Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C7C0CEFC626A9497234DD7A29F57CA3F8FBAB5C6E605A40ADAB1E09A0393DA16/0/3135322e3137322e302e302f31362d3234203d3e203136363239.roa
File: 3135322e3137322e302e302f31362d3234203d3e203136363239.roa (raw, json)
Hash identifier: GANVuR36M8+36zOcUASIFdUCYtFzQmT5ME2vvHNvpxI=
Subject key identifier: 0D:47:64:CC:4F:2C:07:87:97:B7:94:2D:D3:39:12:43:73:D2:BE:96
Certificate issuer: /CN=29B391F5577514E30F64EDF6E361905CA08CF572
Certificate serial: 580642D95EAB535E4071765B86E22CAC2BCC44C6
Authority key identifier: 29:B3:91:F5:57:75:14:E3:0F:64:ED:F6:E3:61:90:5C:A0:8C:F5:72
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/29B391F5577514E30F64EDF6E361905CA08CF572.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C7C0CEFC626A9497234DD7A29F57CA3F8FBAB5C6E605A40ADAB1E09A0393DA16/0/3135322e3137322e302e302f31362d3234203d3e203136363239.roa
Signing time: Tue 04 Feb 2025 18:12:57 +0000
ROA not before: Tue 04 Feb 2025 18:07:57 +0000
ROA not after: Tue 03 Feb 2026 18:12:57 +0000
asID: 16629
IP address blocks: 152.172.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:06:42:d9:5e:ab:53:5e:40:71:76:5b:86:e2:2c:ac:2b:cc:44:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29B391F5577514E30F64EDF6E361905CA08CF572
Validity
Not Before: Feb 4 18:07:57 2025 GMT
Not After : Feb 3 18:12:57 2026 GMT
Subject: CN=0D4764CC4F2C078797B7942DD339124373D2BE96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:c2:f2:ad:c7:ed:3b:18:8b:41:f0:1a:13:bf:
b0:7b:b4:b9:58:d4:3e:74:2a:a4:77:14:ef:18:e9:
c6:1a:26:fc:fd:a8:57:80:1e:7f:f7:66:de:86:a2:
73:a9:12:c2:7a:09:09:e7:1e:22:34:66:c5:22:f8:
64:95:3f:34:fc:46:7a:b1:52:1f:b7:fb:67:a5:81:
ab:3c:56:6e:ad:e1:e9:72:4b:c7:66:09:2c:8d:8e:
e3:02:20:c8:94:28:08:72:05:59:b0:5c:25:cc:ef:
73:52:0f:d4:a6:c9:a4:53:65:64:3e:0a:95:a8:43:
45:9b:30:3e:34:22:e6:15:53:25:47:b6:be:dc:b8:
a3:dd:2d:fb:4b:5a:9d:1e:99:3d:cf:be:0c:1b:ef:
7e:b5:f6:db:6a:c4:f9:89:0a:82:88:29:35:26:11:
cc:e0:0e:4e:a5:fd:6c:54:58:2e:15:d6:26:83:e8:
81:69:dd:7c:5d:68:ab:6e:10:4a:88:62:c7:9e:97:
45:e0:33:50:33:e1:9d:be:7a:cf:35:75:39:1c:7d:
62:73:9d:ad:4f:28:ae:36:2b:99:b6:e5:23:5e:0a:
33:e9:cf:b0:81:c9:04:38:bb:7b:bc:0c:db:a7:79:
26:b7:40:7c:64:65:97:4b:26:62:8b:0d:d8:bf:89:
28:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:47:64:CC:4F:2C:07:87:97:B7:94:2D:D3:39:12:43:73:D2:BE:96
X509v3 Authority Key Identifier:
keyid:29:B3:91:F5:57:75:14:E3:0F:64:ED:F6:E3:61:90:5C:A0:8C:F5:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C7C0CEFC626A9497234DD7A29F57CA3F8FBAB5C6E605A40ADAB1E09A0393DA16/0/29B391F5577514E30F64EDF6E361905CA08CF572.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/29B391F5577514E30F64EDF6E361905CA08CF572.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C7C0CEFC626A9497234DD7A29F57CA3F8FBAB5C6E605A40ADAB1E09A0393DA16/0/3135322e3137322e302e302f31362d3234203d3e203136363239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.172.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b2:0b:3e:f2:a7:1c:49:04:d6:60:10:f9:3a:51:f5:00:d4:ab:
05:80:db:99:94:2d:08:ed:71:83:8c:7b:f9:d4:fd:b8:d7:14:
dd:eb:c5:1f:be:7b:09:2e:3a:23:a2:61:10:37:47:c6:e0:41:
33:08:98:93:6f:86:77:a6:2b:5c:85:6e:7a:de:8f:1d:cd:7d:
34:82:1a:20:29:dd:cb:3e:39:45:1e:24:03:8d:0c:9d:4b:aa:
5e:67:15:98:94:b5:bb:9d:33:35:76:71:07:72:dd:59:15:34:
9a:90:e9:bf:6f:f1:4c:14:78:f8:ac:e3:55:75:e3:19:ff:17:
f9:8c:cf:45:6b:4d:3e:5d:12:4d:45:b1:07:f8:00:10:36:7c:
cd:44:90:9e:a2:8e:73:ed:76:c8:e7:a5:6f:ee:68:13:59:78:
fd:90:90:99:9e:8c:ca:1b:e2:77:f2:08:53:96:e6:21:b9:f8:
df:dc:0d:ff:62:c7:57:aa:a7:6a:94:7a:62:ad:6f:32:14:23:
b9:cb:12:bf:a4:aa:6d:d6:aa:09:ee:de:59:f1:94:6a:a0:07:
00:d5:1b:e9:9a:9d:89:e7:05:5b:81:67:c9:8c:3c:bb:c3:08:
91:40:b1:34:7d:8d:80:01:f0:17:60:27:f1:07:46:fb:d3:71:
03:8c:e1:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:51:57 2025 by rpki-client