Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8B3146CE91205F3D5C78C516967877D31CCAD3A4AF98EF52B1DCB60168D25F7E/0/34352e3233362e3138342e302f32322d3234203d3e20323636383033.roa
File: 34352e3233362e3138342e302f32322d3234203d3e20323636383033.roa (raw, json)
Hash identifier: ATAWUsSLPcROc9ASTCDN+2eTL8OrROLIikDWEMZye/g=
Subject key identifier: 7D:6C:8B:F4:E6:54:00:C3:26:8E:4E:E7:48:6E:A7:87:AE:91:7F:E5
Certificate issuer: /CN=D24B0252516038C8F5AED640DCC6496F35757027
Certificate serial: 32BDD6122DDBA3E911889A97456B9666A391C1AE
Authority key identifier: D2:4B:02:52:51:60:38:C8:F5:AE:D6:40:DC:C6:49:6F:35:75:70:27
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D24B0252516038C8F5AED640DCC6496F35757027.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8B3146CE91205F3D5C78C516967877D31CCAD3A4AF98EF52B1DCB60168D25F7E/0/34352e3233362e3138342e302f32322d3234203d3e20323636383033.roa
Signing time: Tue 04 Feb 2025 20:01:38 +0000
ROA not before: Tue 04 Feb 2025 19:56:38 +0000
ROA not after: Tue 03 Feb 2026 20:01:38 +0000
asID: 266803
IP address blocks: 45.236.184.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:bd:d6:12:2d:db:a3:e9:11:88:9a:97:45:6b:96:66:a3:91:c1:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D24B0252516038C8F5AED640DCC6496F35757027
Validity
Not Before: Feb 4 19:56:38 2025 GMT
Not After : Feb 3 20:01:38 2026 GMT
Subject: CN=7D6C8BF4E65400C3268E4EE7486EA787AE917FE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8e:75:74:96:c6:5e:f2:f4:bb:cc:3f:17:32:
8d:e3:20:ac:9d:f0:ea:1b:3d:f5:fa:83:72:ef:d6:
2d:58:7a:19:a3:54:03:28:3f:ca:d1:26:4c:ef:78:
cc:78:1a:7a:85:c9:b7:36:4a:e5:11:d5:9e:a1:42:
82:81:74:74:47:1c:b4:a0:8d:8a:73:e8:d7:e9:69:
ae:cf:b3:8d:14:2c:1e:dd:b7:0c:5d:1b:48:3f:97:
cd:a7:e3:0c:2f:e0:d9:5b:cc:02:af:2f:02:a6:e3:
da:27:2b:ce:b0:37:d0:af:af:13:73:34:06:3e:2d:
00:ea:8f:7c:77:ac:12:6c:58:2b:cc:c0:2b:48:c5:
d2:a9:8a:0a:d1:11:15:e8:fb:18:a1:22:c9:5d:2c:
ef:c6:bf:f1:9d:e8:9e:f4:51:00:d4:c5:7d:7a:cd:
ea:c9:a8:a9:d2:81:37:c6:fd:b4:fe:ff:67:e0:b8:
35:1a:93:e8:d2:6f:18:0e:1e:fa:88:8c:11:9b:ba:
d9:a4:97:2e:1d:90:5e:4d:79:a0:25:43:a3:7e:f8:
cc:f6:47:43:9e:0f:5f:ce:f0:d7:f9:6a:10:13:06:
c7:d1:36:a0:e3:e9:0f:8c:e6:1b:89:2d:7e:81:5b:
00:77:63:3e:7c:25:d3:bc:99:04:04:00:31:ce:a0:
a1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:6C:8B:F4:E6:54:00:C3:26:8E:4E:E7:48:6E:A7:87:AE:91:7F:E5
X509v3 Authority Key Identifier:
keyid:D2:4B:02:52:51:60:38:C8:F5:AE:D6:40:DC:C6:49:6F:35:75:70:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8B3146CE91205F3D5C78C516967877D31CCAD3A4AF98EF52B1DCB60168D25F7E/0/D24B0252516038C8F5AED640DCC6496F35757027.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D24B0252516038C8F5AED640DCC6496F35757027.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8B3146CE91205F3D5C78C516967877D31CCAD3A4AF98EF52B1DCB60168D25F7E/0/34352e3233362e3138342e302f32322d3234203d3e20323636383033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.236.184.0/22
Signature Algorithm: sha256WithRSAEncryption
22:79:42:47:5c:d4:80:ac:d7:49:46:54:a3:38:46:68:bb:c6:
90:33:66:ba:b8:6b:0b:c5:95:9f:a8:b4:63:e7:e1:7a:73:95:
e4:f1:c6:4c:f1:6e:bb:ad:0a:3e:8b:01:c8:82:01:a8:18:47:
52:87:8d:3e:e9:eb:92:af:43:a6:06:9f:47:87:0e:a7:4a:12:
ea:dd:e4:9c:6e:ae:b2:a1:51:61:87:3a:07:a3:c3:ac:85:ec:
da:2e:ec:15:51:11:ff:75:f3:f5:44:1e:7a:db:62:0b:29:64:
95:f8:7c:0d:94:8a:ad:d6:a4:b1:25:82:76:3b:6d:5b:3b:95:
a4:a1:90:26:e1:cc:a3:00:a7:be:b0:f0:2b:87:02:c2:2e:7d:
21:d8:00:95:11:79:09:0a:40:b4:52:47:db:38:db:ca:0d:6f:
a2:ed:73:18:71:a3:73:54:c6:51:48:0d:d0:d6:ee:f3:90:0f:
6f:fd:dc:8a:e4:03:4c:11:11:81:25:a9:8d:23:f7:c1:cc:cd:
25:f6:b6:f8:4c:f8:f1:2e:a4:b3:d6:56:29:84:00:75:e3:86:
86:c3:f4:dd:7a:5a:42:af:98:45:3a:08:2f:f3:02:24:13:03:
60:97:48:d2:ea:a2:ea:9e:42:f2:00:17:d4:a4:cb:4e:a4:4a:
9b:8c:3c:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:48:20 2025 by rpki-client