Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3136312e3235352e302e302f31362d3136203d3e2036333036.roa
File: 3136312e3235352e302e302f31362d3136203d3e2036333036.roa (raw, json)
Hash identifier: VerEO+CT95ptVnI9GbxU6ZWTECr/cZIIJdxPc+xsWig=
Subject key identifier: EB:A6:31:47:30:45:BD:61:83:69:9A:55:22:D8:33:2E:22:FA:C9:6F
Certificate issuer: /CN=35705A9ED706FD45725A72D9D83EF1D9B9A12E9C
Certificate serial: 2D4B5A7488B98F25C354120393C7902E4944718F
Authority key identifier: 35:70:5A:9E:D7:06:FD:45:72:5A:72:D9:D8:3E:F1:D9:B9:A1:2E:9C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3136312e3235352e302e302f31362d3136203d3e2036333036.roa
Signing time: Tue 04 Feb 2025 18:33:07 +0000
ROA not before: Tue 04 Feb 2025 18:28:07 +0000
ROA not after: Tue 03 Feb 2026 18:33:07 +0000
asID: 6306
IP address blocks: 161.255.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:4b:5a:74:88:b9:8f:25:c3:54:12:03:93:c7:90:2e:49:44:71:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35705A9ED706FD45725A72D9D83EF1D9B9A12E9C
Validity
Not Before: Feb 4 18:28:07 2025 GMT
Not After : Feb 3 18:33:07 2026 GMT
Subject: CN=EBA631473045BD6183699A5522D8332E22FAC96F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e0:e6:7f:38:d9:b7:75:46:32:96:c6:ed:19:
d8:d5:e6:fb:87:3d:67:bc:a5:ca:a6:91:78:59:0b:
55:82:fe:e6:25:4c:6c:1a:17:e9:67:72:8a:2c:a1:
51:37:fa:b5:6c:60:0c:b9:44:1f:6f:f0:a4:82:a5:
84:79:8a:6a:b5:da:5b:ac:74:48:0d:88:d4:4c:d1:
6c:1f:a3:20:96:2a:c7:53:e3:c1:c2:e7:1c:8f:a5:
40:0a:3d:66:9b:47:0f:77:a4:55:8b:d4:1c:26:d6:
34:42:52:1d:73:5d:65:45:58:da:c5:b8:35:2c:42:
b8:22:13:a3:9e:fc:44:3b:26:5a:89:67:2b:70:fa:
e5:d0:08:78:84:d4:f4:38:1a:cb:c1:6b:9f:d3:21:
25:cd:2a:9b:1b:b7:f2:59:c9:cd:af:fb:55:47:6f:
eb:a9:8b:f0:77:89:34:46:90:b7:1e:c8:49:5a:ee:
f7:2a:25:25:53:f0:59:f4:b0:f6:08:e1:46:a2:54:
db:ab:8f:39:27:38:dd:18:cb:c8:7f:24:6a:f6:8b:
7c:61:c8:77:3e:b1:71:c2:29:89:43:61:26:b3:13:
01:81:c8:e5:95:ca:c4:ac:e2:25:de:1f:57:a0:3b:
9b:03:bd:24:6d:5d:16:c1:6c:a7:04:7a:e7:7e:76:
87:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A6:31:47:30:45:BD:61:83:69:9A:55:22:D8:33:2E:22:FA:C9:6F
X509v3 Authority Key Identifier:
keyid:35:70:5A:9E:D7:06:FD:45:72:5A:72:D9:D8:3E:F1:D9:B9:A1:2E:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3136312e3235352e302e302f31362d3136203d3e2036333036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.255.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7b:b4:56:1f:94:d9:a1:8c:67:9c:d6:f7:ea:5f:97:64:d4:2b:
a4:76:15:d9:0f:d9:e3:b9:9a:ba:11:25:d3:f6:a6:a3:15:1e:
8b:4b:67:d0:19:40:97:5e:74:d1:08:af:47:78:9a:73:10:73:
97:05:22:b9:65:26:b6:f1:c4:c5:48:4d:8c:31:2d:46:92:e9:
06:31:78:d3:52:fd:d7:d7:f1:e3:22:05:e3:bc:56:4a:e3:86:
4d:9c:d6:da:b2:64:01:42:f9:f8:8e:c1:76:54:ff:f1:79:1d:
c7:7c:06:ec:f2:7d:1a:81:88:a7:02:b8:c9:4b:32:c4:e9:99:
06:e4:8e:d0:d7:93:5f:c6:19:48:15:e0:16:4d:7f:a8:4a:98:
be:cb:08:f8:b2:24:bb:78:1a:2b:7c:46:54:7e:78:e8:e7:f9:
86:61:e9:5c:f4:14:7c:0b:7d:c6:8d:1a:fc:9d:41:cb:d8:f9:
9b:ab:6d:22:b9:ff:c2:a1:bf:13:c7:88:91:06:87:cb:7d:11:
63:f5:df:e7:e6:20:93:07:cb:5f:28:99:ab:a1:56:01:0e:01:
69:1d:c1:5b:97:14:89:e6:ca:09:62:a5:86:3d:07:6b:c6:de:
4d:74:d5:b4:02:ae:6d:f4:2a:8a:09:3a:da:a8:58:3e:79:c6:
28:40:ce:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:06:07 2025 by rpki-client