Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E579BF8D5E48275B6F11AB178D05BB56B07B67D522BA447C8114064F9FC77CA5/0/3136382e3233322e32382e302f32322d3234203d3e203238303037.roa
File: 3136382e3233322e32382e302f32322d3234203d3e203238303037.roa (raw, json)
Hash identifier: LxKvrW4/fcjO0SQ4cpqYyvZCQOKmipLAKuwh0PPEm+E=
Subject key identifier: 1E:9F:A8:3C:39:F1:DC:74:7F:A0:21:D1:0E:32:C0:15:12:5D:EA:03
Certificate issuer: /CN=3D8CF3696583CC1AFB700F202360AEB49355D862
Certificate serial: 47955E8007D1856BFF27E5E658CDB72C724BC27C
Authority key identifier: 3D:8C:F3:69:65:83:CC:1A:FB:70:0F:20:23:60:AE:B4:93:55:D8:62
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D8CF3696583CC1AFB700F202360AEB49355D862.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E579BF8D5E48275B6F11AB178D05BB56B07B67D522BA447C8114064F9FC77CA5/0/3136382e3233322e32382e302f32322d3234203d3e203238303037.roa
Signing time: Tue 04 Feb 2025 18:49:19 +0000
ROA not before: Tue 04 Feb 2025 18:44:19 +0000
ROA not after: Tue 03 Feb 2026 18:49:19 +0000
asID: 28007
IP address blocks: 168.232.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:95:5e:80:07:d1:85:6b:ff:27:e5:e6:58:cd:b7:2c:72:4b:c2:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D8CF3696583CC1AFB700F202360AEB49355D862
Validity
Not Before: Feb 4 18:44:19 2025 GMT
Not After : Feb 3 18:49:19 2026 GMT
Subject: CN=1E9FA83C39F1DC747FA021D10E32C015125DEA03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d0:a1:13:87:40:ba:09:0e:be:ac:82:0f:bb:
6a:40:ca:fe:5f:32:b3:e5:58:94:0b:97:c0:4e:33:
cc:99:4f:37:17:08:f4:b0:d8:d7:26:b5:41:55:fd:
cc:1e:a1:73:70:b4:46:f6:da:6f:7d:46:14:05:ea:
db:60:9e:c1:cd:fb:27:3e:1d:4f:b8:0e:f8:27:d5:
83:28:b0:65:95:27:60:2d:cb:7b:19:6b:8e:ed:31:
d2:04:4b:e3:9b:5d:2a:fb:8f:20:62:fe:47:ec:76:
0a:89:c2:28:a3:5f:62:68:a7:d1:b7:03:e4:f3:13:
f1:2e:3a:44:d7:05:83:b9:a3:1f:40:34:93:47:1e:
d3:69:8a:a0:c0:d7:12:1b:ab:2a:4a:eb:e1:11:c8:
36:03:89:c8:d1:82:47:86:3f:c6:85:ad:6a:40:8a:
6e:60:d1:5e:77:80:9b:e7:ad:19:a1:8d:ef:c7:06:
76:de:0d:5c:39:00:e8:28:1a:14:9f:7b:95:37:96:
f3:ca:04:4f:fe:30:3a:e6:6d:a6:d3:98:62:ac:ad:
fe:40:f0:3c:79:dd:50:f8:b3:8c:78:60:11:40:64:
cf:cf:02:a5:73:9f:aa:b8:6d:27:83:fd:43:23:f0:
07:c6:b2:60:f1:a1:e9:55:3c:13:dc:60:15:2a:bb:
5a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:9F:A8:3C:39:F1:DC:74:7F:A0:21:D1:0E:32:C0:15:12:5D:EA:03
X509v3 Authority Key Identifier:
keyid:3D:8C:F3:69:65:83:CC:1A:FB:70:0F:20:23:60:AE:B4:93:55:D8:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E579BF8D5E48275B6F11AB178D05BB56B07B67D522BA447C8114064F9FC77CA5/0/3D8CF3696583CC1AFB700F202360AEB49355D862.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D8CF3696583CC1AFB700F202360AEB49355D862.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E579BF8D5E48275B6F11AB178D05BB56B07B67D522BA447C8114064F9FC77CA5/0/3136382e3233322e32382e302f32322d3234203d3e203238303037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.232.28.0/22
Signature Algorithm: sha256WithRSAEncryption
94:3a:1e:3b:ca:b1:ec:04:3c:fc:37:1d:0a:07:82:ef:17:f1:
55:34:8a:ba:71:6c:6b:7c:75:27:c3:67:7c:f5:9f:a5:66:32:
29:77:42:43:d4:03:02:b6:da:68:eb:cb:96:40:07:d3:01:d6:
9a:7e:39:69:ee:df:6c:8b:d2:18:a0:89:9f:2c:2d:31:45:bc:
01:28:17:1f:69:e6:d7:2c:f0:a8:b0:10:93:30:ec:7c:dc:3a:
c2:56:b1:d3:c8:66:d8:61:c9:fd:ae:79:11:8f:cb:89:c3:6a:
d9:3a:b1:0a:21:3a:db:86:62:b0:83:86:4d:c5:7a:a4:a3:bc:
e3:db:7b:1b:bc:41:28:3a:2f:82:be:48:8d:0d:20:6b:ba:a8:
ba:f0:c5:3f:79:b5:9d:a0:9e:c3:d9:97:77:27:44:d0:b4:a1:
55:fe:d1:35:e7:61:cb:f4:71:6b:e9:e7:0d:d7:b2:b2:92:eb:
9b:7b:47:9a:f8:24:7a:ce:a6:ab:71:91:fd:81:bc:4b:85:17:
f9:28:20:b4:ab:c9:da:e9:7b:9c:84:1e:68:33:a4:81:c8:27:
09:66:15:22:52:90:a0:59:08:31:14:dd:b7:fb:28:72:6d:f1:
41:39:97:15:bc:6c:da:53:b5:2c:01:40:1c:53:0a:8e:79:4d:
2f:b4:11:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:03:27 2025 by rpki-client