A:7C:38:E2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/34352e36352e3133362e302f32322d3232203d3e20323733303031.roa
Signing time: Tue 04 Feb 2025 17:59:01 +0000
ROA not before: Tue 04 Feb 2025 17:54:01 +0000
ROA not after: Tue 03 Feb 2026 17:59:01 +0000
asID: 273001
IP address blocks: 45.65.136.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:05:27:44:c0:56:cd:ca:82:0f:db:2f:d4:5b:04:4a:e4:c7:2b:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F03E5143F966EB03984AA596151B47F0A7C38E2
Validity
Not Before: Feb 4 17:54:01 2025 GMT
Not After : Feb 3 17:59:01 2026 GMT
Subject: CN=70061102E92E8AF6BD3D15869837A9FF15FA74BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3a:5e:61:d9:02:16:fe:b2:d7:ec:4e:f3:08:
05:37:1f:ef:f4:ba:15:2d:07:cc:14:c5:cf:2c:d9:
3b:bb:7d:fd:64:1f:e7:e2:69:59:f0:64:a4:6b:75:
c1:5d:a2:96:97:fe:da:0f:17:ff:1e:5c:bb:bb:d7:
b7:67:b9:6e:07:26:40:00:55:fd:cc:7d:bc:3c:83:
47:28:47:b5:aa:14:34:c8:3f:15:55:6c:ef:52:b5:
46:aa:d2:84:f0:62:ff:b9:f6:51:3b:8f:b2:78:0a:
53:14:48:99:86:56:e6:3e:14:2a:81:ba:b6:ab:5b:
4d:e0:ae:64:ac:4c:c6:19:af:9a:8b:d3:3f:c0:8b:
34:91:23:ff:51:02:7b:b0:66:79:84:9e:79:6a:42:
7d:e8:1a:55:f0:71:98:43:d8:83:1e:2d:5c:91:f4:
fb:6d:d3:dc:c4:dd:8d:39:c3:a2:4a:ed:44:91:9a:
4b:a7:2d:1d:b7:f5:d9:6b:01:25:35:20:88:fa:63:
1c:a7:d1:64:e9:5f:69:fa:e5:05:c2:c5:66:3d:4f:
97:42:22:ea:ba:38:52:9f:5f:e5:64:de:ff:59:c4:
3f:ad:33:df:5f:c6:8d:ec:47:20:0e:4a:33:1d:84:
bc:a4:81:70:c5:80:03:5c:86:a4:fe:1d:4d:48:ef:
01:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:06:11:02:E9:2E:8A:F6:BD:3D:15:86:98:37:A9:FF:15:FA:74:BB
X509v3 Authority Key Identifier:
keyid:2F:03:E5:14:3F:96:6E:B0:39:84:AA:59:61:51:B4:7F:0A:7C:38:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/34352e36352e3133362e302f32322d3232203d3e20323733303031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.136.0/22
Signature Algorithm: sha256WithRSAEncryption
59:86:0f:00:aa:ba:80:dd:47:a5:0e:da:24:1c:f9:45:b7:04:
01:cd:2f:1d:91:b0:9f:2c:99:3b:af:0c:0d:fc:13:6c:13:bc:
ba:9a:b0:8a:fa:4a:fe:3e:88:c4:cb:b1:8f:b9:7e:10:15:f4:
08:d3:12:aa:29:50:59:eb:7c:4a:33:8c:d0:2c:06:1d:77:a3:
85:d4:58:a2:d0:e2:02:d7:ea:f2:1a:60:c4:63:28:d2:94:80:
67:85:ab:04:97:a6:38:ec:bb:d6:6b:3d:d7:9e:d2:d9:96:ee:
95:2b:ec:4f:5d:2c:98:90:8a:90:21:bc:af:52:87:bf:12:54:
b6:02:cd:1c:53:e8:1d:b2:0d:80:a5:d8:16:76:6b:0e:1a:a7:
75:d7:38:7b:55:6a:30:72:65:a5:4d:f2:6f:47:7a:20:a3:48:
5f:ed:70:76:97:4c:98:45:dd:e2:2c:85:17:2d:04:04:b4:b4:
fb:c1:1b:9c:5e:27:cf:15:27:33:15:9b:9e:6c:11:1c:fa:c6:
57:a7:9c:3a:67:b2:5f:64:3f:f0:22:00:f0:e2:1d:16:0f:b7:
b5:d7:d9:07:52:8b:55:2e:56:45:02:f2:a5:fc:34:99:83:ac:
ea:dd:9b:97:bf:8a:13:eb:f0:33:e3:27:d8:7e:30:19:40:2c:
f2:fe:59:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:08:58 2025 by rpki-client