Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS52436.roa
File: AS52436.roa (raw, json)
Hash identifier: zTyfVRA0S4L/VVS0rGkH7xUsJN1b/1L3bdnDamuF5R8=
Subject key identifier: 60:48:4F:3D:76:EB:6D:3E:6C:3F:D8:81:1C:43:33:07:EC:18:93:C2
Certificate issuer: /CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Certificate serial: 6B905ECED0238D1BD552D5FA86FC19E05F3B0519
Authority key identifier: 27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS52436.roa
Signing time: Tue 04 Feb 2025 20:07:04 +0000
ROA not before: Tue 04 Feb 2025 20:02:04 +0000
ROA not after: Tue 03 Feb 2026 20:07:04 +0000
asID: 52436
IP address blocks: 181.10.236.0/23 maxlen: 24
181.13.56.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:90:5e:ce:d0:23:8d:1b:d5:52:d5:fa:86:fc:19:e0:5f:3b:05:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Validity
Not Before: Feb 4 20:02:04 2025 GMT
Not After : Feb 3 20:07:04 2026 GMT
Subject: CN=60484F3D76EB6D3E6C3FD8811C433307EC1893C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:98:05:48:06:86:98:81:4d:9b:fe:82:83:dc:
0f:33:d0:41:b8:8c:35:54:4c:15:94:9f:f9:ca:32:
e6:5d:49:3b:ce:ae:ae:2d:b3:af:28:ff:bc:cd:ca:
58:a5:ee:4c:ed:0b:88:77:20:6e:0a:2c:d2:65:3c:
b6:ff:cd:d1:f7:6d:b6:be:3c:8c:00:4b:2e:9e:61:
ee:2b:bc:eb:0e:fd:af:4d:f0:ea:26:0c:9a:45:2d:
b3:a4:a0:6f:ea:0e:b0:43:d7:c1:90:65:39:ac:80:
6d:64:b4:af:12:a6:b3:87:e6:96:1c:4e:65:e0:66:
f7:b9:39:77:03:76:e7:d3:6b:a4:43:ab:48:b3:63:
06:eb:2a:5f:42:98:fd:f9:0c:b0:5b:49:c0:2f:0b:
6e:9e:34:66:12:9b:15:a3:a0:ce:49:1e:ac:ef:b8:
d8:2d:b0:ae:71:be:71:51:e7:98:83:94:4d:e1:fa:
b9:55:bd:e0:f6:e1:52:ae:4f:10:ba:2e:74:38:e0:
fe:92:31:61:bf:3f:46:01:2a:da:d3:8d:a2:3e:30:
6b:b5:4d:fe:be:13:ef:9d:1f:0b:d3:a2:c2:87:69:
fd:4e:1a:04:1e:6e:41:ff:bc:57:ba:82:26:77:ef:
f4:7c:d8:65:ca:76:82:a7:4f:7f:b8:10:d1:52:22:
8f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:48:4F:3D:76:EB:6D:3E:6C:3F:D8:81:1C:43:33:07:EC:18:93:C2
X509v3 Authority Key Identifier:
keyid:27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS52436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.10.236.0/23
181.13.56.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:24:3a:f1:06:75:bc:6a:57:e4:cf:e1:bd:4d:92:7c:5c:df:
9a:7b:3c:3d:73:66:ad:eb:50:b9:f7:a6:5d:b1:c8:50:e7:5a:
3f:94:56:f6:49:34:3e:6b:9a:3c:63:52:55:97:88:31:48:ed:
23:d1:0a:82:2b:15:dc:fb:cc:42:0b:06:ac:cc:ba:d0:8a:cd:
7e:88:ad:7c:c5:ea:3f:c1:19:c8:a9:74:e3:62:96:0a:ff:b9:
e8:b9:8e:ea:13:e7:ad:8d:99:21:52:fe:6b:47:40:8f:f4:2c:
7b:b6:bf:4e:57:5e:6c:0f:4b:e6:60:f2:cb:40:8d:a4:9d:8a:
d0:84:09:11:66:54:2b:3a:77:0a:b2:43:bc:d3:ed:b4:29:49:
0d:71:c7:e2:3a:2c:14:91:70:b1:a9:60:bf:9f:81:f1:b2:57:
3a:b8:2d:ce:01:94:fb:d0:a4:32:f9:17:00:b2:72:54:45:28:
59:8a:d9:5a:fa:57:b1:da:9f:ac:15:67:8b:98:b2:45:ac:b6:
f1:8c:f3:71:05:88:45:d3:9d:8f:f7:13:37:b1:ce:c1:60:85:
f1:36:db:77:1e:27:d2:dd:75:10:04:b6:ae:ca:8b:ec:cf:4e:
dd:5a:2b:71:eb:64:36:f3:64:57:54:8b:8e:3c:ae:36:c7:60:
c1:32:5a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:15:20 2025 by rpki-client