Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DAEE146D6347C36A81F84E6FDD597E91F78FC7EA3270A9258F33E8FA870D2880/0/34352e3233392e3231362e302f32322d3234203d3e20323731383339.roa
File: 34352e3233392e3231362e302f32322d3234203d3e20323731383339.roa (raw, json)
Hash identifier: Bj0nm1n4WHfcZZSvRlS9rAMS5hAfN154DashuE/kWrU=
Subject key identifier: DE:DD:46:C4:AF:E1:94:9D:57:0D:B3:B5:EB:EB:68:C9:B8:3A:21:E9
Certificate issuer: /CN=2D8692867D0888EDE9943E1B31BAED70B4DB4811
Certificate serial: 552CB593381955EEECD45D98EE29F5E5D4AFC128
Authority key identifier: 2D:86:92:86:7D:08:88:ED:E9:94:3E:1B:31:BA:ED:70:B4:DB:48:11
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D8692867D0888EDE9943E1B31BAED70B4DB4811.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DAEE146D6347C36A81F84E6FDD597E91F78FC7EA3270A9258F33E8FA870D2880/0/34352e3233392e3231362e302f32322d3234203d3e20323731383339.roa
Signing time: Tue 04 Feb 2025 20:01:17 +0000
ROA not before: Tue 04 Feb 2025 19:56:17 +0000
ROA not after: Tue 03 Feb 2026 20:01:17 +0000
asID: 271839
IP address blocks: 45.239.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:2c:b5:93:38:19:55:ee:ec:d4:5d:98:ee:29:f5:e5:d4:af:c1:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D8692867D0888EDE9943E1B31BAED70B4DB4811
Validity
Not Before: Feb 4 19:56:17 2025 GMT
Not After : Feb 3 20:01:17 2026 GMT
Subject: CN=DEDD46C4AFE1949D570DB3B5EBEB68C9B83A21E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:85:14:ec:2b:e6:d4:92:1a:33:c1:49:c4:f0:
c4:64:64:57:fd:20:de:ce:94:b5:24:2b:b1:44:bb:
74:e7:0b:f4:20:84:c3:35:2b:7a:42:ca:25:ec:f0:
81:aa:57:03:74:32:0d:6c:e8:40:d6:f9:9a:01:f7:
18:f8:86:61:90:63:1e:1b:d6:25:32:42:ff:ef:4f:
ae:a2:ae:9f:83:94:8c:69:79:d3:94:61:78:50:04:
d3:1a:c6:57:fa:60:b5:e2:15:cb:3d:7a:70:5c:28:
f1:45:71:47:f8:b8:c0:8f:0b:51:4c:8d:1f:f9:12:
e8:29:24:cc:8a:a2:0c:b6:30:00:87:bd:25:78:7c:
48:13:28:b9:6e:20:70:2a:a6:b2:8a:a1:0a:1e:b4:
fb:46:9f:15:21:25:b3:d5:c5:20:8b:df:4a:e4:a1:
86:4b:a8:ed:91:54:fc:77:20:3a:a2:e6:21:c9:27:
ee:b3:55:7d:58:6f:49:c6:bb:f0:3c:00:c2:06:be:
a1:cf:c2:87:3a:ed:79:15:f6:89:d9:2c:72:df:4c:
64:b0:88:e3:13:f3:b2:a3:b5:87:4d:63:68:eb:e9:
c7:4f:d9:ed:2f:24:cf:81:d5:69:22:52:45:f5:c2:
45:34:d2:22:ab:2c:24:e7:a3:5f:44:b6:26:6f:30:
df:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DD:46:C4:AF:E1:94:9D:57:0D:B3:B5:EB:EB:68:C9:B8:3A:21:E9
X509v3 Authority Key Identifier:
keyid:2D:86:92:86:7D:08:88:ED:E9:94:3E:1B:31:BA:ED:70:B4:DB:48:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DAEE146D6347C36A81F84E6FDD597E91F78FC7EA3270A9258F33E8FA870D2880/0/2D8692867D0888EDE9943E1B31BAED70B4DB4811.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D8692867D0888EDE9943E1B31BAED70B4DB4811.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DAEE146D6347C36A81F84E6FDD597E91F78FC7EA3270A9258F33E8FA870D2880/0/34352e3233392e3231362e302f32322d3234203d3e20323731383339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.239.216.0/22
Signature Algorithm: sha256WithRSAEncryption
80:d5:e0:10:59:51:53:d0:bc:68:64:50:54:5d:80:87:23:d5:
f9:5a:72:fa:83:70:9b:c5:6c:a4:49:0b:14:7c:f2:30:2f:43:
82:0c:dc:8f:d1:16:57:86:26:84:ec:c3:c7:2d:8a:e1:76:59:
6a:84:98:bc:b7:1d:8c:6f:8d:78:60:82:9b:a0:1d:f5:12:5c:
05:e5:10:8f:ae:ad:eb:56:6e:04:20:49:7d:9c:1d:50:5a:b8:
ee:32:7e:da:d4:ee:36:ef:92:c4:b8:88:80:13:eb:36:c7:63:
f0:95:92:95:d4:99:3f:be:42:76:9b:75:61:97:30:77:af:77:
53:45:30:fe:74:4e:52:df:51:71:ea:e4:00:25:4f:37:74:5f:
14:1f:ac:91:46:a0:5b:56:f7:09:62:e6:1f:65:9b:6e:3d:51:
df:74:f8:5b:cb:02:46:f1:23:d7:58:9c:0b:c7:0f:e3:95:57:
9b:02:d1:44:d6:5e:84:d1:ba:ec:a6:76:bb:8d:2a:f4:d5:eb:
0a:46:fa:7d:1b:56:75:48:9d:0d:5b:9f:39:15:f8:ff:b8:d2:
18:17:07:b2:db:4f:5f:9e:8f:b7:3a:b2:c6:cd:46:69:e7:32:
aa:eb:47:5e:15:12:ea:c2:5f:dc:bd:7f:75:19:81:1d:ba:13:
66:33:bc:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:14:09 2025 by rpki-client