Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DD4A8420D0926D97FB3843697FC4B592D7C823D66995F3C00000CFA2C5E4502B/0/34352e342e38382e302f32322d3234203d3e203532343638.roa
File: 34352e342e38382e302f32322d3234203d3e203532343638.roa (raw, json)
Hash identifier: hHC5GLdFThGH85eiEBKMHuc1uGWotmAuVXiCCcqb9b4=
Subject key identifier: 33:6A:CF:AA:EE:C2:13:37:02:8E:76:CD:66:40:03:D0:CE:1A:43:8B
Certificate issuer: /CN=F1BC5A3AF8D77F603855EA8FCD43EAB619B5F518
Certificate serial: 402104628EF5587168817864E9E029D5B76C64EB
Authority key identifier: F1:BC:5A:3A:F8:D7:7F:60:38:55:EA:8F:CD:43:EA:B6:19:B5:F5:18
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F1BC5A3AF8D77F603855EA8FCD43EAB619B5F518.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DD4A8420D0926D97FB3843697FC4B592D7C823D66995F3C00000CFA2C5E4502B/0/34352e342e38382e302f32322d3234203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:45:44 +0000
ROA not before: Tue 04 Feb 2025 18:40:44 +0000
ROA not after: Tue 03 Feb 2026 18:45:44 +0000
asID: 52468
IP address blocks: 45.4.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:21:04:62:8e:f5:58:71:68:81:78:64:e9:e0:29:d5:b7:6c:64:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1BC5A3AF8D77F603855EA8FCD43EAB619B5F518
Validity
Not Before: Feb 4 18:40:44 2025 GMT
Not After : Feb 3 18:45:44 2026 GMT
Subject: CN=336ACFAAEEC21337028E76CD664003D0CE1A438B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ca:c4:91:c0:c0:95:1b:7f:12:2f:ec:49:2d:
0d:8f:cd:69:4a:7a:4d:f9:29:26:1b:d8:53:f4:e3:
5b:c3:a4:41:b4:50:35:5b:e2:cc:14:f4:5d:76:bd:
d5:15:77:83:6d:90:fb:31:c2:c5:43:a4:41:2a:7a:
ba:49:8f:fc:65:f9:c9:31:bf:43:5b:b5:f1:93:45:
36:c6:c4:2f:a4:9d:6c:52:a0:d6:48:81:0c:11:5f:
1c:d3:90:db:a3:0e:7e:b3:6d:e7:4d:df:02:5b:b4:
de:b0:e9:ed:cb:94:75:cb:64:e5:e4:f2:e9:64:8b:
3e:12:7f:a6:73:2a:a2:dd:26:2b:de:10:90:f1:83:
54:c7:6a:12:f2:1f:f4:5e:82:bb:d5:2b:ab:62:50:
7e:98:06:82:3e:34:04:fa:64:d6:34:03:20:a5:5e:
c9:1c:34:96:6d:cf:5c:b3:ce:01:96:2c:ab:dd:2f:
a3:fd:bb:ee:30:71:07:14:2a:60:54:64:8d:ac:97:
5e:d8:03:ad:44:da:5f:33:39:72:48:ba:6d:8a:ba:
27:be:83:54:7e:bf:26:1d:d9:f2:52:da:d4:b5:6e:
9b:a8:00:b6:81:6c:51:de:91:56:08:32:9c:12:d2:
b0:8c:50:86:e6:d2:96:4d:99:41:35:ac:cb:82:f8:
ec:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:6A:CF:AA:EE:C2:13:37:02:8E:76:CD:66:40:03:D0:CE:1A:43:8B
X509v3 Authority Key Identifier:
keyid:F1:BC:5A:3A:F8:D7:7F:60:38:55:EA:8F:CD:43:EA:B6:19:B5:F5:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DD4A8420D0926D97FB3843697FC4B592D7C823D66995F3C00000CFA2C5E4502B/0/F1BC5A3AF8D77F603855EA8FCD43EAB619B5F518.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F1BC5A3AF8D77F603855EA8FCD43EAB619B5F518.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DD4A8420D0926D97FB3843697FC4B592D7C823D66995F3C00000CFA2C5E4502B/0/34352e342e38382e302f32322d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.88.0/22
Signature Algorithm: sha256WithRSAEncryption
24:98:13:b8:6f:ac:bb:0a:e8:cb:d5:e7:fc:12:e0:5a:a8:ae:
78:a0:2a:24:4e:9c:50:10:73:ec:61:c7:9d:ba:a4:ff:72:15:
1f:6f:3c:fa:cf:59:ca:99:12:37:2d:20:d4:00:ef:6c:49:77:
1e:f6:7e:56:26:d7:34:c0:7b:d1:68:1a:31:de:d4:c0:fe:86:
5c:fc:db:37:17:56:ab:4b:16:31:dd:2f:4b:6f:e2:ef:24:b4:
53:5e:36:e0:29:50:4b:07:51:64:6a:0f:78:cb:4f:fb:36:f0:
3e:06:e9:63:2f:b0:f9:3c:89:cb:3c:11:25:cc:48:e2:ab:38:
9c:9f:63:06:c5:76:2a:08:30:33:be:ca:64:87:f4:df:d5:2c:
1f:b1:bd:64:cd:2d:d2:07:dc:1e:6e:e9:64:86:11:8d:dc:a9:
bd:a9:f6:1c:f7:1b:3f:45:ba:62:79:38:7e:0d:70:c5:59:8c:
af:ea:fb:73:04:df:8f:2d:44:3a:ec:ef:db:f2:08:20:48:24:
ff:a2:9d:bc:73:50:48:ee:e5:99:9e:1c:ab:f4:4b:28:22:82:
c3:fe:44:38:01:8c:10:c5:a3:d4:9d:6b:bd:f7:42:07:37:b4:
d6:aa:4d:f6:35:1d:d1:4f:6c:41:ed:fc:e9:59:67:99:6b:fd:
6f:da:5e:03
-----BEGIN CERTIFICATE-----
MIIFuDCCBKCgAwIBAgIUQCEEYo71WHFogXhk6eAp1bdsZOswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjFCQzVBM0FGOEQ3N0Y2MDM4NTVFQThGQ0Q0M0VBQjYx
OUI1RjUxODAeFw0yNTAyMDQxODQwNDRaFw0yNjAyMDMxODQ1NDRaMDMxMTAvBgNV
BAMTKDMzNkFDRkFBRUVDMjEzMzcwMjhFNzZDRDY2NDAwM0QwQ0UxQTQzOEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqysSRwMCVG38SL+xJLQ2PzWlK
ek35KSYb2FP041vDpEG0UDVb4swU9F12vdUVd4NtkPsxwsVDpEEqerpJj/xl+ckx
v0NbtfGTRTbGxC+knWxSoNZIgQwRXxzTkNujDn6zbedN3wJbtN6w6e3LlHXLZOXk
8ulkiz4Sf6ZzKqLdJiveEJDxg1THahLyH/RegrvVK6tiUH6YBoI+NAT6ZNY0AyCl
XskcNJZtz1yzzgGWLKvdL6P9u+4wcQcUKmBUZI2sl17YA61E2l8zOXJIum2Kuie+
g1R+vyYd2fJS2tS1bpuoALaBbFHekVYIMpwS0rCMUIbm0pZNmUE1rMuC+OwFAgMB
AAGjggLCMIICvjAdBgNVHQ4EFgQUM2rPqu7CEzcCjnbNZkAD0M4aQ4swHwYDVR0j
BBgwFoAU8bxaOvjXf2A4VeqPzUPqthm19RgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9ERDRBODQyMEQwOTI2RDk3RkIzODQzNjk3RkM0QjU5MkQ3
QzgyM0Q2Njk5NUYzQzAwMDAwQ0ZBMkM1RTQ1MDJCLzAvRjFCQzVBM0FGOEQ3N0Y2
MDM4NTVFQThGQ0Q0M0VBQjYxOUI1RjUxOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GMUJDNUEzQUY4RDc3RjYwMzg1
NUVBOEZDRDQzRUFCNjE5QjVGNTE4LmNlcjCBwQYIKwYBBQUHAQsEgbQwgbEwga4G
CCsGAQUFBzALhoGhcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvREQ0QTg0MjBEMDkyNkQ5N0ZCMzg0MzY5N0ZDNEI1OTJEN0M4MjNENjY5
OTVGM0MwMDAwMENGQTJDNUU0NTAyQi8wLzM0MzUyZTM0MmUzODM4MmUzMDJmMzIz
MjJkMzIzNDIwM2QzZTIwMzUzMjM0MzYzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi0EWDANBgkqhkiG
9w0BAQsFAAOCAQEAJJgTuG+suwroy9Xn/BLgWqiueKAqJE6cUBBz7GHHnbqk/3IV
H288+s9ZypkSNy0g1ADvbEl3HvZ+VibXNMB70WgaMd7UwP6GXPzbNxdWq0sWMd0v
S2/i7yS0U1424ClQSwdRZGoPeMtP+zbwPgbpYy+w+TyJyzwRJcxI4qs4nJ9jBsV2
KggwM77KZIf039UsH7G9ZM0t0gfcHm7pZIYRjdypvan2HPcbP0W6Ynk4fg1wxVmM
r+r7cwTfjy1EOuzv2/IIIEgk/6KdvHNQSO7lmZ4cq/RLKCKCw/5EOAGMEMWj1J1r
vfdCBze01qpN9jUd0U9sQe386VlnmWv9b9peAw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:45:57 2025 by rpki-client