Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E3BCD570957353FBE338DF0B293CE538800C1E3BE86B71E08640DD7C617EC6E6/0/34352e3138392e3138342e302f32342d3234203d3e20323639383734.roa
File: 34352e3138392e3138342e302f32342d3234203d3e20323639383734.roa (raw, json)
Hash identifier: QYwYIk5iFD+DUXDDfofr7TxT/PKYXVjl671/DTNG2P4=
Subject key identifier: E7:49:B3:FD:5A:F1:CD:B0:02:5E:C3:B1:D8:50:CC:A1:B1:EA:53:33
Certificate issuer: /CN=A7ED823CB6F767E5A4BC7203F538E97EF6F59F3A
Certificate serial: 20E4BB659C753B5DB3791B4803767824B62E3A4B
Authority key identifier: A7:ED:82:3C:B6:F7:67:E5:A4:BC:72:03:F5:38:E9:7E:F6:F5:9F:3A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A7ED823CB6F767E5A4BC7203F538E97EF6F59F3A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E3BCD570957353FBE338DF0B293CE538800C1E3BE86B71E08640DD7C617EC6E6/0/34352e3138392e3138342e302f32342d3234203d3e20323639383734.roa
Signing time: Tue 04 Feb 2025 18:04:43 +0000
ROA not before: Tue 04 Feb 2025 17:59:43 +0000
ROA not after: Tue 03 Feb 2026 18:04:43 +0000
asID: 269874
IP address blocks: 45.189.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:e4:bb:65:9c:75:3b:5d:b3:79:1b:48:03:76:78:24:b6:2e:3a:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A7ED823CB6F767E5A4BC7203F538E97EF6F59F3A
Validity
Not Before: Feb 4 17:59:43 2025 GMT
Not After : Feb 3 18:04:43 2026 GMT
Subject: CN=E749B3FD5AF1CDB0025EC3B1D850CCA1B1EA5333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:91:5f:7e:a7:ba:ba:66:13:71:f0:7e:52:81:
30:43:1f:9e:d6:78:ba:74:74:45:05:a8:6c:1e:81:
db:22:68:52:37:a1:bc:7e:6b:92:78:9d:65:7a:00:
1e:91:94:05:4c:e5:4e:5d:5d:dd:43:39:14:57:28:
ad:0d:09:6d:16:e6:ab:cf:4e:7d:ca:39:f6:b0:50:
7b:c9:51:d1:19:06:fe:d2:9a:9d:ba:1c:ce:8f:04:
db:01:78:01:75:d1:10:2e:ad:ee:24:78:1f:26:ff:
aa:17:78:3a:ac:42:41:82:5c:08:e6:ce:d7:ea:c5:
53:1a:7d:68:9c:1f:75:71:1d:14:01:ed:15:86:ff:
78:9f:94:e6:23:32:cc:00:28:73:a0:bb:39:a3:95:
39:e5:77:9e:20:8c:dd:0f:60:d3:2f:33:b0:dc:70:
57:b2:14:81:75:46:f2:6e:d9:66:8e:ae:02:ca:bd:
bf:7f:8a:9f:30:a9:98:6f:ce:18:d4:93:f9:3b:ae:
3c:f0:f4:36:cc:41:b8:e3:e4:ad:ac:e1:1e:b2:1f:
6b:d8:a6:44:53:95:7e:97:0b:6f:23:fd:36:d1:ed:
dd:4f:5c:60:fb:57:0d:7a:e2:76:1f:7b:73:fd:f3:
99:f2:fe:f1:f7:69:24:7f:96:95:3e:a4:96:74:0c:
74:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:49:B3:FD:5A:F1:CD:B0:02:5E:C3:B1:D8:50:CC:A1:B1:EA:53:33
X509v3 Authority Key Identifier:
keyid:A7:ED:82:3C:B6:F7:67:E5:A4:BC:72:03:F5:38:E9:7E:F6:F5:9F:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E3BCD570957353FBE338DF0B293CE538800C1E3BE86B71E08640DD7C617EC6E6/0/A7ED823CB6F767E5A4BC7203F538E97EF6F59F3A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A7ED823CB6F767E5A4BC7203F538E97EF6F59F3A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E3BCD570957353FBE338DF0B293CE538800C1E3BE86B71E08640DD7C617EC6E6/0/34352e3138392e3138342e302f32342d3234203d3e20323639383734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.189.184.0/24
Signature Algorithm: sha256WithRSAEncryption
55:44:75:13:5f:00:04:bc:ee:19:1a:88:9d:93:e1:c5:08:04:
19:29:dc:4a:8f:e0:2b:d9:a7:16:3e:4f:43:20:e7:4c:28:eb:
41:b7:53:b3:7c:ad:eb:32:8e:fd:08:d9:12:36:bd:00:0a:8d:
36:a9:0c:29:e2:55:af:9d:cd:b2:73:ec:ee:4a:bd:61:d3:43:
80:a5:64:3c:11:81:56:41:5f:2e:3a:fa:85:e8:0b:39:06:ea:
dd:9a:b8:9c:6d:60:a1:af:6d:8a:b5:96:a3:90:18:d5:ae:b2:
78:cd:3b:fa:79:ec:16:ef:28:4a:e1:55:b0:9f:32:1e:93:d8:
b5:9e:8a:d8:88:16:01:93:6a:43:b1:dd:8d:e4:b6:41:00:a6:
4e:5a:0e:2e:c4:be:14:8c:99:b1:96:35:e2:5b:cb:0b:49:72:
8b:5d:2a:9f:d4:31:47:a9:1c:17:84:12:4d:af:02:c1:a6:1c:
37:93:12:b6:bd:a8:d6:81:ce:e8:df:76:3b:83:36:15:d4:5c:
57:97:47:33:56:31:3f:e3:c1:d2:6b:7f:22:18:03:37:72:c3:
90:72:54:3a:21:45:b1:29:2d:71:a2:df:30:d2:54:f3:cf:4f:
8d:be:6b:01:54:1b:f7:33:32:20:1c:67:42:ad:17:c2:ee:fe:
22:b9:51:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:31:21 2025 by rpki-client