Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7D0F8891D78DAA1F8C582A7D8BB5DD24295B24E567453B8F0E2BDDAB224D8CA5/0/34352e3137322e31382e302f32342d3234203d3e20323637373835.roa
File: 34352e3137322e31382e302f32342d3234203d3e20323637373835.roa (raw, json)
Hash identifier: Q3sVS3+Lk8xTH6sMiLIO0nBoGlpo6hCeWx+iXzcVfYk=
Subject key identifier: 9A:D2:00:15:97:AD:A2:59:01:37:B6:BA:F8:A6:67:AC:C0:69:79:AC
Certificate issuer: /CN=C71137D78DD5CBCAB50F867000F510F0B3587F9A
Certificate serial: 5EE004D0FFA86AC0B668490A1F9F0F78F81B7A1A
Authority key identifier: C7:11:37:D7:8D:D5:CB:CA:B5:0F:86:70:00:F5:10:F0:B3:58:7F:9A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C71137D78DD5CBCAB50F867000F510F0B3587F9A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7D0F8891D78DAA1F8C582A7D8BB5DD24295B24E567453B8F0E2BDDAB224D8CA5/0/34352e3137322e31382e302f32342d3234203d3e20323637373835.roa
Signing time: Tue 04 Feb 2025 20:05:04 +0000
ROA not before: Tue 04 Feb 2025 20:00:04 +0000
ROA not after: Tue 03 Feb 2026 20:05:04 +0000
asID: 267785
IP address blocks: 45.172.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:e0:04:d0:ff:a8:6a:c0:b6:68:49:0a:1f:9f:0f:78:f8:1b:7a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C71137D78DD5CBCAB50F867000F510F0B3587F9A
Validity
Not Before: Feb 4 20:00:04 2025 GMT
Not After : Feb 3 20:05:04 2026 GMT
Subject: CN=9AD2001597ADA2590137B6BAF8A667ACC06979AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a0:ac:c9:83:88:a9:b2:07:bf:6b:f1:02:10:
93:85:21:dd:49:47:85:9c:97:32:2a:34:65:c9:38:
a7:e6:ee:94:bc:37:6d:76:04:96:3d:c1:04:4b:ec:
73:63:fb:22:c4:3f:fa:61:84:f8:68:2b:cf:7d:1c:
10:94:3a:00:7f:83:20:83:20:67:a1:9b:0a:d5:63:
c8:f6:a3:16:1e:fb:dc:23:e1:d7:ca:12:3d:fb:e1:
32:fc:41:1a:6e:6c:08:a7:68:09:20:d7:24:73:a8:
71:d2:e0:a9:94:03:09:58:a4:ce:86:13:7e:e4:84:
a1:19:4c:e6:a2:f0:9d:9b:ae:45:73:30:30:9a:fe:
c1:0f:d0:27:2b:bb:d7:00:43:83:4e:78:b1:4d:ec:
26:77:88:6f:4f:f7:bd:00:a8:24:17:fe:60:01:3b:
a2:c7:ba:f8:b4:b5:13:be:5c:56:a1:f0:f0:37:a4:
77:f7:a8:a2:97:de:1f:6d:ba:dc:4a:71:e1:2a:1b:
d3:c3:95:43:af:f5:c0:b6:5c:92:6d:ac:6e:7b:b4:
6c:d1:6d:af:7e:0b:b7:38:23:b1:60:23:2a:54:b4:
39:21:16:8d:44:8f:61:ff:84:0c:a6:4e:4f:5a:f3:
79:76:3b:6e:5d:49:a8:8a:4a:b1:18:0a:8b:66:5c:
b1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:D2:00:15:97:AD:A2:59:01:37:B6:BA:F8:A6:67:AC:C0:69:79:AC
X509v3 Authority Key Identifier:
keyid:C7:11:37:D7:8D:D5:CB:CA:B5:0F:86:70:00:F5:10:F0:B3:58:7F:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7D0F8891D78DAA1F8C582A7D8BB5DD24295B24E567453B8F0E2BDDAB224D8CA5/0/C71137D78DD5CBCAB50F867000F510F0B3587F9A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C71137D78DD5CBCAB50F867000F510F0B3587F9A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7D0F8891D78DAA1F8C582A7D8BB5DD24295B24E567453B8F0E2BDDAB224D8CA5/0/34352e3137322e31382e302f32342d3234203d3e20323637373835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.172.18.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:0a:0e:02:a6:24:5d:df:61:dc:6e:d5:59:9b:4b:3c:59:d6:
1f:1e:03:7e:9e:2a:01:f0:e7:0a:94:65:d2:ac:8a:e2:e0:9f:
04:5f:2a:39:d8:85:89:d5:03:41:93:ef:ec:43:a3:fc:3a:d7:
e8:75:52:8d:59:d3:84:bd:58:70:91:f5:85:e0:3c:cb:28:cb:
c1:d4:06:e1:c0:cb:b3:b8:4a:8a:eb:e7:f5:b5:f9:6b:44:52:
d2:c6:ae:eb:6e:15:ef:e5:4a:2c:ff:f3:55:41:be:35:0b:8d:
5e:4d:78:0c:37:a9:b4:ba:af:7c:dc:34:14:97:a3:55:f7:17:
4b:06:66:e4:d3:64:46:5d:41:bd:1a:aa:51:81:50:64:03:74:
d4:c2:99:16:57:82:62:56:3a:90:99:19:d3:8d:74:3a:52:1e:
ed:85:04:a8:37:fd:fe:74:aa:3e:be:1a:eb:04:e4:fc:3f:49:
81:a1:f7:75:c2:a6:b2:85:52:25:ba:ad:ec:c4:52:29:d8:ff:
30:09:09:e5:91:4a:1b:fa:94:9c:ff:2c:6d:5f:e3:10:54:d1:
b7:fc:ee:d7:8b:f9:90:d2:22:0c:48:b3:30:ef:54:0e:12:2c:
97:ce:d4:24:fb:a7:fc:09:fe:55:de:e2:7f:1c:d0:47:84:bc:
27:f6:fe:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:04 2025 by rpki-client