Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/34352e3232342e3138382e302f32322d3234203d3e20323635383533.roa
File: 34352e3232342e3138382e302f32322d3234203d3e20323635383533.roa (raw, json)
Hash identifier: cODHlJDNq0W8YTRIomzGyZRXQqhncfqQbozQIXrZ+mk=
Subject key identifier: 2C:F0:36:68:4B:4A:2C:67:C4:CB:E1:EF:89:61:89:20:4D:00:CC:B2
Certificate issuer: /CN=91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6
Certificate serial: 3D28F37BDCCB09736816FC7C89EA829F0165D897
Authority key identifier: 91:DB:B2:B4:BA:25:E4:71:DB:FD:1A:B6:84:91:63:BE:A0:77:E1:A6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/34352e3232342e3138382e302f32322d3234203d3e20323635383533.roa
Signing time: Tue 04 Feb 2025 18:12:42 +0000
ROA not before: Tue 04 Feb 2025 18:07:42 +0000
ROA not after: Tue 03 Feb 2026 18:12:42 +0000
asID: 265853
IP address blocks: 45.224.188.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:28:f3:7b:dc:cb:09:73:68:16:fc:7c:89:ea:82:9f:01:65:d8:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6
Validity
Not Before: Feb 4 18:07:42 2025 GMT
Not After : Feb 3 18:12:42 2026 GMT
Subject: CN=2CF036684B4A2C67C4CBE1EF896189204D00CCB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9c:22:17:6d:36:23:72:20:d4:e0:bc:f8:91:
f1:63:46:1f:11:5c:f8:b6:5c:6c:88:c4:07:4e:48:
e8:6e:e3:20:26:b7:ee:f7:6f:57:be:f6:9b:9e:6c:
c4:31:6c:43:e0:98:5f:55:c8:b5:e7:01:96:e2:13:
7b:0d:3e:ab:c2:08:6d:8e:d6:78:c5:11:dc:80:2b:
47:08:0c:69:56:83:3c:a7:e0:b8:5b:13:1a:90:22:
d8:3d:47:41:d1:d3:aa:f3:86:e1:99:b2:2c:06:d9:
d7:40:73:2b:d8:84:40:aa:57:da:3f:b0:fd:16:dd:
71:03:ba:7c:a3:e6:17:6e:1d:4c:ca:aa:73:5a:6c:
f9:5c:d3:21:a2:a4:c9:77:92:90:dc:ee:e3:b0:45:
93:d6:fe:91:c9:8e:14:6e:3a:9c:37:95:88:36:22:
c8:99:8b:68:48:6b:8d:4c:45:ee:19:91:d6:c0:ac:
fc:04:e9:df:61:6f:a0:9f:68:4f:bc:39:ce:b2:fc:
c2:59:bb:5b:c7:ed:d3:42:19:d7:fd:9c:da:45:da:
85:bc:f9:f7:8d:fb:6c:83:71:6b:8e:17:64:8e:f9:
0c:99:38:ec:3c:32:dd:c0:52:2c:38:44:55:c7:a8:
be:69:17:fc:78:9b:02:0a:8c:da:27:29:a7:c8:70:
f6:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F0:36:68:4B:4A:2C:67:C4:CB:E1:EF:89:61:89:20:4D:00:CC:B2
X509v3 Authority Key Identifier:
keyid:91:DB:B2:B4:BA:25:E4:71:DB:FD:1A:B6:84:91:63:BE:A0:77:E1:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/34352e3232342e3138382e302f32322d3234203d3e20323635383533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.224.188.0/22
Signature Algorithm: sha256WithRSAEncryption
c3:d3:8b:89:21:ae:09:22:f2:79:98:a6:6d:1a:af:0e:c7:1e:
de:47:00:48:0a:b2:cd:46:67:9c:cd:55:94:8b:da:9b:94:81:
47:ed:1e:50:ba:e0:96:63:8a:08:3e:d6:56:ce:e2:a3:fb:0e:
30:25:65:31:70:e7:86:82:68:ab:1f:69:1e:1f:3b:7d:00:f5:
3b:78:f5:68:0e:55:a1:f9:d5:3a:4b:23:0d:35:18:0b:87:e3:
52:ff:02:98:9a:f4:ce:c1:1b:98:f1:5b:d3:4b:8a:b9:45:d4:
10:45:58:c8:18:76:8e:f9:a4:12:22:1f:2f:4d:d4:65:71:56:
37:b7:bc:22:17:98:05:58:6c:90:31:fd:d4:ae:1f:a9:2c:b6:
75:f8:53:fa:1e:a2:1e:9e:2c:5e:61:6e:0f:97:2c:19:79:6a:
d6:19:68:a3:ed:4f:27:03:8b:40:84:7b:20:fe:07:00:2d:7a:
06:0b:51:c8:18:80:c2:9d:e5:5f:88:a5:92:e5:c2:8d:c7:03:
d1:fe:ea:5e:96:4a:f7:ca:3f:eb:41:b0:85:7b:94:b5:50:6b:
78:ad:77:91:63:36:43:3d:9b:55:e5:0f:7b:ac:4e:94:a1:ea:
b6:fe:cf:7b:c9:af:4d:7c:2e:96:40:eb:bd:51:c2:d7:00:8e:
eb:ff:61:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:25:56 2025 by rpki-client