Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/EE11B84CD61D902CE28213D0C39918102FCB56822AF6777BC9B24B1037D6BF1E/0/3133322e3235352e3230302e302f32322d3234203d3e20323633373230.roa
File: 3133322e3235352e3230302e302f32322d3234203d3e20323633373230.roa (raw, json)
Hash identifier: xDnWUGOzawViAOTl3n/xOA5xrnRBtMsngDJrOPOA9I4=
Subject key identifier: A9:74:84:63:52:AC:EE:A5:2F:3C:BD:13:15:C5:8D:7B:CD:DF:A6:CA
Certificate issuer: /CN=54BF01E8FEFC44F87E2FD9CC82977E2D63E63EC0
Certificate serial: 796679E0A5F478B647EF9E595B07F1028134CC
Authority key identifier: 54:BF:01:E8:FE:FC:44:F8:7E:2F:D9:CC:82:97:7E:2D:63:E6:3E:C0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/54BF01E8FEFC44F87E2FD9CC82977E2D63E63EC0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/EE11B84CD61D902CE28213D0C39918102FCB56822AF6777BC9B24B1037D6BF1E/0/3133322e3235352e3230302e302f32322d3234203d3e20323633373230.roa
Signing time: Tue 04 Feb 2025 18:54:51 +0000
ROA not before: Tue 04 Feb 2025 18:49:51 +0000
ROA not after: Tue 03 Feb 2026 18:54:51 +0000
asID: 263720
IP address blocks: 132.255.200.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:66:79:e0:a5:f4:78:b6:47:ef:9e:59:5b:07:f1:02:81:34:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54BF01E8FEFC44F87E2FD9CC82977E2D63E63EC0
Validity
Not Before: Feb 4 18:49:51 2025 GMT
Not After : Feb 3 18:54:51 2026 GMT
Subject: CN=A974846352ACEEA52F3CBD1315C58D7BCDDFA6CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:92:bd:81:61:cc:1b:e4:30:97:0c:10:e9:c6:
aa:cf:02:53:91:7e:82:58:6b:4e:e2:aa:ad:7c:16:
51:48:37:39:74:76:2d:70:d9:ef:74:f2:81:e8:8c:
3d:96:02:f3:78:81:d6:80:1a:6b:f1:e4:46:f0:bc:
cd:d7:e8:1d:b5:4c:be:0c:81:cf:3e:82:6b:3c:3e:
7c:a1:af:1f:3f:25:7a:07:8e:2e:c0:4c:36:8a:e4:
db:c3:c8:5d:53:48:56:f8:5e:08:77:6a:c0:ff:65:
a0:85:97:5b:80:90:80:b1:c8:e5:35:b3:f7:8d:cc:
50:13:f8:21:86:85:76:bd:a2:d2:89:9f:b0:ae:d7:
28:ca:ef:7c:8b:f6:a0:ab:c7:42:57:2a:45:c1:0f:
b3:4e:37:e1:f5:20:2d:3b:7a:68:f2:5e:fa:a1:29:
cb:06:8a:3d:20:7e:e0:5c:82:9a:82:0c:9c:dd:ba:
98:4a:02:aa:6f:46:e1:b2:0e:5b:4a:d3:b7:83:07:
99:13:e4:d1:10:78:32:f1:f2:97:85:a6:ed:16:c9:
c9:bc:fa:42:f5:42:8d:e2:c9:a4:c2:d8:e7:05:c9:
a4:61:89:1b:9c:f0:90:6a:4a:6a:bc:76:b7:77:39:
43:51:d2:67:a0:c3:7b:d5:1b:b6:fa:80:38:cc:bc:
26:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:74:84:63:52:AC:EE:A5:2F:3C:BD:13:15:C5:8D:7B:CD:DF:A6:CA
X509v3 Authority Key Identifier:
keyid:54:BF:01:E8:FE:FC:44:F8:7E:2F:D9:CC:82:97:7E:2D:63:E6:3E:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/EE11B84CD61D902CE28213D0C39918102FCB56822AF6777BC9B24B1037D6BF1E/0/54BF01E8FEFC44F87E2FD9CC82977E2D63E63EC0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/54BF01E8FEFC44F87E2FD9CC82977E2D63E63EC0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/EE11B84CD61D902CE28213D0C39918102FCB56822AF6777BC9B24B1037D6BF1E/0/3133322e3235352e3230302e302f32322d3234203d3e20323633373230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.255.200.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:c1:90:87:63:ad:f7:4b:58:2e:00:5d:e7:d2:e3:d3:eb:22:
e7:07:51:4f:16:df:2a:92:b9:19:78:b9:79:8b:4b:5a:56:43:
90:20:8a:55:c4:96:21:0f:11:f0:ee:1b:dd:11:2e:78:51:f1:
f0:b7:68:9a:e7:c4:0b:c6:9d:aa:43:39:4d:ff:17:5b:61:f9:
ee:5c:63:5d:3c:dc:8e:c4:b8:34:65:a4:23:5d:62:fb:92:97:
25:45:37:0e:60:b7:e6:2d:96:06:3a:9c:55:b3:d2:f2:8d:7b:
bb:39:d3:85:1d:42:60:a2:08:5f:82:4a:c8:b1:be:70:19:74:
4e:35:1d:5e:c3:d7:e2:cd:f5:c3:b3:c8:ee:63:b5:bc:20:40:
eb:ea:25:cd:a1:f4:af:c0:cb:16:ee:68:56:40:32:c3:52:ca:
ee:82:7f:74:e1:c2:c3:0f:8a:d3:b6:e0:21:e9:5a:d8:00:ad:
41:5c:a7:42:10:c1:12:80:ee:80:07:5b:5f:dc:91:a8:49:d3:
b9:44:e7:c4:f7:86:32:6c:c1:41:df:f2:52:3c:d1:33:46:0a:
f9:19:69:8e:3e:c7:39:6b:06:84:1c:a1:83:e7:76:e3:44:40:
b1:b3:4e:e3:41:74:f7:3a:45:a4:a2:1f:0d:2f:87:0b:30:af:
7c:57:0f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:55:41 2025 by rpki-client