Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9CFEAF2C91AB1C34993C311291CE50A3F9B8FF6FE4AEE3E9DCE4D43B4819702A/0/3137302e38342e3233342e302f32342d3234203d3e203237373536.roa
File: 3137302e38342e3233342e302f32342d3234203d3e203237373536.roa (raw, json)
Hash identifier: Tiz0lm3jeLBzLD1i6iSkXCneSpvGyEYV1CotUEOXwA8=
Subject key identifier: 92:06:69:E4:5F:98:CD:E5:F6:02:EE:A1:C7:FC:37:C6:80:82:4D:8E
Certificate issuer: /CN=3CB23E6FBC1B568FD478F82218A2B5A9A90EC844
Certificate serial: 5A27F126B3798E43B344794253CF1F2CE21D2229
Authority key identifier: 3C:B2:3E:6F:BC:1B:56:8F:D4:78:F8:22:18:A2:B5:A9:A9:0E:C8:44
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CB23E6FBC1B568FD478F82218A2B5A9A90EC844.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9CFEAF2C91AB1C34993C311291CE50A3F9B8FF6FE4AEE3E9DCE4D43B4819702A/0/3137302e38342e3233342e302f32342d3234203d3e203237373536.roa
Signing time: Tue 04 Feb 2025 18:11:43 +0000
ROA not before: Tue 04 Feb 2025 18:06:43 +0000
ROA not after: Tue 03 Feb 2026 18:11:43 +0000
asID: 27756
IP address blocks: 170.84.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:27:f1:26:b3:79:8e:43:b3:44:79:42:53:cf:1f:2c:e2:1d:22:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3CB23E6FBC1B568FD478F82218A2B5A9A90EC844
Validity
Not Before: Feb 4 18:06:43 2025 GMT
Not After : Feb 3 18:11:43 2026 GMT
Subject: CN=920669E45F98CDE5F602EEA1C7FC37C680824D8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6e:71:db:23:f0:a1:d1:49:c0:98:f7:48:0e:
05:b9:8f:cc:03:f1:a5:68:14:13:ae:b7:74:58:33:
1d:18:66:e9:ae:b8:bb:ee:ca:22:3d:0f:49:b7:88:
c8:c9:ea:37:28:73:a8:20:3b:9a:32:6c:e0:28:39:
63:63:6e:95:a8:86:1f:d9:19:cb:1c:1d:d4:8a:16:
5b:03:be:22:c5:2c:05:24:44:d7:c1:32:be:d3:f0:
7c:08:3c:35:91:02:11:ef:e1:4d:45:c5:e3:0f:52:
78:c1:1f:1e:ca:ca:00:ec:74:1d:b6:05:58:97:3a:
d8:36:c4:37:2c:20:a0:b8:1c:f5:d0:a8:d5:43:a7:
47:97:af:b4:db:03:4a:b5:f6:f7:ca:b7:c0:70:55:
30:bb:be:c0:b6:7d:24:d8:a6:5a:3e:73:2e:1a:09:
13:c0:4b:ae:fb:d8:17:e6:c0:f6:f0:33:5b:b7:b0:
f4:a3:5b:c8:2b:b0:7b:c1:8d:f9:b9:f3:3d:88:a7:
ab:a1:63:14:29:f9:bc:80:53:1c:18:68:a1:db:fb:
d8:62:a5:c0:77:25:4e:2b:8e:b9:44:08:be:bf:36:
11:d0:80:b4:d3:66:b5:45:40:7b:90:47:d9:69:b2:
e8:f2:5b:db:5e:29:f9:fe:79:05:c8:df:c8:0b:77:
10:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:06:69:E4:5F:98:CD:E5:F6:02:EE:A1:C7:FC:37:C6:80:82:4D:8E
X509v3 Authority Key Identifier:
keyid:3C:B2:3E:6F:BC:1B:56:8F:D4:78:F8:22:18:A2:B5:A9:A9:0E:C8:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9CFEAF2C91AB1C34993C311291CE50A3F9B8FF6FE4AEE3E9DCE4D43B4819702A/0/3CB23E6FBC1B568FD478F82218A2B5A9A90EC844.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CB23E6FBC1B568FD478F82218A2B5A9A90EC844.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9CFEAF2C91AB1C34993C311291CE50A3F9B8FF6FE4AEE3E9DCE4D43B4819702A/0/3137302e38342e3233342e302f32342d3234203d3e203237373536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.84.234.0/24
Signature Algorithm: sha256WithRSAEncryption
64:67:ed:fa:c6:9d:0d:cd:50:4b:9b:f1:ec:50:2f:9c:27:c5:
03:be:ff:fa:c1:78:10:b3:f4:f1:f4:17:cb:1a:2d:bd:51:ab:
a9:a5:4e:1b:d1:33:99:3f:1f:72:35:56:1f:3a:77:dc:2a:64:
43:b3:a4:be:18:be:75:32:81:29:34:a4:76:df:ad:a4:81:d6:
16:dd:17:cc:f2:7e:6a:cc:94:d4:e2:05:03:52:eb:90:ac:28:
ca:38:6a:3f:d4:0a:c0:47:03:02:c6:8c:80:32:2e:b7:1b:f2:
1a:6e:8f:8f:88:a7:83:d9:7e:42:54:ee:b1:04:80:97:00:8a:
39:7f:f5:28:52:77:f3:6b:84:0e:00:ac:71:68:ef:72:70:67:
0c:60:69:21:2e:a4:6b:ef:66:d4:46:5b:86:4e:16:ed:69:69:
79:2a:b4:f4:38:33:80:de:aa:34:39:e1:00:87:1a:2d:91:89:
09:b2:3f:d4:a5:ba:dc:f8:f9:7b:8f:8c:11:46:cc:1a:32:1f:
d0:53:a7:d8:b4:15:8f:1a:30:19:60:04:39:35:9c:ab:3c:35:
44:41:25:18:f0:c0:32:83:3d:b9:e3:cf:71:0c:95:0f:bd:bc:
72:79:10:f6:0c:54:f8:4d:1f:28:c4:a7:b3:22:1d:7a:23:4c:
87:44:f3:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:05:03 2025 by rpki-client