Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/3230312e3231372e36342e302f31382d3234203d3e203134353232.roa
File: 3230312e3231372e36342e302f31382d3234203d3e203134353232.roa (raw, json)
Hash identifier: TEXeOheoKP11cKpMFVf5thqRL2CRhccgudkb5CWr3LU=
Subject key identifier: 37:71:3D:F9:B0:29:46:75:73:27:0E:D8:84:98:54:B0:EA:C6:C9:CB
Certificate issuer: /CN=822F4455E9726CC3D6DCD4143A6D9F1773F8A36F
Certificate serial: 04880EEA63B7340BA670F543A5F33D13B1377DC4
Authority key identifier: 82:2F:44:55:E9:72:6C:C3:D6:DC:D4:14:3A:6D:9F:17:73:F8:A3:6F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/3230312e3231372e36342e302f31382d3234203d3e203134353232.roa
Signing time: Tue 04 Feb 2025 20:08:48 +0000
ROA not before: Tue 04 Feb 2025 20:03:48 +0000
ROA not after: Tue 03 Feb 2026 20:08:48 +0000
asID: 14522
IP address blocks: 201.217.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:88:0e:ea:63:b7:34:0b:a6:70:f5:43:a5:f3:3d:13:b1:37:7d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=822F4455E9726CC3D6DCD4143A6D9F1773F8A36F
Validity
Not Before: Feb 4 20:03:48 2025 GMT
Not After : Feb 3 20:08:48 2026 GMT
Subject: CN=37713DF9B029467573270ED8849854B0EAC6C9CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:71:e8:da:2a:7d:2f:a5:04:12:f6:e1:cd:1a:
36:da:cb:22:fa:f2:e6:81:85:b4:ed:4e:82:2f:c3:
27:74:3f:d4:ef:77:58:7f:3e:16:4a:be:43:f8:1b:
42:e1:9b:4d:39:27:23:99:40:c4:03:f6:2c:9b:9e:
7e:90:f0:ad:b2:11:5c:ce:b6:ca:21:95:a1:19:a1:
b5:36:c5:d9:fa:b4:ea:04:ef:54:e2:e6:cd:bd:aa:
91:0a:4b:c9:b1:75:19:53:a9:0e:0f:1c:83:bf:01:
f9:b7:3e:14:70:e9:43:31:27:77:d2:da:8f:e7:d8:
15:7d:b2:64:6b:f0:6a:b4:d5:47:20:8a:53:23:ff:
6a:c6:95:46:7f:c5:f3:fd:fe:f0:f3:c9:b5:e9:3e:
7f:22:7d:0f:84:d9:dd:d9:74:95:35:94:5b:0f:78:
cd:d4:5c:aa:e7:02:ac:67:5a:5e:da:14:50:9b:f5:
c6:a9:f3:88:48:e6:18:b5:39:80:dc:64:ff:68:8f:
10:ca:ee:7c:42:90:07:61:e5:4c:c5:3a:48:b4:22:
23:64:94:11:0d:82:e3:25:73:cd:4c:07:58:80:8d:
f0:61:87:15:57:9c:83:e0:ef:ec:a5:46:16:0b:bf:
de:1d:13:28:a8:96:e2:11:86:a0:2b:84:c0:db:1f:
d2:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:71:3D:F9:B0:29:46:75:73:27:0E:D8:84:98:54:B0:EA:C6:C9:CB
X509v3 Authority Key Identifier:
keyid:82:2F:44:55:E9:72:6C:C3:D6:DC:D4:14:3A:6D:9F:17:73:F8:A3:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/3230312e3231372e36342e302f31382d3234203d3e203134353232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.217.64.0/18
Signature Algorithm: sha256WithRSAEncryption
54:0a:6b:f4:7a:bf:ef:11:4a:66:25:6d:d6:7c:e0:10:6c:a9:
a9:42:8a:f8:cb:bc:18:60:5c:a1:bb:9d:75:f9:40:18:7d:b0:
72:2a:75:2e:1a:49:13:33:1e:73:58:0a:bd:0d:1e:16:ee:2a:
57:1c:0e:8f:cf:a1:46:e2:8a:b2:13:72:24:ab:3a:e5:db:ed:
bb:fb:30:b6:e2:ce:8b:03:c0:c7:8e:f2:01:90:07:f1:8a:40:
3a:78:b4:e2:97:4b:ab:88:15:69:d3:bb:89:f0:71:c8:74:47:
d4:b7:b5:c7:25:d7:d2:c5:83:2c:94:2d:bf:1c:76:33:c4:fb:
da:13:e2:d8:91:c1:8e:61:02:df:bd:ee:08:0c:71:d4:16:d7:
12:46:f6:fa:d4:68:08:70:c6:50:2f:a5:bb:4a:7f:eb:77:c5:
2f:35:ca:02:7d:85:18:5b:51:1c:8e:49:94:29:ce:3d:1f:f4:
14:0f:f7:02:96:ce:91:e9:a6:19:68:17:ec:9f:77:cc:c3:04:
85:7d:dc:61:a1:1a:2b:fb:c8:6c:8a:b7:e7:33:0b:36:ee:6e:
61:31:21:03:60:26:d0:92:5a:f1:0b:7f:9b:01:d4:48:de:85:
cc:bc:a4:d2:df:9f:69:68:7b:48:94:2d:af:91:90:05:f1:e3:
f9:61:75:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:15 2025 by rpki-client