Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8FECD5798E3294C3D469818A080FF5CECA775E61554192DD987E1EE7363DB6F7/0/3137302e3231302e3136382e302f32312d3234203d3e203238303638.roa
File: 3137302e3231302e3136382e302f32312d3234203d3e203238303638.roa (raw, json)
Hash identifier: tNe3ZQ+BF6C8h1h+Wme0us5On9BFOYZEqjsKJIuAwYY=
Subject key identifier: 50:52:8D:94:F9:00:DF:0E:BD:8E:E6:E2:92:63:9D:FF:CF:1F:73:02
Certificate issuer: /CN=22D4B25C65781140A2B8DB968C7D0B813D457F0B
Certificate serial: 54904A026CCB8B0F793ADDA88925B4C0BC0F9BD4
Authority key identifier: 22:D4:B2:5C:65:78:11:40:A2:B8:DB:96:8C:7D:0B:81:3D:45:7F:0B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/22D4B25C65781140A2B8DB968C7D0B813D457F0B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8FECD5798E3294C3D469818A080FF5CECA775E61554192DD987E1EE7363DB6F7/0/3137302e3231302e3136382e302f32312d3234203d3e203238303638.roa
Signing time: Tue 04 Feb 2025 18:27:03 +0000
ROA not before: Tue 04 Feb 2025 18:22:03 +0000
ROA not after: Tue 03 Feb 2026 18:27:03 +0000
asID: 28068
IP address blocks: 170.210.168.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:90:4a:02:6c:cb:8b:0f:79:3a:dd:a8:89:25:b4:c0:bc:0f:9b:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22D4B25C65781140A2B8DB968C7D0B813D457F0B
Validity
Not Before: Feb 4 18:22:03 2025 GMT
Not After : Feb 3 18:27:03 2026 GMT
Subject: CN=50528D94F900DF0EBD8EE6E292639DFFCF1F7302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:34:b4:5e:a3:29:43:7e:c4:1f:92:6d:cf:2d:
c4:5a:1d:81:b9:b6:c2:65:dd:97:e2:de:e1:b1:5e:
08:5c:c4:94:91:67:73:a9:84:54:49:4c:86:98:be:
16:31:1c:cf:69:96:89:36:92:e5:78:38:bf:5f:6c:
79:3c:74:76:c2:e8:f0:8c:1d:eb:44:18:24:9f:9a:
1a:b4:c9:f5:95:0b:be:2c:7d:52:00:a6:b5:00:2c:
90:46:a3:ee:8a:75:c2:66:c7:12:b8:52:ed:d3:b2:
5e:eb:58:02:7f:2f:a0:4e:c3:25:57:86:4c:ac:85:
db:3b:2d:c3:5a:e4:e8:22:19:7a:7e:19:90:3a:97:
a1:dd:e6:4d:29:c3:bf:1a:0d:bc:34:b0:d9:b6:b1:
5f:d9:26:42:5c:37:8f:85:91:a9:95:c0:e8:35:bd:
46:36:a6:00:3e:48:2a:f0:c2:d5:58:38:75:5a:59:
48:cb:f9:25:17:da:c5:93:aa:cb:c3:89:8a:e8:7c:
82:7a:09:00:db:8a:56:70:3e:a4:6d:3e:d2:2b:cf:
28:60:e9:b9:0a:45:55:6a:bd:b9:f5:5e:6a:53:37:
09:14:b4:ec:07:32:91:94:33:71:d7:35:2c:f7:07:
5b:4c:84:8b:d0:63:06:74:63:e4:1d:2e:92:15:60:
0d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:52:8D:94:F9:00:DF:0E:BD:8E:E6:E2:92:63:9D:FF:CF:1F:73:02
X509v3 Authority Key Identifier:
keyid:22:D4:B2:5C:65:78:11:40:A2:B8:DB:96:8C:7D:0B:81:3D:45:7F:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8FECD5798E3294C3D469818A080FF5CECA775E61554192DD987E1EE7363DB6F7/0/22D4B25C65781140A2B8DB968C7D0B813D457F0B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/22D4B25C65781140A2B8DB968C7D0B813D457F0B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8FECD5798E3294C3D469818A080FF5CECA775E61554192DD987E1EE7363DB6F7/0/3137302e3231302e3136382e302f32312d3234203d3e203238303638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.210.168.0/21
Signature Algorithm: sha256WithRSAEncryption
9e:36:17:9c:b6:85:2d:14:d0:50:4d:38:9c:2e:44:1d:c6:07:
70:b8:cc:92:e8:09:a8:38:5e:97:01:8a:9f:ff:a2:ea:2d:38:
6d:ad:3d:1a:77:60:73:7f:56:b6:b0:bf:e2:a8:a1:ce:11:1e:
b3:e7:1b:eb:79:fd:f3:48:a9:2c:c2:ae:54:11:64:59:34:4f:
f1:a8:d7:c5:7b:89:ef:8b:b0:8b:06:8f:ff:da:06:ab:1c:af:
a4:c6:ef:7e:90:08:2c:cb:43:4f:a7:85:8d:2b:3f:dc:16:e5:
22:c5:72:8f:fe:ee:0a:39:ca:90:9d:8c:30:dc:41:b0:5a:ac:
66:5b:f5:a0:ab:fc:5e:b9:86:07:61:14:6b:34:88:c7:ca:a7:
99:58:b5:db:b6:31:be:9c:1b:b5:eb:a9:f7:04:1f:b3:2b:6b:
d3:08:80:99:b9:ad:c1:85:f0:59:14:94:4a:b1:05:21:c4:6f:
f9:8f:26:ce:0a:c2:e3:e7:94:71:3a:e8:5d:e4:54:9b:f4:36:
6c:39:2f:49:27:14:a8:cd:95:33:9a:9a:c4:9f:d3:99:af:2e:
d2:7e:81:44:be:25:e6:65:2f:45:06:3b:3f:de:5d:e2:85:dc:
27:08:af:15:d0:ef:1f:10:ed:cb:4c:a0:76:c0:c9:23:34:a8:
6f:d7:45:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:11 2025 by rpki-client