Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B2385B23BB4A894C60C9593DE69A3778D0B8EDE355006085BD0BDF51AAACF2B0/0/34352e3136312e3137322e302f32322d3234203d3e20323636383937.roa
File: 34352e3136312e3137322e302f32322d3234203d3e20323636383937.roa (raw, json)
Hash identifier: gVgErhXlyPKWvg9Nwi36nb0v9BFeIa35r3KsQ9KFsHU=
Subject key identifier: 7A:99:7D:D7:B3:CF:5F:49:02:0D:9D:5A:0C:A2:20:41:37:3E:32:30
Certificate issuer: /CN=C1F08F1F348D2795FF0DB685EB093E8A59532845
Certificate serial: 5F3A678FC622ACA193D54A9D959949AF909534D8
Authority key identifier: C1:F0:8F:1F:34:8D:27:95:FF:0D:B6:85:EB:09:3E:8A:59:53:28:45
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C1F08F1F348D2795FF0DB685EB093E8A59532845.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B2385B23BB4A894C60C9593DE69A3778D0B8EDE355006085BD0BDF51AAACF2B0/0/34352e3136312e3137322e302f32322d3234203d3e20323636383937.roa
Signing time: Tue 04 Feb 2025 18:12:46 +0000
ROA not before: Tue 04 Feb 2025 18:07:46 +0000
ROA not after: Tue 03 Feb 2026 18:12:46 +0000
asID: 266897
IP address blocks: 45.161.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:3a:67:8f:c6:22:ac:a1:93:d5:4a:9d:95:99:49:af:90:95:34:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C1F08F1F348D2795FF0DB685EB093E8A59532845
Validity
Not Before: Feb 4 18:07:46 2025 GMT
Not After : Feb 3 18:12:46 2026 GMT
Subject: CN=7A997DD7B3CF5F49020D9D5A0CA22041373E3230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:65:d0:b9:53:75:8b:9c:31:49:d4:c3:5d:e0:
f0:c1:6e:ee:8b:da:7c:c5:54:e8:d0:ea:89:80:26:
ae:00:98:f1:1c:a0:a0:a4:80:82:d7:8c:6d:7f:00:
27:4b:da:ef:e6:63:d6:64:95:d2:68:ca:db:61:eb:
82:28:d7:99:01:af:af:c8:93:2d:75:11:21:af:e4:
90:a3:35:93:9b:50:a4:53:28:a4:03:7b:84:16:28:
a0:af:b6:83:da:5b:85:f8:0c:df:8f:3c:e2:78:e1:
2a:8d:00:b7:cc:6a:79:a6:51:8e:8d:ec:b1:51:0c:
09:3f:8c:4b:24:ca:be:4b:f4:3d:97:7b:2d:d6:fa:
d5:e4:a7:b6:fa:3d:c9:9e:9b:1e:c7:08:3c:98:83:
e7:27:b6:b3:ec:c0:73:9c:75:4d:f5:53:12:54:62:
55:5f:17:bf:3e:f5:d0:66:07:3e:97:b8:a4:0c:4b:
d9:42:67:e2:bf:f2:2f:d1:9c:e0:4b:b2:96:65:b6:
93:e7:05:80:a8:7e:04:53:49:ec:4e:c5:44:90:4e:
c8:59:ba:59:de:30:0d:ec:0f:92:a7:26:be:9d:45:
91:bb:26:b8:37:e0:c9:ae:09:f8:f6:11:15:bf:26:
f4:81:cd:4d:24:df:b7:9c:f0:bc:5f:ea:62:76:a5:
49:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:99:7D:D7:B3:CF:5F:49:02:0D:9D:5A:0C:A2:20:41:37:3E:32:30
X509v3 Authority Key Identifier:
keyid:C1:F0:8F:1F:34:8D:27:95:FF:0D:B6:85:EB:09:3E:8A:59:53:28:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B2385B23BB4A894C60C9593DE69A3778D0B8EDE355006085BD0BDF51AAACF2B0/0/C1F08F1F348D2795FF0DB685EB093E8A59532845.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C1F08F1F348D2795FF0DB685EB093E8A59532845.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B2385B23BB4A894C60C9593DE69A3778D0B8EDE355006085BD0BDF51AAACF2B0/0/34352e3136312e3137322e302f32322d3234203d3e20323636383937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.161.172.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:b0:5f:df:2d:3b:24:13:70:aa:20:cd:5a:bf:fb:d1:5f:bd:
85:f6:8b:d9:0f:02:6a:aa:41:1c:98:b9:b9:b6:e4:51:dd:2f:
c1:88:05:d0:b4:77:22:26:47:25:f9:f5:98:d0:38:51:87:1e:
9c:b5:17:6e:01:79:82:dd:11:f6:74:97:87:67:f3:5a:23:a7:
6d:1f:0b:e7:8d:b7:86:98:cc:c5:69:d6:68:74:f3:9a:e3:69:
d4:81:02:3f:eb:1c:d1:1c:e4:c9:25:3e:47:ea:c5:bd:ad:8e:
1c:ce:14:35:3a:a0:56:7d:6b:c3:2f:81:7f:a2:21:be:eb:eb:
d5:52:21:ca:6a:c1:3d:28:38:44:04:a1:5f:4a:25:75:ae:b5:
52:99:c4:92:02:06:e5:dd:66:cf:5b:37:38:8e:a2:35:ec:47:
e8:f7:17:ff:e4:8e:72:45:eb:23:f7:14:31:36:13:51:eb:b8:
4a:84:95:83:54:76:a7:b7:20:08:c7:a9:d2:75:77:c6:9e:ae:
3d:fc:ff:7d:c7:d2:1b:ea:91:11:ca:02:0e:b8:79:7a:a6:52:
5f:4e:c6:75:a3:b0:93:c4:f3:64:a4:fe:5a:bc:33:50:a0:43:
06:2d:04:f8:ab:55:7e:98:47:b4:92:22:84:15:48:dc:34:2c:
c8:88:5e:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:55:13 2025 by rpki-client