Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/34352e3138392e3138382e302f32322d3234203d3e20323731383432.roa
File: 34352e3138392e3138382e302f32322d3234203d3e20323731383432.roa (raw, json)
Hash identifier: ad14NL94fVJ9KrUV6ZNHKk2ONiZ8LeGWEBuPL+un1EA=
Subject key identifier: 85:E4:AF:98:8D:26:C1:36:21:B5:35:7F:A9:98:2C:CC:87:6A:64:D8
Certificate issuer: /CN=B9661B0E7FC75ED767D18B56FC749BAED21FC195
Certificate serial: 147A6F83776BC62BC70B78CF5CDD87F40DF29800
Authority key identifier: B9:66:1B:0E:7F:C7:5E:D7:67:D1:8B:56:FC:74:9B:AE:D2:1F:C1:95
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/34352e3138392e3138382e302f32322d3234203d3e20323731383432.roa
Signing time: Tue 04 Feb 2025 18:13:16 +0000
ROA not before: Tue 04 Feb 2025 18:08:16 +0000
ROA not after: Tue 03 Feb 2026 18:13:16 +0000
asID: 271842
IP address blocks: 45.189.188.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:7a:6f:83:77:6b:c6:2b:c7:0b:78:cf:5c:dd:87:f4:0d:f2:98:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B9661B0E7FC75ED767D18B56FC749BAED21FC195
Validity
Not Before: Feb 4 18:08:16 2025 GMT
Not After : Feb 3 18:13:16 2026 GMT
Subject: CN=85E4AF988D26C13621B5357FA9982CCC876A64D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:72:d4:d0:40:4d:f2:c9:73:d4:70:01:27:87:
04:80:e7:80:07:19:c7:85:73:7b:d1:ac:a9:0e:77:
c8:48:58:d0:36:1e:39:0e:70:7e:a2:e3:11:9e:fa:
8b:68:67:79:67:31:57:ae:38:dd:26:03:52:f5:5b:
c9:ac:ba:4c:75:c2:a3:c4:a8:a1:da:e5:d6:68:6a:
31:16:8c:52:8c:65:99:8d:e1:ce:48:fb:f0:01:f1:
36:72:11:b0:e8:fd:b8:04:79:7f:45:73:df:7d:49:
18:18:4a:78:43:ec:fc:3e:bb:30:b5:9c:b1:e1:d5:
06:e2:86:34:e2:be:9c:1f:27:d2:7b:2b:c6:80:99:
54:da:6f:94:ed:cd:c3:92:99:08:86:b1:31:be:05:
8b:a7:8b:45:13:ca:4c:03:11:62:72:af:cd:cd:1c:
c3:0c:1f:1a:1f:1e:c3:6a:ce:13:e1:80:50:c8:23:
e6:7d:6a:70:16:bd:01:11:2d:1f:70:26:4f:81:02:
67:95:61:e6:59:52:72:72:c6:82:35:1e:3f:36:f9:
4f:cc:45:72:e6:c3:12:b6:6f:0e:22:09:09:6a:5e:
21:23:3b:6f:07:e7:50:96:1b:2b:c8:ee:03:7a:0f:
63:57:2b:2c:55:3e:d6:37:79:be:5e:b2:ed:99:f1:
fa:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E4:AF:98:8D:26:C1:36:21:B5:35:7F:A9:98:2C:CC:87:6A:64:D8
X509v3 Authority Key Identifier:
keyid:B9:66:1B:0E:7F:C7:5E:D7:67:D1:8B:56:FC:74:9B:AE:D2:1F:C1:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/34352e3138392e3138382e302f32322d3234203d3e20323731383432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.189.188.0/22
Signature Algorithm: sha256WithRSAEncryption
62:8e:f2:99:c0:6b:b7:eb:cf:05:be:01:d5:9d:af:b3:e2:f3:
e5:78:a9:f4:8e:0d:aa:fa:82:e1:72:3f:bf:43:b3:50:e1:df:
c7:43:57:89:bd:bd:dc:1f:2b:3b:b8:a2:c1:6d:58:66:18:85:
0c:32:7d:c0:34:95:c6:d0:6d:53:62:6f:9d:d0:7d:d7:fd:22:
97:ed:02:8c:50:af:7a:b3:e9:af:6b:49:45:89:ef:dc:e3:c8:
b8:f1:a4:a7:25:5a:b0:90:39:34:e9:5f:36:1b:db:07:b3:38:
92:b4:c1:41:2f:47:7d:6d:8b:25:bc:a2:90:fa:67:bd:a4:fc:
0d:78:35:8b:ae:cd:52:fa:23:e5:db:5a:b9:55:73:5c:fd:9c:
6e:22:dc:33:04:92:31:66:7b:ad:30:cf:86:d3:aa:c5:0e:9b:
10:98:86:58:31:b3:d9:47:7b:78:2d:5a:77:08:87:74:31:ba:
47:29:a1:0e:85:e3:39:d0:89:57:30:8c:60:68:e7:fa:47:d0:
af:3b:e4:e0:cc:71:4b:86:8f:2c:97:91:08:e3:90:68:64:01:
d2:10:8a:28:82:fb:7c:b8:91:54:6b:21:cf:b2:f7:ea:44:9e:
51:9a:c4:49:48:31:ae:86:84:f1:a7:ef:4e:05:b5:b0:d9:b0:
d9:c2:41:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:13:38 2025 by rpki-client