Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BFC6EA414BF9B1570594B2D4DADB3465358B3410C9DD1F22B003862330C090F9/0/3137302e3234362e38382e302f32322d3234203d3e20323635363339.roa
File: 3137302e3234362e38382e302f32322d3234203d3e20323635363339.roa (raw, json)
Hash identifier: DryqGK9CvOwbO8MupZK/PmAVUt6MnerttqyxbxWfNnc=
Subject key identifier: 92:62:CA:8F:7A:5A:FC:3A:55:99:58:63:C0:12:7A:EC:CB:B0:FE:EE
Certificate issuer: /CN=977DAB0EC7A954C08AF09602FA1EA52D5912541B
Certificate serial: 24038A923092F277EF72BCC1CA422EB539955B46
Authority key identifier: 97:7D:AB:0E:C7:A9:54:C0:8A:F0:96:02:FA:1E:A5:2D:59:12:54:1B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/977DAB0EC7A954C08AF09602FA1EA52D5912541B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BFC6EA414BF9B1570594B2D4DADB3465358B3410C9DD1F22B003862330C090F9/0/3137302e3234362e38382e302f32322d3234203d3e20323635363339.roa
Signing time: Tue 04 Feb 2025 18:26:10 +0000
ROA not before: Tue 04 Feb 2025 18:21:10 +0000
ROA not after: Tue 03 Feb 2026 18:26:10 +0000
asID: 265639
IP address blocks: 170.246.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:03:8a:92:30:92:f2:77:ef:72:bc:c1:ca:42:2e:b5:39:95:5b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977DAB0EC7A954C08AF09602FA1EA52D5912541B
Validity
Not Before: Feb 4 18:21:10 2025 GMT
Not After : Feb 3 18:26:10 2026 GMT
Subject: CN=9262CA8F7A5AFC3A55995863C0127AECCBB0FEEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d0:36:97:8b:4f:de:4c:c2:2e:85:e2:7a:ed:
18:a6:f3:4b:8d:c1:70:82:a2:d2:45:b4:68:f9:be:
83:69:fb:86:a5:5d:63:88:78:bb:f3:3b:41:1e:a8:
22:2b:df:eb:a4:a1:e7:29:77:4d:78:ed:2a:b3:55:
9a:86:2b:5b:a7:68:2e:75:22:22:c1:8a:db:f1:76:
a3:81:2f:6d:b9:0d:78:b4:87:a9:ea:ab:be:90:0a:
e0:ce:84:17:ff:be:02:4f:e6:ce:8d:46:41:e9:72:
9e:04:2c:64:52:ce:b9:3d:f3:0e:e5:f1:0a:08:82:
70:c5:f5:0e:92:16:be:02:a9:eb:38:ca:4f:d0:7c:
f4:90:35:58:d6:37:87:fb:8d:e4:8a:fe:33:c3:0a:
18:cd:c1:03:59:c4:b1:a0:ad:e3:0d:7a:40:56:05:
71:ab:65:c6:b1:e8:9f:58:73:64:43:1e:13:30:65:
40:26:83:c7:f5:2e:ee:51:b4:e3:fc:f8:60:6d:5b:
7a:d3:f2:06:01:76:ad:60:25:b5:59:14:b5:b3:63:
13:b0:d2:7e:83:e3:48:83:0b:89:af:ba:b4:da:48:
87:24:17:e6:0b:d0:a0:20:3e:f2:ef:8f:a7:39:9e:
2a:2a:0b:80:2f:dc:bd:79:10:46:80:cd:8e:1c:bc:
1a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:62:CA:8F:7A:5A:FC:3A:55:99:58:63:C0:12:7A:EC:CB:B0:FE:EE
X509v3 Authority Key Identifier:
keyid:97:7D:AB:0E:C7:A9:54:C0:8A:F0:96:02:FA:1E:A5:2D:59:12:54:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BFC6EA414BF9B1570594B2D4DADB3465358B3410C9DD1F22B003862330C090F9/0/977DAB0EC7A954C08AF09602FA1EA52D5912541B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/977DAB0EC7A954C08AF09602FA1EA52D5912541B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BFC6EA414BF9B1570594B2D4DADB3465358B3410C9DD1F22B003862330C090F9/0/3137302e3234362e38382e302f32322d3234203d3e20323635363339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.246.88.0/22
Signature Algorithm: sha256WithRSAEncryption
64:c8:ba:7f:fe:37:2f:c4:c7:a5:67:25:35:f2:ed:88:34:3e:
be:e7:94:34:2a:02:73:74:48:54:14:9a:14:4b:22:80:7d:2a:
07:a8:b1:36:9c:b9:2d:8c:be:5c:ff:76:89:18:45:c9:c9:57:
5c:2d:77:a4:fd:7b:52:80:19:79:ff:9b:e3:9c:a1:e4:de:e2:
22:f6:07:59:f7:5d:f6:59:e0:f0:44:ab:0e:4a:9d:66:e7:76:
fe:c4:f3:b0:8c:41:9b:04:b9:e4:dc:1c:90:c0:3e:d3:12:42:
4e:84:21:3b:b4:6c:17:56:84:bc:f4:21:f7:ec:ca:64:ca:7e:
12:57:cd:71:53:7f:1f:bf:2a:cf:95:f8:ed:1a:36:3f:bc:e8:
97:25:ae:3f:9f:ce:6c:ea:6e:4c:a7:7d:e5:5b:5c:d7:06:29:
d2:bc:df:d9:be:df:f5:93:06:ed:96:42:50:f5:7b:32:7e:24:
95:57:54:03:08:57:e6:3c:f2:28:9e:47:d3:01:bb:85:46:d1:
53:75:05:59:8f:6e:db:2a:5a:8e:4f:f4:68:50:9f:9c:ee:ef:
a9:e7:76:4d:c7:dd:ce:5d:d5:8e:b4:25:bb:a0:db:ea:05:35:
0f:c3:22:22:dd:8c:c2:6a:f3:d8:30:d5:3a:a2:a0:94:de:20:
6e:f6:b5:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:04:37 2025 by rpki-client