Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C0927D4E18F77EFB602AE21D5611B89C6E2EB4D195BA1848DD9961F84A0ED2B2/0/34352e3136302e31322e302f32322d3234203d3e203631353033.roa
File: 34352e3136302e31322e302f32322d3234203d3e203631353033.roa (raw, json)
Hash identifier: rGf/Ot8vpc4bXLZjtJMeJ64W68zetCQCjBNpV60KJLk=
Subject key identifier: 89:B9:B8:0E:A5:89:72:F4:C2:6E:1D:74:EC:9C:CA:CD:77:8D:DA:80
Certificate issuer: /CN=CA325C758BD95AE2338D37BB30FCA27B8FBE8DA9
Certificate serial: 5958A056D7365AF8E22F64DF5964C4DFE40D5975
Authority key identifier: CA:32:5C:75:8B:D9:5A:E2:33:8D:37:BB:30:FC:A2:7B:8F:BE:8D:A9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CA325C758BD95AE2338D37BB30FCA27B8FBE8DA9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C0927D4E18F77EFB602AE21D5611B89C6E2EB4D195BA1848DD9961F84A0ED2B2/0/34352e3136302e31322e302f32322d3234203d3e203631353033.roa
Signing time: Tue 04 Feb 2025 18:29:33 +0000
ROA not before: Tue 04 Feb 2025 18:24:33 +0000
ROA not after: Tue 03 Feb 2026 18:29:33 +0000
asID: 61503
IP address blocks: 45.160.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:58:a0:56:d7:36:5a:f8:e2:2f:64:df:59:64:c4:df:e4:0d:59:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA325C758BD95AE2338D37BB30FCA27B8FBE8DA9
Validity
Not Before: Feb 4 18:24:33 2025 GMT
Not After : Feb 3 18:29:33 2026 GMT
Subject: CN=89B9B80EA58972F4C26E1D74EC9CCACD778DDA80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cb:5b:dc:4b:99:81:e2:e6:2a:fe:df:27:e3:
45:69:9f:d1:5c:7c:17:dc:e9:bb:31:5e:9a:fd:7d:
df:45:27:33:56:b8:7c:13:84:c1:30:2e:f1:a7:f5:
79:af:dd:eb:b1:55:82:10:eb:58:d8:13:9c:b0:bb:
35:1e:48:5a:41:0e:ed:d9:66:4e:c1:23:63:eb:ed:
1f:7f:01:bc:af:78:40:37:6d:e7:95:03:da:ae:a7:
0c:a9:0e:6d:fe:39:cd:c8:6f:3e:00:1a:5c:52:cd:
0b:de:8f:45:a4:41:c4:06:c7:50:18:ba:c4:ff:46:
a1:9a:8a:ff:1b:a5:0d:c1:0d:a2:af:29:3e:cc:d5:
59:76:f2:0c:17:ac:fb:ee:bf:0a:a5:0b:4b:51:c7:
e3:24:42:26:7b:39:14:88:e7:d3:64:bf:60:20:ce:
2a:10:61:58:30:0c:e3:6a:14:ce:6a:da:a6:93:b2:
bf:72:5c:3a:f7:55:20:4e:8a:a8:d1:64:dd:6a:1f:
cf:22:2c:1e:99:bf:7f:34:45:36:ec:78:76:64:df:
0b:e9:c2:ec:07:85:46:82:d7:b4:80:dc:95:05:b2:
11:bd:b2:59:6d:31:de:81:d7:33:9b:a1:0d:99:18:
7a:da:4f:29:9f:2b:74:ad:88:d4:c5:cb:10:39:ce:
ec:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B9:B8:0E:A5:89:72:F4:C2:6E:1D:74:EC:9C:CA:CD:77:8D:DA:80
X509v3 Authority Key Identifier:
keyid:CA:32:5C:75:8B:D9:5A:E2:33:8D:37:BB:30:FC:A2:7B:8F:BE:8D:A9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C0927D4E18F77EFB602AE21D5611B89C6E2EB4D195BA1848DD9961F84A0ED2B2/0/CA325C758BD95AE2338D37BB30FCA27B8FBE8DA9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CA325C758BD95AE2338D37BB30FCA27B8FBE8DA9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C0927D4E18F77EFB602AE21D5611B89C6E2EB4D195BA1848DD9961F84A0ED2B2/0/34352e3136302e31322e302f32322d3234203d3e203631353033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.160.12.0/22
Signature Algorithm: sha256WithRSAEncryption
35:ec:35:12:9e:a6:3f:da:bf:f9:f0:85:72:a8:30:76:0f:c4:
b8:32:d1:6f:67:ac:92:b4:9c:13:0d:89:fd:05:7c:c8:83:19:
67:30:5a:c8:bc:01:2d:16:91:ed:20:3c:a3:c5:69:90:13:92:
fb:0b:dc:ee:a1:d8:d6:22:4b:9f:2c:a0:b0:3d:bb:d6:16:42:
5e:b3:20:69:27:ac:6b:aa:c9:56:54:89:40:a7:e0:00:55:92:
44:47:10:cf:95:c2:15:ac:b1:1e:0f:e8:0a:97:8d:e0:7d:0e:
b8:a6:04:16:e0:fa:75:65:72:40:f9:91:4f:00:66:86:07:7e:
44:95:b1:6b:11:1a:c6:a2:7e:44:79:c3:0e:f4:3b:69:b6:60:
f2:e7:c7:fd:19:fa:b2:e9:31:0c:58:6a:bd:29:55:bc:e8:13:
4b:42:9d:ed:59:6c:d4:73:d0:aa:e5:51:3b:5d:ed:5b:18:2a:
39:c1:4f:94:b3:c8:83:57:9f:c9:fa:81:56:3a:54:16:12:0c:
39:89:c0:96:d4:d7:c8:e0:e7:89:b2:53:08:f5:f1:07:cc:74:
50:58:e3:c1:04:c7:f3:0b:77:93:59:75:f8:2c:2e:a0:e7:7c:
2a:57:8b:17:3d:b9:0b:bb:7e:ab:4c:2f:d9:60:32:2a:ee:3c:
94:f3:56:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:14:32 2025 by rpki-client