Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A11E26BB7B0180CF9D573D2F33932C14DAEB726C12A4FE5572059228BE377963/0/34352e3232392e342e302f32322d3234203d3e20323639383338.roa
File: 34352e3232392e342e302f32322d3234203d3e20323639383338.roa (raw, json)
Hash identifier: Vxzw0q9b+1ktxOpKZCFMTFISeduHDSSnCpyZSKfwIQw=
Subject key identifier: C4:50:19:95:E0:6C:28:1F:3D:72:36:C8:1E:7E:66:09:36:E6:05:2A
Certificate issuer: /CN=938F00AB707A673E33DEB078154945BAC29E6E67
Certificate serial: 2FF4873C104B8A926171B77249284762CFFF4CA7
Authority key identifier: 93:8F:00:AB:70:7A:67:3E:33:DE:B0:78:15:49:45:BA:C2:9E:6E:67
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/938F00AB707A673E33DEB078154945BAC29E6E67.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A11E26BB7B0180CF9D573D2F33932C14DAEB726C12A4FE5572059228BE377963/0/34352e3232392e342e302f32322d3234203d3e20323639383338.roa
Signing time: Tue 04 Feb 2025 18:36:57 +0000
ROA not before: Tue 04 Feb 2025 18:31:57 +0000
ROA not after: Tue 03 Feb 2026 18:36:57 +0000
asID: 269838
IP address blocks: 45.229.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:f4:87:3c:10:4b:8a:92:61:71:b7:72:49:28:47:62:cf:ff:4c:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=938F00AB707A673E33DEB078154945BAC29E6E67
Validity
Not Before: Feb 4 18:31:57 2025 GMT
Not After : Feb 3 18:36:57 2026 GMT
Subject: CN=C4501995E06C281F3D7236C81E7E660936E6052A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:50:18:41:25:ac:c5:93:d0:09:03:64:d6:51:
2b:5e:2d:9c:af:7d:b8:c7:17:c8:fe:a2:d8:2a:93:
a7:ab:c0:1f:db:7c:d7:81:cc:b8:42:d5:96:9e:3f:
60:f4:72:e4:f1:87:92:9c:58:2b:55:e7:a8:2e:2e:
a7:78:12:51:fd:73:ba:b3:2a:0f:8e:1c:57:0d:15:
df:bf:2f:f0:c2:5c:51:b1:38:bf:6f:4b:25:18:56:
9a:30:b2:f9:30:8f:11:32:d5:d5:2c:ee:f0:9f:13:
85:d7:7a:3f:df:2f:d4:8a:ac:f7:29:f0:c7:c8:2a:
fe:1a:95:ed:27:35:b7:84:32:78:30:74:be:33:83:
b5:4c:4b:93:60:a9:83:ef:c3:0a:7a:ae:5b:88:cb:
32:29:cd:0c:cd:2a:7c:45:96:52:b7:74:21:85:cb:
cc:e4:3f:c2:44:4c:4d:83:eb:00:89:f1:04:50:8e:
0d:1b:7d:6d:37:ed:b3:79:5e:83:b3:b1:0b:d6:7b:
f4:1f:67:2b:c9:b8:c8:ef:90:6f:ae:48:21:b3:f6:
e5:79:1d:7b:b1:a1:8f:64:a4:f3:bb:3b:90:a5:34:
17:80:fe:ff:a4:c9:09:7a:9f:38:70:ef:eb:92:8f:
57:0a:44:54:83:36:97:d1:b0:cc:dd:28:e9:fb:54:
8b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:50:19:95:E0:6C:28:1F:3D:72:36:C8:1E:7E:66:09:36:E6:05:2A
X509v3 Authority Key Identifier:
keyid:93:8F:00:AB:70:7A:67:3E:33:DE:B0:78:15:49:45:BA:C2:9E:6E:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A11E26BB7B0180CF9D573D2F33932C14DAEB726C12A4FE5572059228BE377963/0/938F00AB707A673E33DEB078154945BAC29E6E67.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/938F00AB707A673E33DEB078154945BAC29E6E67.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A11E26BB7B0180CF9D573D2F33932C14DAEB726C12A4FE5572059228BE377963/0/34352e3232392e342e302f32322d3234203d3e20323639383338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.229.4.0/22
Signature Algorithm: sha256WithRSAEncryption
64:25:4c:cc:21:9a:43:eb:50:55:58:63:81:27:ec:e3:33:e9:
ac:03:2a:62:77:93:72:1a:41:1f:14:4d:a7:1b:3b:88:de:41:
31:27:55:7c:94:81:b8:44:69:6c:5b:3c:cf:d9:75:ed:62:f2:
50:87:b8:16:aa:f5:43:12:8d:a8:b0:f4:c5:af:5a:7c:b2:21:
81:93:2f:05:4b:8c:4a:8c:ad:eb:93:4c:3a:3d:cb:91:81:be:
eb:3d:df:dd:3b:cd:89:2d:a7:0c:0e:63:1e:30:93:d1:9b:9e:
3b:6f:89:06:4e:f4:1d:51:23:bf:62:ab:2a:df:23:ce:37:62:
07:8c:41:d0:a4:c5:fb:d2:6a:74:6b:b2:4e:68:86:3b:b9:55:
44:73:19:ed:1a:e6:20:72:32:3b:50:8e:4d:86:6b:a4:ac:1b:
3c:32:9f:3c:cd:86:7d:67:ba:54:74:6a:cb:68:13:1a:7a:71:
75:c6:c0:48:7c:b2:fd:9a:d0:e9:8d:24:c5:b4:af:36:29:fe:
4a:83:15:de:45:6e:c3:be:03:fc:65:eb:78:3f:8e:a5:58:fd:
a3:f1:79:1c:0a:b8:ef:fa:eb:d8:bb:b0:46:a9:0e:00:dc:9f:
4b:6a:12:f8:9e:c4:1d:08:eb:42:0d:a1:10:fa:a2:5c:df:99:
48:6b:05:e8
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUL/SHPBBLipJhcbdySShHYs//TKcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTM4RjAwQUI3MDdBNjczRTMzREVCMDc4MTU0OTQ1QkFD
MjlFNkU2NzAeFw0yNTAyMDQxODMxNTdaFw0yNjAyMDMxODM2NTdaMDMxMTAvBgNV
BAMTKEM0NTAxOTk1RTA2QzI4MUYzRDcyMzZDODFFN0U2NjA5MzZFNjA1MkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJUBhBJazFk9AJA2TWUSteLZyv
fbjHF8j+otgqk6erwB/bfNeBzLhC1ZaeP2D0cuTxh5KcWCtV56guLqd4ElH9c7qz
Kg+OHFcNFd+/L/DCXFGxOL9vSyUYVpowsvkwjxEy1dUs7vCfE4XXej/fL9SKrPcp
8MfIKv4ale0nNbeEMngwdL4zg7VMS5NgqYPvwwp6rluIyzIpzQzNKnxFllK3dCGF
y8zkP8JETE2D6wCJ8QRQjg0bfW037bN5XoOzsQvWe/QfZyvJuMjvkG+uSCGz9uV5
HXuxoY9kpPO7O5ClNBeA/v+kyQl6nzhw7+uSj1cKRFSDNpfRsMzdKOn7VIsrAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUxFAZleBsKB89cjbIHn5mCTbmBSowHwYDVR0j
BBgwFoAUk48Aq3B6Zz4z3rB4FUlFusKebmcwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BMTFFMjZCQjdCMDE4MENGOUQ1NzNEMkYzMzkzMkMxNERB
RUI3MjZDMTJBNEZFNTU3MjA1OTIyOEJFMzc3OTYzLzAvOTM4RjAwQUI3MDdBNjcz
RTMzREVCMDc4MTU0OTQ1QkFDMjlFNkU2Ny5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85MzhGMDBBQjcwN0E2NzNFMzNE
RUIwNzgxNTQ5NDVCQUMyOUU2RTY3LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQTExRTI2QkI3QjAxODBDRjlENTczRDJGMzM5MzJDMTREQUVCNzI2QzEy
QTRGRTU1NzIwNTkyMjhCRTM3Nzk2My8wLzM0MzUyZTMyMzIzOTJlMzQyZTMwMmYz
MjMyMmQzMjM0MjAzZDNlMjAzMjM2MzkzODMzMzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIt5QQwDQYJ
KoZIhvcNAQELBQADggEBAGQlTMwhmkPrUFVYY4En7OMz6awDKmJ3k3IaQR8UTacb
O4jeQTEnVXyUgbhEaWxbPM/Zde1i8lCHuBaq9UMSjaiw9MWvWnyyIYGTLwVLjEqM
reuTTDo9y5GBvus93907zYktpwwOYx4wk9GbnjtviQZO9B1RI79iqyrfI843YgeM
QdCkxfvSanRrsk5ohju5VURzGe0a5iByMjtQjk2Ga6SsGzwynzzNhn1nulR0asto
Exp6cXXGwEh8sv2a0OmNJMW0rzYp/kqDFd5FbsO+A/xl63g/jqVY/aPxeRwKuO/6
69i7sEapDgDcn0tqEviexB0I60INoRD6olzfmUhrBeg=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:13 2025 by rpki-client