Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D2F3C520B16F36A3CD65033D6705BDEF2711280BEF3F2A03A238DDEF2D567FD4/0/3138312e3233332e3138302e302f32332d3234203d3e203532333733.roa
File: 3138312e3233332e3138302e302f32332d3234203d3e203532333733.roa (raw, json)
Hash identifier: XrM2VdJxfmXNxuK6gRm+C5QFRaLDMosOuCkAdL36Dec=
Subject key identifier: F3:5B:00:B0:22:48:CD:60:27:6F:F7:B1:0A:1C:A0:F0:94:85:E2:F7
Certificate issuer: /CN=FDA5A352F4B8A15FDA0AC9ED2B3289C3222CBACF
Certificate serial: 22034379205CFD556C4951B816B55F7BB58CC50E
Authority key identifier: FD:A5:A3:52:F4:B8:A1:5F:DA:0A:C9:ED:2B:32:89:C3:22:2C:BA:CF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FDA5A352F4B8A15FDA0AC9ED2B3289C3222CBACF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D2F3C520B16F36A3CD65033D6705BDEF2711280BEF3F2A03A238DDEF2D567FD4/0/3138312e3233332e3138302e302f32332d3234203d3e203532333733.roa
Signing time: Tue 04 Feb 2025 18:45:31 +0000
ROA not before: Tue 04 Feb 2025 18:40:31 +0000
ROA not after: Tue 03 Feb 2026 18:45:31 +0000
asID: 52373
IP address blocks: 181.233.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:03:43:79:20:5c:fd:55:6c:49:51:b8:16:b5:5f:7b:b5:8c:c5:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FDA5A352F4B8A15FDA0AC9ED2B3289C3222CBACF
Validity
Not Before: Feb 4 18:40:31 2025 GMT
Not After : Feb 3 18:45:31 2026 GMT
Subject: CN=F35B00B02248CD60276FF7B10A1CA0F09485E2F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2f:e6:0d:20:bc:66:ff:e4:e4:75:37:6d:5d:
4a:7c:5b:a0:ad:62:f1:5b:15:7a:d2:a6:f1:61:8e:
b6:68:58:ae:08:2f:8b:11:f1:3b:d6:19:63:c0:a0:
a3:67:a6:31:c3:55:ac:b2:f4:3d:25:82:93:31:14:
38:72:d5:0f:ba:ed:83:f9:37:7f:fb:62:23:f0:a4:
f7:6e:33:ca:5e:c3:29:a9:5c:28:3c:d4:21:fa:2a:
33:fd:f5:fb:91:02:6d:39:f1:0e:c1:fc:00:16:16:
e9:6e:71:22:00:f0:b2:d5:2a:91:41:75:b9:52:93:
ac:a9:61:2e:3d:96:a3:3e:b4:9a:4e:d6:ad:72:de:
ba:06:bb:23:2d:91:8d:66:cb:8d:11:55:b0:ec:6d:
8e:a9:e6:8f:bb:5e:d1:9e:bd:c8:ec:f3:af:0c:69:
8b:75:eb:70:9a:3d:93:74:c1:d9:ec:02:f3:61:6f:
d4:b9:cf:9a:06:62:c6:44:81:56:28:2b:30:93:c5:
da:4d:c6:15:b6:10:bb:cc:9a:47:5f:70:df:40:49:
ff:55:a1:d3:66:5d:70:fa:ad:bc:e6:96:91:1c:9d:
87:2d:4b:6a:a6:03:f5:2e:37:c2:37:b9:65:29:2f:
76:b4:39:6f:e9:66:77:50:61:2b:cd:d7:64:a5:e2:
86:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:5B:00:B0:22:48:CD:60:27:6F:F7:B1:0A:1C:A0:F0:94:85:E2:F7
X509v3 Authority Key Identifier:
keyid:FD:A5:A3:52:F4:B8:A1:5F:DA:0A:C9:ED:2B:32:89:C3:22:2C:BA:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D2F3C520B16F36A3CD65033D6705BDEF2711280BEF3F2A03A238DDEF2D567FD4/0/FDA5A352F4B8A15FDA0AC9ED2B3289C3222CBACF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FDA5A352F4B8A15FDA0AC9ED2B3289C3222CBACF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D2F3C520B16F36A3CD65033D6705BDEF2711280BEF3F2A03A238DDEF2D567FD4/0/3138312e3233332e3138302e302f32332d3234203d3e203532333733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.233.180.0/23
Signature Algorithm: sha256WithRSAEncryption
02:18:43:9b:0a:f8:7b:38:b6:e9:61:01:19:16:de:ee:81:04:
85:fc:28:a9:67:3c:c8:eb:6f:12:f3:c4:51:ea:b7:b1:98:e1:
4c:23:21:57:b9:e3:f3:61:00:fa:71:fe:8c:89:2b:ae:48:de:
45:d1:a8:cc:a1:30:42:93:b6:e3:ff:4b:83:6b:a8:fd:11:53:
35:a1:88:65:80:2e:6f:aa:58:32:b4:0a:22:41:87:cd:e8:70:
86:d9:14:8f:6e:68:33:28:f6:46:1e:96:3f:39:9a:6c:52:ad:
16:93:82:8f:99:21:1e:ee:1f:ae:ca:83:6f:85:9c:77:d2:26:
2f:6a:f2:18:f1:cc:22:dd:56:9f:51:90:a1:98:df:e6:dc:a4:
a1:7c:ab:76:e4:35:a9:01:89:a8:bb:4a:cc:f4:23:cf:9c:c4:
56:87:59:ef:8f:68:93:2a:6d:df:ae:07:de:c7:71:f3:87:16:
a5:b2:7d:22:42:8d:9c:63:2c:28:e6:5e:bc:dc:a8:2e:76:a9:
7b:c5:09:49:a9:58:29:eb:94:9d:a0:66:fa:3e:72:52:2d:60:
55:55:8d:e7:38:90:bd:42:e4:ab:f3:a8:e0:79:86:4c:a2:8c:
84:c1:3a:41:1e:94:75:78:95:fe:e6:64:30:f6:68:f2:18:59:
b8:ef:5a:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:33 2025 by rpki-client