Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D537967189F4B25A1A7EBED3A2A9C45EBC99DE9BB68ECAE6D5F60D1354ED6387/0/34352e342e3231362e302f32322d3234203d3e20323635363739.roa
File: 34352e342e3231362e302f32322d3234203d3e20323635363739.roa (raw, json)
Hash identifier: 2ZAx6V+roMthQj9DYTDAwt5PiSEaAmZhWSyjyXf9/cw=
Subject key identifier: C8:5C:BD:57:D2:79:04:7F:44:24:4D:35:32:70:7C:B2:7B:50:AB:CE
Certificate issuer: /CN=604B953E7CDFD156CD44C7E9BEDC37AE69B43881
Certificate serial: 0D385AFCD2C94B7DE248E8E628D267EE5A8342E5
Authority key identifier: 60:4B:95:3E:7C:DF:D1:56:CD:44:C7:E9:BE:DC:37:AE:69:B4:38:81
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/604B953E7CDFD156CD44C7E9BEDC37AE69B43881.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D537967189F4B25A1A7EBED3A2A9C45EBC99DE9BB68ECAE6D5F60D1354ED6387/0/34352e342e3231362e302f32322d3234203d3e20323635363739.roa
Signing time: Tue 04 Feb 2025 18:19:29 +0000
ROA not before: Tue 04 Feb 2025 18:14:29 +0000
ROA not after: Tue 03 Feb 2026 18:19:29 +0000
asID: 265679
IP address blocks: 45.4.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:38:5a:fc:d2:c9:4b:7d:e2:48:e8:e6:28:d2:67:ee:5a:83:42:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=604B953E7CDFD156CD44C7E9BEDC37AE69B43881
Validity
Not Before: Feb 4 18:14:29 2025 GMT
Not After : Feb 3 18:19:29 2026 GMT
Subject: CN=C85CBD57D279047F44244D3532707CB27B50ABCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:68:a7:ab:df:50:08:d8:5e:ab:f1:d6:02:85:
c1:66:a0:9a:44:89:5b:76:cc:da:fd:22:33:96:be:
05:bf:0a:9f:e4:7e:3f:d6:10:e6:9e:8b:9a:bc:45:
b3:38:ea:ef:3a:b5:66:61:4b:55:25:c2:ea:c8:9d:
53:a9:c0:3f:84:44:3b:06:88:dc:ef:4a:4c:e2:9c:
d3:61:b0:1a:c2:0b:d1:80:a4:12:10:11:73:1a:21:
83:3e:69:a1:f5:73:fa:6b:92:21:8d:2e:bd:59:7d:
b4:e9:c7:77:99:b3:f1:a8:81:7c:34:12:00:78:6a:
64:9f:56:2d:e2:d8:31:ab:11:76:b9:a6:e8:84:08:
10:e2:f2:08:47:c3:81:ef:18:f5:2f:6d:95:32:13:
fa:16:7c:25:a4:e6:80:e2:40:3e:24:b2:a1:76:29:
aa:1a:05:e2:b9:67:06:88:00:ea:bb:21:c1:1a:64:
e2:8a:0d:a1:63:20:ba:3e:0d:92:30:10:7d:00:c7:
47:d3:43:f7:0b:37:f4:6c:50:01:a5:d3:36:7a:cc:
bb:33:d6:e1:9f:ba:48:83:f8:8f:7f:c7:81:4f:74:
b1:5d:ca:dd:82:8f:96:a2:b7:ac:c3:aa:2f:3c:cd:
88:51:d6:32:2c:40:9c:e6:24:5d:26:cf:71:d2:cd:
33:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:5C:BD:57:D2:79:04:7F:44:24:4D:35:32:70:7C:B2:7B:50:AB:CE
X509v3 Authority Key Identifier:
keyid:60:4B:95:3E:7C:DF:D1:56:CD:44:C7:E9:BE:DC:37:AE:69:B4:38:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D537967189F4B25A1A7EBED3A2A9C45EBC99DE9BB68ECAE6D5F60D1354ED6387/0/604B953E7CDFD156CD44C7E9BEDC37AE69B43881.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/604B953E7CDFD156CD44C7E9BEDC37AE69B43881.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D537967189F4B25A1A7EBED3A2A9C45EBC99DE9BB68ECAE6D5F60D1354ED6387/0/34352e342e3231362e302f32322d3234203d3e20323635363739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.216.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:ba:c8:ea:92:f8:24:a5:3e:38:f8:97:d2:49:86:71:fc:74:
d2:e2:1a:2a:52:a6:29:71:7c:75:fc:4a:02:f9:5d:cb:27:a6:
e4:bd:b0:d5:a9:21:90:09:a2:a0:fe:ac:52:49:e6:fd:97:23:
22:9b:ed:47:70:0d:fc:69:f5:53:d6:9d:8b:ee:7b:7f:5d:57:
9f:52:1e:5f:e9:43:e7:9c:a4:cd:d8:79:4c:df:d9:e2:50:2f:
2f:f1:2b:d9:f2:63:5a:ac:49:cc:18:58:0f:76:51:35:85:89:
21:3a:60:93:cd:58:a3:73:18:f7:c2:1c:87:08:45:05:3b:72:
e8:63:89:96:76:4c:1b:70:ff:25:d3:72:0e:bb:42:70:32:7b:
9b:13:f6:40:75:e5:5b:a4:b5:08:bb:5e:36:91:8e:8f:84:ac:
ea:e9:0e:39:67:5d:b5:0e:42:86:8d:18:8f:2b:33:70:8b:8d:
4c:6d:39:c1:08:9d:73:83:5e:10:97:1c:15:6f:39:53:c4:e1:
aa:c7:f2:db:de:1b:b1:27:07:f4:44:16:59:ef:db:8c:03:d2:
fd:cd:f0:74:d1:0d:50:88:59:89:8d:6e:70:2a:b6:69:d9:61:
bb:20:7a:6f:fc:c4:53:f9:00:58:33:c9:45:8c:d4:bd:48:26:
23:42:1b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:57:07 2025 by rpki-client