Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e34352e302f32342d3234203d3e203237383433.roa
File: 3136382e3132312e34352e302f32342d3234203d3e203237383433.roa (raw, json)
Hash identifier: N0i1iM3FtIdFJxi/SAxdGWDhN6GqoP6tv9Y/U+txlts=
Subject key identifier: D1:78:49:9C:32:AA:22:02:5C:89:03:EE:D8:D6:66:97:7F:49:42:A3
Certificate issuer: /CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Certificate serial: 32DB9418F83AE7BEB0361E602ACC763FD510CCC4
Authority key identifier: 9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e34352e302f32342d3234203d3e203237383433.roa
Signing time: Tue 04 Feb 2025 18:06:04 +0000
ROA not before: Tue 04 Feb 2025 18:01:04 +0000
ROA not after: Tue 03 Feb 2026 18:06:04 +0000
asID: 27843
IP address blocks: 168.121.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:db:94:18:f8:3a:e7:be:b0:36:1e:60:2a:cc:76:3f:d5:10:cc:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Validity
Not Before: Feb 4 18:01:04 2025 GMT
Not After : Feb 3 18:06:04 2026 GMT
Subject: CN=D178499C32AA22025C8903EED8D666977F4942A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:92:ad:bd:61:de:32:27:a6:53:d8:06:b6:a7:
bc:5f:a8:14:c9:53:75:cd:33:82:78:d0:0e:33:fa:
03:b1:dc:7e:71:61:e0:88:db:8e:a2:e2:0c:30:2a:
5b:67:4b:45:7e:da:49:4c:f3:d8:cd:fb:8f:bb:53:
4b:f8:d0:68:3b:36:89:84:72:c9:bb:f4:e6:12:eb:
ee:4a:95:cb:de:a0:1a:cb:3e:4f:91:cd:4a:05:a5:
88:03:08:77:65:28:fd:4f:e2:06:d4:5a:dd:5e:89:
bb:96:65:39:17:f8:ad:6e:ed:11:09:ac:6d:33:f6:
1b:28:6d:de:01:46:eb:65:86:10:eb:6c:46:87:4b:
f9:81:fd:a5:82:d1:a0:50:92:fe:a4:9c:87:d9:dd:
41:3c:bf:df:bb:ac:67:69:fc:41:75:75:ad:ee:62:
a2:4a:de:0a:b9:89:fa:98:2e:8f:52:91:b5:6e:6e:
71:da:ae:6c:bc:a5:21:c0:40:9b:28:e2:28:73:af:
fc:5e:ea:68:1e:5d:11:00:b2:c3:e4:35:6c:28:bc:
5e:b2:3a:d4:06:77:66:c6:ba:1e:63:05:b5:3b:d3:
4e:e1:5f:10:ff:73:86:41:a5:da:01:15:3e:1b:0c:
b4:bc:31:4f:3b:de:e4:63:90:49:7c:ed:6b:71:a2:
4e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:78:49:9C:32:AA:22:02:5C:89:03:EE:D8:D6:66:97:7F:49:42:A3
X509v3 Authority Key Identifier:
keyid:9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e34352e302f32342d3234203d3e203237383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.121.45.0/24
Signature Algorithm: sha256WithRSAEncryption
05:f8:bb:9a:d6:76:a0:21:da:de:5f:c1:52:7d:18:ff:20:57:
57:84:f1:80:95:20:76:46:2a:ec:b9:b7:86:47:99:e2:16:28:
d0:fb:9b:a4:75:06:76:61:19:bd:7e:50:de:2b:8a:87:a6:d7:
42:98:69:76:ae:a2:3c:d9:12:86:d6:8a:8a:97:f8:51:8e:db:
6c:3c:ce:8e:78:18:4e:d5:fc:69:41:78:3a:af:37:19:3b:ce:
5f:b2:50:96:0f:70:77:f2:65:a9:62:54:5e:42:0c:41:4a:c8:
87:ed:67:ef:60:92:b9:66:a2:1b:56:0b:d6:1b:ac:90:b2:5f:
68:cb:8b:ec:81:88:9d:5a:79:15:53:80:7c:6f:9d:53:89:7c:
f1:87:b8:24:0a:ad:48:c9:a7:1d:07:59:9a:b7:cc:00:bb:e2:
b1:10:54:d6:27:4c:87:01:91:d7:2d:b1:5e:bd:5f:a4:6c:d8:
5f:1f:61:63:df:ce:2e:d2:68:87:bb:79:4a:56:2f:0f:60:d0:
1c:0d:98:7f:6d:3b:de:d2:4b:13:8d:0d:0a:f4:70:58:5f:01:
d6:f8:bf:5c:1f:78:12:4b:9b:2e:95:7a:5d:72:04:3d:20:30:
c1:bc:fd:e3:4f:83:b0:4f:f3:3f:58:2c:fe:65:2c:7b:98:27:
cd:de:93:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:18:15 2025 by rpki-client