Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e36392e302f32342d3234203d3e20323730303439.roa
File: 36362e3233312e36392e302f32342d3234203d3e20323730303439.roa (raw, json)
Hash identifier: 8zsicNpDTc6Vo/iaHXTQtLj1+fFuZuRONKfQybDVisA=
Subject key identifier: EA:77:45:FA:A6:3C:9F:96:83:1C:8F:E9:C4:7D:F4:5E:AE:BD:1E:CE
Certificate issuer: /CN=C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0
Certificate serial: 1D21A48A88F196A8E46D549F04B0717D320927EB
Authority key identifier: C2:96:7F:F3:10:9E:0A:A7:EE:5E:C1:C6:40:30:0D:5A:00:FF:41:B0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e36392e302f32342d3234203d3e20323730303439.roa
Signing time: Tue 04 Feb 2025 18:39:40 +0000
ROA not before: Tue 04 Feb 2025 18:34:40 +0000
ROA not after: Tue 03 Feb 2026 18:39:40 +0000
asID: 270049
IP address blocks: 66.231.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:21:a4:8a:88:f1:96:a8:e4:6d:54:9f:04:b0:71:7d:32:09:27:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0
Validity
Not Before: Feb 4 18:34:40 2025 GMT
Not After : Feb 3 18:39:40 2026 GMT
Subject: CN=EA7745FAA63C9F96831C8FE9C47DF45EAEBD1ECE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:86:61:40:c2:84:ce:5e:b6:86:ed:f3:2e:ca:
d8:0d:fa:22:3f:e3:1c:d0:d9:38:88:cb:76:0e:7c:
72:7c:f2:9a:d4:3e:99:f7:f2:b7:0b:d9:8d:03:c5:
7c:a0:ce:e6:f0:d8:12:5d:df:68:37:93:a6:75:5c:
55:e7:f3:c7:89:bc:04:2a:c3:71:50:25:fd:71:84:
c2:7b:1e:6c:ae:0a:0d:6c:f1:25:84:a2:9e:ca:ee:
12:16:28:11:7c:04:81:81:47:06:92:08:06:b4:14:
f3:b7:56:e6:b7:ed:f7:e2:6e:76:3a:22:0e:95:07:
7e:ec:92:f2:e5:d5:c3:0d:6f:9a:d9:62:8c:a0:af:
df:cd:7b:31:ef:66:ec:d8:29:29:9e:3a:49:eb:65:
1d:1c:a9:ab:7b:c8:59:a7:e5:61:bc:a3:2f:1f:9d:
2f:61:9d:35:d6:88:56:66:f5:7c:65:5c:a0:7b:c2:
e8:71:08:1b:ce:81:95:23:58:38:fb:93:54:fe:c8:
9e:66:b2:c6:6d:98:54:7e:68:13:a6:73:0a:d8:0a:
8b:38:ac:47:c0:03:66:34:e9:90:c7:9a:19:19:22:
61:9d:29:44:38:c9:52:3b:ad:87:1e:6f:2b:39:4a:
60:8f:4b:dd:a9:81:d3:58:4f:14:1c:53:41:70:2b:
02:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:77:45:FA:A6:3C:9F:96:83:1C:8F:E9:C4:7D:F4:5E:AE:BD:1E:CE
X509v3 Authority Key Identifier:
keyid:C2:96:7F:F3:10:9E:0A:A7:EE:5E:C1:C6:40:30:0D:5A:00:FF:41:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e36392e302f32342d3234203d3e20323730303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.231.69.0/24
Signature Algorithm: sha256WithRSAEncryption
32:eb:47:eb:95:78:25:c6:35:5c:d4:24:77:73:7f:a9:86:9c:
47:d8:7f:b0:fc:c2:d3:9f:2b:6f:15:87:0e:75:74:ae:70:34:
d0:06:55:d8:5b:bc:20:c9:8a:3b:fc:93:b3:e4:d5:19:98:e6:
c1:a2:2a:40:77:f8:b5:b8:6a:b5:ee:2d:20:a2:39:bd:2b:41:
a9:6c:7e:0b:54:11:ea:5e:fc:a2:36:ee:44:9f:8b:65:e0:c6:
6b:72:69:d4:b0:69:0d:79:8b:b6:1a:83:2d:66:30:43:15:23:
7d:b9:22:68:fd:be:e2:46:bb:cd:bc:0e:57:1f:91:7a:03:0f:
73:47:56:24:6f:63:cc:01:49:9a:53:22:16:f3:f0:33:5f:40:
da:01:98:d4:ff:e6:dc:f8:c5:c7:14:f8:dc:08:64:9a:1f:d1:
ef:3c:91:87:39:6c:60:40:6c:a2:90:55:96:6c:30:80:bb:f3:
ad:f9:42:a8:de:ff:ba:6a:65:f0:0c:5a:62:66:b9:2e:c2:b6:
d9:d9:b1:92:5d:9b:67:69:2c:32:ed:91:18:d7:bd:9c:28:5d:
6f:64:37:cc:74:e8:ea:c1:80:bf:88:da:3e:d7:64:2a:d3:39:
1d:7c:05:31:30:ad:87:88:bd:7e:b5:0c:84:ee:72:89:31:3b:
3b:0d:27:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:32 2025 by rpki-client