Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32382e302f32342d3234203d3e20323637363939.roa
File: 3137302e3235342e32382e302f32342d3234203d3e20323637363939.roa (raw, json)
Hash identifier: t30ie3TztAepU3GOLNQM4YDjp9L7bkqMtRJamNhp+Xk=
Subject key identifier: 40:32:C0:1B:F1:9B:E5:60:B3:66:2C:BF:28:8C:FF:AE:70:40:68:F4
Certificate issuer: /CN=DF4F03C5770C7BA39912813367B5E868005CCD99
Certificate serial: 60CDA3A3A711958CBDB5AD9A85AC4AEF0870AFA0
Authority key identifier: DF:4F:03:C5:77:0C:7B:A3:99:12:81:33:67:B5:E8:68:00:5C:CD:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF4F03C5770C7BA39912813367B5E868005CCD99.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32382e302f32342d3234203d3e20323637363939.roa
Signing time: Tue 04 Feb 2025 20:04:49 +0000
ROA not before: Tue 04 Feb 2025 19:59:49 +0000
ROA not after: Tue 03 Feb 2026 20:04:49 +0000
asID: 267699
IP address blocks: 170.254.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:cd:a3:a3:a7:11:95:8c:bd:b5:ad:9a:85:ac:4a:ef:08:70:af:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF4F03C5770C7BA39912813367B5E868005CCD99
Validity
Not Before: Feb 4 19:59:49 2025 GMT
Not After : Feb 3 20:04:49 2026 GMT
Subject: CN=4032C01BF19BE560B3662CBF288CFFAE704068F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:8f:7b:20:99:c4:72:df:31:41:4e:a3:29:ed:
76:18:a4:dc:95:8c:24:e8:3b:0b:06:54:ef:d1:04:
f2:c4:a4:56:ad:26:e1:6b:0d:0a:b3:da:e8:ad:a6:
90:4a:da:4a:81:32:bd:bc:1a:8d:3b:51:fa:1f:4d:
38:2a:5b:13:22:9a:25:fd:2f:0d:c8:30:4f:b9:b2:
df:84:4b:99:70:9e:14:36:11:90:84:71:6c:02:f2:
d2:b4:c0:8b:4e:02:ac:40:3b:da:cb:ff:4f:c2:73:
ab:94:56:aa:10:16:df:09:3a:34:ee:f2:17:94:3d:
9d:61:8a:b8:49:f1:1b:55:e0:f3:ec:58:00:f1:f2:
d5:ed:3d:be:86:d6:62:c1:cc:0e:39:6d:d0:6e:ee:
54:f9:19:ab:0f:06:b3:2f:5b:7a:27:20:76:55:39:
91:fa:02:14:b9:f9:74:cf:72:6c:a9:a6:4d:a7:4e:
34:7d:7c:19:87:f8:bd:92:54:ff:a6:a7:fb:ee:7a:
96:c5:b9:ec:4f:b4:44:cf:ce:df:b5:b4:f6:71:ea:
1c:dd:fe:ff:a7:56:cf:ee:7e:e7:bb:cb:59:9a:54:
b7:c9:70:69:05:02:ed:77:f4:34:26:20:1e:f7:b6:
97:0d:ba:75:97:86:b4:26:78:79:2e:fa:c4:22:35:
4f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:32:C0:1B:F1:9B:E5:60:B3:66:2C:BF:28:8C:FF:AE:70:40:68:F4
X509v3 Authority Key Identifier:
keyid:DF:4F:03:C5:77:0C:7B:A3:99:12:81:33:67:B5:E8:68:00:5C:CD:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/DF4F03C5770C7BA39912813367B5E868005CCD99.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF4F03C5770C7BA39912813367B5E868005CCD99.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E08D933682F688ED8C36D0FC1F34B68315053D3F371F684B9A387A5FA6709F17/0/3137302e3235342e32382e302f32342d3234203d3e20323637363939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.254.28.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:96:90:70:88:00:ba:71:e3:36:be:93:36:62:98:8c:90:96:
e9:de:ef:2d:53:40:68:20:0d:d8:90:bc:b2:d5:8e:d7:03:5b:
e9:ba:eb:48:22:c0:fb:e3:94:4d:76:ad:b1:8f:24:95:cb:91:
58:42:0b:81:9d:9b:bb:c0:f2:00:46:06:ee:65:23:4e:6e:57:
ab:2b:e2:a7:24:a8:c6:fb:9d:75:01:a0:d8:4c:a5:96:3a:57:
a8:2d:b2:65:13:25:9f:54:31:f2:dd:b5:f5:54:ba:45:18:83:
71:47:6e:52:07:2f:22:ea:ad:7c:f3:9e:3d:1a:48:84:7b:ca:
c0:fb:99:a9:39:5d:b8:32:af:7d:5c:9d:6c:69:b8:1b:23:46:
ba:a6:55:6c:31:bc:d3:d5:e3:dc:e0:88:69:7e:30:49:e7:f3:
c5:eb:e5:20:11:cb:62:f8:9a:3e:64:fe:24:73:cf:ae:f4:73:
2f:54:38:41:af:6a:e3:11:e8:f1:b5:a8:79:67:15:73:c8:80:
9f:c5:23:3f:c6:da:2b:cf:a2:d1:a3:18:86:ac:c7:ca:57:74:
f2:51:22:56:a5:d9:a5:12:4b:29:c3:10:5a:52:52:6b:43:18:
f6:ac:42:3c:fe:f4:75:67:d0:51:ed:d9:34:5c:77:62:78:9a:
ce:36:83:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 14:06:31 2025 by rpki-client