Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/839DFCB2C41E5CEB4D6451F7AAA3CCB7E433C5FAA0FE0B95B953139F7FA2C5C1/0/34352e3232342e3232382e302f32322d3232203d3e20323635383439.roa
File: 34352e3232342e3232382e302f32322d3232203d3e20323635383439.roa (raw, json)
Hash identifier: Jo6Xworz72Di7iiW52fl7RtX3kibNZP6fyswewLnLfM=
Subject key identifier: 3C:49:97:D9:16:3A:1B:62:5B:C4:E1:59:6B:0D:0A:86:62:13:C9:AF
Certificate issuer: /CN=FC6ED6A0AB4832209F1D12BB47787225007C51D7
Certificate serial: 4A6FF811C9980B6F3DD81F12A65081E79D603F7C
Authority key identifier: FC:6E:D6:A0:AB:48:32:20:9F:1D:12:BB:47:78:72:25:00:7C:51:D7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FC6ED6A0AB4832209F1D12BB47787225007C51D7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/839DFCB2C41E5CEB4D6451F7AAA3CCB7E433C5FAA0FE0B95B953139F7FA2C5C1/0/34352e3232342e3232382e302f32322d3232203d3e20323635383439.roa
Signing time: Tue 04 Feb 2025 18:53:07 +0000
ROA not before: Tue 04 Feb 2025 18:48:07 +0000
ROA not after: Tue 03 Feb 2026 18:53:07 +0000
asID: 265849
IP address blocks: 45.224.228.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:6f:f8:11:c9:98:0b:6f:3d:d8:1f:12:a6:50:81:e7:9d:60:3f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FC6ED6A0AB4832209F1D12BB47787225007C51D7
Validity
Not Before: Feb 4 18:48:07 2025 GMT
Not After : Feb 3 18:53:07 2026 GMT
Subject: CN=3C4997D9163A1B625BC4E1596B0D0A866213C9AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b8:b1:a5:c2:4a:4e:99:18:83:6f:6c:ad:57:
97:da:6e:2c:18:0a:f2:d9:4b:89:c4:b6:33:67:a8:
a3:39:f2:78:23:10:04:05:f4:d8:2d:56:3a:0c:03:
e6:67:ba:4e:e5:b9:92:bf:b9:fa:81:a2:0c:a2:e4:
a6:f1:bd:5e:5e:3f:6d:9a:fe:3c:01:18:1b:e5:1f:
1b:b6:77:82:fb:02:5e:30:39:70:67:d1:1c:69:cf:
b7:cb:34:f5:7f:45:bc:3a:92:cc:cc:26:86:e8:18:
37:42:35:57:0a:1b:49:03:40:5f:fa:29:53:c0:c9:
bc:aa:ef:c5:9a:80:bc:64:b4:c4:3c:e1:45:14:6f:
8a:46:b7:c6:c0:99:58:18:2c:45:b5:75:5b:45:fb:
1d:af:eb:54:79:a0:0d:78:67:ea:e9:be:d5:6f:05:
ef:29:78:7b:84:50:33:2d:c8:e7:c8:b3:d3:36:d6:
72:f7:0a:20:8f:59:2c:86:86:f5:50:c6:10:75:32:
25:b8:8b:28:e8:de:0d:cb:90:40:0a:fc:de:f8:d2:
f2:f6:29:8d:0e:bf:0f:0f:86:27:0c:90:34:2d:97:
76:9d:88:db:3e:10:5e:3f:d6:2f:fc:64:e7:29:35:
df:f0:93:5b:0f:dc:b8:cc:d7:0f:5e:42:32:b1:ec:
f5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:49:97:D9:16:3A:1B:62:5B:C4:E1:59:6B:0D:0A:86:62:13:C9:AF
X509v3 Authority Key Identifier:
keyid:FC:6E:D6:A0:AB:48:32:20:9F:1D:12:BB:47:78:72:25:00:7C:51:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/839DFCB2C41E5CEB4D6451F7AAA3CCB7E433C5FAA0FE0B95B953139F7FA2C5C1/0/FC6ED6A0AB4832209F1D12BB47787225007C51D7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FC6ED6A0AB4832209F1D12BB47787225007C51D7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/839DFCB2C41E5CEB4D6451F7AAA3CCB7E433C5FAA0FE0B95B953139F7FA2C5C1/0/34352e3232342e3232382e302f32322d3232203d3e20323635383439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.224.228.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:d2:68:3a:c7:a2:c8:76:7d:c1:35:fc:3a:75:d4:1a:4d:76:
90:cd:46:42:28:62:c9:28:49:0d:74:39:75:55:a4:f0:ff:53:
01:8b:7b:2c:cb:93:9c:5c:fd:19:f9:0f:81:4b:40:d7:34:28:
c6:2a:f2:9f:0f:0f:c2:cc:92:ca:47:05:b8:e5:30:ca:1c:e0:
f3:e7:68:27:00:9b:b3:3d:13:5c:f7:81:1f:a3:01:17:ea:2d:
4e:f9:7c:69:bc:ba:b1:4b:3b:82:e0:99:f1:fa:db:bc:8d:31:
49:65:b6:54:f6:1f:74:f8:0a:3f:b2:68:50:40:38:de:3a:3b:
10:54:67:6a:80:51:71:f0:11:78:2a:e4:23:39:94:3a:15:68:
b4:26:af:f3:1d:d4:24:a4:91:3d:da:d3:dc:13:b1:c7:61:c8:
ba:e9:34:c4:2d:46:35:27:ef:c6:42:3c:35:5e:dd:67:64:77:
a5:74:99:0e:6f:ad:db:06:37:da:9c:bc:86:bb:77:89:2e:de:
8e:86:af:b7:24:a9:59:33:85:2a:b3:ab:bb:d1:69:4d:b6:b3:
29:4e:8c:ab:ad:09:c8:9e:ab:c4:53:b1:d1:f8:74:6b:cf:e6:
a8:5e:d3:36:a0:d1:01:aa:4c:81:5a:e2:1e:30:9e:e8:3c:dd:
67:da:dd:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:22:16 2025 by rpki-client