Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8242C0A5944E2456F12ABB58E2FE0AC1E5DD41D3306205E4974EDFE8EEF7D69E/0/34352e3233352e3134302e302f32322d3232203d3e203237393437.roa
File: 34352e3233352e3134302e302f32322d3232203d3e203237393437.roa (raw, json)
Hash identifier: xA2qRZkoaqKOqjZY1jPtfFzPU/tGTMxORJd/K5nL13s=
Subject key identifier: 44:F6:7F:D2:A0:DE:FC:72:E0:F7:5E:C9:36:A5:F6:02:C1:D9:29:68
Certificate issuer: /CN=851D006BBDF702AC914FD79F2055A11E9699775D
Certificate serial: 53177203DE7DC1309F9F1A2C36CD46C6533B248C
Authority key identifier: 85:1D:00:6B:BD:F7:02:AC:91:4F:D7:9F:20:55:A1:1E:96:99:77:5D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/851D006BBDF702AC914FD79F2055A11E9699775D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8242C0A5944E2456F12ABB58E2FE0AC1E5DD41D3306205E4974EDFE8EEF7D69E/0/34352e3233352e3134302e302f32322d3232203d3e203237393437.roa
Signing time: Tue 04 Feb 2025 18:05:38 +0000
ROA not before: Tue 04 Feb 2025 18:00:38 +0000
ROA not after: Tue 03 Feb 2026 18:05:38 +0000
asID: 27947
IP address blocks: 45.235.140.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:17:72:03:de:7d:c1:30:9f:9f:1a:2c:36:cd:46:c6:53:3b:24:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851D006BBDF702AC914FD79F2055A11E9699775D
Validity
Not Before: Feb 4 18:00:38 2025 GMT
Not After : Feb 3 18:05:38 2026 GMT
Subject: CN=44F67FD2A0DEFC72E0F75EC936A5F602C1D92968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:99:8d:0f:46:60:4e:40:97:1f:10:f1:11:59:
6c:e0:13:e4:f6:73:3e:6e:43:fd:b7:d2:61:6e:a0:
e9:cc:6d:03:bc:af:41:2c:6d:af:7f:65:ab:61:42:
8d:07:59:32:17:e2:1e:a5:95:bd:e3:71:7b:58:69:
f6:fa:41:88:c9:31:06:87:3a:41:ae:a4:4a:95:e1:
27:54:62:99:44:fd:3a:c2:12:1c:6e:56:33:b2:57:
f9:be:3f:f9:36:18:be:9b:4b:5e:12:1a:56:78:f6:
38:a7:25:fa:f9:59:34:b5:fc:a6:ef:29:05:da:43:
af:68:e2:52:6b:4c:ac:d5:7a:ba:eb:4a:ca:c7:b5:
c7:09:b1:53:73:10:cd:5c:43:59:7e:5f:de:74:79:
c5:b1:50:c1:87:aa:a5:95:da:a1:53:f5:63:d2:6e:
bf:e5:bc:5e:8b:95:a8:e9:e7:7c:4b:e2:c6:cd:22:
a6:ef:6b:5c:6b:8b:5c:32:fa:18:b7:85:74:57:4a:
40:4c:fa:df:68:30:ed:37:dd:32:f9:f6:2e:7c:cb:
f4:cb:8e:b2:c7:ad:4e:94:50:0e:d0:da:82:11:83:
f8:a6:3b:76:a3:54:a1:b3:e8:74:4a:9b:fd:ce:c6:
67:fd:54:df:df:b6:6e:5d:09:76:78:e0:35:40:15:
1b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F6:7F:D2:A0:DE:FC:72:E0:F7:5E:C9:36:A5:F6:02:C1:D9:29:68
X509v3 Authority Key Identifier:
keyid:85:1D:00:6B:BD:F7:02:AC:91:4F:D7:9F:20:55:A1:1E:96:99:77:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8242C0A5944E2456F12ABB58E2FE0AC1E5DD41D3306205E4974EDFE8EEF7D69E/0/851D006BBDF702AC914FD79F2055A11E9699775D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/851D006BBDF702AC914FD79F2055A11E9699775D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8242C0A5944E2456F12ABB58E2FE0AC1E5DD41D3306205E4974EDFE8EEF7D69E/0/34352e3233352e3134302e302f32322d3232203d3e203237393437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.235.140.0/22
Signature Algorithm: sha256WithRSAEncryption
66:47:28:63:4b:88:cc:41:6a:15:89:f6:8f:97:98:86:b3:1c:
3b:0d:ce:c5:8e:57:32:cc:0f:9f:d6:d3:1b:79:34:08:80:9d:
91:00:7d:f1:eb:eb:58:23:97:52:72:92:8e:8e:64:36:fe:2e:
ab:83:6b:1f:c9:b8:66:5f:17:5c:3f:84:fe:5c:47:cf:47:1d:
0c:7c:9a:39:1b:0f:6b:7d:f5:c1:02:6a:79:22:57:62:0e:f1:
83:d6:31:fa:d1:e6:dc:d2:c1:dc:6b:46:9a:57:30:fd:35:6d:
39:c8:65:4d:b7:67:0f:30:c9:e8:59:ee:2c:41:a9:f9:72:cb:
c3:6b:09:e7:dc:8b:5a:d5:c1:16:f3:3f:94:5d:2b:84:87:bd:
5d:1a:90:11:18:72:3e:bc:4a:61:de:68:4b:70:85:29:c0:7d:
77:14:f8:d2:97:5e:9d:79:26:1a:9e:94:c3:35:2c:de:12:dc:
e5:9c:46:3d:c9:35:13:ab:bc:12:d7:05:fa:0c:7d:8f:31:08:
42:d3:e2:94:dd:91:fc:5d:bf:e0:74:cd:ad:4a:5e:d0:e3:b5:
be:cd:6f:ec:c4:29:34:31:a9:5c:a3:c0:2d:19:49:44:8d:ec:
c8:89:7a:09:81:bb:1d:1c:8a:11:b2:4b:6a:56:c3:dc:7c:80:
bc:02:6d:0a
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUUxdyA959wTCfnxosNs1GxlM7JIwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODUxRDAwNkJCREY3MDJBQzkxNEZENzlGMjA1NUExMUU5
Njk5Nzc1RDAeFw0yNTAyMDQxODAwMzhaFw0yNjAyMDMxODA1MzhaMDMxMTAvBgNV
BAMTKDQ0RjY3RkQyQTBERUZDNzJFMEY3NUVDOTM2QTVGNjAyQzFEOTI5NjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOmY0PRmBOQJcfEPERWWzgE+T2
cz5uQ/230mFuoOnMbQO8r0Esba9/ZathQo0HWTIX4h6llb3jcXtYafb6QYjJMQaH
OkGupEqV4SdUYplE/TrCEhxuVjOyV/m+P/k2GL6bS14SGlZ49jinJfr5WTS1/Kbv
KQXaQ69o4lJrTKzVerrrSsrHtccJsVNzEM1cQ1l+X950ecWxUMGHqqWV2qFT9WPS
br/lvF6Llajp53xL4sbNIqbva1xri1wy+hi3hXRXSkBM+t9oMO033TL59i58y/TL
jrLHrU6UUA7Q2oIRg/imO3ajVKGz6HRKm/3Oxmf9VN/ftm5dCXZ44DVAFRuHAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQURPZ/0qDe/HLg917JNqX2AsHZKWgwHwYDVR0j
BBgwFoAUhR0Aa733AqyRT9efIFWhHpaZd10wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy84MjQyQzBBNTk0NEUyNDU2RjEyQUJCNThFMkZFMEFDMUU1
REQ0MUQzMzA2MjA1RTQ5NzRFREZFOEVFRjdENjlFLzAvODUxRDAwNkJCREY3MDJB
QzkxNEZENzlGMjA1NUExMUU5Njk5Nzc1RC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NTFEMDA2QkJERjcwMkFDOTE0
RkQ3OUYyMDU1QTExRTk2OTk3NzVELmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvODI0MkMwQTU5NDRFMjQ1NkYxMkFCQjU4RTJGRTBBQzFFNURENDFEMzMw
NjIwNUU0OTc0RURGRThFRUY3RDY5RS8wLzM0MzUyZTMyMzMzNTJlMzEzNDMwMmUz
MDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNzM5MzQzNy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi3rjDAN
BgkqhkiG9w0BAQsFAAOCAQEAZkcoY0uIzEFqFYn2j5eYhrMcOw3OxY5XMswPn9bT
G3k0CICdkQB98evrWCOXUnKSjo5kNv4uq4NrH8m4Zl8XXD+E/lxHz0cdDHyaORsP
a331wQJqeSJXYg7xg9Yx+tHm3NLB3GtGmlcw/TVtOchlTbdnDzDJ6FnuLEGp+XLL
w2sJ59yLWtXBFvM/lF0rhIe9XRqQERhyPrxKYd5oS3CFKcB9dxT40pdenXkmGp6U
wzUs3hLc5ZxGPck1E6u8EtcF+gx9jzEIQtPilN2R/F2/4HTNrUpe0OO1vs1v7MQp
NDGpXKPALRlJRI3syIl6CYG7HRyKEbJLalbD3HyAvAJtCg==
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:46:28 2025 by rpki-client