Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DAC2BC754BFDD4535D49F99D0671743C3C0825A6B6D57B48E7350451BA87E9EF/0/3230312e3135382e35322e302f32322d3232203d3e203332303334.roa
File: 3230312e3135382e35322e302f32322d3232203d3e203332303334.roa (raw, json)
Hash identifier: vPXHeyaYYZgqh5jQX5UJQHfvZIJWfuopjgFQi4qsXE8=
Subject key identifier: 1E:E8:5E:46:55:C1:A6:50:11:50:23:09:67:33:03:D2:46:0B:28:EE
Certificate issuer: /CN=DC553BD05B33548C342568566291E719B4FA73B9
Certificate serial: 73E70FE0C4181A3DAE11338FB625037AE511D25A
Authority key identifier: DC:55:3B:D0:5B:33:54:8C:34:25:68:56:62:91:E7:19:B4:FA:73:B9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DC553BD05B33548C342568566291E719B4FA73B9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DAC2BC754BFDD4535D49F99D0671743C3C0825A6B6D57B48E7350451BA87E9EF/0/3230312e3135382e35322e302f32322d3232203d3e203332303334.roa
Signing time: Tue 04 Feb 2025 18:19:45 +0000
ROA not before: Tue 04 Feb 2025 18:14:45 +0000
ROA not after: Tue 03 Feb 2026 18:19:45 +0000
asID: 32034
IP address blocks: 201.158.52.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:e7:0f:e0:c4:18:1a:3d:ae:11:33:8f:b6:25:03:7a:e5:11:d2:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DC553BD05B33548C342568566291E719B4FA73B9
Validity
Not Before: Feb 4 18:14:45 2025 GMT
Not After : Feb 3 18:19:45 2026 GMT
Subject: CN=1EE85E4655C1A65011502309673303D2460B28EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:17:b1:db:1e:cf:ad:e0:3d:23:4f:57:10:d5:
e1:72:3a:b0:03:51:96:e2:dc:2d:51:c3:6c:a3:92:
54:bb:f7:f0:5b:05:f6:ea:f8:80:13:54:8f:66:e8:
21:cc:94:e3:9d:4b:32:04:47:e8:1d:2c:46:0b:8a:
7e:8d:41:63:83:08:17:ee:f6:d2:80:9e:fb:91:78:
6b:68:4f:5a:b8:8e:0b:d0:d7:55:52:48:b5:28:84:
e7:af:4e:aa:d3:0c:18:c2:16:a1:fa:cb:11:e8:eb:
dc:82:6f:9d:2c:b7:12:82:73:07:0d:c6:56:d9:be:
8d:c5:3a:99:5e:14:e5:00:b7:0c:ea:32:32:37:da:
bf:84:90:1a:b6:84:53:57:88:4a:ec:7e:d9:0e:ec:
db:5b:8e:1e:fd:2a:1d:b9:4f:76:82:a1:28:58:cd:
2f:7b:f5:bb:fb:c5:9a:56:65:60:44:07:96:18:13:
1b:41:df:fd:a3:48:9c:1d:a0:1b:97:da:6f:08:86:
7d:8d:8e:9a:95:36:c1:90:84:e8:d1:31:e9:79:d8:
31:7b:83:00:0a:22:20:ee:59:8a:12:63:a1:7f:50:
73:28:eb:b4:11:53:4e:ca:ad:34:88:a9:82:d1:d4:
26:e7:a5:11:ee:59:97:99:1e:85:17:88:b4:10:b6:
e3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E8:5E:46:55:C1:A6:50:11:50:23:09:67:33:03:D2:46:0B:28:EE
X509v3 Authority Key Identifier:
keyid:DC:55:3B:D0:5B:33:54:8C:34:25:68:56:62:91:E7:19:B4:FA:73:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DAC2BC754BFDD4535D49F99D0671743C3C0825A6B6D57B48E7350451BA87E9EF/0/DC553BD05B33548C342568566291E719B4FA73B9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DC553BD05B33548C342568566291E719B4FA73B9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DAC2BC754BFDD4535D49F99D0671743C3C0825A6B6D57B48E7350451BA87E9EF/0/3230312e3135382e35322e302f32322d3232203d3e203332303334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.158.52.0/22
Signature Algorithm: sha256WithRSAEncryption
25:2d:58:78:49:a7:09:4a:34:45:d1:d7:58:fc:3c:59:ed:d6:
ab:2a:3a:4f:5d:0a:45:08:22:98:94:a8:c2:07:8e:a4:db:c2:
4d:7f:7d:9d:83:3c:ca:f8:16:bd:75:c6:d3:02:59:9a:f5:43:
8c:ab:ff:fd:10:15:5d:29:66:7a:1d:f7:ac:c7:a1:a2:85:f2:
50:ce:98:05:0a:93:a6:4d:b5:df:e7:91:e5:bb:aa:f2:bd:6f:
e4:ec:26:ea:65:54:1f:c7:7a:48:c6:63:8c:b0:f0:a8:b6:d9:
67:de:0b:ff:83:88:3f:a3:b7:c9:d7:9a:82:69:3b:1d:44:8d:
d9:a7:1a:93:0d:05:59:92:aa:4b:97:8f:4d:fc:0a:66:86:d0:
41:54:7e:a1:98:91:3a:5e:06:a0:04:83:e0:a5:71:43:bb:46:
6b:82:2d:9f:dc:f2:41:b7:b1:e0:81:27:8d:c0:df:fa:f3:b2:
dd:56:a3:14:da:eb:ea:61:72:62:cd:0f:93:ca:01:00:e0:19:
ec:ca:79:e4:00:24:10:f8:98:2c:24:0a:cd:b4:94:58:42:2e:
98:45:e5:ce:9d:3e:38:05:c3:71:21:ac:00:c8:96:3b:b6:90:
5f:0b:f3:cb:32:8a:0c:1b:c4:a2:f5:6c:e8:2e:60:a4:5a:02:
28:ea:77:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:10:13 2025 by rpki-client