Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/952422C499C188B9C7B218A0B51C4966BE3821580A3546C37801A3F9D9BB0736/0/34352e3136302e3138382e302f32322d3234203d3e20323636383837.roa
File: 34352e3136302e3138382e302f32322d3234203d3e20323636383837.roa (raw, json)
Hash identifier: P/Gb6lFTKl9VvS5Pu/RgFTkmYQxrhmhOBzyg95p1Fuw=
Subject key identifier: FD:38:65:01:A7:C1:32:FB:13:91:17:EC:AB:E7:D3:44:7D:EF:35:79
Certificate issuer: /CN=577B0AAAA3F4F8759EFB82F228BC0AEE543FB470
Certificate serial: 5FBA6C6F12869C2C4AB401E296DCE2F18A345BF9
Authority key identifier: 57:7B:0A:AA:A3:F4:F8:75:9E:FB:82:F2:28:BC:0A:EE:54:3F:B4:70
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/577B0AAAA3F4F8759EFB82F228BC0AEE543FB470.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/952422C499C188B9C7B218A0B51C4966BE3821580A3546C37801A3F9D9BB0736/0/34352e3136302e3138382e302f32322d3234203d3e20323636383837.roa
Signing time: Tue 04 Feb 2025 18:13:58 +0000
ROA not before: Tue 04 Feb 2025 18:08:58 +0000
ROA not after: Tue 03 Feb 2026 18:13:58 +0000
asID: 266887
IP address blocks: 45.160.188.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:ba:6c:6f:12:86:9c:2c:4a:b4:01:e2:96:dc:e2:f1:8a:34:5b:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=577B0AAAA3F4F8759EFB82F228BC0AEE543FB470
Validity
Not Before: Feb 4 18:08:58 2025 GMT
Not After : Feb 3 18:13:58 2026 GMT
Subject: CN=FD386501A7C132FB139117ECABE7D3447DEF3579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:13:fb:63:ca:b6:fa:f0:42:45:81:6e:87:2e:
f6:c1:aa:0f:bf:96:bb:fa:b8:22:1f:e2:d9:1a:cf:
73:02:65:8a:e6:a4:02:7c:52:d4:b1:54:5e:8d:eb:
54:6f:e9:d8:cc:27:23:ce:80:c8:25:16:09:ef:59:
cb:6e:b4:3a:7a:b6:2a:95:00:1c:83:bd:f6:2c:1d:
a7:8f:60:6a:87:2e:98:09:21:d4:c3:f8:61:b3:b8:
46:b6:4c:4e:64:1a:1d:fd:33:e5:0b:8c:af:91:fb:
a4:4e:0f:c7:c3:06:61:4f:57:12:57:ae:58:f0:ea:
5e:90:09:dd:84:da:91:24:5b:f2:3d:50:c5:af:d1:
24:e9:e8:71:55:78:4f:1e:ff:e7:f9:68:58:28:02:
55:8b:c4:46:d5:d1:ae:c8:50:15:e7:22:e9:61:0a:
ea:0d:d4:be:88:54:8c:ce:fd:1e:bb:4b:82:3a:60:
33:a7:25:70:9c:3f:ca:f1:55:df:47:09:53:d6:e9:
9a:54:36:2f:b8:6a:e4:dd:6a:56:af:a4:ee:84:bf:
88:83:91:dc:83:6a:3d:a3:66:13:c7:80:9b:d9:46:
88:92:ab:a1:67:3a:8a:cf:97:e3:7b:86:5d:13:30:
f1:b9:1f:ca:b8:b0:cd:d2:86:2e:b3:ce:f4:58:87:
19:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:38:65:01:A7:C1:32:FB:13:91:17:EC:AB:E7:D3:44:7D:EF:35:79
X509v3 Authority Key Identifier:
keyid:57:7B:0A:AA:A3:F4:F8:75:9E:FB:82:F2:28:BC:0A:EE:54:3F:B4:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/952422C499C188B9C7B218A0B51C4966BE3821580A3546C37801A3F9D9BB0736/0/577B0AAAA3F4F8759EFB82F228BC0AEE543FB470.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/577B0AAAA3F4F8759EFB82F228BC0AEE543FB470.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/952422C499C188B9C7B218A0B51C4966BE3821580A3546C37801A3F9D9BB0736/0/34352e3136302e3138382e302f32322d3234203d3e20323636383837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.160.188.0/22
Signature Algorithm: sha256WithRSAEncryption
33:d8:b1:a9:79:a3:31:ad:7a:79:1c:13:b9:63:07:50:54:db:
92:12:f2:d2:aa:15:f2:17:ad:8b:dd:71:29:e7:2d:96:8d:f8:
bd:e0:0d:3c:c9:fe:da:41:2c:0e:85:11:b7:d3:d8:e7:e1:16:
63:fc:27:e7:4a:b6:9f:2b:6d:ba:fa:58:91:e2:3e:f4:5f:32:
e4:a1:ef:f5:2e:3b:f6:f9:9e:b2:e0:ec:68:02:a7:70:e6:ea:
ec:00:23:f0:b3:17:e4:c9:71:7e:ab:a3:c6:86:97:86:15:c5:
cf:28:7b:76:0e:2e:7b:06:bc:7f:c3:b5:a4:4f:71:b4:6c:72:
57:fd:c7:94:46:d9:45:d2:44:d4:2a:2b:1e:ce:7c:4f:c6:ff:
93:c6:3b:3d:46:db:6d:29:ba:65:f3:c2:98:59:a7:97:8a:e7:
c0:c9:2e:2a:09:fc:34:df:00:b1:3f:ee:9d:33:94:9a:05:51:
91:52:4d:31:f8:78:d2:22:23:fd:af:f4:32:86:0b:33:07:ea:
94:7a:78:cc:10:c6:13:95:10:50:4b:f8:b0:f0:f6:6c:b5:d5:
db:28:2c:f1:11:47:97:fc:b4:df:84:97:b5:2e:e9:32:40:e8:
f0:a2:23:a0:15:a1:e0:4b:d8:62:ec:c1:48:ba:2c:70:a5:46:
02:cb:f1:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:59:07 2025 by rpki-client