Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B34F2D90FAFF8E2559CDB2C9870E8758A0F5D9DCCE26DF5F56F541D3D26FC102/0/3137302e38322e3234352e302f32342d3234203d3e20323634383538.roa
File: 3137302e38322e3234352e302f32342d3234203d3e20323634383538.roa (raw, json)
Hash identifier: LdLtefOd/1JG1Oq7daxf40NhSYfrilglNZH/vj0qEAw=
Subject key identifier: 5D:FC:6B:F3:6D:0C:9F:27:E5:CA:2A:13:00:F4:41:B7:DE:7A:D1:AE
Certificate issuer: /CN=D425886F4B35D1F04B8DE6DC8171270697146F76
Certificate serial: 2FB3B73A77FCF22C7B54E1519C94409A12E518A6
Authority key identifier: D4:25:88:6F:4B:35:D1:F0:4B:8D:E6:DC:81:71:27:06:97:14:6F:76
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D425886F4B35D1F04B8DE6DC8171270697146F76.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B34F2D90FAFF8E2559CDB2C9870E8758A0F5D9DCCE26DF5F56F541D3D26FC102/0/3137302e38322e3234352e302f32342d3234203d3e20323634383538.roa
Signing time: Tue 04 Feb 2025 20:08:55 +0000
ROA not before: Tue 04 Feb 2025 20:03:55 +0000
ROA not after: Tue 03 Feb 2026 20:08:55 +0000
asID: 264858
IP address blocks: 170.82.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:b3:b7:3a:77:fc:f2:2c:7b:54:e1:51:9c:94:40:9a:12:e5:18:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D425886F4B35D1F04B8DE6DC8171270697146F76
Validity
Not Before: Feb 4 20:03:55 2025 GMT
Not After : Feb 3 20:08:55 2026 GMT
Subject: CN=5DFC6BF36D0C9F27E5CA2A1300F441B7DE7AD1AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d6:21:ff:f8:47:9b:aa:18:53:d0:00:af:cf:
db:f2:dc:52:0b:7a:9b:db:8e:82:04:6f:a5:b6:85:
7b:50:d8:3e:91:d6:6e:46:f4:48:ec:e6:26:0c:9d:
ff:43:21:78:52:da:ee:4c:b0:64:39:db:de:2e:43:
9e:fc:a2:3b:9e:47:04:0a:13:a7:5a:cf:28:be:b0:
65:93:f4:ef:7e:a4:03:c6:25:96:ee:94:c2:37:89:
21:c1:19:08:7d:2a:f8:29:41:60:03:61:b7:b8:c9:
2c:20:c3:70:a2:73:2e:49:21:df:90:68:df:e6:7f:
17:2a:95:35:50:2c:07:72:28:71:dc:19:e7:70:37:
91:85:ec:d2:95:8d:06:df:37:a2:6d:a5:f7:b1:01:
2c:16:40:71:99:13:c4:3c:3e:65:98:16:cd:52:70:
00:1a:c7:93:fd:68:a9:da:0c:99:00:a5:1b:81:9c:
8e:a6:be:4f:22:56:85:ec:19:f2:e4:04:d5:e1:d4:
be:28:f1:7d:39:a9:f9:87:a2:cd:01:9f:a8:9d:c0:
dd:72:65:51:4e:3c:24:0b:d3:4d:7d:6c:00:af:52:
0a:ad:90:a2:b1:3e:10:b0:5c:20:6c:bf:2d:36:b6:
52:f3:d9:04:72:28:75:3b:ef:57:f6:e2:73:35:b0:
6f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:FC:6B:F3:6D:0C:9F:27:E5:CA:2A:13:00:F4:41:B7:DE:7A:D1:AE
X509v3 Authority Key Identifier:
keyid:D4:25:88:6F:4B:35:D1:F0:4B:8D:E6:DC:81:71:27:06:97:14:6F:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B34F2D90FAFF8E2559CDB2C9870E8758A0F5D9DCCE26DF5F56F541D3D26FC102/0/D425886F4B35D1F04B8DE6DC8171270697146F76.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D425886F4B35D1F04B8DE6DC8171270697146F76.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B34F2D90FAFF8E2559CDB2C9870E8758A0F5D9DCCE26DF5F56F541D3D26FC102/0/3137302e38322e3234352e302f32342d3234203d3e20323634383538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.82.245.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:37:38:b8:e5:d2:18:dc:7f:19:04:57:26:3e:3c:3a:30:56:
7f:df:40:66:f4:35:44:ac:04:26:86:df:5e:95:d7:8e:29:f0:
29:43:b9:e3:bb:c2:25:5a:a3:82:96:3c:d1:36:27:7f:86:bd:
ab:24:bc:ab:d0:55:a3:35:1b:9c:17:fd:29:64:42:9d:b2:af:
4a:91:6d:b2:65:7b:46:87:b9:9d:b3:08:a2:24:a6:a3:10:19:
25:07:11:4f:b9:75:94:b9:b0:7d:19:3d:58:bd:6a:f5:4a:d9:
87:a4:21:af:f1:0d:19:32:69:b1:69:43:93:a5:d0:56:87:33:
34:77:d6:a2:59:5b:f4:1c:53:55:45:ce:3d:8d:9e:4d:36:5a:
24:5b:fe:66:2c:e5:53:ec:cf:91:4c:6b:7d:0d:12:a4:1a:67:
56:31:92:72:d9:b2:14:16:2d:86:46:72:c5:ee:1b:a6:29:70:
1e:4a:d1:d2:39:50:48:1a:b9:46:d1:42:1f:fa:5f:8e:db:93:
3d:56:e9:5b:1d:95:39:9b:d5:b8:e6:b8:29:42:a1:20:c8:4c:
bf:50:77:b2:15:ce:84:2c:2e:f8:40:f0:14:9e:f3:81:9d:be:
3b:bb:c8:56:ad:10:cc:31:23:15:39:ce:19:14:53:f4:45:fc:
a7:02:b0:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:09:15 2025 by rpki-client