Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/776769DA9250AEE016ECE691EF523EA8B93D6CBFBE77577C339E491D8B8E2395/0/3136332e3234372e34302e302f32342d3234203d3e203137313437.roa
File: 3136332e3234372e34302e302f32342d3234203d3e203137313437.roa (raw, json)
Hash identifier: xPYAVsXZPabAuvyOMkc04eTlPNGJsKu+aKlpltM191I=
Subject key identifier: 8B:B9:C8:1C:28:AB:5B:E2:72:4B:57:5C:85:37:E2:7F:9C:3E:7A:3D
Certificate issuer: /CN=D0B428B65F4DBA16E44F7C7412B71C126F71DC6B
Certificate serial: 4CE621EC2F69F54D7579BC33E0EE968D92537C01
Authority key identifier: D0:B4:28:B6:5F:4D:BA:16:E4:4F:7C:74:12:B7:1C:12:6F:71:DC:6B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D0B428B65F4DBA16E44F7C7412B71C126F71DC6B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/776769DA9250AEE016ECE691EF523EA8B93D6CBFBE77577C339E491D8B8E2395/0/3136332e3234372e34302e302f32342d3234203d3e203137313437.roa
Signing time: Tue 04 Feb 2025 18:26:00 +0000
ROA not before: Tue 04 Feb 2025 18:21:00 +0000
ROA not after: Tue 03 Feb 2026 18:26:00 +0000
asID: 17147
IP address blocks: 163.247.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:e6:21:ec:2f:69:f5:4d:75:79:bc:33:e0:ee:96:8d:92:53:7c:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D0B428B65F4DBA16E44F7C7412B71C126F71DC6B
Validity
Not Before: Feb 4 18:21:00 2025 GMT
Not After : Feb 3 18:26:00 2026 GMT
Subject: CN=8BB9C81C28AB5BE2724B575C8537E27F9C3E7A3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:96:b0:78:16:34:db:8d:e9:19:37:36:64:02:
fa:49:37:da:c5:59:27:38:98:e3:72:64:94:de:d6:
de:bb:3f:12:ed:38:53:0d:66:59:8a:ab:8a:d9:19:
81:34:99:d1:b5:43:c5:bd:3f:d8:da:39:34:8e:7e:
33:e9:63:4d:1e:86:9e:ac:2f:fb:66:6a:8c:7c:cf:
d9:2a:06:a3:c5:c0:dc:6f:d5:d4:89:de:04:b3:07:
a3:26:90:7b:7d:0c:02:14:d6:1c:1d:de:4c:d0:44:
0d:e9:56:45:21:cc:96:d9:22:91:69:a9:1c:1f:d0:
db:c9:2d:23:ff:d5:0b:35:89:ad:1e:aa:fd:e0:2f:
fd:94:7a:b7:bf:22:2a:86:7e:7d:c0:d0:53:a1:ef:
99:69:2e:36:27:04:50:09:93:96:47:d7:a3:4e:61:
6c:c9:de:84:65:bb:ab:0c:42:0a:1a:16:9b:39:af:
12:aa:a1:3f:eb:38:da:18:3a:b6:dd:2c:97:e0:0c:
83:d8:47:74:4d:b3:e3:78:ef:db:ac:3c:7d:a0:f8:
05:32:6c:bf:e1:3c:80:b9:c7:c2:d6:3f:a7:a7:7d:
70:cd:c4:3c:74:1c:69:bc:67:20:e4:2e:cb:0c:35:
a1:be:a8:72:60:8d:16:f8:89:1a:13:5e:0b:f0:19:
94:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B9:C8:1C:28:AB:5B:E2:72:4B:57:5C:85:37:E2:7F:9C:3E:7A:3D
X509v3 Authority Key Identifier:
keyid:D0:B4:28:B6:5F:4D:BA:16:E4:4F:7C:74:12:B7:1C:12:6F:71:DC:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/776769DA9250AEE016ECE691EF523EA8B93D6CBFBE77577C339E491D8B8E2395/0/D0B428B65F4DBA16E44F7C7412B71C126F71DC6B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D0B428B65F4DBA16E44F7C7412B71C126F71DC6B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/776769DA9250AEE016ECE691EF523EA8B93D6CBFBE77577C339E491D8B8E2395/0/3136332e3234372e34302e302f32342d3234203d3e203137313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.247.40.0/24
Signature Algorithm: sha256WithRSAEncryption
74:e0:3a:ab:12:46:b7:88:c3:4c:7c:8f:91:71:54:20:ab:6c:
7f:b5:cb:01:e0:a6:31:a8:a6:9f:d6:97:0e:a9:d5:45:8a:84:
48:50:ef:16:50:0e:77:e9:0f:11:aa:f1:7c:50:fc:7e:e3:c4:
d1:b9:4e:12:8f:4c:86:16:ea:9f:6c:ef:3b:8b:d5:d0:2f:e8:
93:8f:e4:d3:5f:3d:41:ef:e0:42:05:06:81:5c:56:fb:98:23:
06:55:c1:ab:a3:be:75:99:3f:97:74:cb:a1:7c:4b:67:22:2d:
d4:6c:e8:55:56:41:61:09:bd:3a:ef:7f:1d:d3:81:f1:d2:01:
d9:f7:bb:81:4e:d5:44:7f:1d:47:10:0e:ec:dc:e2:2a:62:d4:
a4:72:37:ef:12:27:7a:e4:df:0e:c7:5d:e3:4a:db:f0:77:cd:
b5:e0:77:80:32:b2:95:c0:6c:26:3f:a5:5a:d3:78:c2:4a:d5:
c0:d9:a1:29:f0:89:ec:f1:f5:2d:20:0c:0d:df:fe:be:56:de:
d9:d8:20:c1:ef:48:3d:e5:e6:54:32:cb:15:4b:4e:06:93:dc:
52:e5:42:f6:c4:3a:71:43:f5:8d:d7:b0:f2:8b:7e:6a:96:49:
c5:22:50:02:2a:37:26:1b:15:61:9c:9a:50:62:1c:14:62:7d:
5b:5f:f9:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:59:00 2025 by rpki-client