Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8D75AA3199BFADD81E2FA56BEDC57BEDECD719BC9E063F9F77E6730C4C5CB4FD/0/3136342e3136332e3133322e302f32322d3234203d3e20323634363638.roa
File: 3136342e3136332e3133322e302f32322d3234203d3e20323634363638.roa (raw, json)
Hash identifier: WQZjJHmCLVzOG9N/VNKVy9HwfUCL6PBQq9vvZVgjK2g=
Subject key identifier: F8:5D:E1:C9:A3:DB:9F:78:9A:57:EB:C6:81:92:4B:36:5B:CC:90:F3
Certificate issuer: /CN=BA43CC9DA5DF2E86CDE276C6DD5F826F162A5886
Certificate serial: 11C8E6317D7773F9C98A72356518F80F2494F4D1
Authority key identifier: BA:43:CC:9D:A5:DF:2E:86:CD:E2:76:C6:DD:5F:82:6F:16:2A:58:86
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA43CC9DA5DF2E86CDE276C6DD5F826F162A5886.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8D75AA3199BFADD81E2FA56BEDC57BEDECD719BC9E063F9F77E6730C4C5CB4FD/0/3136342e3136332e3133322e302f32322d3234203d3e20323634363638.roa
Signing time: Tue 04 Feb 2025 18:24:53 +0000
ROA not before: Tue 04 Feb 2025 18:19:53 +0000
ROA not after: Tue 03 Feb 2026 18:24:53 +0000
asID: 264668
IP address blocks: 164.163.132.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:c8:e6:31:7d:77:73:f9:c9:8a:72:35:65:18:f8:0f:24:94:f4:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA43CC9DA5DF2E86CDE276C6DD5F826F162A5886
Validity
Not Before: Feb 4 18:19:53 2025 GMT
Not After : Feb 3 18:24:53 2026 GMT
Subject: CN=F85DE1C9A3DB9F789A57EBC681924B365BCC90F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:04:cc:27:6d:5a:78:bb:c7:c8:64:57:86:22:
de:66:a3:e4:98:42:5c:6a:e2:44:67:4e:39:8d:57:
71:7b:d6:f2:a4:4c:5c:50:bd:23:9f:ed:c3:49:02:
04:15:4b:b8:e3:ce:4d:2d:46:e1:da:06:eb:24:04:
35:30:29:81:ea:75:1d:65:57:48:89:ae:b4:e7:9d:
2c:81:54:d2:9c:3d:0f:d6:b5:7e:8d:c8:a6:d2:27:
68:7d:ff:9f:ad:05:f0:e9:cb:e7:bf:f5:de:e2:ce:
f9:21:14:1a:2d:73:fe:01:80:8d:08:42:a5:07:5d:
e0:7a:b8:4b:2b:96:47:ed:89:f4:16:0c:e2:cc:77:
d9:db:36:4a:ca:04:cd:25:00:85:5e:95:96:17:2b:
c9:18:99:03:6e:e0:6a:51:30:c0:92:fd:83:f6:c5:
5b:06:13:9f:b9:9e:56:cf:f1:3a:80:cc:b0:96:8b:
c3:a3:4e:c6:1c:ad:b4:63:f2:23:e8:11:63:1b:eb:
d1:cc:67:6d:f7:c2:14:53:05:c3:7d:39:33:06:79:
ed:31:de:ac:d4:cb:f8:52:0c:67:fe:e5:07:47:27:
f1:6f:31:eb:8e:0f:fe:2d:90:77:57:08:c3:7c:d7:
e9:c1:90:09:39:fc:3d:80:b5:71:5d:7f:c7:66:bd:
5a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:5D:E1:C9:A3:DB:9F:78:9A:57:EB:C6:81:92:4B:36:5B:CC:90:F3
X509v3 Authority Key Identifier:
keyid:BA:43:CC:9D:A5:DF:2E:86:CD:E2:76:C6:DD:5F:82:6F:16:2A:58:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8D75AA3199BFADD81E2FA56BEDC57BEDECD719BC9E063F9F77E6730C4C5CB4FD/0/BA43CC9DA5DF2E86CDE276C6DD5F826F162A5886.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA43CC9DA5DF2E86CDE276C6DD5F826F162A5886.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8D75AA3199BFADD81E2FA56BEDC57BEDECD719BC9E063F9F77E6730C4C5CB4FD/0/3136342e3136332e3133322e302f32322d3234203d3e20323634363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.163.132.0/22
Signature Algorithm: sha256WithRSAEncryption
af:ce:e2:e4:e0:4f:fc:9b:37:db:d3:bc:08:66:1c:52:50:5d:
28:30:f7:87:73:67:d8:e6:93:ff:ac:4b:ca:cc:ef:53:03:51:
cb:7f:70:96:e4:95:f2:53:8b:93:6e:8a:93:70:b6:88:d7:0b:
79:c1:6d:10:fa:08:af:e2:94:8c:62:bc:f5:bf:28:29:33:58:
42:67:15:3b:bd:6a:8a:16:4a:f9:84:7e:78:d5:3d:77:34:3a:
85:b0:61:24:e9:94:56:9f:31:62:7e:19:29:55:0d:b9:f1:fa:
c0:d1:62:63:cf:2b:c3:a7:bb:59:a2:04:68:a0:22:fd:ef:6e:
a7:59:1e:94:58:1d:39:e8:bc:c0:50:57:a2:79:62:3d:f6:d7:
d0:e3:ac:3e:0d:fb:5f:2a:53:e9:a7:ab:98:3b:b9:8d:3d:55:
29:20:8a:80:98:90:17:e5:25:ad:62:7a:22:34:41:c2:62:7a:
66:74:2e:b0:1b:c7:49:e3:a9:8b:c6:ae:6e:8a:46:08:83:af:
d9:7f:8e:53:01:56:f4:f9:67:ff:82:57:83:32:8e:8a:88:6d:
68:b6:15:1a:3e:36:5f:af:a2:c4:96:55:ee:db:36:77:1d:f5:
04:a7:99:d1:3c:da:1e:3c:25:cf:db:8c:6c:be:13:c1:a1:89:
3a:92:30:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:51:18 2025 by rpki-client