Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/34352e3232362e36382e302f32322d3234203d3e203237383433.roa
File: 34352e3232362e36382e302f32322d3234203d3e203237383433.roa (raw, json)
Hash identifier: dznIXiXrC6RexTi2MwxijVNiFNm/BhRqkmz1zQ0RSSM=
Subject key identifier: 85:A2:13:06:14:DE:C4:EB:A7:6C:55:92:7E:49:8F:28:1B:1D:D7:FB
Certificate issuer: /CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Certificate serial: 58E9EC0CF9CB711DD1F500C63657BFDA5074FABA
Authority key identifier: 9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/34352e3232362e36382e302f32322d3234203d3e203237383433.roa
Signing time: Tue 04 Feb 2025 18:06:07 +0000
ROA not before: Tue 04 Feb 2025 18:01:07 +0000
ROA not after: Tue 03 Feb 2026 18:06:07 +0000
asID: 27843
IP address blocks: 45.226.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:e9:ec:0c:f9:cb:71:1d:d1:f5:00:c6:36:57:bf:da:50:74:fa:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Validity
Not Before: Feb 4 18:01:07 2025 GMT
Not After : Feb 3 18:06:07 2026 GMT
Subject: CN=85A2130614DEC4EBA76C55927E498F281B1DD7FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cf:1b:9c:bb:a5:ed:0c:8d:e3:d8:54:28:92:
c6:59:b9:10:53:7a:c2:c6:7a:03:f2:ad:8e:7f:51:
a7:41:49:82:0e:b2:4a:4f:f2:5b:f2:de:12:26:92:
ad:fb:9d:5f:87:55:6d:2f:c6:bc:9b:b6:b3:57:79:
f5:4d:0d:e2:7f:9c:28:b9:42:6d:67:ac:13:9b:b9:
da:58:82:0d:21:9f:45:78:a6:c3:d0:08:1a:d5:eb:
fc:3d:ae:d7:46:17:1b:2f:c8:1b:99:f2:1f:e6:e5:
fe:c2:9f:4b:7d:b3:4b:12:d9:c0:6d:6a:54:35:66:
24:7f:f8:cf:bd:4a:47:d1:9a:58:98:96:9b:e0:3b:
66:1a:b6:33:b7:55:23:72:e6:a3:2f:0e:6d:7c:c6:
7f:29:cc:03:dd:a5:d2:62:1a:4f:d3:c7:a3:1a:74:
25:b5:a7:e8:3e:5c:21:36:00:5b:c2:f3:71:0b:38:
d7:a2:98:01:98:59:18:27:35:29:fa:fa:06:4a:bf:
c2:84:64:55:dd:4d:3b:78:a8:bf:02:7c:97:23:28:
bb:ed:7f:31:5f:8a:b3:36:e1:a3:25:8d:23:77:75:
83:e4:39:71:0c:ca:62:91:50:27:62:3b:08:92:1a:
5f:64:5b:7b:8e:6b:4b:cd:9f:41:35:29:2c:d0:53:
8a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:A2:13:06:14:DE:C4:EB:A7:6C:55:92:7E:49:8F:28:1B:1D:D7:FB
X509v3 Authority Key Identifier:
keyid:9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/34352e3232362e36382e302f32322d3234203d3e203237383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.226.68.0/22
Signature Algorithm: sha256WithRSAEncryption
73:b3:88:28:c6:16:64:4c:7f:49:65:72:eb:cd:fb:8d:c6:e8:
fb:b4:9c:04:c9:ce:89:df:d1:4b:f2:a3:ab:94:43:72:d5:89:
9c:9e:15:62:3a:58:70:d7:41:65:5e:7c:e1:e5:f3:bc:6f:fc:
07:84:21:d3:47:8b:56:77:1a:e6:7e:e4:d5:92:5b:2c:38:3a:
d2:ad:3c:08:1e:85:11:1d:2e:0f:6a:3c:51:fd:87:81:70:63:
66:03:e1:b9:1c:1c:4e:8a:60:e5:d1:aa:46:15:0d:51:63:61:
64:27:67:ef:5f:a1:26:c7:11:f2:3f:1a:e3:5f:03:bd:51:f9:
c2:00:bb:e4:51:e7:fe:88:64:59:e0:fc:05:3b:e1:c4:e3:db:
4c:7d:47:4f:b4:e6:3b:ea:bd:fc:a0:65:1a:77:fe:ea:0b:ed:
f3:18:6c:0f:54:ce:2c:77:d8:60:94:f9:3f:fb:3b:0f:a7:60:
aa:65:cc:ea:0e:75:13:cb:61:cb:41:ac:e2:87:e1:7c:60:92:
a2:d5:c0:42:43:08:1c:02:77:e0:9a:68:ed:ad:ef:b2:92:98:
78:86:5e:17:dc:03:cf:d5:70:e6:ab:d8:e0:a6:a8:b3:9b:b9:
dd:aa:14:d7:bb:29:d6:61:ee:4b:7e:03:a3:84:df:9c:17:5e:
c4:5a:ff:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:38:43 2025 by rpki-client