Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C0927D4E18F77EFB602AE21D5611B89C6E2EB4D195BA1848DD9961F84A0ED2B2/0/34352e3136302e31322e302f32322d3234203d3e20323639373333.roa
File: 34352e3136302e31322e302f32322d3234203d3e20323639373333.roa (raw, json)
Hash identifier: a8Us3kI8SkWGmqoxEMJdOuQDpMUk4xinBahinzFU9DU=
Subject key identifier: 39:75:64:39:9E:62:14:1B:BA:D4:A2:CC:9D:28:5B:52:0E:05:A1:6A
Certificate issuer: /CN=CA325C758BD95AE2338D37BB30FCA27B8FBE8DA9
Certificate serial: 35B692CB13785FE3C89BCC5AC850E8C19A1618C3
Authority key identifier: CA:32:5C:75:8B:D9:5A:E2:33:8D:37:BB:30:FC:A2:7B:8F:BE:8D:A9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CA325C758BD95AE2338D37BB30FCA27B8FBE8DA9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C0927D4E18F77EFB602AE21D5611B89C6E2EB4D195BA1848DD9961F84A0ED2B2/0/34352e3136302e31322e302f32322d3234203d3e20323639373333.roa
Signing time: Tue 04 Feb 2025 18:29:34 +0000
ROA not before: Tue 04 Feb 2025 18:24:34 +0000
ROA not after: Tue 03 Feb 2026 18:29:34 +0000
asID: 269733
IP address blocks: 45.160.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:b6:92:cb:13:78:5f:e3:c8:9b:cc:5a:c8:50:e8:c1:9a:16:18:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA325C758BD95AE2338D37BB30FCA27B8FBE8DA9
Validity
Not Before: Feb 4 18:24:34 2025 GMT
Not After : Feb 3 18:29:34 2026 GMT
Subject: CN=397564399E62141BBAD4A2CC9D285B520E05A16A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ad:64:5c:85:71:28:30:4b:6e:f3:d6:47:90:
99:5d:c3:4b:f9:7b:ff:1c:a9:c3:d6:53:52:7c:f4:
cb:e9:96:85:d4:85:ed:6c:9b:a1:91:7b:ec:15:54:
ad:19:27:89:1d:27:4c:9b:b1:33:e5:fc:a7:fb:1a:
a2:08:3d:1f:3a:43:08:c2:a0:09:b7:6c:68:69:0b:
dc:24:d9:4f:eb:24:b2:07:93:94:d9:d8:68:89:9d:
6b:01:f2:94:b6:09:88:33:a8:dc:85:4f:6d:58:19:
18:44:b9:f8:35:53:b0:fb:89:f3:70:d8:b1:79:40:
81:20:61:18:bd:7f:d6:5d:c2:35:c9:af:d0:fa:e5:
e2:3d:a4:c3:d4:77:7f:9a:f9:23:e1:42:c8:2f:f7:
4c:cc:f9:52:60:ab:2d:f8:c3:1e:9a:06:53:72:8e:
35:db:fb:d0:c3:44:13:1e:fa:c9:6b:d4:09:fb:15:
8c:62:10:e2:f8:b0:bf:c2:89:cc:89:f5:5a:92:b6:
b5:62:ce:fc:7a:55:f9:b1:45:51:a2:62:20:f6:9e:
60:7d:e2:dc:0d:b1:b6:65:68:ca:b4:dc:ec:2b:62:
78:f7:1b:41:78:46:4f:cb:10:d1:dc:2e:5a:3c:ab:
40:24:e8:42:fb:81:6f:25:c0:be:0d:04:3a:fd:3f:
36:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:75:64:39:9E:62:14:1B:BA:D4:A2:CC:9D:28:5B:52:0E:05:A1:6A
X509v3 Authority Key Identifier:
keyid:CA:32:5C:75:8B:D9:5A:E2:33:8D:37:BB:30:FC:A2:7B:8F:BE:8D:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C0927D4E18F77EFB602AE21D5611B89C6E2EB4D195BA1848DD9961F84A0ED2B2/0/CA325C758BD95AE2338D37BB30FCA27B8FBE8DA9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CA325C758BD95AE2338D37BB30FCA27B8FBE8DA9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C0927D4E18F77EFB602AE21D5611B89C6E2EB4D195BA1848DD9961F84A0ED2B2/0/34352e3136302e31322e302f32322d3234203d3e20323639373333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.160.12.0/22
Signature Algorithm: sha256WithRSAEncryption
39:f4:65:b3:6d:5f:41:78:9e:f3:d3:21:4a:f2:23:33:c3:89:
85:c2:53:74:91:0c:90:6f:15:bf:e3:85:dc:5a:05:ee:dd:58:
a3:eb:c9:d4:2b:f5:bc:75:5e:86:99:4e:ca:5b:0b:f2:e6:f8:
ec:c4:db:3c:39:08:5e:63:39:ea:0b:f3:62:f6:40:60:36:30:
e0:f6:75:ed:a9:39:84:e4:2b:15:d0:29:f0:26:be:1c:f7:fb:
d1:42:02:e1:3a:c3:f4:85:60:38:21:2b:ac:2c:cc:bf:33:1d:
f7:47:04:38:c6:67:a5:0a:15:e7:18:a3:bb:af:70:39:26:13:
18:9d:c1:17:be:a6:14:27:cc:97:36:d9:e7:a9:26:1d:eb:9e:
34:1c:92:6e:29:4d:2d:cc:c6:9d:fb:c8:66:0c:3a:e1:03:81:
e7:38:28:1d:52:a2:1e:3c:fe:78:5e:f0:ed:ff:e5:e7:22:df:
d3:65:22:b0:06:13:44:5c:ac:a9:21:1a:9e:b2:15:72:5f:e3:
ae:99:d1:91:0b:79:5a:92:5f:07:7d:2d:1c:71:7c:fa:00:e9:
d4:ba:2a:ca:3b:2f:96:c3:f1:67:64:66:ef:ff:53:60:55:9b:
2c:6d:ee:ba:94:ce:18:7a:09:6f:00:45:7b:58:a4:a8:e3:0c:
00:90:19:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:14:45 2025 by rpki-client