Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C291AEB17BDEFACD0867A60AEAD307AD6A1C0E1628F3EF8D1EDBE2DF84DFC5AD/0/3133322e3235352e3232342e302f32322d3233203d3e20323633373136.roa
File: 3133322e3235352e3232342e302f32322d3233203d3e20323633373136.roa (raw, json)
Hash identifier: MP6KEuLTduKTC2jHbRBOFmj+93tQPIRLRkDk6Pnwtn0=
Subject key identifier: 29:F1:3C:4A:60:CC:49:66:21:32:F4:DE:A9:FA:6B:A5:3B:74:DE:6C
Certificate issuer: /CN=48A2AE510C2812263732FA2A9F0AF189D1B73B04
Certificate serial: 358BE8DD17793A00CFC8D97478216982F191B9A5
Authority key identifier: 48:A2:AE:51:0C:28:12:26:37:32:FA:2A:9F:0A:F1:89:D1:B7:3B:04
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/48A2AE510C2812263732FA2A9F0AF189D1B73B04.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C291AEB17BDEFACD0867A60AEAD307AD6A1C0E1628F3EF8D1EDBE2DF84DFC5AD/0/3133322e3235352e3232342e302f32322d3233203d3e20323633373136.roa
Signing time: Tue 04 Feb 2025 18:09:42 +0000
ROA not before: Tue 04 Feb 2025 18:04:42 +0000
ROA not after: Tue 03 Feb 2026 18:09:42 +0000
asID: 263716
IP address blocks: 132.255.224.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:8b:e8:dd:17:79:3a:00:cf:c8:d9:74:78:21:69:82:f1:91:b9:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48A2AE510C2812263732FA2A9F0AF189D1B73B04
Validity
Not Before: Feb 4 18:04:42 2025 GMT
Not After : Feb 3 18:09:42 2026 GMT
Subject: CN=29F13C4A60CC49662132F4DEA9FA6BA53B74DE6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7b:5a:4e:01:01:1e:15:c5:f2:ea:3e:02:fc:
12:0e:0a:5f:2f:5e:c4:da:0c:18:ed:5d:2d:ae:16:
53:f4:fe:35:48:0e:a2:12:4f:0a:8b:b2:f5:c6:f1:
31:63:58:e9:c2:e9:00:b5:31:d4:a3:61:bf:10:0c:
98:41:c0:56:1f:30:2a:64:2a:b2:ba:7d:63:03:e7:
fc:f6:a5:f5:a1:82:41:d8:b9:5b:3f:27:04:24:cf:
5b:80:c5:05:68:5d:b5:a1:45:a0:a9:c9:69:a8:da:
49:ad:50:b0:05:8f:ce:ab:ea:9a:00:e8:88:cc:b3:
8a:7f:c5:f8:18:1a:c9:9f:d5:30:7b:c6:57:fe:48:
97:73:4a:26:d2:3c:44:6c:11:9f:5f:43:aa:20:a1:
82:63:77:50:e4:2b:27:01:97:89:0e:ea:e8:bd:56:
2e:0a:53:0d:83:97:f9:0f:c9:75:a2:99:43:1d:69:
c2:4e:19:54:a8:7c:38:c3:bd:93:66:63:58:82:61:
b7:a9:03:f0:f8:a2:6c:b1:69:17:70:fd:4c:e4:8b:
a5:d4:a4:ae:5e:a2:0b:36:60:46:ca:7f:a2:8a:50:
c0:98:b9:5e:64:5e:3c:2d:10:dc:c4:fe:c3:3e:4b:
6a:ff:c8:93:34:88:59:08:3e:f6:11:44:7d:ec:a1:
53:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F1:3C:4A:60:CC:49:66:21:32:F4:DE:A9:FA:6B:A5:3B:74:DE:6C
X509v3 Authority Key Identifier:
keyid:48:A2:AE:51:0C:28:12:26:37:32:FA:2A:9F:0A:F1:89:D1:B7:3B:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C291AEB17BDEFACD0867A60AEAD307AD6A1C0E1628F3EF8D1EDBE2DF84DFC5AD/0/48A2AE510C2812263732FA2A9F0AF189D1B73B04.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/48A2AE510C2812263732FA2A9F0AF189D1B73B04.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C291AEB17BDEFACD0867A60AEAD307AD6A1C0E1628F3EF8D1EDBE2DF84DFC5AD/0/3133322e3235352e3232342e302f32322d3233203d3e20323633373136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.255.224.0/22
Signature Algorithm: sha256WithRSAEncryption
63:f7:c1:60:06:c8:88:b9:11:64:8a:17:3d:5c:aa:f9:ec:4d:
26:75:67:23:be:99:02:4c:a0:5b:bd:76:c7:1f:82:c1:05:33:
f4:fb:79:e4:45:fd:23:b9:bf:71:87:ab:49:47:dc:b4:db:dc:
9c:2d:46:30:54:58:94:36:e7:b4:b8:18:90:b6:03:70:3e:7f:
13:01:7c:6b:38:2f:4f:34:1c:ab:a5:85:7b:ce:bb:48:8c:67:
10:6f:29:6a:99:c2:cb:10:db:30:9f:30:85:8d:4f:45:e7:27:
0e:26:0f:62:85:df:80:34:2e:4d:10:8f:8e:8f:3a:f8:d3:2a:
3b:77:65:59:b1:77:15:25:58:10:7d:82:2d:63:ea:bf:25:c4:
d0:7a:09:6d:db:97:46:24:d6:dc:f1:1f:76:b0:e1:32:31:86:
ae:e5:e6:d9:14:92:49:7d:e4:ec:35:5d:7f:7d:b1:cb:b4:81:
84:65:81:df:67:2a:33:97:58:7e:20:a8:9e:3e:e8:6d:ae:93:
d6:6f:04:2e:fd:0c:43:fc:19:67:c3:8f:28:52:dc:77:a4:af:
f1:e3:2d:18:f2:68:78:63:4d:93:de:7b:97:bb:ba:54:71:7b:
89:f3:fd:c4:2c:6c:b9:de:8e:88:48:84:53:b1:e1:95:b2:6d:
31:b5:56:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:10:07 2025 by rpki-client