Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AF074EDA9380C77938D60DDC25103A733CEF7859664E82C795EE19D7411AB38A/0/34352e3233392e3132302e302f32322d3234203d3e20323639373333.roa
File: 34352e3233392e3132302e302f32322d3234203d3e20323639373333.roa (raw, json)
Hash identifier: bjmAo2JfyKSObmi9doTxQnN7lk08sC4oSPRI7kq38Fw=
Subject key identifier: 97:36:4D:1D:7A:27:93:10:BC:F2:AB:74:7B:85:48:12:EE:1C:70:98
Certificate issuer: /CN=5F0CDDD5EE7E7A145A967535797D838518D4F4D7
Certificate serial: 0112AC10B6C11F1EFD1564B39C68DD3A4664E607
Authority key identifier: 5F:0C:DD:D5:EE:7E:7A:14:5A:96:75:35:79:7D:83:85:18:D4:F4:D7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5F0CDDD5EE7E7A145A967535797D838518D4F4D7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AF074EDA9380C77938D60DDC25103A733CEF7859664E82C795EE19D7411AB38A/0/34352e3233392e3132302e302f32322d3234203d3e20323639373333.roa
Signing time: Tue 04 Feb 2025 18:32:42 +0000
ROA not before: Tue 04 Feb 2025 18:27:42 +0000
ROA not after: Tue 03 Feb 2026 18:32:42 +0000
asID: 269733
IP address blocks: 45.239.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:12:ac:10:b6:c1:1f:1e:fd:15:64:b3:9c:68:dd:3a:46:64:e6:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5F0CDDD5EE7E7A145A967535797D838518D4F4D7
Validity
Not Before: Feb 4 18:27:42 2025 GMT
Not After : Feb 3 18:32:42 2026 GMT
Subject: CN=97364D1D7A279310BCF2AB747B854812EE1C7098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:bc:49:22:0c:b6:cb:3b:d2:6d:70:cb:2d:86:
d7:2c:ad:48:33:64:4c:f6:c9:4e:fe:43:26:f0:34:
cc:fa:ae:32:a8:2e:64:da:0c:30:7f:4b:e4:59:a0:
15:34:f2:c4:fd:ac:6e:2a:da:b2:91:b7:94:b9:8b:
23:e2:6d:d0:c5:75:89:73:1b:9f:8b:f4:cf:3f:5a:
ee:5c:33:2b:14:5c:8b:1e:19:b1:de:3b:43:4e:ee:
5b:3b:dd:a2:60:2d:a5:aa:0a:13:d1:14:30:73:44:
32:ba:e2:cc:15:d3:c9:aa:07:3e:fd:c2:7a:b2:75:
b8:26:2b:70:c0:ca:1f:48:61:43:a1:3b:f0:eb:ec:
1b:75:7c:14:30:4f:05:f7:e2:4b:97:98:41:a3:a1:
3f:95:17:68:39:27:0a:db:db:67:b2:0b:21:f9:f1:
e1:3e:85:5a:e2:94:f6:70:73:4b:8b:4e:91:93:b3:
9a:74:34:6a:64:c8:13:e6:97:95:d5:24:9b:d2:1a:
71:f3:84:dd:6f:4e:9c:2c:94:38:c4:82:22:b4:36:
4c:68:b4:c4:92:f0:8a:d8:ce:95:9b:f4:12:3d:47:
ba:c2:24:36:92:a2:09:5f:12:9b:26:f7:c8:47:fa:
81:be:04:04:4c:f2:e9:3e:f8:c3:16:8f:ef:f8:cf:
04:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:36:4D:1D:7A:27:93:10:BC:F2:AB:74:7B:85:48:12:EE:1C:70:98
X509v3 Authority Key Identifier:
keyid:5F:0C:DD:D5:EE:7E:7A:14:5A:96:75:35:79:7D:83:85:18:D4:F4:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AF074EDA9380C77938D60DDC25103A733CEF7859664E82C795EE19D7411AB38A/0/5F0CDDD5EE7E7A145A967535797D838518D4F4D7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5F0CDDD5EE7E7A145A967535797D838518D4F4D7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AF074EDA9380C77938D60DDC25103A733CEF7859664E82C795EE19D7411AB38A/0/34352e3233392e3132302e302f32322d3234203d3e20323639373333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.239.120.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:44:81:a0:60:5e:6d:f0:64:72:58:41:a0:ba:78:89:4c:98:
d6:a6:20:43:7e:d2:f8:dc:0e:bb:ba:d6:0d:20:42:38:4b:5a:
11:df:c1:2d:25:01:2d:8c:aa:81:3c:7f:b1:3e:72:54:d9:63:
75:93:73:80:a9:dd:89:5d:ad:8d:6d:c3:ab:d9:33:31:1e:0d:
c4:d7:bc:f5:a5:10:c9:7e:c5:77:4b:21:31:7e:44:42:5c:d8:
f1:c0:41:c0:d6:2f:07:fd:44:d1:3f:d1:25:02:c1:29:b0:a2:
91:03:f3:13:7a:b7:04:15:9f:80:09:01:28:a8:05:82:28:7d:
08:ab:05:19:2e:d0:3b:6b:44:1c:18:85:06:9f:3e:09:a2:fc:
a4:77:70:e5:2a:da:88:17:61:3e:57:18:31:40:24:64:e8:08:
18:1b:c2:21:bb:01:57:69:5c:eb:6f:db:8d:25:1f:3a:1c:6d:
e1:68:78:db:9f:cb:f9:e2:05:4b:1e:d6:a7:90:af:e1:4b:38:
ed:ac:75:e1:2e:54:39:54:38:40:93:d7:33:c4:8e:c3:ca:15:
82:97:b4:6c:4e:7d:53:96:c6:91:7d:82:e0:5e:48:49:5a:8d:
e4:ca:98:ec:5e:d5:ef:3f:07:0d:1b:9a:d1:33:47:eb:35:34:
ba:73:3e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:57:47 2025 by rpki-client