Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9C5371F83A0F5B0E9A8BE2AC1F57956FEF9B8D60DD4EF5ADD920169442298490/0/3133322e3235352e302e302f32322d3234203d3e20323633363932.roa
File: 3133322e3235352e302e302f32322d3234203d3e20323633363932.roa (raw, json)
Hash identifier: ftQEXkUFaIpbnU75Hvkn1zXju/z3sImkH4MrkG3YgJk=
Subject key identifier: 22:BA:A6:C4:BD:E4:5F:66:AE:73:89:19:E4:93:C0:30:EA:CA:89:79
Certificate issuer: /CN=6D3556529CE5599E78565FB2F26BF5285D573D92
Certificate serial: 5B177DBA7402C878E9E52D3D9EB16FC31BAC2310
Authority key identifier: 6D:35:56:52:9C:E5:59:9E:78:56:5F:B2:F2:6B:F5:28:5D:57:3D:92
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6D3556529CE5599E78565FB2F26BF5285D573D92.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9C5371F83A0F5B0E9A8BE2AC1F57956FEF9B8D60DD4EF5ADD920169442298490/0/3133322e3235352e302e302f32322d3234203d3e20323633363932.roa
Signing time: Tue 04 Feb 2025 18:35:53 +0000
ROA not before: Tue 04 Feb 2025 18:30:53 +0000
ROA not after: Tue 03 Feb 2026 18:35:53 +0000
asID: 263692
IP address blocks: 132.255.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:17:7d:ba:74:02:c8:78:e9:e5:2d:3d:9e:b1:6f:c3:1b:ac:23:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D3556529CE5599E78565FB2F26BF5285D573D92
Validity
Not Before: Feb 4 18:30:53 2025 GMT
Not After : Feb 3 18:35:53 2026 GMT
Subject: CN=22BAA6C4BDE45F66AE738919E493C030EACA8979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a2:ed:c6:4a:74:d0:be:9a:ac:cc:5d:a2:d2:
3b:18:fe:34:84:f5:78:f5:65:29:73:8d:3e:a3:b4:
38:8d:ad:9d:44:4b:52:b1:69:9a:7e:60:0b:c5:64:
75:4c:72:17:57:00:21:ca:24:9f:f1:3e:22:42:72:
fb:f3:cf:74:36:36:7c:8d:e3:7b:99:93:a0:fe:9e:
93:b1:e9:4d:e9:e1:4f:2d:0a:fe:2e:74:0c:99:56:
14:e7:2a:5e:bc:55:ec:62:d6:89:c7:af:a6:6f:c5:
dc:34:0d:fc:8f:fb:86:17:40:4c:9c:2a:9e:17:c3:
e3:f3:3f:19:cf:a7:ae:ee:4f:3b:f4:39:d8:25:6d:
1e:b9:88:dc:cf:07:5b:f8:f5:2f:b4:2c:bb:d6:93:
7f:96:86:58:9a:60:12:d8:69:13:95:52:1f:a7:f9:
5d:fc:f3:88:04:82:78:02:01:38:5a:e5:84:af:3c:
67:05:8f:72:11:c4:36:3c:cb:61:6b:43:38:54:17:
6f:cc:5e:b5:54:7b:a2:0e:f1:2a:aa:9e:73:c6:64:
bf:9f:82:1e:f9:ed:7a:f5:dd:0c:81:1d:6b:7a:09:
60:f3:83:c3:ea:f7:f6:8a:6f:2f:3e:c3:b8:3b:1a:
31:8c:21:a7:75:3a:52:1f:20:56:21:24:65:05:fa:
fb:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:BA:A6:C4:BD:E4:5F:66:AE:73:89:19:E4:93:C0:30:EA:CA:89:79
X509v3 Authority Key Identifier:
keyid:6D:35:56:52:9C:E5:59:9E:78:56:5F:B2:F2:6B:F5:28:5D:57:3D:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9C5371F83A0F5B0E9A8BE2AC1F57956FEF9B8D60DD4EF5ADD920169442298490/0/6D3556529CE5599E78565FB2F26BF5285D573D92.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6D3556529CE5599E78565FB2F26BF5285D573D92.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9C5371F83A0F5B0E9A8BE2AC1F57956FEF9B8D60DD4EF5ADD920169442298490/0/3133322e3235352e302e302f32322d3234203d3e20323633363932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.255.0.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:e6:7b:12:7a:00:b4:84:7f:ed:04:31:fe:7a:b0:52:15:c9:
b1:06:64:ac:f9:4e:a7:8f:15:45:45:5b:4b:69:e6:ab:fa:7a:
d5:32:5e:57:9a:47:0d:c0:0c:c3:86:ff:00:ce:94:b2:26:3d:
d0:c2:5b:df:ce:9c:fc:3f:fc:43:2f:b7:fc:03:45:61:8b:d3:
ce:20:0d:4b:0b:3c:7b:cc:c1:1b:df:80:78:4c:da:06:13:36:
22:79:f7:12:b0:1f:c3:d0:a6:96:9a:15:3e:f3:e8:2f:7c:2d:
06:37:20:15:73:ef:48:3d:12:bc:98:ef:25:5c:82:90:4d:05:
e5:0b:00:1b:ce:da:27:27:49:81:2c:ea:c5:e7:bc:4d:47:73:
61:eb:c5:1c:38:03:ce:b9:5e:8e:e2:a9:f8:6f:de:56:3d:00:
1c:fa:1d:c1:51:d7:91:b2:cf:f2:3c:ce:75:cf:54:cd:37:a2:
3e:e7:00:df:15:7e:ae:66:8b:d2:48:b9:a7:d3:c7:80:68:ef:
4c:7f:43:a4:2c:d7:a5:fe:74:21:79:4c:89:72:63:8e:26:01:
e3:a6:42:91:75:5b:ba:99:b3:49:db:ca:f6:cd:86:e1:9e:5d:
2f:b9:db:0f:c5:45:e8:f3:d9:73:5d:fd:86:73:72:f6:e7:60:
30:0b:91:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:10 2025 by rpki-client