Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C5AECF7168D2B7B27339E271375FE49F02F581407550D99225722354D01DD19F/0/34352e3138392e3135312e302f32342d3234203d3e203238343335.roa
File: 34352e3138392e3135312e302f32342d3234203d3e203238343335.roa (raw, json)
Hash identifier: 7e0ZXqFt0N/ddhNF8E0ptgTmjDmTBdhzomXUbBFmSLo=
Subject key identifier: 47:A3:DA:7A:B7:79:74:72:82:61:A8:C6:9B:83:CF:E7:29:B7:DD:CE
Certificate issuer: /CN=9616F367BC1934BBCB4A42293F8C4ABD6ECEBAE0
Certificate serial: 194FDA70D3BD3F3B461F6716CD35D8090D81246E
Authority key identifier: 96:16:F3:67:BC:19:34:BB:CB:4A:42:29:3F:8C:4A:BD:6E:CE:BA:E0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9616F367BC1934BBCB4A42293F8C4ABD6ECEBAE0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C5AECF7168D2B7B27339E271375FE49F02F581407550D99225722354D01DD19F/0/34352e3138392e3135312e302f32342d3234203d3e203238343335.roa
Signing time: Tue 04 Feb 2025 19:57:17 +0000
ROA not before: Tue 04 Feb 2025 19:52:17 +0000
ROA not after: Tue 03 Feb 2026 19:57:17 +0000
asID: 28435
IP address blocks: 45.189.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:4f:da:70:d3:bd:3f:3b:46:1f:67:16:cd:35:d8:09:0d:81:24:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9616F367BC1934BBCB4A42293F8C4ABD6ECEBAE0
Validity
Not Before: Feb 4 19:52:17 2025 GMT
Not After : Feb 3 19:57:17 2026 GMT
Subject: CN=47A3DA7AB77974728261A8C69B83CFE729B7DDCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:48:10:35:5f:85:56:9c:03:b8:55:29:91:60:
18:69:d4:1b:19:96:27:3d:50:76:da:ca:07:06:85:
47:f9:56:0e:97:3e:bd:0b:24:36:e2:d8:9e:de:6d:
50:bf:34:03:86:16:cb:c5:1f:fc:95:39:62:0f:aa:
d8:76:f1:38:66:ea:ea:22:d4:b6:54:48:6c:21:23:
47:3e:39:56:86:fe:3d:00:cc:a6:8f:75:68:66:2b:
4e:cf:c8:1b:98:f9:08:12:c0:7f:b4:4b:33:84:37:
bf:11:bb:80:c7:4b:c1:21:d5:8c:5e:48:d9:31:e9:
ee:a9:e7:ae:96:42:ea:0e:a6:44:c7:4b:2f:7b:2f:
c7:54:2b:da:07:6d:60:14:34:f0:5f:02:b3:52:a1:
3c:f3:4a:ff:cc:f9:5d:35:65:88:14:29:29:d2:40:
77:99:83:7b:be:b0:d9:f4:d0:fb:7c:23:73:fe:5a:
74:f0:bb:99:e7:0d:21:8d:6e:67:d0:82:55:2f:27:
10:55:9a:0e:b6:d1:06:a9:84:ce:2a:47:95:7b:2a:
d4:5a:d0:f4:f9:40:e1:88:0e:e4:c9:fb:4e:f7:4c:
cb:13:a0:ac:63:71:8b:96:a6:01:fd:68:8a:7d:a5:
93:3f:f9:fd:b0:e8:6b:6b:89:16:d6:08:5c:95:28:
22:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A3:DA:7A:B7:79:74:72:82:61:A8:C6:9B:83:CF:E7:29:B7:DD:CE
X509v3 Authority Key Identifier:
keyid:96:16:F3:67:BC:19:34:BB:CB:4A:42:29:3F:8C:4A:BD:6E:CE:BA:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C5AECF7168D2B7B27339E271375FE49F02F581407550D99225722354D01DD19F/0/9616F367BC1934BBCB4A42293F8C4ABD6ECEBAE0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9616F367BC1934BBCB4A42293F8C4ABD6ECEBAE0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C5AECF7168D2B7B27339E271375FE49F02F581407550D99225722354D01DD19F/0/34352e3138392e3135312e302f32342d3234203d3e203238343335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.189.151.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:a6:3e:85:93:f9:3c:b2:6a:d8:1d:61:3c:05:e2:51:bb:17:
8d:31:3c:dd:35:86:8f:46:a9:a9:db:b8:72:c4:fb:a4:8a:bf:
51:c8:ed:84:12:94:59:2c:ef:6a:e5:b3:c2:b3:b3:49:72:45:
e0:00:72:c2:29:3c:24:49:bd:07:d9:37:50:13:08:8a:e2:71:
23:53:fb:e3:13:14:28:5b:0f:67:33:77:8b:11:84:6d:1e:4b:
e3:f0:17:c1:70:a1:e6:2e:00:90:5e:2e:6d:2b:e0:fb:41:0b:
d0:9d:b7:59:1f:02:67:b8:08:40:1c:60:fb:c0:77:d7:ed:b8:
87:7a:a1:cb:b0:d9:43:50:14:e1:44:07:62:3b:9f:93:36:41:
86:30:86:d4:39:5c:5d:89:40:2e:82:74:27:a4:25:22:d9:4d:
38:ea:3b:ee:fb:26:ba:c1:03:39:a6:40:f1:97:62:fc:2c:b5:
42:e1:f9:f8:24:34:fb:40:01:ea:8a:34:15:db:54:b7:bb:09:
c1:8b:af:12:06:d4:25:e2:4f:05:01:9b:57:8e:0e:ed:49:ac:
4c:ea:be:41:05:35:6c:99:8f:af:15:d5:d4:fa:c1:7e:f2:ff:
81:97:a6:71:2b:7c:09:b2:51:66:43:38:16:15:89:7d:10:5f:
8f:3a:e3:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:40 2025 by rpki-client