Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9DFC7F4276BB512347EF103151C45F3DA2025673AAD6FB9BBAA6819BF7893E92/0/34352e3233322e31362e302f32322d3234203d3e20323636373431.roa
File: 34352e3233322e31362e302f32322d3234203d3e20323636373431.roa (raw, json)
Hash identifier: elazqW9tpLiTLakkOa1jVWG6zST9iKarWkjG/8kV7Uc=
Subject key identifier: 43:B4:36:A2:39:22:89:05:B8:F5:DE:4C:6E:0E:56:2E:51:E2:DE:8B
Certificate issuer: /CN=8027A3E50E5FDCA71D08341C330ECCE0474FD787
Certificate serial: 2553F5437ACD39E5DA66F3E367C57E2FB2996E3A
Authority key identifier: 80:27:A3:E5:0E:5F:DC:A7:1D:08:34:1C:33:0E:CC:E0:47:4F:D7:87
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8027A3E50E5FDCA71D08341C330ECCE0474FD787.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9DFC7F4276BB512347EF103151C45F3DA2025673AAD6FB9BBAA6819BF7893E92/0/34352e3233322e31362e302f32322d3234203d3e20323636373431.roa
Signing time: Tue 04 Feb 2025 20:00:24 +0000
ROA not before: Tue 04 Feb 2025 19:55:24 +0000
ROA not after: Tue 03 Feb 2026 20:00:24 +0000
asID: 266741
IP address blocks: 45.232.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:53:f5:43:7a:cd:39:e5:da:66:f3:e3:67:c5:7e:2f:b2:99:6e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8027A3E50E5FDCA71D08341C330ECCE0474FD787
Validity
Not Before: Feb 4 19:55:24 2025 GMT
Not After : Feb 3 20:00:24 2026 GMT
Subject: CN=43B436A239228905B8F5DE4C6E0E562E51E2DE8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6c:55:a0:88:1b:87:f8:b2:33:4b:54:47:ea:
dd:d9:3f:3d:ab:dc:04:54:f9:97:30:96:3d:26:2c:
6e:96:c7:bf:5b:f9:e6:20:f2:69:59:8d:ba:f9:3f:
b5:e2:31:1c:df:39:03:84:31:c3:12:2e:93:3a:3c:
bd:5c:9b:07:b0:b3:88:5e:80:c6:c8:e4:a2:f9:8b:
39:b0:41:24:c1:f4:ea:1b:c0:79:21:91:55:75:88:
f3:9d:66:7e:a7:de:1f:39:33:ea:83:70:77:8f:bf:
5d:e9:63:e2:43:bc:97:60:34:e1:78:ca:db:cd:b8:
62:5b:9b:e6:af:f6:37:9f:55:28:09:98:2f:b0:5e:
2c:e1:42:48:34:b8:64:45:60:8e:01:79:8c:ca:41:
c7:ee:82:f5:7b:ea:2d:77:ec:14:28:15:27:ff:2c:
ba:fd:6b:96:04:f5:30:b1:bc:a0:1e:a6:9d:d7:08:
24:6b:c8:64:50:7b:f3:32:52:bf:c9:ec:fe:61:76:
2c:07:0a:45:16:55:51:d2:b5:89:e5:d7:2e:36:a3:
a4:9e:f6:2c:5b:66:d0:15:8c:fb:c9:02:79:56:f8:
aa:94:84:77:c9:83:fc:97:a5:c2:4a:05:8d:b4:fa:
d8:ed:79:6e:69:dc:2d:ae:55:a2:d1:95:bd:e7:ae:
51:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B4:36:A2:39:22:89:05:B8:F5:DE:4C:6E:0E:56:2E:51:E2:DE:8B
X509v3 Authority Key Identifier:
keyid:80:27:A3:E5:0E:5F:DC:A7:1D:08:34:1C:33:0E:CC:E0:47:4F:D7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9DFC7F4276BB512347EF103151C45F3DA2025673AAD6FB9BBAA6819BF7893E92/0/8027A3E50E5FDCA71D08341C330ECCE0474FD787.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8027A3E50E5FDCA71D08341C330ECCE0474FD787.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9DFC7F4276BB512347EF103151C45F3DA2025673AAD6FB9BBAA6819BF7893E92/0/34352e3233322e31362e302f32322d3234203d3e20323636373431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.232.16.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:2b:41:af:8d:60:a8:c7:3a:e2:45:1a:45:11:d5:43:8b:6c:
65:cd:49:66:ac:ef:06:43:a8:af:f1:9b:95:7b:19:cf:a6:5e:
0b:4b:9a:9a:19:bb:91:d9:df:4e:89:76:38:ec:87:e9:39:89:
cd:e2:5c:61:f8:1d:64:a9:eb:ef:5f:51:88:a8:66:fc:c4:8f:
d5:95:ad:2b:0d:de:b2:7a:70:3e:44:bf:7c:5c:8c:b1:78:89:
b4:50:5d:2e:92:65:02:b2:f8:c1:5f:78:ea:99:dc:da:f2:e8:
8f:1b:f0:24:9a:89:ed:17:99:57:3d:8e:c8:08:bc:8a:ba:b1:
64:89:c6:a7:d9:08:98:15:ee:3d:35:37:3c:97:d9:a1:84:35:
2e:a4:29:2e:fe:f5:09:11:67:2b:0d:53:c5:e3:9b:fd:5b:ff:
f8:63:dc:6d:05:81:77:59:67:46:56:60:5d:0c:85:01:23:6d:
07:12:7b:49:7a:c2:fb:c7:29:18:68:b8:d4:a7:77:c4:ed:f9:
08:1e:09:0b:46:8d:92:71:b2:b0:1c:f5:2d:ff:be:b0:eb:34:
8e:38:f7:1f:58:28:ce:92:ed:09:96:04:8e:4b:e5:e6:ad:28:
51:18:0b:41:6c:54:27:2f:d2:73:dc:a8:11:a6:ce:77:ba:a4:
60:d5:6a:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:28:29 2025 by rpki-client