Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C5AECF7168D2B7B27339E271375FE49F02F581407550D99225722354D01DD19F/0/34352e3138392e3134392e302f32342d3234203d3e203238343335.roa
File: 34352e3138392e3134392e302f32342d3234203d3e203238343335.roa (raw, json)
Hash identifier: +L8kkYNa7jq+F5gcL4lbzaauAZSqMX5wEJvK2Ub6eqQ=
Subject key identifier: 08:45:D0:A0:D8:F6:B5:21:37:61:AC:B5:D3:33:35:95:F5:82:59:C9
Certificate issuer: /CN=9616F367BC1934BBCB4A42293F8C4ABD6ECEBAE0
Certificate serial: 30CA494678A9F93865815114EFA2219E5BB630A3
Authority key identifier: 96:16:F3:67:BC:19:34:BB:CB:4A:42:29:3F:8C:4A:BD:6E:CE:BA:E0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9616F367BC1934BBCB4A42293F8C4ABD6ECEBAE0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C5AECF7168D2B7B27339E271375FE49F02F581407550D99225722354D01DD19F/0/34352e3138392e3134392e302f32342d3234203d3e203238343335.roa
Signing time: Tue 04 Feb 2025 19:57:16 +0000
ROA not before: Tue 04 Feb 2025 19:52:16 +0000
ROA not after: Tue 03 Feb 2026 19:57:16 +0000
asID: 28435
IP address blocks: 45.189.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:ca:49:46:78:a9:f9:38:65:81:51:14:ef:a2:21:9e:5b:b6:30:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9616F367BC1934BBCB4A42293F8C4ABD6ECEBAE0
Validity
Not Before: Feb 4 19:52:16 2025 GMT
Not After : Feb 3 19:57:16 2026 GMT
Subject: CN=0845D0A0D8F6B5213761ACB5D3333595F58259C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:13:f6:69:4d:e0:c8:03:d7:69:ed:d0:4c:0b:
bd:53:a6:01:ba:74:b7:b4:6e:c8:4d:59:9b:3a:0b:
3a:f5:0b:e7:cd:3e:76:ae:ad:4e:ae:d6:ba:55:e3:
4e:15:44:de:68:a2:d8:bb:fb:eb:a9:d7:df:2f:e4:
fe:03:d8:48:f7:cb:6a:50:4c:8b:2c:9c:6f:8e:26:
26:80:23:84:8f:7f:bd:c8:b0:f4:a7:a0:48:13:b9:
de:04:c5:d2:54:ec:16:cc:4d:68:24:6b:88:da:fe:
93:cb:0e:6a:ff:87:eb:bd:46:ef:e4:b4:b8:e5:d8:
99:c2:d4:9e:85:39:65:50:11:a2:2d:80:d1:dc:91:
5d:3a:4a:d6:d6:c9:a1:5d:40:98:70:06:52:75:7b:
ce:02:87:76:7a:bf:b8:f8:1c:d4:d9:78:3a:7b:03:
1d:78:cd:2c:83:3e:6c:7c:e4:bb:16:f4:dc:bb:3d:
18:36:dc:36:ad:ef:24:f8:bb:da:36:58:c5:da:1f:
06:aa:a4:81:e9:d0:1d:ea:be:84:10:10:f4:03:c0:
4b:26:7d:b0:cf:18:cb:5a:26:47:ac:1b:0d:32:27:
26:e9:cb:18:62:ad:e7:3c:46:ac:67:cb:c5:3e:c1:
57:46:a4:ac:ae:30:85:74:05:61:ea:82:72:20:6b:
a4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:45:D0:A0:D8:F6:B5:21:37:61:AC:B5:D3:33:35:95:F5:82:59:C9
X509v3 Authority Key Identifier:
keyid:96:16:F3:67:BC:19:34:BB:CB:4A:42:29:3F:8C:4A:BD:6E:CE:BA:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C5AECF7168D2B7B27339E271375FE49F02F581407550D99225722354D01DD19F/0/9616F367BC1934BBCB4A42293F8C4ABD6ECEBAE0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9616F367BC1934BBCB4A42293F8C4ABD6ECEBAE0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C5AECF7168D2B7B27339E271375FE49F02F581407550D99225722354D01DD19F/0/34352e3138392e3134392e302f32342d3234203d3e203238343335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.189.149.0/24
Signature Algorithm: sha256WithRSAEncryption
51:fc:95:7f:76:34:75:43:7d:55:73:b9:d8:df:da:a9:33:53:
62:15:4b:9f:7d:3c:4d:d6:67:03:a7:3e:5c:f3:54:98:2e:0a:
2f:6c:16:92:76:2d:69:22:f9:93:23:07:78:bf:e6:ca:0f:0a:
75:2a:5d:69:67:47:06:4b:a7:40:dc:2e:16:b5:51:d5:65:d1:
5f:b4:f9:83:f5:1a:82:fc:93:9b:a1:f6:9a:be:e9:5c:84:00:
4c:4b:19:00:b0:24:cd:4d:41:f5:29:a0:7c:a2:63:f6:c6:5a:
54:12:fd:e7:b0:19:8e:66:a2:e4:58:df:85:aa:55:4e:40:1f:
83:0e:83:75:8b:48:6d:4a:08:15:07:0f:9b:bd:b5:c6:2b:0b:
fe:61:a3:25:75:68:75:a0:7a:1e:61:85:64:93:58:b2:12:b0:
5f:d5:d0:b8:ae:e6:6b:25:70:ca:a0:76:b6:54:29:34:98:88:
83:4e:b0:80:e9:5a:9e:4d:a9:87:84:53:97:a9:68:c8:40:d3:
05:17:3f:84:55:09:f2:b1:86:26:fa:07:c9:26:c9:41:5b:54:
89:79:a7:92:16:0f:65:37:a4:12:54:18:05:34:37:9a:8f:7b:
b8:8f:8b:71:6c:ba:30:5a:72:bd:2b:30:8c:df:7c:b1:c7:93:
80:68:7f:55
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUMMpJRnip+ThlgVEU76Ihnlu2MKMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTYxNkYzNjdCQzE5MzRCQkNCNEE0MjI5M0Y4QzRBQkQ2
RUNFQkFFMDAeFw0yNTAyMDQxOTUyMTZaFw0yNjAyMDMxOTU3MTZaMDMxMTAvBgNV
BAMTKDA4NDVEMEEwRDhGNkI1MjEzNzYxQUNCNUQzMzMzNTk1RjU4MjU5QzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClE/ZpTeDIA9dp7dBMC71TpgG6
dLe0bshNWZs6Czr1C+fNPnaurU6u1rpV404VRN5ooti7++up198v5P4D2Ej3y2pQ
TIssnG+OJiaAI4SPf73IsPSnoEgTud4ExdJU7BbMTWgka4ja/pPLDmr/h+u9Ru/k
tLjl2JnC1J6FOWVQEaItgNHckV06StbWyaFdQJhwBlJ1e84Ch3Z6v7j4HNTZeDp7
Ax14zSyDPmx85LsW9Ny7PRg23Dat7yT4u9o2WMXaHwaqpIHp0B3qvoQQEPQDwEsm
fbDPGMtaJkesGw0yJybpyxhirec8Rqxny8U+wVdGpKyuMIV0BWHqgnIga6SnAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUCEXQoNj2tSE3Yay10zM1lfWCWckwHwYDVR0j
BBgwFoAUlhbzZ7wZNLvLSkIpP4xKvW7OuuAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9DNUFFQ0Y3MTY4RDJCN0IyNzMzOUUyNzEzNzVGRTQ5RjAy
RjU4MTQwNzU1MEQ5OTIyNTcyMjM1NEQwMUREMTlGLzAvOTYxNkYzNjdCQzE5MzRC
QkNCNEE0MjI5M0Y4QzRBQkQ2RUNFQkFFMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85NjE2RjM2N0JDMTkzNEJCQ0I0
QTQyMjkzRjhDNEFCRDZFQ0VCQUUwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQzVBRUNGNzE2OEQyQjdCMjczMzlFMjcxMzc1RkU0OUYwMkY1ODE0MDc1
NTBEOTkyMjU3MjIzNTREMDFERDE5Ri8wLzM0MzUyZTMxMzgzOTJlMzEzNDM5MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzODM0MzMzNS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC29lTAN
BgkqhkiG9w0BAQsFAAOCAQEAUfyVf3Y0dUN9VXO52N/aqTNTYhVLn308TdZnA6c+
XPNUmC4KL2wWknYtaSL5kyMHeL/myg8KdSpdaWdHBkunQNwuFrVR1WXRX7T5g/Ua
gvyTm6H2mr7pXIQATEsZALAkzU1B9SmgfKJj9sZaVBL957AZjmai5FjfhapVTkAf
gw6DdYtIbUoIFQcPm721xisL/mGjJXVodaB6HmGFZJNYshKwX9XQuK7mayVwyqB2
tlQpNJiIg06wgOlank2ph4RTl6loyEDTBRc/hFUJ8rGGJvoHySbJQVtUiXmnkhYP
ZTekElQYBTQ3mo97uI+LcWy6MFpyvSswjN98sceTgGh/VQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:28 2025 by rpki-client