Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8FECD5798E3294C3D469818A080FF5CECA775E61554192DD987E1EE7363DB6F7/0/3137302e3231302e3131322e302f32312d3234203d3e203631343936.roa
File: 3137302e3231302e3131322e302f32312d3234203d3e203631343936.roa (raw, json)
Hash identifier: A1Yw8zzcwg4xHysI0apaz7iH0XhsGBhkuThfKq4g1WE=
Subject key identifier: 2D:05:11:F8:F3:A1:09:ED:D0:AD:44:95:A5:E2:B6:BD:2C:C7:74:F3
Certificate issuer: /CN=22D4B25C65781140A2B8DB968C7D0B813D457F0B
Certificate serial: 0B04E9E54809E7CE07AA14AF583D1D0826EA4349
Authority key identifier: 22:D4:B2:5C:65:78:11:40:A2:B8:DB:96:8C:7D:0B:81:3D:45:7F:0B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/22D4B25C65781140A2B8DB968C7D0B813D457F0B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8FECD5798E3294C3D469818A080FF5CECA775E61554192DD987E1EE7363DB6F7/0/3137302e3231302e3131322e302f32312d3234203d3e203631343936.roa
Signing time: Tue 04 Feb 2025 18:27:03 +0000
ROA not before: Tue 04 Feb 2025 18:22:03 +0000
ROA not after: Tue 03 Feb 2026 18:27:03 +0000
asID: 61496
IP address blocks: 170.210.112.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:04:e9:e5:48:09:e7:ce:07:aa:14:af:58:3d:1d:08:26:ea:43:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22D4B25C65781140A2B8DB968C7D0B813D457F0B
Validity
Not Before: Feb 4 18:22:03 2025 GMT
Not After : Feb 3 18:27:03 2026 GMT
Subject: CN=2D0511F8F3A109EDD0AD4495A5E2B6BD2CC774F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:82:6c:38:5e:65:97:a3:8c:3f:64:2d:c5:e4:
32:ea:a7:bf:99:f2:75:62:cf:6c:0f:ca:8a:cd:c5:
b6:27:d6:43:74:b1:db:7c:85:ad:57:cb:8a:6e:71:
af:50:4a:fd:ee:f2:6f:80:0d:1e:fa:f2:eb:3c:4e:
70:4d:85:ad:22:4a:4f:b2:dc:d3:5f:f4:d9:16:53:
32:46:7c:f1:dc:82:b8:20:d8:90:4f:20:f1:ce:53:
78:e4:6f:ba:9a:d4:5a:17:5e:d9:34:13:a6:8d:44:
f8:2e:4c:4b:d0:06:f0:bf:63:2c:4d:f2:29:9f:67:
91:b6:c9:e9:1e:75:dd:24:a8:a6:63:93:3d:91:52:
15:c6:53:ef:b0:b6:08:3a:f2:32:42:e4:12:32:f8:
f8:06:fa:e1:29:f6:fa:f0:1b:c8:1a:78:a1:30:fe:
2b:50:6f:d9:09:90:8e:26:e0:1d:da:c7:49:d5:e1:
1b:f6:ab:a6:43:c4:e9:c9:df:99:b3:92:fc:b9:56:
8d:39:b6:ff:cb:7f:47:e7:a7:59:be:4a:35:ba:ab:
d2:a9:5c:75:2b:8a:ec:b0:ce:7c:ef:5b:3d:32:09:
20:cd:1a:6c:7e:ac:c2:af:36:89:16:99:b4:5e:3c:
f5:2c:c7:39:3c:05:19:b3:32:c9:c6:37:d6:0f:b8:
9b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:05:11:F8:F3:A1:09:ED:D0:AD:44:95:A5:E2:B6:BD:2C:C7:74:F3
X509v3 Authority Key Identifier:
keyid:22:D4:B2:5C:65:78:11:40:A2:B8:DB:96:8C:7D:0B:81:3D:45:7F:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8FECD5798E3294C3D469818A080FF5CECA775E61554192DD987E1EE7363DB6F7/0/22D4B25C65781140A2B8DB968C7D0B813D457F0B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/22D4B25C65781140A2B8DB968C7D0B813D457F0B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8FECD5798E3294C3D469818A080FF5CECA775E61554192DD987E1EE7363DB6F7/0/3137302e3231302e3131322e302f32312d3234203d3e203631343936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.210.112.0/21
Signature Algorithm: sha256WithRSAEncryption
0d:b3:31:d2:32:43:f0:7e:4f:13:4c:0f:29:29:79:bf:2a:4f:
bf:66:03:84:42:5b:1f:dd:36:e8:da:53:b2:89:db:fa:17:e2:
37:fc:59:f7:37:bf:c6:0c:cc:4b:3e:9a:2a:6f:b7:df:6f:cb:
30:77:c0:65:85:41:ef:3d:92:69:96:58:c2:8f:d8:8d:31:94:
bd:89:88:e7:cf:cf:0c:f2:3e:77:f4:aa:d9:7d:71:8c:2f:ae:
15:1e:a6:0a:a1:07:c5:69:83:b7:7b:e3:48:d6:c5:86:ea:29:
a0:81:34:c9:7c:ad:e9:0f:be:00:b7:6a:39:77:b2:9b:c6:ea:
3e:69:1a:f2:ff:c8:e8:79:95:89:96:d6:f7:f0:7a:7b:12:e6:
3e:34:0d:bc:ad:33:bb:2a:d7:0f:be:cd:dc:9d:2b:02:67:74:
ff:75:40:fd:68:2c:0a:f8:8a:40:ff:50:dc:fb:be:b5:8c:b6:
2d:47:72:f3:84:94:71:56:15:c1:71:2f:48:6d:6a:0f:08:a8:
f5:39:44:76:b5:a7:88:c2:d8:0c:be:91:da:c3:2a:18:3c:31:
9b:b1:13:88:d9:0c:81:85:63:12:7f:5b:d4:0a:da:51:d5:61:
39:a3:19:cd:2a:f4:20:bb:cd:42:1b:8a:d6:70:a6:72:a9:c0:
3f:b7:89:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:02 2025 by rpki-client