Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136372e3234392e382e302f32322d3234203d3e203237383433.roa
File: 3136372e3234392e382e302f32322d3234203d3e203237383433.roa (raw, json)
Hash identifier: lOp9NKLUKtzlLbWQ09k4x626+mbJQZW/CQalBoPgPvg=
Subject key identifier: C2:5B:5A:11:40:F8:5C:99:17:D6:2B:0B:68:7F:1C:4C:79:46:E3:24
Certificate issuer: /CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Certificate serial: 04796540BCE46D6ED399E6FE53E2A9B358F1E031
Authority key identifier: 9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136372e3234392e382e302f32322d3234203d3e203237383433.roa
Signing time: Tue 04 Feb 2025 18:06:06 +0000
ROA not before: Tue 04 Feb 2025 18:01:06 +0000
ROA not after: Tue 03 Feb 2026 18:06:06 +0000
asID: 27843
IP address blocks: 167.249.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:79:65:40:bc:e4:6d:6e:d3:99:e6:fe:53:e2:a9:b3:58:f1:e0:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Validity
Not Before: Feb 4 18:01:06 2025 GMT
Not After : Feb 3 18:06:06 2026 GMT
Subject: CN=C25B5A1140F85C9917D62B0B687F1C4C7946E324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:68:19:d1:bb:73:0d:aa:dd:94:0f:79:6e:3c:
fa:6b:9b:c7:4c:d8:1e:78:a9:80:54:79:9b:b9:74:
72:dd:98:70:11:42:be:fb:52:b0:45:9d:97:ce:3d:
21:41:f2:39:cc:72:be:47:5d:d1:39:58:b9:30:1f:
53:51:e9:cb:71:5e:3c:ae:48:c6:9b:b0:08:2b:48:
38:02:68:d5:33:be:1c:d4:76:52:d4:9b:2d:cf:52:
4b:01:ac:8b:2d:5f:92:f6:6c:d7:cd:fa:ad:6c:32:
b7:b4:5d:90:d7:60:3f:72:03:18:9a:92:b0:55:84:
f4:1f:b7:93:03:2b:3a:a0:59:1b:27:2a:fd:d2:6e:
67:8c:82:06:2c:e7:40:bf:6e:bf:e3:22:cb:01:d4:
b2:95:1e:dc:f0:62:be:7d:eb:98:d1:cf:9a:b2:cb:
c3:2a:f3:c6:17:ce:97:2d:09:d9:83:21:b2:35:db:
3f:7f:bf:71:49:2f:d5:7d:6d:fc:90:2b:14:b9:bb:
73:cd:bd:1b:c6:7b:f8:2e:bd:fa:55:b1:d2:e1:53:
2d:c2:44:5a:f7:b3:09:0b:7f:d9:51:9f:ef:fe:a9:
2e:2a:f7:86:92:5a:9b:8f:4c:8b:1c:62:f0:6d:f7:
72:41:2d:51:61:e9:5f:2f:98:00:34:e2:de:80:07:
83:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:5B:5A:11:40:F8:5C:99:17:D6:2B:0B:68:7F:1C:4C:79:46:E3:24
X509v3 Authority Key Identifier:
keyid:9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136372e3234392e382e302f32322d3234203d3e203237383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.249.8.0/22
Signature Algorithm: sha256WithRSAEncryption
08:a6:1b:3f:22:9a:44:df:4b:2e:02:e6:92:9c:3d:b2:de:71:
6f:74:7a:c4:7e:06:8c:cc:90:5d:f6:97:aa:12:7c:b3:f7:1d:
62:09:7e:09:cb:5f:cb:6c:77:84:b7:41:b7:93:bb:79:81:c0:
ad:70:fb:15:40:d2:a4:ba:e7:b3:43:e7:ca:fe:3e:e9:71:01:
75:c6:d9:e2:32:e2:b5:26:a1:6d:4f:ef:8a:5e:44:7c:c2:d1:
26:d7:13:06:84:10:8d:2d:8e:2d:97:43:74:62:5b:96:77:6f:
b1:9f:58:1a:e7:36:69:1a:6e:be:7b:be:c2:eb:35:28:c5:31:
81:86:39:58:8a:72:2a:21:03:cc:76:e7:f8:b3:ea:0a:4e:b3:
0d:55:7b:ac:64:ed:a2:80:cc:32:5c:73:df:ad:e8:36:8d:92:
b3:7d:ac:31:1d:ba:cb:18:20:c6:39:fa:59:d5:30:1c:b0:a6:
ad:27:b3:35:e6:fb:fb:31:0c:78:13:2b:c9:4e:54:05:2d:22:
50:9d:87:d5:8b:f0:4c:ee:22:07:ad:39:33:26:36:c7:29:55:
f1:5a:05:49:4a:7a:06:68:f1:fd:58:c0:df:f3:39:f3:66:9c:
36:be:99:f5:a0:52:0f:1c:b3:76:bb:9f:8c:84:22:ee:c6:1b:
06:24:9a:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:40:48 2025 by rpki-client