Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9873155B052ABDF79E5FFBDB97358597081C9122C1A2F51A054E4FE2CF0CD582/0/34352e3233372e3137322e302f32322d3234203d3e20323636383233.roa
File: 34352e3233372e3137322e302f32322d3234203d3e20323636383233.roa (raw, json)
Hash identifier: L7d+0WJdqSqYpoD3RVzURmtrFSo7UM8rtKV9FP3JhE8=
Subject key identifier: 29:EF:08:A4:38:BD:1F:5C:9D:F1:C5:09:9F:49:C4:C3:BA:03:1D:73
Certificate issuer: /CN=BD564C3B5DA2F7ECEB85CBC570D1651BF1BD62A2
Certificate serial: 2477689DD649BDD57817C9A192DB0304539B6DD6
Authority key identifier: BD:56:4C:3B:5D:A2:F7:EC:EB:85:CB:C5:70:D1:65:1B:F1:BD:62:A2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD564C3B5DA2F7ECEB85CBC570D1651BF1BD62A2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9873155B052ABDF79E5FFBDB97358597081C9122C1A2F51A054E4FE2CF0CD582/0/34352e3233372e3137322e302f32322d3234203d3e20323636383233.roa
Signing time: Tue 04 Feb 2025 18:10:21 +0000
ROA not before: Tue 04 Feb 2025 18:05:21 +0000
ROA not after: Tue 03 Feb 2026 18:10:21 +0000
asID: 266823
IP address blocks: 45.237.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:77:68:9d:d6:49:bd:d5:78:17:c9:a1:92:db:03:04:53:9b:6d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD564C3B5DA2F7ECEB85CBC570D1651BF1BD62A2
Validity
Not Before: Feb 4 18:05:21 2025 GMT
Not After : Feb 3 18:10:21 2026 GMT
Subject: CN=29EF08A438BD1F5C9DF1C5099F49C4C3BA031D73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c3:f8:27:34:8b:0e:48:e8:da:59:43:cb:06:
bc:8a:ef:b3:fe:00:0f:a2:d1:22:c8:7e:a3:83:37:
7b:0f:56:32:10:7a:da:14:60:d4:8c:d7:6f:38:1b:
1e:83:1b:d7:6b:fd:cd:c0:a1:c2:26:88:88:a8:37:
99:6e:a4:1b:47:6d:d2:15:f5:b8:f1:3f:ef:6b:98:
9f:64:43:bd:6d:1e:12:23:dd:b7:6d:42:57:8b:21:
74:96:40:16:e3:ae:44:ef:d1:65:69:d1:e2:41:50:
48:8e:c8:9b:e8:4f:25:cb:44:78:af:19:e2:53:85:
0d:37:71:01:3e:0c:fc:12:9b:e0:12:fb:92:14:03:
19:3f:bb:66:be:26:1d:da:97:2e:8d:d0:22:a7:0b:
4c:c3:0c:93:fe:1d:e1:6c:9b:91:8c:53:26:4f:2d:
32:93:49:3d:a5:2a:d4:16:94:df:1e:62:5d:20:72:
b2:e8:5d:e1:6d:75:3b:41:d1:6b:34:e9:23:ba:83:
d4:ef:75:48:20:79:b9:c2:9e:bf:a2:28:f7:ec:a5:
c9:3b:8e:45:45:b7:cd:49:7d:e8:02:70:bb:21:e7:
62:09:ec:55:03:cc:42:f9:6f:58:5b:24:f7:13:70:
ea:7e:8e:7b:01:2f:06:cb:ad:07:86:2e:13:e8:8d:
a1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EF:08:A4:38:BD:1F:5C:9D:F1:C5:09:9F:49:C4:C3:BA:03:1D:73
X509v3 Authority Key Identifier:
keyid:BD:56:4C:3B:5D:A2:F7:EC:EB:85:CB:C5:70:D1:65:1B:F1:BD:62:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9873155B052ABDF79E5FFBDB97358597081C9122C1A2F51A054E4FE2CF0CD582/0/BD564C3B5DA2F7ECEB85CBC570D1651BF1BD62A2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD564C3B5DA2F7ECEB85CBC570D1651BF1BD62A2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9873155B052ABDF79E5FFBDB97358597081C9122C1A2F51A054E4FE2CF0CD582/0/34352e3233372e3137322e302f32322d3234203d3e20323636383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.237.172.0/22
Signature Algorithm: sha256WithRSAEncryption
65:2c:66:14:a0:79:54:76:69:a0:c7:6d:0c:58:82:2e:6e:bf:
6f:a5:62:18:8c:17:ff:27:9f:a0:03:09:a0:bc:39:1d:97:90:
77:b1:f1:d0:ea:a1:bd:de:41:3a:d4:ce:3d:f1:89:f6:f7:9a:
0e:de:65:75:b2:9d:f4:73:47:f4:6c:53:a1:96:3e:b0:7e:62:
61:6a:28:3f:ee:cb:d0:e6:35:cb:29:38:57:dd:be:b0:b8:40:
96:a7:59:d9:39:11:e4:05:d4:c3:88:96:e9:2d:ac:92:ab:fb:
2a:8e:6a:64:d5:d0:01:60:a7:58:9f:f2:89:ec:9c:aa:55:74:
e9:7f:a8:96:50:bb:b7:73:3d:56:5a:a2:a9:62:91:89:f6:a7:
b4:e9:62:f5:5b:5d:3c:12:a8:f1:aa:08:40:e8:7e:52:17:4d:
55:75:60:21:b9:53:c4:6e:94:13:c3:5a:d8:6f:d2:b4:3b:7f:
28:9b:df:e3:a4:8c:c9:8a:76:16:0e:fc:a8:e4:f1:42:9d:fa:
15:9f:99:1b:e8:07:d7:3d:7d:72:d4:c0:46:a6:26:5a:d8:06:
e4:f8:0a:dc:98:ef:15:64:0f:70:69:ca:a6:42:44:c1:52:0a:
fc:0b:d0:1b:35:cd:ab:ba:3f:be:d4:5f:5f:8d:6b:2c:04:28:
37:4f:b3:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:49:11 2025 by rpki-client