Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9A5944611FDF2B2CCAD036390658D37A8CC89EED4D1E36DD6EAA5B4272384D81/0/3136312e302e37322e302f32312d3234203d3e203532343635.roa
File: 3136312e302e37322e302f32312d3234203d3e203532343635.roa (raw, json)
Hash identifier: /4FQvb45yFWjfjZu/1QgvL/Px7rIBq++IuhF9G6aXiI=
Subject key identifier: 21:EE:1F:F8:40:6C:DE:0D:71:E8:13:5D:58:B0:6D:0C:74:38:C9:7F
Certificate issuer: /CN=653BCCC8DAB0459A5D23BCB1437938AC615D5023
Certificate serial: 6E78C8AD1D49A38AC5F8CE77CCFE026F4C69577F
Authority key identifier: 65:3B:CC:C8:DA:B0:45:9A:5D:23:BC:B1:43:79:38:AC:61:5D:50:23
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/653BCCC8DAB0459A5D23BCB1437938AC615D5023.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9A5944611FDF2B2CCAD036390658D37A8CC89EED4D1E36DD6EAA5B4272384D81/0/3136312e302e37322e302f32312d3234203d3e203532343635.roa
Signing time: Tue 04 Feb 2025 20:00:30 +0000
ROA not before: Tue 04 Feb 2025 19:55:30 +0000
ROA not after: Tue 03 Feb 2026 20:00:30 +0000
asID: 52465
IP address blocks: 161.0.72.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:78:c8:ad:1d:49:a3:8a:c5:f8:ce:77:cc:fe:02:6f:4c:69:57:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=653BCCC8DAB0459A5D23BCB1437938AC615D5023
Validity
Not Before: Feb 4 19:55:30 2025 GMT
Not After : Feb 3 20:00:30 2026 GMT
Subject: CN=21EE1FF8406CDE0D71E8135D58B06D0C7438C97F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:df:8d:d2:92:70:13:f1:ee:7a:43:e0:c9:13:
17:23:27:0f:3c:0f:2b:29:cb:7a:6e:b3:54:18:ec:
8a:3f:e1:de:3e:7e:bc:fe:a6:8a:41:05:8c:b5:35:
65:fe:62:0b:62:32:96:a6:71:a5:55:b3:1e:0f:b5:
95:d7:f2:bd:5d:76:f7:82:d1:26:c8:6e:84:12:3d:
6e:a1:2b:d5:e4:c1:e7:b2:b6:1b:35:78:b7:27:0e:
08:2a:63:0e:fe:e0:3b:1d:f8:88:b8:7d:e6:8f:c7:
88:02:34:33:c4:42:b1:0b:be:b1:9d:8e:23:11:a1:
df:23:ef:93:64:10:4c:fc:94:f0:8d:5f:a5:65:17:
35:63:94:68:5a:76:2d:d9:51:16:80:b3:a4:52:99:
17:25:67:b9:c1:e6:04:40:dd:8f:d6:c4:47:af:db:
ca:3a:98:19:44:fb:52:c8:06:cd:a3:00:dc:c0:8d:
16:e7:75:a8:5f:84:fa:e9:92:cb:3f:ad:aa:5f:61:
b3:d1:b4:4a:e6:53:5c:80:11:fa:ae:17:1d:7d:12:
d8:62:92:37:e9:08:8a:cc:58:0e:7e:84:26:66:51:
64:5f:51:00:cb:95:ce:8c:8a:e3:65:4b:09:65:0a:
18:28:de:e8:60:45:7d:96:af:a8:43:80:f1:43:e3:
35:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:EE:1F:F8:40:6C:DE:0D:71:E8:13:5D:58:B0:6D:0C:74:38:C9:7F
X509v3 Authority Key Identifier:
keyid:65:3B:CC:C8:DA:B0:45:9A:5D:23:BC:B1:43:79:38:AC:61:5D:50:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9A5944611FDF2B2CCAD036390658D37A8CC89EED4D1E36DD6EAA5B4272384D81/0/653BCCC8DAB0459A5D23BCB1437938AC615D5023.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/653BCCC8DAB0459A5D23BCB1437938AC615D5023.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9A5944611FDF2B2CCAD036390658D37A8CC89EED4D1E36DD6EAA5B4272384D81/0/3136312e302e37322e302f32312d3234203d3e203532343635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.0.72.0/21
Signature Algorithm: sha256WithRSAEncryption
3f:47:ae:fa:d1:61:6b:28:0d:b7:1f:25:9a:27:6e:7d:30:7e:
06:72:96:1e:c5:74:2f:09:33:23:5e:6c:e8:2b:f2:bf:e6:6d:
8d:2c:2a:ef:02:45:1f:07:ba:aa:b3:7c:c8:5f:8b:3b:e2:82:
3c:b6:08:72:95:f0:a9:fe:61:db:98:b1:7a:ee:4a:a3:e5:1b:
cd:ca:70:56:7f:34:36:20:af:7a:80:ab:33:01:9e:0b:d3:09:
c7:96:d5:45:7f:a9:9a:35:91:56:06:25:24:34:1c:48:03:10:
63:ad:c2:69:d2:19:4e:53:95:ff:6d:71:87:45:ac:a9:df:c0:
98:df:bc:87:cc:da:70:b8:2d:bf:e4:6f:2d:40:54:6a:74:b8:
4e:41:b3:4e:7f:64:7f:fb:8b:58:1c:d5:66:83:8b:ec:d2:f9:
8d:2d:d5:d4:c6:9e:45:cb:94:be:7e:80:bb:e3:22:cf:b2:b8:
b3:25:0e:6f:7d:b3:42:d3:4e:79:63:e0:e1:f0:fe:4b:4d:2a:
37:b6:eb:d2:e9:4f:db:17:aa:11:da:6d:79:19:71:14:34:ea:
d2:fe:bf:28:ac:2d:82:a2:19:5b:09:e8:af:c8:a4:7d:60:4c:
fb:1c:3b:a9:0a:93:55:ed:0e:5c:f4:46:3b:bf:bc:46:84:77:
24:bf:c2:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:52:04 2025 by rpki-client