Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3138362e32342e31322e302f32322d3232203d3e2036333036.roa
File: 3138362e32342e31322e302f32322d3232203d3e2036333036.roa (raw, json)
Hash identifier: iV+X8/SoOSx4x5a2/ZaYh/r9dkhFxts9IA31HV/SAWE=
Subject key identifier: 79:CD:4E:72:A7:3F:2B:A2:FF:0D:67:8C:9A:0A:F5:A9:82:3E:67:37
Certificate issuer: /CN=35705A9ED706FD45725A72D9D83EF1D9B9A12E9C
Certificate serial: 3A8DFF5375F8323A37FBF986E4772550A8E5CD6A
Authority key identifier: 35:70:5A:9E:D7:06:FD:45:72:5A:72:D9:D8:3E:F1:D9:B9:A1:2E:9C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3138362e32342e31322e302f32322d3232203d3e2036333036.roa
Signing time: Tue 04 Feb 2025 18:32:58 +0000
ROA not before: Tue 04 Feb 2025 18:27:58 +0000
ROA not after: Tue 03 Feb 2026 18:32:58 +0000
asID: 6306
IP address blocks: 186.24.12.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:8d:ff:53:75:f8:32:3a:37:fb:f9:86:e4:77:25:50:a8:e5:cd:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35705A9ED706FD45725A72D9D83EF1D9B9A12E9C
Validity
Not Before: Feb 4 18:27:58 2025 GMT
Not After : Feb 3 18:32:58 2026 GMT
Subject: CN=79CD4E72A73F2BA2FF0D678C9A0AF5A9823E6737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:48:82:75:e3:fe:ac:a2:fc:d8:c9:07:ca:fd:
bb:aa:3e:24:4c:c3:59:6c:60:91:14:26:76:ab:82:
f4:fc:b3:f8:d7:dc:5e:06:7d:d7:10:27:17:ac:95:
8f:43:c9:c0:6d:bd:bb:d8:c9:d9:43:6a:15:04:b5:
88:1e:af:a4:b1:a6:fe:ba:f9:ea:9e:26:23:92:26:
b4:c2:94:37:8a:c6:21:b8:0f:33:e1:a2:25:bf:da:
c1:a7:46:0b:d8:82:5b:e9:96:a2:6d:d3:6a:4e:14:
33:38:53:fe:41:2a:6d:a7:50:5e:ef:b4:a0:3b:da:
0f:32:0a:8d:99:af:de:4b:8e:61:95:da:7d:4e:ac:
86:43:af:62:d7:f4:c9:45:84:5e:e4:36:f1:33:5c:
05:8a:4f:a6:dd:61:98:02:80:3a:6b:8e:0f:32:92:
21:73:38:07:6f:db:54:67:d2:e0:34:b5:74:79:22:
66:d7:71:82:1c:97:19:b7:16:73:2b:3e:b0:2e:c6:
34:11:ef:7b:4d:e0:12:2b:bc:b1:8c:99:5b:3c:e3:
f9:8d:92:02:bd:ce:c1:df:be:b5:7a:cb:77:ef:7c:
84:77:ce:38:53:ce:58:6e:9d:a4:7c:61:09:20:30:
f0:68:99:44:f0:86:a7:c5:8f:19:62:b2:d5:2f:46:
a9:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:CD:4E:72:A7:3F:2B:A2:FF:0D:67:8C:9A:0A:F5:A9:82:3E:67:37
X509v3 Authority Key Identifier:
keyid:35:70:5A:9E:D7:06:FD:45:72:5A:72:D9:D8:3E:F1:D9:B9:A1:2E:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3138362e32342e31322e302f32322d3232203d3e2036333036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.24.12.0/22
Signature Algorithm: sha256WithRSAEncryption
97:fd:bf:47:9c:e6:a2:24:18:59:1d:99:cd:48:1e:b8:56:74:
d5:09:0b:5f:ee:a3:b4:69:2d:03:6a:04:66:d2:53:49:f1:84:
bc:81:d0:69:9c:2e:ae:f4:b3:82:23:35:be:be:3b:e5:d8:4c:
7c:1f:32:fc:b0:9c:ba:3b:92:b7:88:e7:18:62:14:ed:c9:dd:
78:6c:ed:e7:dc:2d:9a:a9:d3:a4:84:17:fa:10:2c:1f:cc:70:
28:9c:98:10:a8:3a:6c:32:b8:23:70:5a:cf:5d:57:2b:d7:e2:
d7:9f:db:17:68:e2:10:2a:6a:ef:9d:f9:cc:14:3c:a9:83:d0:
32:8d:4f:67:bf:99:e9:5c:ab:ee:3f:a6:82:84:f2:ab:e0:a2:
32:3f:8d:97:c5:32:70:c4:29:03:c9:f0:50:19:03:05:c1:ca:
96:77:3d:31:af:d2:bc:78:4a:94:75:64:d4:e6:75:c7:ae:18:
c9:9c:48:de:32:28:3a:fc:25:db:64:f0:8d:03:b0:16:d4:cd:
d8:f8:a1:57:3a:a7:27:ea:dd:5e:ea:8b:cf:5e:1f:0a:1c:60:
cc:78:a9:cc:42:70:f6:9c:d7:d7:dd:ae:98:9c:e7:89:59:26:
69:e0:6a:f6:64:8f:d1:97:99:cd:8a:2f:a2:77:8c:89:a2:7b:
db:6c:32:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:46:26 2025 by rpki-client