Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7A23BF4BFB6A36CCD41850705D347E6DC581FD7F0237467C503F5EA7745C3DF2/0/34352e3233392e33362e302f32322d3234203d3e20323635383136.roa
File: 34352e3233392e33362e302f32322d3234203d3e20323635383136.roa (raw, json)
Hash identifier: GVBDI2CYk6MQlJ7hUWBiaKvG/r/CVBiZ33vMQgX9cYk=
Subject key identifier: C8:AE:76:0C:4B:5F:83:78:34:29:4C:04:EC:AC:A7:10:22:FF:05:49
Certificate issuer: /CN=013C9FDB572F82FEBA26C5CBCA4321F421C02091
Certificate serial: 2214376C7BC3475C77ECA5760295EF839CEECF64
Authority key identifier: 01:3C:9F:DB:57:2F:82:FE:BA:26:C5:CB:CA:43:21:F4:21:C0:20:91
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/013C9FDB572F82FEBA26C5CBCA4321F421C02091.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7A23BF4BFB6A36CCD41850705D347E6DC581FD7F0237467C503F5EA7745C3DF2/0/34352e3233392e33362e302f32322d3234203d3e20323635383136.roa
Signing time: Tue 04 Feb 2025 18:46:40 +0000
ROA not before: Tue 04 Feb 2025 18:41:40 +0000
ROA not after: Tue 03 Feb 2026 18:46:40 +0000
asID: 265816
IP address blocks: 45.239.36.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:14:37:6c:7b:c3:47:5c:77:ec:a5:76:02:95:ef:83:9c:ee:cf:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=013C9FDB572F82FEBA26C5CBCA4321F421C02091
Validity
Not Before: Feb 4 18:41:40 2025 GMT
Not After : Feb 3 18:46:40 2026 GMT
Subject: CN=C8AE760C4B5F837834294C04ECACA71022FF0549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:70:39:3f:28:f1:e3:54:e2:dc:4a:1d:fe:fd:
50:d5:a3:95:82:57:04:c4:c3:63:72:a8:8b:8d:d6:
6e:0d:f5:eb:28:c0:cc:06:b4:16:4f:c5:d6:47:ef:
cf:22:be:0e:d9:2a:45:ff:a0:4d:a6:7e:db:a2:1f:
32:b1:82:dc:5f:c4:c6:73:c6:83:ba:74:2a:ab:a3:
8c:da:71:63:6c:4e:b1:7d:d2:97:03:53:ad:48:ea:
f2:ff:41:ad:ee:ad:2f:6c:43:2c:a4:56:a0:2a:d0:
9e:8a:0d:ee:9f:16:eb:41:4a:45:56:a1:fe:53:49:
66:bb:df:66:c4:55:bc:7a:92:bf:17:e3:1c:99:54:
c1:96:49:b5:9d:9b:2e:73:da:7e:6d:cc:3a:9c:ac:
a0:5c:9c:2e:a7:57:8f:bc:3e:89:e5:7e:27:27:61:
6b:f5:88:2d:4b:78:d0:18:a1:13:67:d8:3b:8a:79:
f0:54:b4:78:38:47:b2:6c:5a:25:67:bd:52:74:90:
d9:fc:77:ae:ff:ce:b3:88:b1:cb:11:35:e1:e2:f7:
0c:41:19:24:b8:30:5e:74:39:1b:9f:50:62:db:1e:
ba:13:97:ea:a2:3e:e0:68:5c:b1:62:12:2b:8b:13:
e7:79:5c:d5:d1:8e:91:21:5c:b8:d5:ca:12:6a:68:
8b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:AE:76:0C:4B:5F:83:78:34:29:4C:04:EC:AC:A7:10:22:FF:05:49
X509v3 Authority Key Identifier:
keyid:01:3C:9F:DB:57:2F:82:FE:BA:26:C5:CB:CA:43:21:F4:21:C0:20:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7A23BF4BFB6A36CCD41850705D347E6DC581FD7F0237467C503F5EA7745C3DF2/0/013C9FDB572F82FEBA26C5CBCA4321F421C02091.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/013C9FDB572F82FEBA26C5CBCA4321F421C02091.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7A23BF4BFB6A36CCD41850705D347E6DC581FD7F0237467C503F5EA7745C3DF2/0/34352e3233392e33362e302f32322d3234203d3e20323635383136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.239.36.0/22
Signature Algorithm: sha256WithRSAEncryption
86:91:7f:25:1f:ff:71:45:ca:ff:07:10:45:6b:1c:50:ba:70:
0c:bc:2f:1a:7b:00:82:6b:97:ff:43:bd:3e:36:d9:c9:d1:24:
c8:fd:8e:b3:0a:91:81:89:ed:eb:9e:08:64:d0:ba:30:f9:15:
b4:b9:be:2f:a5:d8:d5:14:61:87:89:26:ad:53:72:7c:ea:c3:
8a:49:b7:65:70:7e:cd:23:c9:9e:65:81:ce:e4:00:94:1a:d9:
f4:a4:c8:f0:61:eb:c3:f4:9a:0a:bb:d7:31:ab:f0:d0:e8:19:
01:c3:a0:15:8b:44:29:ea:1d:c1:2c:8b:3c:f9:a1:e9:fe:ff:
58:b8:48:40:d0:7c:00:f3:30:db:b5:d1:ed:e5:51:01:e9:f0:
2e:7a:35:71:22:1d:38:ed:00:6a:0a:a0:2f:b8:3a:69:56:03:
f1:c4:d6:c2:eb:2b:b9:2a:0f:7a:39:43:05:2c:96:90:23:37:
15:1a:e6:bd:a4:6f:ac:6b:6f:89:d9:d2:30:a3:fb:f2:b8:5d:
ac:de:cd:b4:67:d0:2a:a2:08:83:29:d0:4d:4e:36:28:b0:7c:
d1:ee:01:cb:bb:3e:55:05:52:a6:5a:95:c7:75:de:0f:95:1e:
48:80:e9:fe:76:63:e4:d6:74:b5:71:db:5b:27:10:95:0b:75:
66:f1:92:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:09:02 2025 by rpki-client