Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/34352e36382e342e302f32322d3234203d3e203237393239.roa
File: 34352e36382e342e302f32322d3234203d3e203237393239.roa (raw, json)
Hash identifier: aMhbGsIspiAOM4+R5TE2QDtYJ535n+yDu297Was/ZLI=
Subject key identifier: A1:B9:BA:A1:EA:23:A0:B2:23:B9:21:A2:15:28:11:18:9B:D8:A5:99
Certificate issuer: /CN=AADC68CACCD7A12B6A019949E964F33953EF7228
Certificate serial: 32C08A7607E1AC04CC3B38A71662C91B53BB416B
Authority key identifier: AA:DC:68:CA:CC:D7:A1:2B:6A:01:99:49:E9:64:F3:39:53:EF:72:28
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AADC68CACCD7A12B6A019949E964F33953EF7228.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/34352e36382e342e302f32322d3234203d3e203237393239.roa
Signing time: Tue 04 Feb 2025 18:32:08 +0000
ROA not before: Tue 04 Feb 2025 18:27:08 +0000
ROA not after: Tue 03 Feb 2026 18:32:08 +0000
asID: 27929
IP address blocks: 45.68.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:c0:8a:76:07:e1:ac:04:cc:3b:38:a7:16:62:c9:1b:53:bb:41:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AADC68CACCD7A12B6A019949E964F33953EF7228
Validity
Not Before: Feb 4 18:27:08 2025 GMT
Not After : Feb 3 18:32:08 2026 GMT
Subject: CN=A1B9BAA1EA23A0B223B921A2152811189BD8A599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3c:c1:1f:c3:48:9a:b4:a7:73:87:0f:ff:ec:
53:d8:28:99:a1:f6:cb:e5:eb:12:8f:b4:bc:53:7d:
f3:ea:32:b4:5f:bf:7a:87:a4:00:42:fd:51:0c:79:
bb:24:44:07:4b:fc:9f:c6:af:ea:44:ad:8d:79:d9:
74:44:5c:ff:7e:94:5f:41:27:8f:05:7d:9c:09:a4:
1e:02:96:0e:24:f3:fb:c7:3c:43:a3:d8:e2:06:c4:
da:bd:94:12:84:53:30:bb:17:bd:60:10:9a:a8:1c:
74:2d:36:61:85:69:80:30:79:a3:cf:85:ac:85:a5:
5f:7a:df:35:08:f0:10:67:0d:75:88:e7:f5:b2:13:
ff:34:3a:29:aa:f4:ae:4b:e7:17:27:85:93:c9:1c:
b1:54:67:f6:e6:be:ca:02:b0:74:b9:11:41:68:16:
6b:75:f6:77:31:0a:7a:03:1e:a3:0f:30:5a:fa:e9:
26:13:bb:94:97:a3:f8:18:2a:79:97:1c:8a:11:a9:
e5:15:45:a2:d6:21:a3:39:d9:46:67:9a:2e:43:2b:
e4:c0:51:d1:54:89:4b:db:29:57:2e:34:4b:59:8f:
4c:50:fa:36:4b:bd:03:e9:06:9c:fc:a3:f8:eb:e6:
e6:68:98:0c:70:db:5e:59:0d:e8:e7:92:eb:3a:17:
fd:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B9:BA:A1:EA:23:A0:B2:23:B9:21:A2:15:28:11:18:9B:D8:A5:99
X509v3 Authority Key Identifier:
keyid:AA:DC:68:CA:CC:D7:A1:2B:6A:01:99:49:E9:64:F3:39:53:EF:72:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/AADC68CACCD7A12B6A019949E964F33953EF7228.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AADC68CACCD7A12B6A019949E964F33953EF7228.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/34352e36382e342e302f32322d3234203d3e203237393239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.68.4.0/22
Signature Algorithm: sha256WithRSAEncryption
12:d5:8d:72:5b:3b:bc:a1:2e:42:c2:f6:cf:0b:7c:b1:80:a3:
69:57:d5:bc:3f:51:71:19:8f:ad:e2:35:97:54:ee:c8:ea:8b:
76:0f:cf:5b:71:20:24:73:a3:7f:99:40:16:20:91:35:22:67:
5a:c6:dc:72:d5:56:23:d8:11:3a:b9:0d:b2:18:e4:c9:da:f6:
a2:c5:dc:6f:ad:ed:48:4c:01:3b:2c:cc:14:48:fd:fa:4c:3d:
e9:37:a6:c4:5b:55:7b:86:70:0f:60:bb:53:0d:2e:ca:a5:2d:
29:c1:1f:83:70:ef:e3:da:3a:0a:d2:20:a3:96:4c:1b:80:8e:
61:ea:78:42:33:00:39:69:7a:1c:92:49:a8:bf:2c:ce:c4:e5:
f5:b1:70:10:d5:a5:87:8c:60:8b:f7:5c:b6:00:36:8f:6c:40:
a3:5c:a2:45:d6:c0:e1:f9:50:94:17:21:68:42:8c:1d:59:9e:
ed:cf:7a:cf:66:19:7e:1d:c6:bd:4f:43:c2:b8:ea:35:34:36:
d0:75:9a:9f:bd:b3:22:f5:5f:ea:ef:0b:f5:a9:ad:fc:f5:8c:
bc:65:18:11:c9:3e:eb:ec:4c:68:b6:66:6f:34:97:ef:58:e2:
6f:ad:1a:54:28:50:94:46:31:5b:3d:98:70:dc:1e:7b:f5:96:
f3:26:10:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:17:41 2025 by rpki-client