Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/77EDBE4658E59A5C7323C61CC36EE348D3E0A1EE0088421250C7E7731FA42429/0/34352e3136342e3230342e302f32332d3233203d3e20323637373033.roa
File: 34352e3136342e3230342e302f32332d3233203d3e20323637373033.roa (raw, json)
Hash identifier: sJ42vab9AMIcTqCzPwrV/pkaW4bryDHy1f2ghOD2S+8=
Subject key identifier: FF:A8:FB:8B:D9:27:CA:A7:F6:5F:99:12:06:B1:66:89:38:D0:2E:40
Certificate issuer: /CN=503D82ECFA9B049714A0487B354E037EB0FE6DAB
Certificate serial: 7012547143E27897CF7E30563D51E8BBEC31F564
Authority key identifier: 50:3D:82:EC:FA:9B:04:97:14:A0:48:7B:35:4E:03:7E:B0:FE:6D:AB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/503D82ECFA9B049714A0487B354E037EB0FE6DAB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/77EDBE4658E59A5C7323C61CC36EE348D3E0A1EE0088421250C7E7731FA42429/0/34352e3136342e3230342e302f32332d3233203d3e20323637373033.roa
Signing time: Tue 04 Feb 2025 18:45:40 +0000
ROA not before: Tue 04 Feb 2025 18:40:40 +0000
ROA not after: Tue 03 Feb 2026 18:45:40 +0000
asID: 267703
IP address blocks: 45.164.204.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:12:54:71:43:e2:78:97:cf:7e:30:56:3d:51:e8:bb:ec:31:f5:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=503D82ECFA9B049714A0487B354E037EB0FE6DAB
Validity
Not Before: Feb 4 18:40:40 2025 GMT
Not After : Feb 3 18:45:40 2026 GMT
Subject: CN=FFA8FB8BD927CAA7F65F991206B1668938D02E40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:e6:ff:48:44:86:27:75:e4:c6:40:a9:35:fb:
70:05:7c:bd:21:60:7b:64:9a:7f:49:9e:1b:d5:b4:
ad:a6:bb:0e:ac:c4:a1:7c:1d:15:ee:c4:65:68:62:
10:4f:fa:ac:ab:0d:bf:97:20:8e:6f:a7:1e:4f:ef:
da:3e:0e:48:7a:c6:2d:09:4e:2a:a3:63:9e:cd:53:
24:0c:93:9a:19:bc:73:78:9f:55:ac:8d:0d:73:7b:
d8:3f:da:59:b3:48:86:8b:9c:f5:74:44:4f:96:1e:
56:7f:46:f3:14:40:ef:f6:e5:8d:4d:fa:8d:0f:2b:
b0:60:f8:b6:47:37:63:ec:d9:29:a2:ea:d0:9c:10:
c5:7d:ac:c8:27:fd:8e:e0:0d:b6:57:72:18:d1:f9:
af:a0:93:6b:75:8d:e3:fb:92:18:96:18:d1:2d:83:
31:a3:1a:b2:22:01:a7:82:1a:52:e9:68:9d:dc:df:
21:40:4e:6b:eb:36:bd:6d:00:87:bf:bd:9f:9c:bb:
5d:b8:d0:42:ee:6c:4b:76:af:46:4a:ac:23:aa:0f:
0c:8b:3b:5b:5b:1d:8d:7e:be:5d:f5:1d:a8:85:31:
fb:87:8b:f5:93:f7:42:f2:ec:1b:8d:86:6b:df:40:
55:88:2c:43:52:23:3e:33:59:13:0b:d4:fb:8c:02:
78:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A8:FB:8B:D9:27:CA:A7:F6:5F:99:12:06:B1:66:89:38:D0:2E:40
X509v3 Authority Key Identifier:
keyid:50:3D:82:EC:FA:9B:04:97:14:A0:48:7B:35:4E:03:7E:B0:FE:6D:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/77EDBE4658E59A5C7323C61CC36EE348D3E0A1EE0088421250C7E7731FA42429/0/503D82ECFA9B049714A0487B354E037EB0FE6DAB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/503D82ECFA9B049714A0487B354E037EB0FE6DAB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/77EDBE4658E59A5C7323C61CC36EE348D3E0A1EE0088421250C7E7731FA42429/0/34352e3136342e3230342e302f32332d3233203d3e20323637373033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.164.204.0/23
Signature Algorithm: sha256WithRSAEncryption
40:32:11:e7:b8:94:68:59:b1:ba:c5:b3:76:64:e8:1a:3e:54:
a0:49:57:28:56:56:5d:f9:c5:8d:99:54:07:28:ae:ca:ff:38:
88:92:0c:f7:b2:ac:7f:15:7c:73:4e:f4:26:e1:97:e8:3f:90:
5f:49:5f:ca:49:f5:5b:95:c3:a1:0c:f2:1e:de:90:37:28:8c:
7b:14:83:8e:ac:38:cc:a4:65:4d:7c:9b:6e:f1:0c:05:f1:8b:
5b:86:08:1a:74:ba:97:56:69:2c:17:eb:c3:37:31:d3:c5:25:
9a:58:a4:b4:26:20:d6:d9:f1:21:7f:3a:eb:c4:bc:3b:c5:f4:
ac:95:9a:d1:77:3b:8a:eb:de:10:01:d6:37:f6:92:53:9b:43:
00:70:dc:09:e5:79:48:e6:51:67:57:eb:a7:44:10:8e:41:dc:
79:7c:32:4d:9d:fa:95:19:9c:98:aa:c9:e8:4b:70:6d:34:6b:
e4:87:db:78:d0:9a:df:b2:d6:f2:70:12:23:77:f2:cc:81:f6:
8a:27:ee:bf:27:b3:85:bc:3e:6d:c5:24:3b:c2:eb:39:b9:de:
ee:fb:f8:a6:e1:b3:e3:e5:89:c2:38:22:d2:89:d8:60:90:b0:
a7:76:e1:56:2a:e9:a8:fd:d1:d2:4d:41:b4:61:8d:fc:95:14:
a8:e9:2f:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:23:24 2025 by rpki-client