Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/839E6565384F85C294751388EE8A204384064042CFC6A40832C695670AA7E54F/0/34352e3232392e3234382e302f32322d3234203d3e20323636373037.roa
File: 34352e3232392e3234382e302f32322d3234203d3e20323636373037.roa (raw, json)
Hash identifier: nWp/xKJ7guRjv7dv+RXJ9JPlZSpCRZSIuMFEG0F4d1M=
Subject key identifier: 4C:8B:60:EC:A9:5C:0F:60:39:68:2A:A9:7E:A2:13:D3:4A:AB:F0:34
Certificate issuer: /CN=9AF6F7454394FA95451475548870C004D4158E0D
Certificate serial: 33D4B336222B5265ECC490960E77C91BB99072CD
Authority key identifier: 9A:F6:F7:45:43:94:FA:95:45:14:75:54:88:70:C0:04:D4:15:8E:0D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9AF6F7454394FA95451475548870C004D4158E0D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/839E6565384F85C294751388EE8A204384064042CFC6A40832C695670AA7E54F/0/34352e3232392e3234382e302f32322d3234203d3e20323636373037.roa
Signing time: Tue 04 Feb 2025 20:04:03 +0000
ROA not before: Tue 04 Feb 2025 19:59:03 +0000
ROA not after: Tue 03 Feb 2026 20:04:03 +0000
asID: 266707
IP address blocks: 45.229.248.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:d4:b3:36:22:2b:52:65:ec:c4:90:96:0e:77:c9:1b:b9:90:72:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9AF6F7454394FA95451475548870C004D4158E0D
Validity
Not Before: Feb 4 19:59:03 2025 GMT
Not After : Feb 3 20:04:03 2026 GMT
Subject: CN=4C8B60ECA95C0F6039682AA97EA213D34AABF034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d9:b0:bf:f1:aa:28:95:bd:26:9a:4a:ae:3a:
b4:e8:06:2d:c8:9e:cb:ea:7a:0b:96:4e:e0:ab:13:
c2:17:ce:00:1f:8d:2e:49:71:94:f9:18:81:bb:35:
9a:f7:0e:6f:12:4b:04:5f:e4:0d:4c:2b:f2:45:fe:
de:fe:af:52:10:04:75:a1:f3:e0:0b:92:c0:dd:55:
54:69:66:f9:aa:0a:d3:0d:91:05:d0:71:82:ec:57:
2b:3b:67:03:6a:88:d3:4b:c4:a1:e6:6a:41:9d:1a:
42:82:aa:0c:11:5a:8f:c7:95:6c:0a:38:5a:be:66:
2f:29:54:65:76:23:e2:4f:27:da:1f:13:38:57:0a:
a5:e8:ea:c9:54:60:2d:12:47:9a:9c:ea:ce:4c:2f:
96:c9:9c:b1:68:1d:aa:ba:04:c0:0b:79:fd:fc:ad:
3a:bf:19:63:7a:11:d4:3e:e7:17:c1:36:de:5f:3e:
74:e4:46:e9:d6:37:30:a7:a3:35:12:49:1d:85:a3:
e5:0e:da:62:2e:87:f1:f4:72:af:c7:77:a1:f6:1b:
ea:9c:0e:da:e9:43:e9:32:01:e7:6c:08:b1:b5:2d:
f8:5c:aa:cb:b7:35:10:10:41:1a:0f:bf:68:68:53:
c4:b3:73:c4:0a:bd:37:b6:eb:bd:b2:07:63:ab:c7:
a1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:8B:60:EC:A9:5C:0F:60:39:68:2A:A9:7E:A2:13:D3:4A:AB:F0:34
X509v3 Authority Key Identifier:
keyid:9A:F6:F7:45:43:94:FA:95:45:14:75:54:88:70:C0:04:D4:15:8E:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/839E6565384F85C294751388EE8A204384064042CFC6A40832C695670AA7E54F/0/9AF6F7454394FA95451475548870C004D4158E0D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9AF6F7454394FA95451475548870C004D4158E0D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/839E6565384F85C294751388EE8A204384064042CFC6A40832C695670AA7E54F/0/34352e3232392e3234382e302f32322d3234203d3e20323636373037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.229.248.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:bc:46:d3:40:1b:34:5d:bf:19:5c:cf:81:da:1b:89:ac:d6:
94:f2:91:eb:5c:43:ba:f5:ed:a8:68:ee:12:9d:5e:8f:57:cf:
6f:6b:a2:71:93:a8:e3:5b:53:66:c6:9b:e3:4c:5e:48:3a:aa:
e4:c1:15:ed:a2:2f:57:26:00:3b:3c:cf:c6:0d:32:91:e8:e3:
ad:e1:df:4e:57:5c:e5:cf:6a:20:d0:42:87:0f:0d:38:da:e5:
bc:69:2d:d3:d6:9a:93:b7:2f:80:1d:e2:66:3e:70:05:35:80:
96:8e:03:2f:73:ca:97:ff:0d:d5:b7:20:95:71:f4:98:39:9c:
d7:e6:a4:0a:5a:50:1b:77:71:0d:92:11:00:39:a7:26:21:37:
c9:c2:93:39:83:1d:aa:f1:48:e3:eb:e0:6b:4c:be:8c:fd:c7:
de:1d:03:91:c3:2c:cb:2c:8e:79:da:1a:c8:d0:80:41:21:ef:
53:3f:1e:de:63:9a:da:82:7f:73:39:0b:a4:3a:ba:78:de:ba:
f5:11:2d:99:6d:00:68:2d:f0:ae:21:1d:c7:82:fc:31:71:3f:
13:0e:b6:8a:e2:2c:04:c1:a7:ea:0c:5e:65:7f:1c:03:17:10:
b9:ac:ef:a0:e3:a8:13:61:1b:af:59:f3:cc:86:fe:aa:d0:de:
98:9e:45:fa
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUM9SzNiIrUmXsxJCWDnfJG7mQcs0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUFGNkY3NDU0Mzk0RkE5NTQ1MTQ3NTU0ODg3MEMwMDRE
NDE1OEUwRDAeFw0yNTAyMDQxOTU5MDNaFw0yNjAyMDMyMDA0MDNaMDMxMTAvBgNV
BAMTKDRDOEI2MEVDQTk1QzBGNjAzOTY4MkFBOTdFQTIxM0QzNEFBQkYwMzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq2bC/8aoolb0mmkquOrToBi3I
nsvqeguWTuCrE8IXzgAfjS5JcZT5GIG7NZr3Dm8SSwRf5A1MK/JF/t7+r1IQBHWh
8+ALksDdVVRpZvmqCtMNkQXQcYLsVys7ZwNqiNNLxKHmakGdGkKCqgwRWo/HlWwK
OFq+Zi8pVGV2I+JPJ9ofEzhXCqXo6slUYC0SR5qc6s5ML5bJnLFoHaq6BMALef38
rTq/GWN6EdQ+5xfBNt5fPnTkRunWNzCnozUSSR2Fo+UO2mIuh/H0cq/Hd6H2G+qc
DtrpQ+kyAedsCLG1Lfhcqsu3NRAQQRoPv2hoU8Szc8QKvTe2672yB2Orx6GhAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUTItg7KlcD2A5aCqpfqIT00qr8DQwHwYDVR0j
BBgwFoAUmvb3RUOU+pVFFHVUiHDABNQVjg0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy84MzlFNjU2NTM4NEY4NUMyOTQ3NTEzODhFRThBMjA0Mzg0
MDY0MDQyQ0ZDNkE0MDgzMkM2OTU2NzBBQTdFNTRGLzAvOUFGNkY3NDU0Mzk0RkE5
NTQ1MTQ3NTU0ODg3MEMwMDRENDE1OEUwRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85QUY2Rjc0NTQzOTRGQTk1NDUx
NDc1NTQ4ODcwQzAwNEQ0MTU4RTBELmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvODM5RTY1NjUzODRGODVDMjk0NzUxMzg4RUU4QTIwNDM4NDA2NDA0MkNG
QzZBNDA4MzJDNjk1NjcwQUE3RTU0Ri8wLzM0MzUyZTMyMzIzOTJlMzIzNDM4MmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM2MzczMDM3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLeX4
MA0GCSqGSIb3DQEBCwUAA4IBAQBPvEbTQBs0Xb8ZXM+B2huJrNaU8pHrXEO69e2o
aO4SnV6PV89va6Jxk6jjW1NmxpvjTF5IOqrkwRXtoi9XJgA7PM/GDTKR6OOt4d9O
V1zlz2og0EKHDw042uW8aS3T1pqTty+AHeJmPnAFNYCWjgMvc8qX/w3VtyCVcfSY
OZzX5qQKWlAbd3ENkhEAOacmITfJwpM5gx2q8Ujj6+BrTL6M/cfeHQORwyzLLI55
2hrI0IBBIe9TPx7eY5ragn9zOQukOrp43rr1ES2ZbQBoLfCuIR3HgvwxcT8TDraK
4iwEwafqDF5lfxwDFxC5rO+g46gTYRuvWfPMhv6q0N6YnkX6
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:18:33 2025 by rpki-client