Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/989BCE6925D2E47C485897998703979101B6FBA495FBD089F0835A87C3829297/0/34352e37302e3136382e302f32332d3234203d3e203237393531.roa
File: 34352e37302e3136382e302f32332d3234203d3e203237393531.roa (raw, json)
Hash identifier: W9OHiHj20m65rX1W8YdJO5+gXDMabFgt4MSbjM2ecQk=
Subject key identifier: 2E:8D:6F:64:D4:65:86:7A:44:50:6A:03:56:E6:D4:FB:E0:47:29:68
Certificate issuer: /CN=80F7A4CB2F28ED1CBB79FD29CE1377703761DFEB
Certificate serial: 37E249AA90466183141B74A421CC59F4DB7425DF
Authority key identifier: 80:F7:A4:CB:2F:28:ED:1C:BB:79:FD:29:CE:13:77:70:37:61:DF:EB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/80F7A4CB2F28ED1CBB79FD29CE1377703761DFEB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/989BCE6925D2E47C485897998703979101B6FBA495FBD089F0835A87C3829297/0/34352e37302e3136382e302f32332d3234203d3e203237393531.roa
Signing time: Tue 04 Feb 2025 18:30:48 +0000
ROA not before: Tue 04 Feb 2025 18:25:48 +0000
ROA not after: Tue 03 Feb 2026 18:30:48 +0000
asID: 27951
IP address blocks: 45.70.168.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:e2:49:aa:90:46:61:83:14:1b:74:a4:21:cc:59:f4:db:74:25:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80F7A4CB2F28ED1CBB79FD29CE1377703761DFEB
Validity
Not Before: Feb 4 18:25:48 2025 GMT
Not After : Feb 3 18:30:48 2026 GMT
Subject: CN=2E8D6F64D465867A44506A0356E6D4FBE0472968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:61:2c:fe:2b:6b:55:0a:4b:44:f1:d3:ac:2c:
6e:28:3e:1d:59:a7:40:db:ec:6f:ee:9f:3a:fc:9b:
9c:ac:98:bd:d8:aa:c7:7a:43:c9:fe:6d:13:a1:f2:
58:1a:a5:18:61:cc:dd:db:2b:23:c4:93:aa:99:69:
eb:91:b1:e5:3b:b2:43:81:32:f8:d9:f7:9a:a1:27:
c9:33:f9:69:1f:d2:87:5b:b3:25:22:88:00:6e:99:
7d:72:d3:1c:3c:d1:b1:bd:36:6c:b3:9c:9d:2f:d3:
fc:a5:c6:17:6a:c4:7a:92:fd:a3:1b:60:73:4e:96:
74:28:fd:63:07:02:6f:3f:77:ee:e3:06:06:c7:bd:
11:fe:de:89:52:b3:0f:ea:ed:57:d0:9b:6f:3a:c7:
86:2f:d1:ad:29:6e:fa:14:ef:28:b2:81:98:74:ae:
2b:0d:32:1b:30:f0:72:9f:9b:1a:f1:dc:ff:ed:ae:
41:65:cd:f7:ae:a6:8a:72:aa:2a:d2:05:42:51:dc:
d2:74:19:51:fd:e3:24:f9:ec:88:6e:2c:d3:8c:8d:
45:1b:90:f2:6d:40:90:fd:7c:7a:ff:73:c9:b8:d4:
4b:3b:06:40:a9:55:6b:f0:dd:45:d2:67:f0:fd:78:
fa:3c:44:af:1a:73:83:ec:b2:c9:26:76:88:f9:23:
f8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8D:6F:64:D4:65:86:7A:44:50:6A:03:56:E6:D4:FB:E0:47:29:68
X509v3 Authority Key Identifier:
keyid:80:F7:A4:CB:2F:28:ED:1C:BB:79:FD:29:CE:13:77:70:37:61:DF:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/989BCE6925D2E47C485897998703979101B6FBA495FBD089F0835A87C3829297/0/80F7A4CB2F28ED1CBB79FD29CE1377703761DFEB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/80F7A4CB2F28ED1CBB79FD29CE1377703761DFEB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/989BCE6925D2E47C485897998703979101B6FBA495FBD089F0835A87C3829297/0/34352e37302e3136382e302f32332d3234203d3e203237393531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.70.168.0/23
Signature Algorithm: sha256WithRSAEncryption
44:57:0b:29:c4:32:4a:85:e8:6c:d3:cc:8b:d6:09:b8:ec:81:
5d:f2:e6:58:16:9f:fd:58:c6:2b:3a:98:37:a8:1c:59:bb:bc:
bc:01:ea:55:9f:24:90:42:cf:ae:21:f3:b0:63:8c:7a:72:de:
5c:9f:0b:61:29:3f:c7:b7:72:f8:3f:c3:1c:3a:18:09:d1:57:
62:7a:1d:f9:4c:ee:96:b8:be:5a:f5:e3:e1:7a:26:d9:8f:ad:
f7:ce:2e:df:e6:15:ed:56:c7:02:db:81:e0:cc:dd:1b:23:d4:
74:6c:ab:cb:31:0f:5a:55:23:fc:3a:f6:18:03:4e:f9:77:02:
97:9b:4e:3e:35:b2:6e:9b:2b:78:bb:56:e2:10:c8:a3:8d:95:
b8:58:18:0e:b0:e2:8a:44:24:df:6c:39:78:57:aa:d3:68:58:
ba:f6:58:12:76:44:df:47:64:37:77:12:c8:85:91:e2:be:ff:
8a:3c:b4:92:10:d7:d9:20:b2:bf:0a:83:ea:d1:df:a2:9c:5c:
de:cd:95:fe:96:11:63:2d:88:ec:14:fa:8a:36:6f:9c:af:00:
35:88:cd:ea:5e:eb:7d:1d:46:75:de:f8:6c:6c:e2:0c:f6:f5:
8c:95:5e:30:f7:bf:3c:14:cf:38:46:11:02:1d:ff:17:a2:be:
31:72:58:36
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUN+JJqpBGYYMUG3SkIcxZ9Nt0Jd8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODBGN0E0Q0IyRjI4RUQxQ0JCNzlGRDI5Q0UxMzc3NzAz
NzYxREZFQjAeFw0yNTAyMDQxODI1NDhaFw0yNjAyMDMxODMwNDhaMDMxMTAvBgNV
BAMTKDJFOEQ2RjY0RDQ2NTg2N0E0NDUwNkEwMzU2RTZENEZCRTA0NzI5NjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTYSz+K2tVCktE8dOsLG4oPh1Z
p0Db7G/unzr8m5ysmL3Yqsd6Q8n+bROh8lgapRhhzN3bKyPEk6qZaeuRseU7skOB
MvjZ95qhJ8kz+Wkf0odbsyUiiABumX1y0xw80bG9NmyznJ0v0/ylxhdqxHqS/aMb
YHNOlnQo/WMHAm8/d+7jBgbHvRH+3olSsw/q7VfQm286x4Yv0a0pbvoU7yiygZh0
risNMhsw8HKfmxrx3P/trkFlzfeupopyqirSBUJR3NJ0GVH94yT57IhuLNOMjUUb
kPJtQJD9fHr/c8m41Es7BkCpVWvw3UXSZ/D9ePo8RK8ac4Pssskmdoj5I/hjAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQULo1vZNRlhnpEUGoDVubU++BHKWgwHwYDVR0j
BBgwFoAUgPekyy8o7Ry7ef0pzhN3cDdh3+swDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85ODlCQ0U2OTI1RDJFNDdDNDg1ODk3OTk4NzAzOTc5MTAx
QjZGQkE0OTVGQkQwODlGMDgzNUE4N0MzODI5Mjk3LzAvODBGN0E0Q0IyRjI4RUQx
Q0JCNzlGRDI5Q0UxMzc3NzAzNzYxREZFQi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84MEY3QTRDQjJGMjhFRDFDQkI3
OUZEMjlDRTEzNzc3MDM3NjFERkVCLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOTg5QkNFNjkyNUQyRTQ3QzQ4NTg5Nzk5ODcwMzk3OTEwMUI2RkJBNDk1
RkJEMDg5RjA4MzVBODdDMzgyOTI5Ny8wLzM0MzUyZTM3MzAyZTMxMzYzODJlMzAy
ZjMyMzMyZDMyMzQyMDNkM2UyMDMyMzczOTM1MzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEtRqgwDQYJ
KoZIhvcNAQELBQADggEBAERXCynEMkqF6GzTzIvWCbjsgV3y5lgWn/1Yxis6mDeo
HFm7vLwB6lWfJJBCz64h87BjjHpy3lyfC2EpP8e3cvg/wxw6GAnRV2J6HflM7pa4
vlr14+F6JtmPrffOLt/mFe1WxwLbgeDM3Rsj1HRsq8sxD1pVI/w69hgDTvl3Apeb
Tj41sm6bK3i7VuIQyKONlbhYGA6w4opEJN9sOXhXqtNoWLr2WBJ2RN9HZDd3EsiF
keK+/4o8tJIQ19kgsr8Kg+rR36KcXN7Nlf6WEWMtiOwU+oo2b5yvADWIzepe630d
RnXe+Gxs4gz29YyVXjD3vzwUzzhGEQId/xeivjFyWDY=
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:59:51 2025 by rpki-client