Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C50A99167BE1CC39370AB4CB9E3CE7C535B7C6ABC718E1047629C96A486C3FF5/0/34352e3137352e32302e302f32342d3234203d3e20323637383332.roa
File: 34352e3137352e32302e302f32342d3234203d3e20323637383332.roa (raw, json)
Hash identifier: CLFHnjLiUYO8UD6/4rXbHGyHWrk0H8Sx7/U1SJLEobc=
Subject key identifier: FE:04:A8:2E:56:CC:75:C2:6F:12:A2:C5:4E:93:A8:43:FA:9A:4F:40
Certificate issuer: /CN=ED35A136442571FBFB23487E7FCF579A7CAE6BBB
Certificate serial: 50A2B3E040A45067588287A72DEE43C565AFCE59
Authority key identifier: ED:35:A1:36:44:25:71:FB:FB:23:48:7E:7F:CF:57:9A:7C:AE:6B:BB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ED35A136442571FBFB23487E7FCF579A7CAE6BBB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C50A99167BE1CC39370AB4CB9E3CE7C535B7C6ABC718E1047629C96A486C3FF5/0/34352e3137352e32302e302f32342d3234203d3e20323637383332.roa
Signing time: Tue 04 Feb 2025 18:40:41 +0000
ROA not before: Tue 04 Feb 2025 18:35:41 +0000
ROA not after: Tue 03 Feb 2026 18:40:41 +0000
asID: 267832
IP address blocks: 45.175.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:a2:b3:e0:40:a4:50:67:58:82:87:a7:2d:ee:43:c5:65:af:ce:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED35A136442571FBFB23487E7FCF579A7CAE6BBB
Validity
Not Before: Feb 4 18:35:41 2025 GMT
Not After : Feb 3 18:40:41 2026 GMT
Subject: CN=FE04A82E56CC75C26F12A2C54E93A843FA9A4F40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ce:45:3f:00:47:c7:5f:bc:ee:c6:7c:b3:08:
6c:da:25:b0:0d:7b:e8:bf:30:d7:78:05:6e:4e:80:
86:27:b3:41:54:c7:54:51:5d:08:6a:59:34:96:28:
13:92:f7:81:1d:5f:96:c4:92:d3:e1:69:02:14:2a:
e8:18:c6:2d:08:fa:e4:6b:77:a6:fd:e7:c3:04:32:
32:4c:19:e3:66:90:41:91:0d:31:57:88:3b:f5:05:
fd:b1:93:58:4c:ce:8f:fc:c4:e5:98:4f:11:c6:c1:
91:10:95:60:cc:42:82:5f:8a:e0:81:eb:e0:e6:a5:
1a:f5:15:d0:4d:8f:d9:cf:05:9e:7d:f3:f7:d0:7a:
d5:7d:02:e7:b4:00:59:47:51:95:63:3e:19:60:1f:
9f:3f:bd:71:53:51:6f:5e:37:1f:a4:45:3e:d8:71:
a9:53:a0:56:3a:0b:9c:17:51:1a:d5:e0:0a:28:8e:
ad:51:29:7b:d9:97:77:a9:c0:d6:89:06:d4:83:cc:
ae:e4:77:45:7c:7b:0b:df:58:98:5c:17:af:0b:44:
7b:9b:7c:bd:b1:9b:91:12:f7:09:48:94:d7:df:ab:
24:a3:8e:ee:4b:73:92:a4:9f:27:4e:c5:6e:60:1b:
6b:52:a7:2d:43:cd:c6:47:0f:d2:d0:09:8e:52:39:
7b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:04:A8:2E:56:CC:75:C2:6F:12:A2:C5:4E:93:A8:43:FA:9A:4F:40
X509v3 Authority Key Identifier:
keyid:ED:35:A1:36:44:25:71:FB:FB:23:48:7E:7F:CF:57:9A:7C:AE:6B:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C50A99167BE1CC39370AB4CB9E3CE7C535B7C6ABC718E1047629C96A486C3FF5/0/ED35A136442571FBFB23487E7FCF579A7CAE6BBB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ED35A136442571FBFB23487E7FCF579A7CAE6BBB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C50A99167BE1CC39370AB4CB9E3CE7C535B7C6ABC718E1047629C96A486C3FF5/0/34352e3137352e32302e302f32342d3234203d3e20323637383332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.175.20.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:90:dc:bb:6e:c0:1b:24:41:76:a2:c2:c7:25:a7:3c:bd:06:
5a:6d:24:40:78:89:ee:3d:d1:68:9e:04:6e:68:a7:e3:21:de:
bc:4d:d5:ce:d2:90:96:70:8a:cf:78:d6:17:a9:29:8b:d9:47:
85:23:87:c3:14:4e:3e:1b:b9:85:1c:3b:63:58:58:7f:d0:84:
bc:8c:f6:e7:75:00:32:d7:2b:53:91:2c:0e:3c:90:54:ed:d6:
d4:3f:d8:48:e7:dd:5e:cb:df:b2:14:5b:82:ff:72:55:c2:46:
ad:0f:f0:b9:61:8c:5a:16:90:57:f6:4d:d9:6a:e6:0f:c9:d2:
5f:a1:e9:e1:a0:ab:1a:b2:e9:bc:d5:84:a5:93:08:70:6b:57:
a9:84:8a:b6:cd:ca:e1:5e:84:6f:e5:10:7e:c0:35:79:9e:36:
76:81:fb:0e:ac:54:c4:00:30:c6:40:23:b1:d0:8d:71:5b:46:
81:51:ca:f1:ab:f0:fb:c6:96:1c:83:f0:88:b7:32:22:66:ac:
12:3d:1c:1a:2b:db:f8:7e:06:d1:6b:68:4e:25:20:57:c0:af:
be:eb:9f:cc:e1:fc:be:33:4b:55:42:40:22:5c:bd:d7:b5:dd:
a0:b2:c2:d0:8a:37:8d:39:75:05:3d:f0:ce:78:af:a8:c0:94:
3b:3d:99:db
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUUKKz4ECkUGdYgoenLe5DxWWvzlkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUQzNUExMzY0NDI1NzFGQkZCMjM0ODdFN0ZDRjU3OUE3
Q0FFNkJCQjAeFw0yNTAyMDQxODM1NDFaFw0yNjAyMDMxODQwNDFaMDMxMTAvBgNV
BAMTKEZFMDRBODJFNTZDQzc1QzI2RjEyQTJDNTRFOTNBODQzRkE5QTRGNDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqzkU/AEfHX7zuxnyzCGzaJbAN
e+i/MNd4BW5OgIYns0FUx1RRXQhqWTSWKBOS94EdX5bEktPhaQIUKugYxi0I+uRr
d6b958MEMjJMGeNmkEGRDTFXiDv1Bf2xk1hMzo/8xOWYTxHGwZEQlWDMQoJfiuCB
6+DmpRr1FdBNj9nPBZ598/fQetV9Aue0AFlHUZVjPhlgH58/vXFTUW9eNx+kRT7Y
calToFY6C5wXURrV4Aoojq1RKXvZl3epwNaJBtSDzK7kd0V8ewvfWJhcF68LRHub
fL2xm5ES9wlIlNffqySjju5Lc5KknydOxW5gG2tSpy1DzcZHD9LQCY5SOXulAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQU/gSoLlbMdcJvEqLFTpOoQ/qaT0AwHwYDVR0j
BBgwFoAU7TWhNkQlcfv7I0h+f89Xmnyua7swDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9DNTBBOTkxNjdCRTFDQzM5MzcwQUI0Q0I5RTNDRTdDNTM1
QjdDNkFCQzcxOEUxMDQ3NjI5Qzk2QTQ4NkMzRkY1LzAvRUQzNUExMzY0NDI1NzFG
QkZCMjM0ODdFN0ZDRjU3OUE3Q0FFNkJCQi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FRDM1QTEzNjQ0MjU3MUZCRkIy
MzQ4N0U3RkNGNTc5QTdDQUU2QkJCLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQzUwQTk5MTY3QkUxQ0MzOTM3MEFCNENCOUUzQ0U3QzUzNUI3QzZBQkM3
MThFMTA0NzYyOUM5NkE0ODZDM0ZGNS8wLzM0MzUyZTMxMzczNTJlMzIzMDJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzYzNzM4MzMzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2vFDAN
BgkqhkiG9w0BAQsFAAOCAQEAepDcu27AGyRBdqLCxyWnPL0GWm0kQHiJ7j3RaJ4E
bmin4yHevE3VztKQlnCKz3jWF6kpi9lHhSOHwxROPhu5hRw7Y1hYf9CEvIz253UA
MtcrU5EsDjyQVO3W1D/YSOfdXsvfshRbgv9yVcJGrQ/wuWGMWhaQV/ZN2WrmD8nS
X6Hp4aCrGrLpvNWEpZMIcGtXqYSKts3K4V6Eb+UQfsA1eZ42doH7DqxUxAAwxkAj
sdCNcVtGgVHK8avw+8aWHIPwiLcyImasEj0cGivb+H4G0WtoTiUgV8CvvuufzOH8
vjNLVUJAIly917XdoLLC0Io3jTl1BT3wznivqMCUOz2Z2w==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:55:57 2025 by rpki-client