Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A9411291F93B87F981ABBDA5AAE5703988FD63C53C0D85DF413F28F442DB0292/0/3138312e3233322e3135362e302f32322d3232203d3e20323732303632.roa
File: 3138312e3233322e3135362e302f32322d3232203d3e20323732303632.roa (raw, json)
Hash identifier: KXQD2HMpY/wY1CMd5WgRZP1/N6h2LjmnmgTG3BYPAL8=
Subject key identifier: 18:77:CD:77:77:2F:7C:37:1A:A3:4B:14:67:68:15:E5:06:98:FA:CB
Certificate issuer: /CN=E9A5288FFD963231D7A31DF358516C1DE9044850
Certificate serial: 154BFF05584C8C4613BF85D13C626DA7A1756CBA
Authority key identifier: E9:A5:28:8F:FD:96:32:31:D7:A3:1D:F3:58:51:6C:1D:E9:04:48:50
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E9A5288FFD963231D7A31DF358516C1DE9044850.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A9411291F93B87F981ABBDA5AAE5703988FD63C53C0D85DF413F28F442DB0292/0/3138312e3233322e3135362e302f32322d3232203d3e20323732303632.roa
Signing time: Tue 04 Feb 2025 18:17:35 +0000
ROA not before: Tue 04 Feb 2025 18:12:35 +0000
ROA not after: Tue 03 Feb 2026 18:17:35 +0000
asID: 272062
IP address blocks: 181.232.156.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:4b:ff:05:58:4c:8c:46:13:bf:85:d1:3c:62:6d:a7:a1:75:6c:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E9A5288FFD963231D7A31DF358516C1DE9044850
Validity
Not Before: Feb 4 18:12:35 2025 GMT
Not After : Feb 3 18:17:35 2026 GMT
Subject: CN=1877CD77772F7C371AA34B14676815E50698FACB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:50:a7:5c:83:6a:ae:e8:8a:a9:fc:a3:06:a7:
67:36:fa:af:ec:14:30:d9:9e:89:90:bb:ad:c3:93:
1c:98:a0:3b:ce:e2:12:ca:b4:a7:8e:b2:0b:b0:12:
f7:1c:4c:1f:ab:ac:d1:71:0a:cc:e0:5c:cd:d4:75:
64:b5:ef:87:1a:70:60:c2:19:69:f8:4b:11:00:92:
bd:76:38:af:8a:48:f5:6a:af:e9:be:59:2c:b3:25:
5b:96:8e:ab:43:47:1d:be:89:f4:a4:79:42:7c:72:
70:8c:2d:94:11:0b:66:bc:2a:b7:c6:f7:4e:99:50:
67:f8:ad:f1:5f:23:b5:ee:b8:f6:f1:34:a1:50:57:
ab:27:04:d6:58:9c:8f:90:1d:6e:c5:5b:2b:0b:de:
2e:f6:9f:39:f8:18:bb:a7:0f:0f:73:cf:e7:9c:a0:
af:e1:43:cf:c2:de:af:1c:ea:7f:a3:d3:b7:93:72:
8f:48:66:31:bd:10:0f:d4:7f:c1:57:65:c9:76:89:
0d:cd:6b:d1:19:e8:3c:20:eb:37:16:c0:e6:7a:9f:
bb:ee:8f:12:6b:e5:6d:60:1e:e9:c6:ca:ed:f7:ab:
a5:8c:81:84:c9:18:8d:e2:19:0f:b3:d6:f7:57:b3:
20:51:d6:7b:16:37:ca:34:f0:55:c2:d7:ee:c9:0e:
af:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:77:CD:77:77:2F:7C:37:1A:A3:4B:14:67:68:15:E5:06:98:FA:CB
X509v3 Authority Key Identifier:
keyid:E9:A5:28:8F:FD:96:32:31:D7:A3:1D:F3:58:51:6C:1D:E9:04:48:50
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A9411291F93B87F981ABBDA5AAE5703988FD63C53C0D85DF413F28F442DB0292/0/E9A5288FFD963231D7A31DF358516C1DE9044850.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E9A5288FFD963231D7A31DF358516C1DE9044850.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A9411291F93B87F981ABBDA5AAE5703988FD63C53C0D85DF413F28F442DB0292/0/3138312e3233322e3135362e302f32322d3232203d3e20323732303632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.232.156.0/22
Signature Algorithm: sha256WithRSAEncryption
05:ab:03:13:71:bd:76:52:42:62:a9:5a:ef:aa:66:77:47:2c:
0c:2f:63:e1:98:fc:e5:50:d0:9d:b9:c0:4a:8e:23:6c:62:80:
a4:9c:ac:5c:a4:09:37:49:2a:17:23:2b:95:8d:e2:1f:bc:73:
c3:2d:ba:d3:11:fa:c0:e6:c6:44:e3:a9:65:35:92:d4:cd:ce:
6a:dc:f7:74:99:92:66:f6:5a:2d:49:f0:bc:e0:87:34:c4:eb:
45:de:a4:16:96:0b:87:a8:70:80:c5:eb:37:f2:df:14:dc:c8:
bc:20:ef:b7:0f:22:4f:6c:a2:36:14:d3:53:5d:56:91:e6:c8:
fa:17:5a:a8:45:3c:ce:43:b9:37:87:d5:a9:14:31:cc:60:d0:
11:48:57:5c:fe:37:86:18:8b:4d:17:2e:3a:02:71:64:b1:7f:
09:8c:32:22:5d:2a:dd:fa:ed:29:38:eb:5f:27:c3:1e:cc:c9:
47:f2:14:af:8a:dd:c8:be:c0:e4:88:c0:db:3d:83:47:d6:52:
7d:0a:89:5f:5a:b7:69:83:4f:96:ce:6f:7e:51:6c:53:7a:61:
e6:8f:b9:ee:00:bc:83:4e:de:d7:26:91:7c:eb:d4:1d:51:10:
a6:bd:2c:2f:ca:45:8b:4b:2d:ce:f5:6a:bf:33:01:31:b9:75:
39:8a:3a:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:45:24 2025 by rpki-client