Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32382e302f32342d3234203d3e20323634373436.roa
File: 3137302e3235342e32382e302f32342d3234203d3e20323634373436.roa (raw, json)
Hash identifier: Sj10ynhXRFy1afOypb9IlGV4s1rubsPuc7eDIwXga20=
Subject key identifier: D9:64:E5:BD:7A:B8:AA:B5:24:96:5F:C4:6D:F6:66:E7:AA:6D:55:5D
Certificate issuer: /CN=DF4F03C5770C7BA39912813367B5E868005CCD99
Certificate serial: 6F892671BDD3B68F1D22A353463443165BB20264
Authority key identifier: DF:4F:03:C5:77:0C:7B:A3:99:12:81:33:67:B5:E8:68:00:5C:CD:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF4F03C5770C7BA39912813367B5E868005CCD99.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32382e302f32342d3234203d3e20323634373436.roa
Signing time: Tue 04 Feb 2025 20:04:50 +0000
ROA not before: Tue 04 Feb 2025 19:59:50 +0000
ROA not after: Tue 03 Feb 2026 20:04:50 +0000
asID: 264746
IP address blocks: 170.254.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:89:26:71:bd:d3:b6:8f:1d:22:a3:53:46:34:43:16:5b:b2:02:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF4F03C5770C7BA39912813367B5E868005CCD99
Validity
Not Before: Feb 4 19:59:50 2025 GMT
Not After : Feb 3 20:04:50 2026 GMT
Subject: CN=D964E5BD7AB8AAB524965FC46DF666E7AA6D555D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1c:13:6f:3a:32:3c:ac:19:17:32:0d:d5:c6:
b5:f9:3d:0f:b6:00:8c:86:9d:06:a5:af:d4:ac:9d:
ed:6b:7b:80:d9:f3:86:09:58:09:51:27:31:2f:ec:
e1:93:58:e7:ad:aa:fe:5c:48:ae:35:d6:e1:de:51:
31:67:67:d0:68:8c:86:6c:56:5c:f3:15:f7:51:00:
95:4d:cd:52:c0:12:57:9d:00:99:d7:bb:b3:12:70:
4e:e0:4b:22:f4:14:61:2d:58:ff:73:a0:d6:86:ba:
ab:4e:3f:15:a3:a9:89:18:6c:f6:7c:94:ca:7b:36:
84:8a:89:1d:2e:4b:f8:ee:5a:b7:d3:d2:80:c6:d8:
75:6a:e0:2a:67:b7:4c:d3:c5:71:90:8d:00:00:c1:
74:00:56:2a:27:77:c0:d1:ae:28:48:2f:e2:26:10:
ce:f0:be:25:3e:52:33:a7:c0:9f:e2:d1:2a:ae:f8:
e8:d7:da:7c:eb:54:70:cf:3a:6b:b4:66:f1:7f:29:
48:1c:ba:b7:67:11:a1:b5:2c:55:a4:a8:43:b6:f5:
00:6c:62:2d:7f:56:45:83:c1:bd:56:e9:c2:79:3d:
f9:ce:e6:2c:67:8a:97:51:d5:b4:30:05:cd:f6:01:
23:83:c0:eb:81:6c:60:5d:b5:22:20:c3:16:d6:00:
2c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:64:E5:BD:7A:B8:AA:B5:24:96:5F:C4:6D:F6:66:E7:AA:6D:55:5D
X509v3 Authority Key Identifier:
keyid:DF:4F:03:C5:77:0C:7B:A3:99:12:81:33:67:B5:E8:68:00:5C:CD:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/DF4F03C5770C7BA39912813367B5E868005CCD99.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF4F03C5770C7BA39912813367B5E868005CCD99.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32382e302f32342d3234203d3e20323634373436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.254.28.0/24
Signature Algorithm: sha256WithRSAEncryption
37:79:54:c7:37:51:52:0d:32:4c:1e:e1:31:e0:bd:28:8f:90:
55:2b:22:c0:03:e7:64:79:c3:d3:98:0a:e1:cd:f2:46:65:1b:
91:29:27:70:4e:2e:3e:3d:f8:93:1a:0f:82:4d:23:74:48:d1:
40:c5:b2:39:2f:05:28:4a:d3:5a:41:3a:d2:13:ca:4f:51:3f:
6e:d6:52:dd:b4:e1:d5:f0:14:96:7d:e5:6f:b2:9a:ea:49:53:
78:77:aa:ba:a3:09:5b:9c:1c:fb:b8:4e:f4:b4:19:e3:c1:54:
a7:3b:09:f8:0a:4a:33:13:18:7a:a8:1f:4e:f1:2c:9e:af:55:
7f:9e:ea:86:44:29:34:1f:ed:f5:4a:e9:5b:a0:5b:4d:d6:93:
f8:46:66:0c:bb:a9:c2:b2:d0:d8:78:8a:1c:9c:29:53:e1:44:
0b:de:c2:d2:7b:78:7b:82:43:41:35:90:59:ac:5c:d1:1b:b2:
4e:42:b3:f2:3c:65:a6:2c:ce:af:c6:66:8d:b4:2d:8a:ca:e8:
74:69:13:f1:8b:2a:f0:04:2a:03:12:15:01:5a:57:21:6b:49:
c4:2e:c5:45:34:f7:62:7c:ae:0b:0a:05:e3:ae:48:65:5e:7c:
9e:0f:59:28:c1:09:c7:f9:44:c8:a3:13:81:72:a1:85:85:76:
80:e2:cf:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:57:49 2025 by rpki-client