Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e35322e302f32342d3234203d3e203238303336.roa
File: 3136352e39382e35322e302f32342d3234203d3e203238303336.roa (raw, json)
Hash identifier: pdElfCiWD/zJhBEB/OuqDb3otn9DIkugcf/M0eUKL0A=
Subject key identifier: 89:0E:66:CE:A3:AC:D4:61:DB:12:28:60:F4:C3:02:CE:DE:7A:91:95
Certificate issuer: /CN=1B3FB06809362D90ED82F4A360BDEE3FB303C03D
Certificate serial: 3CB8BF6E4543349D08A3DB270154BC4AA37D056B
Authority key identifier: 1B:3F:B0:68:09:36:2D:90:ED:82:F4:A3:60:BD:EE:3F:B3:03:C0:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e35322e302f32342d3234203d3e203238303336.roa
Signing time: Tue 11 Feb 2025 15:55:00 +0000
ROA not before: Tue 11 Feb 2025 15:50:00 +0000
ROA not after: Tue 10 Feb 2026 15:55:00 +0000
asID: 28036
IP address blocks: 165.98.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:b8:bf:6e:45:43:34:9d:08:a3:db:27:01:54:bc:4a:a3:7d:05:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B3FB06809362D90ED82F4A360BDEE3FB303C03D
Validity
Not Before: Feb 11 15:50:00 2025 GMT
Not After : Feb 10 15:55:00 2026 GMT
Subject: CN=890E66CEA3ACD461DB122860F4C302CEDE7A9195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fc:9c:fa:00:66:f4:3e:02:ab:e5:a0:03:2a:
64:37:dd:c3:af:b3:5a:b1:da:5d:e0:89:9f:a1:4b:
c2:c2:18:23:87:48:f9:c8:9e:6f:45:1a:76:39:cf:
eb:58:75:28:37:7d:4e:ba:9b:1c:1d:7c:98:3b:72:
e3:96:f4:de:3e:02:c1:ac:bf:f8:de:9d:c9:49:67:
6d:59:e8:7e:23:c0:70:1a:83:3a:09:98:18:59:6d:
53:97:24:19:fe:65:c2:0e:d4:d1:68:d4:ce:da:03:
54:63:fe:d0:4a:66:ff:d1:e5:9b:ef:ab:f2:51:d4:
7b:46:03:20:23:0e:8e:57:c4:72:07:08:52:05:b9:
e5:45:30:88:07:7d:a8:82:15:3d:2a:23:9c:a2:5e:
52:29:5c:3b:d0:00:76:62:91:58:7d:dc:44:e1:ff:
6e:79:85:6b:f0:37:1b:31:d8:d4:01:a0:3d:f6:52:
0b:df:2b:93:f0:a2:4e:ad:50:53:e2:ae:e6:25:12:
6f:22:c6:53:ea:b7:08:95:6c:c4:91:57:5f:09:8f:
ae:96:6f:2b:e1:d1:35:58:c5:e3:67:2c:2a:38:20:
0b:13:86:48:bc:dd:5c:0b:a4:c7:82:f4:30:59:2e:
73:07:3d:74:07:f7:7e:4b:8f:0f:be:cc:a0:35:2c:
3a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:0E:66:CE:A3:AC:D4:61:DB:12:28:60:F4:C3:02:CE:DE:7A:91:95
X509v3 Authority Key Identifier:
keyid:1B:3F:B0:68:09:36:2D:90:ED:82:F4:A3:60:BD:EE:3F:B3:03:C0:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e35322e302f32342d3234203d3e203238303336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
165.98.52.0/24
Signature Algorithm: sha256WithRSAEncryption
47:d8:e3:05:99:a3:44:8b:d3:32:35:f8:73:5a:18:62:6e:e8:
c4:2e:ce:7f:5f:fe:43:c8:a1:17:bb:01:27:99:b8:f4:68:e3:
ca:23:c7:90:14:f4:ba:7b:13:be:68:7d:1e:e6:f5:02:a1:c9:
6c:b8:f1:db:01:68:f4:da:0b:a9:ee:e1:81:b8:22:0c:e4:32:
43:ee:33:c3:9d:bb:36:b3:fe:fd:05:4d:8a:a4:46:fc:c9:85:
68:39:94:6c:46:a0:19:ff:9a:cb:c7:db:c1:cf:26:f5:45:c7:
c5:48:7e:ac:f8:50:84:c1:ab:5b:ea:c2:83:47:b4:32:05:5b:
ac:f2:40:45:f4:ae:06:16:01:22:17:94:4d:78:cf:1d:bb:25:
22:00:cb:90:f4:13:58:b1:d6:c5:2d:e8:51:00:08:08:38:62:
95:98:c9:61:d1:ec:a4:0a:59:25:ae:67:fe:16:4d:f4:ea:f4:
44:56:59:4d:c3:e4:d1:cf:5b:dc:33:1f:42:e2:06:a5:9f:78:
88:08:76:91:af:6e:df:5b:45:3e:92:e3:18:d4:38:3c:85:ac:
69:d1:aa:e0:76:f3:58:98:8d:57:d2:8c:8e:b3:55:41:20:a4:
79:f0:4d:15:e3:5b:10:b0:8f:ca:21:39:40:1b:ff:cf:8e:43:
1e:57:3f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:55:26 2025 by rpki-client