Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8E42CBA476FC29B5B2D6EFD2BD6FC7783B45E1DE3AF8CA0321FCB343A6CDF7B8/0/34352e3136312e3131322e302f32322d3234203d3e20323636383931.roa
File: 34352e3136312e3131322e302f32322d3234203d3e20323636383931.roa (raw, json)
Hash identifier: kEIYi8COjXeX/nnfIYOc0BviSf6yFX+8QoG+0JcdSQM=
Subject key identifier: B8:6A:E9:54:81:A0:C8:92:6C:31:6F:79:7F:1F:A4:3F:FA:71:BE:D0
Certificate issuer: /CN=C556AA3CC16346423FD48947E61ED84B443C6BD6
Certificate serial: 5E9D17540A4B75A5378205A8FCA48F96F28C0B35
Authority key identifier: C5:56:AA:3C:C1:63:46:42:3F:D4:89:47:E6:1E:D8:4B:44:3C:6B:D6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C556AA3CC16346423FD48947E61ED84B443C6BD6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8E42CBA476FC29B5B2D6EFD2BD6FC7783B45E1DE3AF8CA0321FCB343A6CDF7B8/0/34352e3136312e3131322e302f32322d3234203d3e20323636383931.roa
Signing time: Tue 04 Feb 2025 18:35:52 +0000
ROA not before: Tue 04 Feb 2025 18:30:52 +0000
ROA not after: Tue 03 Feb 2026 18:35:52 +0000
asID: 266891
IP address blocks: 45.161.112.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:9d:17:54:0a:4b:75:a5:37:82:05:a8:fc:a4:8f:96:f2:8c:0b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C556AA3CC16346423FD48947E61ED84B443C6BD6
Validity
Not Before: Feb 4 18:30:52 2025 GMT
Not After : Feb 3 18:35:52 2026 GMT
Subject: CN=B86AE95481A0C8926C316F797F1FA43FFA71BED0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:53:9d:c3:ff:09:4f:14:8f:f8:91:a7:09:e2:
b2:1d:61:47:c0:06:52:8a:99:62:0e:56:10:b2:81:
c2:aa:3d:8b:a7:f2:ab:4b:31:43:fd:5d:b0:af:c5:
9b:47:bd:cf:94:a8:39:ec:32:17:6a:36:49:8c:97:
7e:b0:69:7f:eb:8d:94:7d:dc:7f:10:45:be:a1:fa:
fc:53:28:d8:0f:03:57:cc:61:c1:ea:4f:45:c6:ad:
d5:eb:5d:af:62:d4:6b:95:73:3a:6f:a7:5c:57:3c:
79:1d:97:cd:2e:98:a9:11:61:1e:33:f0:37:25:9d:
a3:bd:6e:d5:4c:a9:53:20:db:a3:a9:ca:5a:cd:ce:
cc:90:22:64:51:b0:de:69:7d:d3:e9:b1:81:a8:34:
f3:35:2b:a3:45:f9:30:a8:b1:ad:85:22:36:95:57:
2e:b3:90:ff:42:ca:07:92:8b:a3:00:1e:35:43:84:
bd:4c:53:76:4d:2a:9a:c8:07:99:c0:57:05:53:e5:
ca:43:5e:f6:54:1d:7d:c7:20:7c:17:0a:90:16:b3:
8d:9b:9c:3c:f0:63:24:f8:7d:c4:d0:9d:6e:d2:3c:
a8:78:53:44:78:39:d6:7e:d6:a5:df:eb:8d:f9:31:
bc:46:5c:b2:15:fd:5b:6c:7b:97:e9:06:d4:a8:fb:
0d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:6A:E9:54:81:A0:C8:92:6C:31:6F:79:7F:1F:A4:3F:FA:71:BE:D0
X509v3 Authority Key Identifier:
keyid:C5:56:AA:3C:C1:63:46:42:3F:D4:89:47:E6:1E:D8:4B:44:3C:6B:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8E42CBA476FC29B5B2D6EFD2BD6FC7783B45E1DE3AF8CA0321FCB343A6CDF7B8/0/C556AA3CC16346423FD48947E61ED84B443C6BD6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C556AA3CC16346423FD48947E61ED84B443C6BD6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8E42CBA476FC29B5B2D6EFD2BD6FC7783B45E1DE3AF8CA0321FCB343A6CDF7B8/0/34352e3136312e3131322e302f32322d3234203d3e20323636383931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.161.112.0/22
Signature Algorithm: sha256WithRSAEncryption
82:0f:c8:46:3c:20:85:8d:25:2a:53:bd:3f:6d:7f:bc:df:42:
0b:86:35:98:ac:1c:3d:98:9e:e5:f2:23:15:20:c6:ee:67:29:
c1:36:e7:34:db:f0:5d:fe:8d:a6:95:b0:28:7e:7c:2a:ad:f0:
ec:ed:dc:66:4c:ab:50:b4:5f:2d:fb:d4:a9:27:5d:d5:24:16:
25:4b:56:26:e3:0d:31:d8:42:33:a1:5e:b4:19:c7:52:e0:27:
92:1b:8b:a2:51:52:08:d9:59:5b:d1:da:86:38:9d:14:29:84:
d9:42:87:0b:0c:c8:08:26:7a:15:c6:c1:b0:2f:a7:7b:67:0a:
6b:33:af:cd:c2:e5:75:8c:69:01:fe:ce:1c:15:fc:c7:58:de:
9b:8e:64:a0:30:d8:db:43:8c:ed:ed:1b:a4:8f:9d:38:3c:8b:
69:58:1e:70:70:89:26:bb:17:66:c2:f9:4f:91:e9:e5:97:e5:
6b:88:0d:55:75:52:12:65:2a:7b:c6:bd:c4:26:36:f9:a9:3c:
c8:67:4b:49:75:17:d2:cc:1e:ff:b2:fd:dd:a7:bb:f8:0c:23:
33:84:90:35:d4:c9:1c:55:16:e9:d4:2a:f8:ef:0a:c1:f5:db:
7e:7d:ef:ac:a8:4e:7f:dd:77:91:15:41:4a:a1:ba:80:56:79:
3b:be:d4:46
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUXp0XVApLdaU3ggWo/KSPlvKMCzUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzU1NkFBM0NDMTYzNDY0MjNGRDQ4OTQ3RTYxRUQ4NEI0
NDNDNkJENjAeFw0yNTAyMDQxODMwNTJaFw0yNjAyMDMxODM1NTJaMDMxMTAvBgNV
BAMTKEI4NkFFOTU0ODFBMEM4OTI2QzMxNkY3OTdGMUZBNDNGRkE3MUJFRDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5U53D/wlPFI/4kacJ4rIdYUfA
BlKKmWIOVhCygcKqPYun8qtLMUP9XbCvxZtHvc+UqDnsMhdqNkmMl36waX/rjZR9
3H8QRb6h+vxTKNgPA1fMYcHqT0XGrdXrXa9i1GuVczpvp1xXPHkdl80umKkRYR4z
8DclnaO9btVMqVMg26OpylrNzsyQImRRsN5pfdPpsYGoNPM1K6NF+TCosa2FIjaV
Vy6zkP9CygeSi6MAHjVDhL1MU3ZNKprIB5nAVwVT5cpDXvZUHX3HIHwXCpAWs42b
nDzwYyT4fcTQnW7SPKh4U0R4OdZ+1qXf6435MbxGXLIV/Vtse5fpBtSo+w1TAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUuGrpVIGgyJJsMW95fx+kP/pxvtAwHwYDVR0j
BBgwFoAUxVaqPMFjRkI/1IlH5h7YS0Q8a9YwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy84RTQyQ0JBNDc2RkMyOUI1QjJENkVGRDJCRDZGQzc3ODNC
NDVFMURFM0FGOENBMDMyMUZDQjM0M0E2Q0RGN0I4LzAvQzU1NkFBM0NDMTYzNDY0
MjNGRDQ4OTQ3RTYxRUQ4NEI0NDNDNkJENi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DNTU2QUEzQ0MxNjM0NjQyM0ZE
NDg5NDdFNjFFRDg0QjQ0M0M2QkQ2LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOEU0MkNCQTQ3NkZDMjlCNUIyRDZFRkQyQkQ2RkM3NzgzQjQ1RTFERTNB
RjhDQTAzMjFGQ0IzNDNBNkNERjdCOC8wLzM0MzUyZTMxMzYzMTJlMzEzMTMyMmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM2MzgzOTMxLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLaFw
MA0GCSqGSIb3DQEBCwUAA4IBAQCCD8hGPCCFjSUqU70/bX+830ILhjWYrBw9mJ7l
8iMVIMbuZynBNuc02/Bd/o2mlbAofnwqrfDs7dxmTKtQtF8t+9SpJ13VJBYlS1Ym
4w0x2EIzoV60GcdS4CeSG4uiUVII2Vlb0dqGOJ0UKYTZQocLDMgIJnoVxsGwL6d7
ZwprM6/NwuV1jGkB/s4cFfzHWN6bjmSgMNjbQ4zt7Rukj504PItpWB5wcIkmuxdm
wvlPkenll+VriA1VdVISZSp7xr3EJjb5qTzIZ0tJdRfSzB7/sv3dp7v4DCMzhJA1
1MkcVRbp1Cr47wrB9dt+fe+sqE5/3XeRFUFKobqAVnk7vtRG
-----END CERTIFICATE-----
Generated at Sun Apr 6 08:05:57 2025 by rpki-client