Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9965A621DAEB761DA1B423250742C538C2537DC7D1C2C6B04A23C860ED1FDAFD/0/3137302e38332e33322e302f32322d3233203d3e203631353039.roa
File: 3137302e38332e33322e302f32322d3233203d3e203631353039.roa (raw, json)
Hash identifier: F3uowoVVs0VGy1wPrZJJ/VVJFL3Sz5NF/rk+kGOOTEw=
Subject key identifier: CC:A1:A1:00:4E:41:61:26:28:25:87:A1:58:69:DD:A4:BA:02:24:76
Certificate issuer: /CN=9BBA3BFFF1467438CC1F9854758F6F54EFD08115
Certificate serial: 1259F058AE2109EDED9103D7AC79E78759931763
Authority key identifier: 9B:BA:3B:FF:F1:46:74:38:CC:1F:98:54:75:8F:6F:54:EF:D0:81:15
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BBA3BFFF1467438CC1F9854758F6F54EFD08115.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9965A621DAEB761DA1B423250742C538C2537DC7D1C2C6B04A23C860ED1FDAFD/0/3137302e38332e33322e302f32322d3233203d3e203631353039.roa
Signing time: Tue 04 Feb 2025 18:02:29 +0000
ROA not before: Tue 04 Feb 2025 17:57:29 +0000
ROA not after: Tue 03 Feb 2026 18:02:29 +0000
asID: 61509
IP address blocks: 170.83.32.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:59:f0:58:ae:21:09:ed:ed:91:03:d7:ac:79:e7:87:59:93:17:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BBA3BFFF1467438CC1F9854758F6F54EFD08115
Validity
Not Before: Feb 4 17:57:29 2025 GMT
Not After : Feb 3 18:02:29 2026 GMT
Subject: CN=CCA1A1004E416126282587A15869DDA4BA022476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ae:4d:80:f3:7f:46:3d:63:8d:93:d1:fb:7b:
62:44:ab:c1:f5:a0:cf:42:e8:dd:e5:17:9c:bb:30:
02:30:53:a2:2d:04:53:bd:80:2f:8f:1d:ad:c9:d1:
79:99:1b:a5:29:c7:24:7e:05:49:81:0c:15:88:53:
ef:9b:50:b9:af:61:16:00:f1:58:d8:2b:16:41:89:
a0:44:c6:58:46:07:76:95:2c:d6:ea:ee:d3:e3:f3:
2c:c9:5c:48:35:a3:66:35:d8:3a:e3:b7:e5:7d:5c:
7c:d0:c7:97:1d:4d:bc:70:39:0d:4a:d5:74:85:dc:
9a:a7:6f:1c:e5:f9:1d:e1:a2:dc:1d:43:0d:aa:c4:
fb:f5:b6:b5:87:3c:e5:69:b5:dc:6e:4e:a7:3c:5b:
05:3d:51:e1:bc:88:ce:e6:fb:24:ca:45:e6:64:ad:
a5:57:0f:3f:cd:cb:34:20:40:44:c6:62:6d:ed:ef:
68:36:97:5d:3c:c6:ec:8f:4f:9b:2d:e0:75:ed:b5:
47:3a:d0:0b:fd:28:52:49:23:5a:42:22:e9:d3:8a:
b1:b7:94:f4:ef:df:ab:8b:3b:4a:e3:31:ab:bc:0f:
a0:e8:ee:e4:37:7c:67:ce:5a:13:91:3f:03:b2:a3:
08:6b:3f:9a:1d:2f:9f:8b:50:6f:4b:f0:c6:b0:14:
72:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A1:A1:00:4E:41:61:26:28:25:87:A1:58:69:DD:A4:BA:02:24:76
X509v3 Authority Key Identifier:
keyid:9B:BA:3B:FF:F1:46:74:38:CC:1F:98:54:75:8F:6F:54:EF:D0:81:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9965A621DAEB761DA1B423250742C538C2537DC7D1C2C6B04A23C860ED1FDAFD/0/9BBA3BFFF1467438CC1F9854758F6F54EFD08115.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BBA3BFFF1467438CC1F9854758F6F54EFD08115.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9965A621DAEB761DA1B423250742C538C2537DC7D1C2C6B04A23C860ED1FDAFD/0/3137302e38332e33322e302f32322d3233203d3e203631353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.83.32.0/22
Signature Algorithm: sha256WithRSAEncryption
60:02:17:ba:b3:4e:1f:1e:b6:f1:b6:fa:e3:e1:f0:6b:d4:72:
45:e0:e6:77:00:76:1d:7f:f6:9b:a2:25:49:c9:d1:be:79:5d:
e4:af:cd:6d:31:02:d4:b7:97:a4:77:bc:9e:a3:aa:f4:1d:f0:
2c:f9:32:cf:89:e0:35:e7:33:e5:0e:0d:46:08:ca:f0:c5:7b:
80:24:12:e3:c1:8d:8c:33:55:15:43:68:5e:26:b9:0c:59:c4:
ca:b4:ff:50:3e:2d:52:42:57:e0:be:3f:80:5d:32:24:36:01:
81:c2:8c:cc:da:aa:78:da:11:73:26:71:44:33:14:dd:92:4a:
98:04:b8:29:33:47:73:98:3c:cb:1b:cf:d1:5d:46:f1:40:de:
a5:cf:a3:60:0a:d8:91:fe:20:7a:e7:ab:63:3c:9c:82:99:23:
e1:59:47:44:ce:d0:5a:ba:84:0b:38:97:60:bc:05:8a:1a:d2:
c0:fd:af:cb:56:c7:c9:54:43:30:c1:e5:bc:26:5b:1f:23:89:
37:23:eb:50:12:5a:a1:94:ba:4d:e9:64:6f:94:8f:df:cd:61:
ff:5d:ad:f7:17:6d:a5:64:e9:cd:62:38:49:12:43:f4:2a:c8:
49:b3:32:26:7c:14:1e:10:2a:37:cd:3a:b3:7a:6d:92:85:4f:
eb:55:e5:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:48:37 2025 by rpki-client