Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D82461940D6C2A48DBE16DD278C5B0DFF29C5169DCF3A2C5DDB454FE1163C9F4/0/3136382e3138312e3132302e302f32322d3234203d3e20323634383437.roa
File: 3136382e3138312e3132302e302f32322d3234203d3e20323634383437.roa (raw, json)
Hash identifier: 8hgTwCE9YpwIFLMFhjQnDl59CVGNii6/iwC38dfpyPM=
Subject key identifier: E2:52:78:C3:60:B4:09:75:B0:3B:FC:30:A6:4F:CD:22:AA:42:EF:4C
Certificate issuer: /CN=A4BCD2E8CA8A74AF5627B106DFD6C0BB2DA03D9A
Certificate serial: 760611BBB78CC63C962EB0A496014F906CEFF322
Authority key identifier: A4:BC:D2:E8:CA:8A:74:AF:56:27:B1:06:DF:D6:C0:BB:2D:A0:3D:9A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A4BCD2E8CA8A74AF5627B106DFD6C0BB2DA03D9A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D82461940D6C2A48DBE16DD278C5B0DFF29C5169DCF3A2C5DDB454FE1163C9F4/0/3136382e3138312e3132302e302f32322d3234203d3e20323634383437.roa
Signing time: Tue 04 Feb 2025 20:01:34 +0000
ROA not before: Tue 04 Feb 2025 19:56:34 +0000
ROA not after: Tue 03 Feb 2026 20:01:34 +0000
asID: 264847
IP address blocks: 168.181.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:06:11:bb:b7:8c:c6:3c:96:2e:b0:a4:96:01:4f:90:6c:ef:f3:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A4BCD2E8CA8A74AF5627B106DFD6C0BB2DA03D9A
Validity
Not Before: Feb 4 19:56:34 2025 GMT
Not After : Feb 3 20:01:34 2026 GMT
Subject: CN=E25278C360B40975B03BFC30A64FCD22AA42EF4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:86:00:66:2c:32:0e:2a:13:9f:87:44:de:a4:
e3:51:ab:48:82:4d:98:53:09:dd:7e:1e:34:dc:a1:
15:25:3a:27:dc:d0:b4:71:8a:9c:df:3d:95:54:a0:
fc:35:1e:07:aa:2d:d6:7c:47:3f:e1:59:41:de:09:
f8:70:ed:63:62:a4:2a:4e:0f:bb:b3:f5:4b:3a:02:
0a:e1:38:ac:9f:e0:e6:95:c1:c2:c6:8e:0a:52:00:
4c:a2:07:19:60:e0:79:41:c9:e7:4f:d9:1b:b2:f8:
38:ce:78:cb:19:c2:c1:7e:4e:d7:0f:1c:42:26:09:
4a:c2:7b:9b:a6:b8:71:a8:3d:f7:36:61:92:18:07:
aa:da:dd:e8:91:49:59:16:6e:62:db:79:16:12:21:
d7:f5:a1:53:5e:c0:53:a4:a7:aa:88:ad:e2:5d:cf:
60:2b:57:ed:45:4e:87:8d:8b:3d:5f:bf:1d:d0:51:
31:33:e3:ef:28:6a:d5:d9:25:3f:3f:5b:71:db:d3:
8f:f4:14:44:d2:42:f9:e5:36:3d:ec:22:54:ab:ba:
63:59:f3:ff:2b:4d:d8:2f:a2:72:c1:6a:13:4d:e2:
cd:24:58:d8:69:a8:2c:78:2d:07:74:34:f5:00:9f:
3b:5f:ba:a3:f1:a4:af:f3:4f:76:cb:ea:bb:32:30:
9b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:52:78:C3:60:B4:09:75:B0:3B:FC:30:A6:4F:CD:22:AA:42:EF:4C
X509v3 Authority Key Identifier:
keyid:A4:BC:D2:E8:CA:8A:74:AF:56:27:B1:06:DF:D6:C0:BB:2D:A0:3D:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D82461940D6C2A48DBE16DD278C5B0DFF29C5169DCF3A2C5DDB454FE1163C9F4/0/A4BCD2E8CA8A74AF5627B106DFD6C0BB2DA03D9A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A4BCD2E8CA8A74AF5627B106DFD6C0BB2DA03D9A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D82461940D6C2A48DBE16DD278C5B0DFF29C5169DCF3A2C5DDB454FE1163C9F4/0/3136382e3138312e3132302e302f32322d3234203d3e20323634383437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.181.120.0/22
Signature Algorithm: sha256WithRSAEncryption
93:2e:ca:15:d8:72:f5:c1:e5:0d:85:6c:9b:f5:bf:13:80:e9:
b0:76:00:88:6f:bd:8c:c7:a4:dc:22:57:ce:f2:b5:78:eb:6d:
40:cb:31:b4:82:d2:db:ed:70:bd:1e:92:99:86:8b:0d:8f:b1:
06:8e:f1:18:f2:14:b4:41:0f:96:0b:dc:10:ee:3a:b8:06:88:
fa:56:61:f5:96:d5:f5:90:6c:8f:93:1a:5c:2d:f6:05:95:22:
82:60:17:bc:11:1f:de:27:c6:51:ab:4c:a2:54:78:b3:b8:df:
a2:2d:7b:82:54:95:7f:d8:51:02:3b:96:76:bf:44:95:32:a7:
80:9a:08:da:a4:e0:ae:10:a6:0f:80:51:c4:14:5b:e7:1c:1d:
ba:b3:2d:fe:c7:14:34:20:8b:0e:e9:01:50:21:93:da:b1:a2:
99:62:0c:02:25:c4:62:54:6a:33:bf:34:54:d6:57:e1:5b:03:
ac:41:b0:dd:49:8e:48:0b:1f:af:b5:09:ac:d1:dd:cb:e7:a9:
bd:ff:7e:b9:43:51:30:c5:e1:ae:e2:a0:59:06:93:20:08:88:
20:ec:38:aa:2c:3b:39:74:f1:68:92:9e:db:e2:d3:3b:3a:ab:
8a:af:a9:39:6b:65:9f:4e:33:c6:01:71:7e:b6:50:3d:dc:f3:
7b:3e:db:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:54:03 2025 by rpki-client