Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B88C5504AC1B86CA02BC7931DB9A846EA076901960A2C2625E8A34A4F4B851E8/0/34352e3138352e32302e302f32322d3234203d3e20323633323232.roa
File: 34352e3138352e32302e302f32322d3234203d3e20323633323232.roa (raw, json)
Hash identifier: LIZA0dDSZNFIlV8o37SbF2VK+ZO5m8AZk0h3jYuxidk=
Subject key identifier: 02:60:26:B7:67:60:2B:F3:17:5B:34:76:E0:F4:74:BA:E0:BF:F0:0E
Certificate issuer: /CN=303D9AA210B739FDFB020F6AEAF9959B0A8B94F6
Certificate serial: 61F2D0A7FB3F4EDD3DAAD5F036CC9345E269D3B7
Authority key identifier: 30:3D:9A:A2:10:B7:39:FD:FB:02:0F:6A:EA:F9:95:9B:0A:8B:94:F6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/303D9AA210B739FDFB020F6AEAF9959B0A8B94F6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B88C5504AC1B86CA02BC7931DB9A846EA076901960A2C2625E8A34A4F4B851E8/0/34352e3138352e32302e302f32322d3234203d3e20323633323232.roa
Signing time: Tue 04 Feb 2025 18:31:53 +0000
ROA not before: Tue 04 Feb 2025 18:26:53 +0000
ROA not after: Tue 03 Feb 2026 18:31:53 +0000
asID: 263222
IP address blocks: 45.185.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:f2:d0:a7:fb:3f:4e:dd:3d:aa:d5:f0:36:cc:93:45:e2:69:d3:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=303D9AA210B739FDFB020F6AEAF9959B0A8B94F6
Validity
Not Before: Feb 4 18:26:53 2025 GMT
Not After : Feb 3 18:31:53 2026 GMT
Subject: CN=026026B767602BF3175B3476E0F474BAE0BFF00E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:10:6e:ca:7d:d2:bb:43:e2:cd:ef:94:0f:e4:
79:76:04:48:a9:f1:89:c0:72:31:ff:4e:cc:00:fd:
d9:5c:ff:4d:06:9c:2a:15:d7:cc:79:72:25:3e:24:
22:2a:5f:23:52:3c:ec:71:a7:1c:7a:a9:47:ed:6d:
69:5e:f7:86:dc:aa:46:78:4e:c7:fa:02:ef:dc:c4:
e8:b0:e8:44:ac:39:62:55:9a:9c:70:ca:62:7a:d7:
31:82:70:d5:fa:da:e2:e0:b6:58:06:fd:e8:58:79:
ea:46:4a:5a:5d:f4:0a:ba:99:6c:c0:f6:56:4b:c6:
79:04:b9:cc:63:57:53:fd:37:4a:df:d9:4d:ee:58:
5f:b5:bf:05:58:bc:4f:7e:59:80:be:f8:0b:3b:62:
7f:8f:ce:f9:05:58:3b:ad:dd:21:43:9a:a5:42:43:
af:02:1c:3a:90:aa:c7:b1:5b:25:fa:32:43:2e:4c:
54:89:83:b3:4f:5b:fa:7e:b6:f5:e4:d9:5e:b7:ec:
a9:b2:ef:60:1d:17:f8:b4:cd:82:bb:1d:6e:e7:75:
42:6e:1b:47:f0:fb:0b:8d:a6:fe:cf:64:0c:e4:1b:
2d:17:3d:ab:39:29:81:4a:31:87:b6:f5:18:82:0d:
f6:97:a3:13:3d:dc:c1:11:b0:56:20:34:54:30:3a:
10:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:60:26:B7:67:60:2B:F3:17:5B:34:76:E0:F4:74:BA:E0:BF:F0:0E
X509v3 Authority Key Identifier:
keyid:30:3D:9A:A2:10:B7:39:FD:FB:02:0F:6A:EA:F9:95:9B:0A:8B:94:F6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B88C5504AC1B86CA02BC7931DB9A846EA076901960A2C2625E8A34A4F4B851E8/0/303D9AA210B739FDFB020F6AEAF9959B0A8B94F6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/303D9AA210B739FDFB020F6AEAF9959B0A8B94F6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B88C5504AC1B86CA02BC7931DB9A846EA076901960A2C2625E8A34A4F4B851E8/0/34352e3138352e32302e302f32322d3234203d3e20323633323232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.185.20.0/22
Signature Algorithm: sha256WithRSAEncryption
31:e4:19:86:9a:47:d2:79:e1:ff:af:37:04:47:38:30:82:3c:
05:e5:80:d4:96:63:d0:95:a1:57:3c:b3:92:7f:82:7a:88:4a:
b8:ff:f9:cd:77:c8:a5:7b:e2:9b:11:68:7d:52:9d:1e:30:7c:
76:f3:8f:a1:03:ff:9e:cf:a3:1f:86:5f:6f:06:a4:8f:49:0e:
fb:df:62:b9:ed:94:2d:f9:70:41:2c:52:dc:23:32:43:5e:a6:
aa:88:18:e5:bd:38:50:39:33:da:5b:fb:2f:12:55:85:c3:51:
69:52:ef:43:08:67:f6:a1:57:d4:6e:07:cc:3c:6a:5e:cd:ff:
e6:5e:f6:9d:d0:0b:4f:20:7c:32:41:ea:8e:ba:e0:b5:84:d0:
a9:83:6a:da:75:d1:a2:c5:36:a9:65:c1:40:fc:b0:ef:d0:d6:
fa:07:c9:37:ea:6e:ca:5b:a2:55:76:31:c1:e7:e4:69:9c:7d:
62:2b:ec:25:42:c6:20:a7:24:1b:a3:c8:e1:f6:5d:fe:3d:4e:
19:aa:c4:00:5a:a3:c5:54:57:ee:f9:d1:cb:99:0b:a2:cc:d4:
9e:71:d7:41:2d:c6:96:af:de:ec:d5:60:13:38:bd:ed:43:df:
ed:6d:bc:c0:41:1c:3b:1b:20:98:c0:63:85:f0:4f:d7:a6:2c:
a5:c8:a1:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:55:31 2025 by rpki-client