Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D4A8C730B7E8A859E880BA4C198841CD8840D93915108B868FC5BFA7E6E3065D/0/34352e3233322e3137322e302f32322d3234203d3e20323636383135.roa
File: 34352e3233322e3137322e302f32322d3234203d3e20323636383135.roa (raw, json)
Hash identifier: PRCMeFRoZbwq7A2DcTSvX4XGXhG5EFIYy9BBI0Hxwi8=
Subject key identifier: C3:0D:62:BB:01:1B:F7:B4:DE:E6:6E:85:A2:E1:EB:D1:40:EA:90:B4
Certificate issuer: /CN=3BE200CBC2748D500CCB2B319E104EF022ECFE5D
Certificate serial: 6E1830E81D0229E270C7C7B08F011C6D5E87CDC6
Authority key identifier: 3B:E2:00:CB:C2:74:8D:50:0C:CB:2B:31:9E:10:4E:F0:22:EC:FE:5D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3BE200CBC2748D500CCB2B319E104EF022ECFE5D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D4A8C730B7E8A859E880BA4C198841CD8840D93915108B868FC5BFA7E6E3065D/0/34352e3233322e3137322e302f32322d3234203d3e20323636383135.roa
Signing time: Tue 04 Feb 2025 18:31:32 +0000
ROA not before: Tue 04 Feb 2025 18:26:32 +0000
ROA not after: Tue 03 Feb 2026 18:31:32 +0000
asID: 266815
IP address blocks: 45.232.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:18:30:e8:1d:02:29:e2:70:c7:c7:b0:8f:01:1c:6d:5e:87:cd:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE200CBC2748D500CCB2B319E104EF022ECFE5D
Validity
Not Before: Feb 4 18:26:32 2025 GMT
Not After : Feb 3 18:31:32 2026 GMT
Subject: CN=C30D62BB011BF7B4DEE66E85A2E1EBD140EA90B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7e:85:6f:4a:68:c9:b7:72:d3:ce:b0:fe:c6:
3e:84:aa:c3:5f:7b:83:eb:28:49:56:a7:7a:c4:e7:
0f:d5:c7:ef:0f:f6:4d:e4:dd:8a:cd:87:f6:cc:6c:
99:55:d7:d5:30:2d:6a:4c:b1:73:c9:d9:27:29:43:
f8:81:62:60:be:bb:20:5c:98:17:04:2a:dd:7d:04:
b5:78:9c:ad:44:78:5f:2e:62:e2:28:5c:5e:17:f8:
94:c1:1e:b2:6f:d1:6c:c1:a0:73:2e:c0:b1:a0:1d:
12:48:ce:3f:ab:52:a5:a6:4b:f5:33:87:43:73:18:
29:66:d3:1d:d0:a7:20:6d:11:30:6c:c0:d5:bb:0b:
7b:da:9b:10:d1:ec:48:6f:96:e7:ef:05:2d:98:b1:
9b:6f:fe:22:72:74:c8:7e:cb:30:1c:12:d8:40:e0:
11:26:68:62:b3:99:ee:22:bb:e5:2e:3e:b1:3f:23:
b5:be:47:47:d3:f9:0a:e0:87:e1:9f:13:1a:ce:13:
28:81:41:25:7b:7e:3a:0b:99:3e:bb:3f:d6:9a:95:
1c:c2:56:0c:39:be:86:8f:38:4f:43:00:60:4a:5f:
51:af:3e:39:ff:b6:4a:89:32:de:e0:2d:21:b1:a9:
88:02:0c:b7:d6:8d:5f:a9:98:6c:81:e0:d3:c3:6b:
58:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0D:62:BB:01:1B:F7:B4:DE:E6:6E:85:A2:E1:EB:D1:40:EA:90:B4
X509v3 Authority Key Identifier:
keyid:3B:E2:00:CB:C2:74:8D:50:0C:CB:2B:31:9E:10:4E:F0:22:EC:FE:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D4A8C730B7E8A859E880BA4C198841CD8840D93915108B868FC5BFA7E6E3065D/0/3BE200CBC2748D500CCB2B319E104EF022ECFE5D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3BE200CBC2748D500CCB2B319E104EF022ECFE5D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D4A8C730B7E8A859E880BA4C198841CD8840D93915108B868FC5BFA7E6E3065D/0/34352e3233322e3137322e302f32322d3234203d3e20323636383135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.232.172.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:88:2b:ba:70:4c:89:59:8c:c9:b7:c3:78:37:9b:95:b5:71:
e8:40:50:b9:12:ef:c7:fc:9e:88:83:13:a5:bf:11:cc:dc:0a:
8d:0f:10:7f:ae:c9:c0:91:26:76:15:31:02:bd:62:e2:2f:aa:
1f:c2:80:54:a6:59:b4:16:a5:d1:0d:a3:25:f6:f1:49:37:dd:
5b:79:06:bd:17:c1:32:5a:86:91:98:ea:cb:64:25:bb:97:27:
06:b9:07:86:0a:ea:92:e5:28:fa:65:52:85:87:92:f7:82:22:
6a:5c:8b:36:db:61:16:46:ce:6e:c0:0c:ea:68:48:14:06:34:
32:5d:05:43:e7:6a:2f:ba:77:4e:70:62:9a:3c:97:1a:ba:9c:
1e:72:aa:b7:4e:c1:fb:69:82:6d:5c:75:d6:88:2b:2c:cd:ef:
79:be:4f:dc:6f:54:64:f4:ca:0a:02:be:da:c3:3a:e8:bc:b7:
01:34:f1:87:44:3e:ad:b5:ab:c9:9b:56:b0:96:bb:9c:95:8b:
70:52:01:3b:33:4e:c2:9a:f4:69:97:17:82:0f:6d:cc:97:87:
6c:5b:f1:b9:9c:46:3b:c9:34:ba:c2:f8:a6:c6:54:90:af:34:
db:c4:07:c7:f3:ce:4b:71:44:cc:6c:ac:22:7c:73:4f:f4:5e:
a5:41:57:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:14:20 2025 by rpki-client