Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/91076D605524CF64D209FB2E0511C9A1D151C25B0F475DC704B17CAE56789A44/0/3136372e3234392e32302e302f32322d3234203d3e20323634363335.roa
File: 3136372e3234392e32302e302f32322d3234203d3e20323634363335.roa (raw, json)
Hash identifier: GxYpOCEpRx3bL+k3yCLh8FpQOwzfr5rjCbKfkf+dUzM=
Subject key identifier: 28:2D:51:D4:95:39:E7:8E:55:16:5A:0D:CB:22:4D:31:C3:59:D0:5F
Certificate issuer: /CN=59A4FF40C45E2884AC4C181079D0846DC88152FA
Certificate serial: 0E748604FFC71B3DEF08731073BD927B8FFF1999
Authority key identifier: 59:A4:FF:40:C4:5E:28:84:AC:4C:18:10:79:D0:84:6D:C8:81:52:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/59A4FF40C45E2884AC4C181079D0846DC88152FA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/91076D605524CF64D209FB2E0511C9A1D151C25B0F475DC704B17CAE56789A44/0/3136372e3234392e32302e302f32322d3234203d3e20323634363335.roa
Signing time: Tue 04 Feb 2025 20:07:44 +0000
ROA not before: Tue 04 Feb 2025 20:02:44 +0000
ROA not after: Tue 03 Feb 2026 20:07:44 +0000
asID: 264635
IP address blocks: 167.249.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:74:86:04:ff:c7:1b:3d:ef:08:73:10:73:bd:92:7b:8f:ff:19:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59A4FF40C45E2884AC4C181079D0846DC88152FA
Validity
Not Before: Feb 4 20:02:44 2025 GMT
Not After : Feb 3 20:07:44 2026 GMT
Subject: CN=282D51D49539E78E55165A0DCB224D31C359D05F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:43:4f:3b:9a:e6:4d:8e:0e:a8:58:68:17:e7:
93:ca:ab:b5:0e:15:f2:2d:1e:cc:26:ac:61:f4:4e:
8c:51:c1:f3:8f:9b:54:d6:6c:15:85:e3:3c:48:57:
5b:40:5d:c8:9e:33:ec:84:e4:d5:4c:d7:11:75:5f:
13:43:4b:4d:19:ef:24:8f:70:c4:87:ce:3a:ce:17:
d8:eb:cb:d4:18:a4:e0:80:86:32:29:84:9d:30:cd:
8e:ee:3a:ab:cc:30:ec:28:95:2f:9b:af:05:c8:4a:
48:7e:64:70:24:d9:a4:dd:b4:80:4d:d8:38:bb:f2:
c7:d9:fc:e5:f4:10:92:f3:00:b3:5c:59:dc:e2:34:
3e:ba:3c:83:c8:48:e5:a8:56:95:f4:1c:f8:38:52:
2b:f5:bd:27:20:71:15:d8:75:63:d8:07:d7:e4:bd:
38:83:9e:56:b6:ee:e8:7a:7d:44:e2:d6:65:bc:7a:
46:7f:95:73:be:b4:9c:11:b8:5a:89:34:83:bb:8f:
25:1e:cd:97:03:fc:87:dd:f2:87:71:d0:0f:8d:a9:
b5:2b:52:91:79:28:43:28:1d:9f:80:90:5e:d5:05:
a2:1f:ca:97:4b:67:71:ca:b1:29:3f:89:0e:5f:76:
a4:ed:ff:62:a7:36:1e:61:75:5e:ab:cc:89:2e:f8:
3b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:2D:51:D4:95:39:E7:8E:55:16:5A:0D:CB:22:4D:31:C3:59:D0:5F
X509v3 Authority Key Identifier:
keyid:59:A4:FF:40:C4:5E:28:84:AC:4C:18:10:79:D0:84:6D:C8:81:52:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/91076D605524CF64D209FB2E0511C9A1D151C25B0F475DC704B17CAE56789A44/0/59A4FF40C45E2884AC4C181079D0846DC88152FA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/59A4FF40C45E2884AC4C181079D0846DC88152FA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/91076D605524CF64D209FB2E0511C9A1D151C25B0F475DC704B17CAE56789A44/0/3136372e3234392e32302e302f32322d3234203d3e20323634363335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.249.20.0/22
Signature Algorithm: sha256WithRSAEncryption
c5:39:34:62:3c:88:73:de:9a:09:c1:f5:e8:8e:96:c7:d1:02:
21:c3:11:47:3f:ad:34:ec:36:3d:c8:ab:1b:4a:7f:f9:40:3b:
d2:a4:f4:70:88:13:17:00:8a:23:57:97:84:64:1a:dd:09:cf:
62:60:c4:c0:c2:40:ed:de:56:ee:65:6e:bc:dd:1f:86:73:1f:
a7:c9:eb:0b:a8:d9:09:a4:26:f0:51:f9:0d:83:17:7f:02:65:
36:57:74:d7:39:ad:01:e4:9a:79:18:8d:e5:ea:9e:d2:49:cb:
1c:72:c9:ee:8c:06:ee:7b:35:4e:df:a5:b7:71:ca:3d:97:b5:
23:f8:79:b0:8c:a2:90:aa:cc:52:82:1a:7a:43:7b:39:00:21:
bc:b4:71:6b:8c:5b:59:40:59:2e:49:89:cf:b3:10:05:bd:1e:
75:83:4f:f5:58:41:9d:8a:ed:26:84:0d:bb:1e:54:2a:31:ce:
23:fe:1e:e6:44:05:fe:a5:29:b3:b1:9b:aa:81:0d:6c:f6:e0:
47:f5:f0:82:09:13:ec:00:5f:da:aa:42:6e:31:6b:15:b5:ee:
5e:05:05:0a:0f:b1:07:2e:eb:e8:78:c5:bd:0b:de:87:b2:69:
ff:26:43:48:e9:25:4b:34:85:5b:b3:08:16:8b:2a:17:c0:ef:
5f:b3:ac:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:21:12 2025 by rpki-client