Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/87A28CCFB8685850BA979DC11D15952524A546CC96676DFB0A05AF8AAAA2BD7C/0/3137302e3234362e3234342e302f32322d3234203d3e203532333439.roa
File: 3137302e3234362e3234342e302f32322d3234203d3e203532333439.roa (raw, json)
Hash identifier: J45kKvVRbVFGvXQJRhJgZxQ+A3b0+v6EsaEG5wh0sXs=
Subject key identifier: 9B:7E:26:70:D0:80:32:1C:9A:F2:05:44:D0:72:65:0F:66:40:E0:B0
Certificate issuer: /CN=43D716CDB565EBE33B24F995BFB74FBBE1493099
Certificate serial: 6FD8962A4DF2A65257C86909538CEE04E8B29931
Authority key identifier: 43:D7:16:CD:B5:65:EB:E3:3B:24:F9:95:BF:B7:4F:BB:E1:49:30:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43D716CDB565EBE33B24F995BFB74FBBE1493099.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/87A28CCFB8685850BA979DC11D15952524A546CC96676DFB0A05AF8AAAA2BD7C/0/3137302e3234362e3234342e302f32322d3234203d3e203532333439.roa
Signing time: Tue 04 Feb 2025 18:26:54 +0000
ROA not before: Tue 04 Feb 2025 18:21:54 +0000
ROA not after: Tue 03 Feb 2026 18:26:54 +0000
asID: 52349
IP address blocks: 170.246.244.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:d8:96:2a:4d:f2:a6:52:57:c8:69:09:53:8c:ee:04:e8:b2:99:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43D716CDB565EBE33B24F995BFB74FBBE1493099
Validity
Not Before: Feb 4 18:21:54 2025 GMT
Not After : Feb 3 18:26:54 2026 GMT
Subject: CN=9B7E2670D080321C9AF20544D072650F6640E0B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ba:20:b2:a4:af:60:b5:38:97:84:e7:6d:45:
8e:21:0b:f8:eb:cd:48:6b:73:e9:42:6e:4a:5c:08:
ce:cf:35:aa:f3:db:e7:d5:0b:5f:23:51:8c:6c:ec:
02:ce:7a:66:ef:f8:d9:a1:63:1f:bd:bb:a4:82:38:
f0:16:85:d1:c5:8e:1b:be:b0:76:d0:84:59:81:06:
07:61:ae:d7:4f:a2:b6:c1:dc:8c:cf:67:d8:b9:1e:
c3:aa:1d:2f:65:8b:e4:52:60:e1:0f:58:b3:01:bc:
3d:7d:d8:24:0f:0f:94:e1:68:88:cd:98:25:5a:69:
60:98:a8:fe:c3:95:dd:8d:d8:b5:32:ad:b1:54:e3:
54:e8:60:02:18:a5:ed:8e:ee:0f:cb:d0:5a:90:de:
da:99:58:81:89:64:f0:cf:6a:15:df:20:2c:dd:4d:
bf:1b:25:b1:e7:7f:90:9b:d5:46:86:4d:11:d5:ff:
25:21:57:d0:2d:85:36:95:66:8b:a7:5d:63:3b:27:
ce:50:f8:c6:0b:cd:bb:f6:2f:c5:7f:b9:a7:9f:a1:
ad:1c:a8:5a:20:73:b7:98:dd:62:be:60:a0:12:de:
ea:12:a5:14:59:d0:1f:05:27:3a:c3:4e:32:18:71:
89:ea:ae:8c:36:75:58:93:9c:19:23:ef:f7:78:eb:
8f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7E:26:70:D0:80:32:1C:9A:F2:05:44:D0:72:65:0F:66:40:E0:B0
X509v3 Authority Key Identifier:
keyid:43:D7:16:CD:B5:65:EB:E3:3B:24:F9:95:BF:B7:4F:BB:E1:49:30:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/87A28CCFB8685850BA979DC11D15952524A546CC96676DFB0A05AF8AAAA2BD7C/0/43D716CDB565EBE33B24F995BFB74FBBE1493099.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43D716CDB565EBE33B24F995BFB74FBBE1493099.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/87A28CCFB8685850BA979DC11D15952524A546CC96676DFB0A05AF8AAAA2BD7C/0/3137302e3234362e3234342e302f32322d3234203d3e203532333439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.246.244.0/22
Signature Algorithm: sha256WithRSAEncryption
34:18:0e:74:99:60:3f:5a:6f:10:1d:bc:ba:a0:e8:a4:be:59:
d5:3b:62:ea:4e:e4:06:b4:b1:c0:d8:de:b4:d0:61:7b:94:e5:
52:20:3e:91:7f:2d:d0:fa:a9:6f:5a:4d:5b:f1:38:bb:8e:a5:
3d:ac:96:bd:62:42:40:81:ec:7b:82:35:70:a2:1d:69:82:87:
fc:9e:0e:34:3f:45:46:10:16:42:20:76:71:40:76:87:41:fc:
96:0b:c2:3f:35:e1:db:c5:ad:33:b9:2c:0f:cd:16:25:03:66:
73:0f:1f:45:a6:09:2b:51:0a:0f:81:d0:2b:d6:7f:a0:31:e0:
e6:00:2f:2a:d9:f4:b3:a7:8f:e8:98:b8:2d:d3:08:e5:b8:f3:
db:16:3f:ec:a5:ff:cf:07:e1:b7:7b:d0:af:4d:97:94:9d:66:
28:97:a3:0b:51:3f:3c:43:16:8e:5b:b9:c0:55:af:dd:3b:3e:
e3:b9:57:4d:37:b2:e4:7b:ad:ac:69:96:f3:60:f1:44:d6:45:
36:ee:42:4b:44:5d:f4:b6:c7:91:09:b4:92:9a:c9:7f:05:cb:
95:f9:7c:ce:36:9e:79:99:7a:cb:cc:6a:93:8e:6b:31:61:55:
09:1d:2e:d0:c9:50:1d:22:fb:b2:78:18:d5:b2:86:a2:13:4f:
b4:89:1b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:19 2025 by rpki-client