Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B1EF7D8DB15D54379148B50DB90A4F61D2DD531FE334841DA30778834700DA9D/0/3137302e38312e3235322e302f32342d3234203d3e20323634383432.roa
File: 3137302e38312e3235322e302f32342d3234203d3e20323634383432.roa (raw, json)
Hash identifier: 2tYbZppQXNxfQ7lqNSeWrD6CrFo0IY5mrOhne0DdIXc=
Subject key identifier: 38:B3:1D:3F:BE:12:19:53:EE:C3:34:FE:7F:19:93:D8:38:87:DB:93
Certificate issuer: /CN=2AE59E62324C453AEB84910F81FFB3247C715B49
Certificate serial: 56F320E46DAD24ABDA7DAA838E584FFB073B4009
Authority key identifier: 2A:E5:9E:62:32:4C:45:3A:EB:84:91:0F:81:FF:B3:24:7C:71:5B:49
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2AE59E62324C453AEB84910F81FFB3247C715B49.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B1EF7D8DB15D54379148B50DB90A4F61D2DD531FE334841DA30778834700DA9D/0/3137302e38312e3235322e302f32342d3234203d3e20323634383432.roa
Signing time: Tue 18 Jun 2024 15:00:00 +0000
ROA not before: Tue 18 Jun 2024 14:55:00 +0000
ROA not after: Tue 17 Jun 2025 15:00:00 +0000
asID: 264842
IP address blocks: 170.81.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:f3:20:e4:6d:ad:24:ab:da:7d:aa:83:8e:58:4f:fb:07:3b:40:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2AE59E62324C453AEB84910F81FFB3247C715B49
Validity
Not Before: Jun 18 14:55:00 2024 GMT
Not After : Jun 17 15:00:00 2025 GMT
Subject: CN=38B31D3FBE121953EEC334FE7F1993D83887DB93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8e:be:7e:d7:9b:6f:49:7c:53:71:7c:db:47:
5b:0d:8f:57:14:8f:76:e3:6e:75:fa:fa:da:5b:98:
c6:84:5a:e0:63:2b:e8:71:98:ae:80:0e:97:86:b1:
7c:94:7f:96:87:c6:33:dd:a6:07:ee:71:84:7c:61:
32:2b:1c:39:59:f1:ad:39:58:0f:a5:cb:01:62:9e:
9d:6a:38:d0:84:66:a5:6f:30:35:c4:e7:d3:f1:b4:
55:35:73:bc:f7:3e:55:39:2f:db:12:f8:5a:76:80:
5f:41:e0:95:8e:51:4e:dc:76:c6:a7:b5:9d:7e:a8:
35:a3:c9:f3:23:62:55:8f:69:9b:11:d4:c7:48:cd:
a1:cd:4b:86:c9:53:46:21:12:05:09:f4:72:a8:c0:
31:3c:ba:b1:a2:75:18:66:fc:32:33:ec:cd:da:7f:
83:21:0b:d0:a1:f7:55:4c:55:18:bf:f6:be:ac:99:
6a:bb:c9:29:f8:cd:55:ff:ee:8c:43:21:4a:67:4c:
25:9d:97:42:9a:f8:7a:c1:89:8e:0f:56:f1:fe:3e:
9b:ad:c9:bb:9f:b7:2b:b8:f0:ff:07:bf:ba:d6:c4:
2a:86:15:a1:02:b1:08:47:04:5e:34:90:4f:7c:14:
e9:68:0f:91:36:8a:6b:4f:e8:33:84:34:ae:b5:fa:
ce:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B3:1D:3F:BE:12:19:53:EE:C3:34:FE:7F:19:93:D8:38:87:DB:93
X509v3 Authority Key Identifier:
keyid:2A:E5:9E:62:32:4C:45:3A:EB:84:91:0F:81:FF:B3:24:7C:71:5B:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B1EF7D8DB15D54379148B50DB90A4F61D2DD531FE334841DA30778834700DA9D/0/2AE59E62324C453AEB84910F81FFB3247C715B49.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2AE59E62324C453AEB84910F81FFB3247C715B49.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B1EF7D8DB15D54379148B50DB90A4F61D2DD531FE334841DA30778834700DA9D/0/3137302e38312e3235322e302f32342d3234203d3e20323634383432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.81.252.0/24
Signature Algorithm: sha256WithRSAEncryption
91:73:3e:db:2e:38:ce:5c:f0:c6:a2:aa:c7:5b:61:ae:ae:39:
da:9e:a1:6e:5d:e3:eb:a2:5e:1e:bb:57:54:3f:1d:94:0e:48:
6e:9f:e0:92:81:e3:bf:67:a4:21:39:f8:dc:e1:b7:2b:53:6c:
24:62:93:29:8a:94:d4:82:0e:38:f7:ad:e0:db:f6:15:cf:4a:
8f:9b:fe:33:c7:43:07:9e:6d:c3:1f:99:e9:93:cc:e7:9a:3e:
e9:c3:03:12:c5:d7:43:2b:ad:c6:9d:05:c6:1f:da:43:7d:80:
0c:6a:7d:49:5f:77:7a:4b:1b:f2:cd:07:4c:53:1c:5a:0f:cd:
6f:86:74:9a:93:fa:01:7a:9b:77:48:34:5e:b0:7b:98:30:c3:
65:39:25:3f:8c:95:75:d0:68:7d:bb:53:44:ee:28:3f:3e:84:
98:63:4f:c7:cb:83:a9:65:c7:ce:25:67:29:1f:3c:66:13:90:
5a:fd:d3:d4:13:4c:37:8e:31:8e:23:a2:c4:be:df:7e:58:9c:
3a:20:8f:9e:a4:c5:a2:db:09:5d:27:eb:0c:08:13:ad:fb:f8:
00:52:26:f5:b7:6f:a7:fd:1d:3e:c6:db:7d:b7:10:a0:0e:36:
f8:70:d8:02:9b:33:11:7e:4f:16:7a:42:a2:cf:5c:38:61:71:
88:92:14:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:32 2025 by rpki-client