Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/87D59CE00172146B0C116A84500F63FE7511ADA650DC16D57EBBFBDF799200BB/0/34352e3137302e3132382e302f32322d3234203d3e203631353132.roa
File: 34352e3137302e3132382e302f32322d3234203d3e203631353132.roa (raw, json)
Hash identifier: APOmoNKTFye/WKny8Moj2ePsiAP8sSxzy/Nk1SfzBZc=
Subject key identifier: BD:F9:4D:FA:7B:28:2E:E2:B1:0D:0B:16:42:5B:AE:FC:26:A5:08:68
Certificate issuer: /CN=3472E1FF1818962AFB9DAD448DEB6B4F02BDFBC7
Certificate serial: 21297B0ADC3C61D7A9710CD8EA57667AB6F6735C
Authority key identifier: 34:72:E1:FF:18:18:96:2A:FB:9D:AD:44:8D:EB:6B:4F:02:BD:FB:C7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3472E1FF1818962AFB9DAD448DEB6B4F02BDFBC7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/87D59CE00172146B0C116A84500F63FE7511ADA650DC16D57EBBFBDF799200BB/0/34352e3137302e3132382e302f32322d3234203d3e203631353132.roa
Signing time: Tue 04 Feb 2025 18:10:25 +0000
ROA not before: Tue 04 Feb 2025 18:05:25 +0000
ROA not after: Tue 03 Feb 2026 18:10:25 +0000
asID: 61512
IP address blocks: 45.170.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:29:7b:0a:dc:3c:61:d7:a9:71:0c:d8:ea:57:66:7a:b6:f6:73:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3472E1FF1818962AFB9DAD448DEB6B4F02BDFBC7
Validity
Not Before: Feb 4 18:05:25 2025 GMT
Not After : Feb 3 18:10:25 2026 GMT
Subject: CN=BDF94DFA7B282EE2B10D0B16425BAEFC26A50868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:00:09:4c:b1:07:96:16:18:eb:f3:e3:37:18:
45:cd:2c:73:d5:e6:8e:09:5d:b6:87:d2:97:d3:0c:
ac:68:8e:89:bb:33:f6:df:48:62:40:83:a0:53:32:
ab:1b:a9:c9:95:9c:ef:df:88:e9:00:1e:ac:1c:f2:
d4:a4:57:47:5d:73:a1:47:9f:09:78:cc:89:c1:e9:
88:ae:12:5d:b3:ca:ac:75:a2:4c:29:b7:37:5f:5c:
1a:4b:b6:4e:b0:5e:20:dc:1a:7f:b1:6a:50:46:5d:
a7:31:3b:f1:8a:f9:1e:9c:c7:7d:74:62:f6:df:c1:
38:45:ac:45:ce:4e:1b:96:84:13:12:62:6e:f2:1c:
c5:3d:eb:47:9f:5a:c9:0a:f4:aa:18:1e:74:5c:52:
f8:df:73:c9:68:b8:88:87:36:df:79:0c:4b:6c:13:
52:ea:21:63:a4:f3:11:2a:11:06:64:3e:9f:e2:3f:
f7:4a:0c:c8:b6:86:38:83:b9:16:2f:63:82:cb:8f:
c6:3b:83:24:5c:07:8c:16:eb:12:98:f1:a7:a3:39:
ff:7d:a6:f4:0e:35:cc:88:ba:f7:69:c9:12:48:e5:
95:06:54:45:8d:8b:c5:16:26:65:54:7e:80:82:07:
b2:04:f5:0e:78:f5:38:48:49:82:98:11:d0:88:e5:
5e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:F9:4D:FA:7B:28:2E:E2:B1:0D:0B:16:42:5B:AE:FC:26:A5:08:68
X509v3 Authority Key Identifier:
keyid:34:72:E1:FF:18:18:96:2A:FB:9D:AD:44:8D:EB:6B:4F:02:BD:FB:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/87D59CE00172146B0C116A84500F63FE7511ADA650DC16D57EBBFBDF799200BB/0/3472E1FF1818962AFB9DAD448DEB6B4F02BDFBC7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3472E1FF1818962AFB9DAD448DEB6B4F02BDFBC7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/87D59CE00172146B0C116A84500F63FE7511ADA650DC16D57EBBFBDF799200BB/0/34352e3137302e3132382e302f32322d3234203d3e203631353132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.170.128.0/22
Signature Algorithm: sha256WithRSAEncryption
35:c6:6f:77:06:ca:eb:0b:5c:ed:e7:ca:36:7f:5a:5b:da:82:
93:98:f5:81:db:56:82:54:a3:21:4d:d7:81:d7:58:77:19:af:
3e:57:09:07:79:ff:68:52:9d:7b:7f:2a:c6:7a:11:fc:9e:21:
c4:51:7b:5a:6d:91:a4:52:89:b7:e6:46:a4:d1:84:53:aa:6c:
50:13:60:9f:4b:4e:08:c8:de:81:62:c2:78:52:e4:a1:fd:62:
f1:c1:d4:50:c8:e5:07:d6:d6:01:e8:45:71:4d:27:19:d4:e1:
e9:99:93:36:9f:84:eb:4c:ce:c5:87:56:5b:b8:fe:ff:43:9e:
4e:6b:ae:c0:83:7a:27:a4:8e:50:1c:97:30:d2:4b:c7:94:80:
54:ac:d2:ec:ce:26:1c:81:a5:6f:0d:5f:8e:90:18:38:69:7c:
37:13:6b:0e:09:7c:5f:51:6a:ee:10:35:06:f8:06:09:33:ba:
6e:90:92:71:0a:09:f4:97:11:00:42:2c:c0:8f:7c:d8:28:11:
9c:29:cd:b8:a0:d4:dc:e5:31:6f:0e:dc:a2:e9:2e:62:85:40:
43:ac:9d:ad:52:2e:39:71:cd:34:8b:4a:fc:e5:6d:67:9f:41:
50:36:47:77:e0:6e:af:96:a9:6b:7f:0f:e2:50:7c:9a:9a:52:
3b:67:c1:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:42 2025 by rpki-client