Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CE21E66C337C3035D622E05D210B089A8441579E95F001F27A4381A83D5F5779/0/34352e342e39382e302f32342d3234203d3e20323635373536.roa
File: 34352e342e39382e302f32342d3234203d3e20323635373536.roa (raw, json)
Hash identifier: Ev3LI3nBZMc5Mq6vqGWjNu8Keb5o/ITNtqPW/CbVYCs=
Subject key identifier: 2C:09:44:0A:1F:E2:44:9A:2E:A8:B1:24:A4:F8:C0:CF:95:AA:2A:23
Certificate issuer: /CN=89212299953822D1EC60EF67B419C33581EBDA17
Certificate serial: 23E7E623EC8FDC23F1B1829F05216C9ED533376C
Authority key identifier: 89:21:22:99:95:38:22:D1:EC:60:EF:67:B4:19:C3:35:81:EB:DA:17
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89212299953822D1EC60EF67B419C33581EBDA17.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CE21E66C337C3035D622E05D210B089A8441579E95F001F27A4381A83D5F5779/0/34352e342e39382e302f32342d3234203d3e20323635373536.roa
Signing time: Tue 04 Feb 2025 17:59:34 +0000
ROA not before: Tue 04 Feb 2025 17:54:34 +0000
ROA not after: Tue 03 Feb 2026 17:59:34 +0000
asID: 265756
IP address blocks: 45.4.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:e7:e6:23:ec:8f:dc:23:f1:b1:82:9f:05:21:6c:9e:d5:33:37:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89212299953822D1EC60EF67B419C33581EBDA17
Validity
Not Before: Feb 4 17:54:34 2025 GMT
Not After : Feb 3 17:59:34 2026 GMT
Subject: CN=2C09440A1FE2449A2EA8B124A4F8C0CF95AA2A23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2a:de:c1:65:65:ee:16:82:a1:6c:e8:c0:db:
a0:88:7c:e5:b8:da:6f:78:ae:9b:be:fa:40:36:a4:
b1:1f:75:96:db:7b:0c:25:38:e9:10:ea:b6:6b:d0:
02:86:8d:cf:80:dd:0b:fe:51:1a:7c:a9:bd:51:ea:
d3:86:2b:70:bc:cd:54:ba:1d:f3:0c:1a:4c:a1:a4:
64:f9:bb:50:90:7f:aa:3c:bf:06:46:f9:8c:8d:7d:
3f:ea:94:b1:21:4d:1a:8e:2f:f7:66:15:e1:f0:6c:
76:bf:39:40:ff:3f:d7:db:59:f9:5d:ba:f9:82:14:
c5:c0:34:74:41:88:c5:2a:76:dc:b7:a0:a5:63:4f:
73:41:be:78:9d:74:63:2e:9f:cb:a1:e0:33:76:f5:
60:ac:4a:d5:1d:b9:f9:57:2a:8b:5a:54:43:9a:3a:
76:dc:fe:1b:46:01:b5:6f:43:8c:5f:b4:1c:e1:6b:
c0:15:b2:18:a0:a7:79:d5:71:e2:04:08:42:3b:3a:
10:eb:c4:f9:29:db:66:57:1e:64:88:f7:db:42:d0:
7a:08:32:18:09:b7:81:06:99:ce:2c:bd:7d:60:47:
15:8d:84:cd:09:08:cf:32:49:81:04:85:56:a0:1c:
2a:b2:95:df:89:14:f2:ca:ea:34:ab:b3:e6:33:5b:
74:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:09:44:0A:1F:E2:44:9A:2E:A8:B1:24:A4:F8:C0:CF:95:AA:2A:23
X509v3 Authority Key Identifier:
keyid:89:21:22:99:95:38:22:D1:EC:60:EF:67:B4:19:C3:35:81:EB:DA:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CE21E66C337C3035D622E05D210B089A8441579E95F001F27A4381A83D5F5779/0/89212299953822D1EC60EF67B419C33581EBDA17.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89212299953822D1EC60EF67B419C33581EBDA17.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CE21E66C337C3035D622E05D210B089A8441579E95F001F27A4381A83D5F5779/0/34352e342e39382e302f32342d3234203d3e20323635373536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.98.0/24
Signature Algorithm: sha256WithRSAEncryption
20:95:da:7c:35:73:ac:ff:3a:88:d9:12:3a:73:45:cb:b1:ce:
e6:41:65:1a:8a:21:37:39:3d:5d:27:e9:21:4a:ec:8d:98:ca:
e7:fe:69:67:d2:54:85:fc:bf:9a:1c:b7:c1:30:53:59:5e:ce:
9d:6d:cc:ee:c3:f1:e4:5b:49:9c:19:ac:cd:aa:53:0a:5a:a0:
af:78:fd:54:b2:36:81:c1:9f:3d:5b:fd:53:f7:d6:34:14:87:
65:e6:30:0d:0a:7a:c4:82:b0:a4:61:4a:dd:8b:d3:ea:0c:23:
a4:fd:cb:3e:74:d9:43:35:e7:eb:4c:57:b5:7c:0d:26:01:5b:
88:d6:48:5e:2c:d8:92:b3:96:6a:07:da:96:fd:8a:40:db:45:
e3:0d:45:50:93:d7:03:8f:f9:eb:bc:44:9c:e7:9f:2a:df:6f:
e5:09:27:ec:90:42:b0:eb:de:b3:65:cd:2f:bc:a3:6b:c2:ba:
be:0e:97:b8:80:c9:df:6f:5b:bb:cd:64:ed:89:fa:a0:7e:78:
a1:f7:e1:a1:01:6b:36:b7:8a:50:9b:5d:c2:0d:29:c5:ce:5f:
7c:b9:6a:10:cc:bb:fb:3c:f8:da:08:ec:8e:ff:b2:66:7a:ce:
a7:c2:62:59:6b:2a:3a:9c:43:b8:32:31:17:bb:bc:e0:5c:9f:
38:3e:74:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:58 2025 by rpki-client