Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BA20F37E1BD62A51A99DED6B4A138B070CE1B9D3B3BAE63F555B0579005F2300/0/34352e3137352e32312e302f32342d3234203d3e2037303439.roa
File: 34352e3137352e32312e302f32342d3234203d3e2037303439.roa (raw, json)
Hash identifier: hiq3f5SQVXyvVqAHJFD41H8GmsplFaT7zWIIcFR5Zms=
Subject key identifier: 8A:34:16:C2:7B:4F:F6:76:A0:73:7A:50:AC:A2:A0:7B:76:AA:E4:2F
Certificate issuer: /CN=20FD70DC301FF93D288ED851C3A69B22D7B04220
Certificate serial: 48C9AA890CA1566B9BF11A67D5E4586EEB26C0EC
Authority key identifier: 20:FD:70:DC:30:1F:F9:3D:28:8E:D8:51:C3:A6:9B:22:D7:B0:42:20
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20FD70DC301FF93D288ED851C3A69B22D7B04220.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BA20F37E1BD62A51A99DED6B4A138B070CE1B9D3B3BAE63F555B0579005F2300/0/34352e3137352e32312e302f32342d3234203d3e2037303439.roa
Signing time: Tue 04 Feb 2025 18:44:54 +0000
ROA not before: Tue 04 Feb 2025 18:39:54 +0000
ROA not after: Tue 03 Feb 2026 18:44:54 +0000
asID: 7049
IP address blocks: 45.175.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:c9:aa:89:0c:a1:56:6b:9b:f1:1a:67:d5:e4:58:6e:eb:26:c0:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20FD70DC301FF93D288ED851C3A69B22D7B04220
Validity
Not Before: Feb 4 18:39:54 2025 GMT
Not After : Feb 3 18:44:54 2026 GMT
Subject: CN=8A3416C27B4FF676A0737A50ACA2A07B76AAE42F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:04:e7:36:c6:5f:d2:cd:89:ec:3a:39:ca:4a:
4d:f9:44:10:ac:cc:36:07:0f:a7:a3:33:35:92:ea:
95:15:8c:c0:f5:6c:81:d8:a4:8f:de:88:e9:1d:4e:
4b:98:d6:ae:4f:93:97:d9:7b:ce:54:f4:b1:a0:e9:
11:1e:a8:8b:a1:24:14:9b:ad:be:95:06:21:98:f0:
b2:ee:20:b5:d9:e1:04:56:0e:b0:21:ca:bc:88:38:
c7:10:cf:c4:4e:47:0b:18:59:8d:67:3e:2c:2f:cc:
08:31:52:14:87:f2:d7:c4:2a:b2:e0:f8:5e:67:49:
c0:e0:9a:32:c3:62:2d:e7:d0:11:eb:c8:89:d8:73:
70:bb:54:3f:9e:36:0e:12:9c:80:3a:b5:ce:66:cf:
ba:eb:c4:fe:89:4d:31:7d:1b:c2:4b:22:43:c8:b3:
8a:8e:50:5b:96:97:3c:38:dc:08:56:71:f5:b0:96:
76:9a:8d:6a:97:7b:25:a8:22:97:7c:71:1e:67:91:
f2:e4:89:22:24:f4:ec:43:84:8d:8c:2f:5d:77:00:
5c:41:2a:32:c6:a4:3d:37:46:2e:6c:1f:1a:b3:ee:
8b:02:a8:81:c6:99:7d:61:b3:43:f4:5f:08:e6:5a:
b3:96:97:84:59:de:ba:20:17:8f:b0:4a:af:63:f4:
b8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:34:16:C2:7B:4F:F6:76:A0:73:7A:50:AC:A2:A0:7B:76:AA:E4:2F
X509v3 Authority Key Identifier:
keyid:20:FD:70:DC:30:1F:F9:3D:28:8E:D8:51:C3:A6:9B:22:D7:B0:42:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BA20F37E1BD62A51A99DED6B4A138B070CE1B9D3B3BAE63F555B0579005F2300/0/20FD70DC301FF93D288ED851C3A69B22D7B04220.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20FD70DC301FF93D288ED851C3A69B22D7B04220.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BA20F37E1BD62A51A99DED6B4A138B070CE1B9D3B3BAE63F555B0579005F2300/0/34352e3137352e32312e302f32342d3234203d3e2037303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.175.21.0/24
Signature Algorithm: sha256WithRSAEncryption
44:6f:da:64:d3:16:ab:d6:75:45:8f:4d:74:c5:e4:1f:f3:78:
10:c6:e5:0d:8f:f1:26:43:a2:d8:4b:45:e6:94:55:1d:42:c1:
20:59:75:de:26:59:c9:b5:82:15:3e:22:15:99:43:c2:e4:79:
11:4f:a2:b5:b3:7d:2c:5b:80:cd:e3:7b:f7:43:35:bc:28:df:
4b:16:55:fc:85:72:ee:a2:48:b3:41:93:a1:71:37:31:06:08:
d1:ce:44:fe:ad:3a:91:a8:8b:c0:28:c3:1f:6f:a3:96:8c:cd:
ad:01:4e:71:ad:bb:09:6b:07:d6:16:f7:2a:5c:39:1f:58:65:
a0:04:c2:13:0e:8a:11:74:89:66:a5:71:cd:9e:a5:db:5b:5f:
68:ff:35:be:8a:c8:33:81:c4:59:57:e6:8c:cf:4a:9d:1c:8f:
81:97:28:ca:9f:ba:68:36:36:e8:a7:5f:6c:44:9d:60:ad:76:
ff:10:41:35:f5:ac:30:0c:67:55:10:85:91:76:b5:6f:af:de:
f6:b7:2f:9d:f3:a0:cf:5f:90:87:3d:33:c6:4c:4a:3c:7c:be:
3c:3d:70:51:ce:89:56:d3:2e:bb:fe:e7:12:c0:b6:04:a8:6e:
98:2e:cb:82:9f:72:3f:d6:65:a3:63:75:c6:c6:1a:ea:19:fa:
23:73:01:a4
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIUSMmqiQyhVmub8Rpn1eRYbusmwOwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjBGRDcwREMzMDFGRjkzRDI4OEVEODUxQzNBNjlCMjJE
N0IwNDIyMDAeFw0yNTAyMDQxODM5NTRaFw0yNjAyMDMxODQ0NTRaMDMxMTAvBgNV
BAMTKDhBMzQxNkMyN0I0RkY2NzZBMDczN0E1MEFDQTJBMDdCNzZBQUU0MkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0BOc2xl/SzYnsOjnKSk35RBCs
zDYHD6ejMzWS6pUVjMD1bIHYpI/eiOkdTkuY1q5Pk5fZe85U9LGg6REeqIuhJBSb
rb6VBiGY8LLuILXZ4QRWDrAhyryIOMcQz8RORwsYWY1nPiwvzAgxUhSH8tfEKrLg
+F5nScDgmjLDYi3n0BHryInYc3C7VD+eNg4SnIA6tc5mz7rrxP6JTTF9G8JLIkPI
s4qOUFuWlzw43AhWcfWwlnaajWqXeyWoIpd8cR5nkfLkiSIk9OxDhI2ML113AFxB
KjLGpD03Ri5sHxqz7osCqIHGmX1hs0P0XwjmWrOWl4RZ3rogF4+wSq9j9LjdAgMB
AAGjggLEMIICwDAdBgNVHQ4EFgQUijQWwntP9nagc3pQrKKge3aq5C8wHwYDVR0j
BBgwFoAUIP1w3DAf+T0ojthRw6abItewQiAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CQTIwRjM3RTFCRDYyQTUxQTk5REVENkI0QTEzOEIwNzBD
RTFCOUQzQjNCQUU2M0Y1NTVCMDU3OTAwNUYyMzAwLzAvMjBGRDcwREMzMDFGRjkz
RDI4OEVEODUxQzNBNjlCMjJEN0IwNDIyMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yMEZENzBEQzMwMUZGOTNEMjg4
RUQ4NTFDM0E2OUIyMkQ3QjA0MjIwLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQkEyMEYzN0UxQkQ2MkE1MUE5OURFRDZCNEExMzhCMDcwQ0UxQjlEM0Iz
QkFFNjNGNTU1QjA1NzkwMDVGMjMwMC8wLzM0MzUyZTMxMzczNTJlMzIzMTJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDM3MzAzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALa8VMA0GCSqG
SIb3DQEBCwUAA4IBAQBEb9pk0xar1nVFj010xeQf83gQxuUNj/EmQ6LYS0XmlFUd
QsEgWXXeJlnJtYIVPiIVmUPC5HkRT6K1s30sW4DN43v3QzW8KN9LFlX8hXLuokiz
QZOhcTcxBgjRzkT+rTqRqIvAKMMfb6OWjM2tAU5xrbsJawfWFvcqXDkfWGWgBMIT
DooRdIlmpXHNnqXbW19o/zW+isgzgcRZV+aMz0qdHI+BlyjKn7poNjbop19sRJ1g
rXb/EEE19awwDGdVEIWRdrVvr972ty+d86DPX5CHPTPGTEo8fL48PXBRzolW0y67
/ucSwLYEqG6YLsuCn3I/1mWjY3XGxhrqGfojcwGk
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:26 2025 by rpki-client