Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F33622924E5F8D4BD0F1A61FAF7716DAD8DBE66FE9AEBDA179D95AED56B2B697/0/3137302e3233392e33322e302f32322d3234203d3e20323633373737.roa
File: 3137302e3233392e33322e302f32322d3234203d3e20323633373737.roa (raw, json)
Hash identifier: SEeeUTRbhRiRpcVLFl9HKEVH+jx0k6Jcy7D27tQCVDw=
Subject key identifier: 54:F8:0E:61:B4:77:98:91:5C:37:1A:79:89:C9:59:01:F9:0F:4F:D4
Certificate issuer: /CN=765D05128298873F41D1D65632AB25BDBE113398
Certificate serial: 2454C4961B13F7CB0ACCC4DEBCC53B8396DBBDA6
Authority key identifier: 76:5D:05:12:82:98:87:3F:41:D1:D6:56:32:AB:25:BD:BE:11:33:98
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/765D05128298873F41D1D65632AB25BDBE113398.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F33622924E5F8D4BD0F1A61FAF7716DAD8DBE66FE9AEBDA179D95AED56B2B697/0/3137302e3233392e33322e302f32322d3234203d3e20323633373737.roa
Signing time: Tue 04 Feb 2025 18:12:00 +0000
ROA not before: Tue 04 Feb 2025 18:07:00 +0000
ROA not after: Tue 03 Feb 2026 18:12:00 +0000
asID: 263777
IP address blocks: 170.239.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:54:c4:96:1b:13:f7:cb:0a:cc:c4:de:bc:c5:3b:83:96:db:bd:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=765D05128298873F41D1D65632AB25BDBE113398
Validity
Not Before: Feb 4 18:07:00 2025 GMT
Not After : Feb 3 18:12:00 2026 GMT
Subject: CN=54F80E61B47798915C371A7989C95901F90F4FD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a0:66:68:c2:f8:dc:da:9e:05:f2:cc:bc:06:
2e:22:9b:6d:f5:36:07:ba:f8:5c:e9:ec:ff:42:5f:
f5:3c:4e:7a:85:a2:8f:53:4a:4e:76:16:07:fe:0f:
22:9e:7c:7d:b2:be:a5:9b:fc:a7:28:85:05:0a:7d:
b9:5e:f7:af:3c:57:74:c4:6f:a5:1c:49:49:4f:72:
40:bd:3a:a1:79:17:01:ba:77:bd:2d:4d:90:c7:0a:
f9:61:c1:2d:18:e2:fc:45:c2:f1:6e:a7:7c:9f:b4:
77:af:e6:5e:ec:cc:f5:2e:22:a1:b8:02:ad:e0:9b:
b1:93:44:43:2b:73:0d:1e:b5:cb:03:e9:8e:e6:04:
34:07:c2:6e:50:c0:7d:a6:0e:e3:5e:30:a1:9d:a0:
67:55:dd:c0:9b:c5:18:d3:f5:12:cc:34:bc:1b:1c:
07:e7:6b:8a:c0:60:4d:98:f5:2e:ac:4e:91:a1:19:
78:06:d9:04:69:b8:41:ea:40:02:3b:6d:e4:25:8a:
1d:0b:a6:9e:54:d8:83:a0:05:20:d7:a3:2c:b6:df:
b4:52:87:bc:6e:f7:62:d1:5e:01:af:49:63:74:35:
8b:6e:0d:83:5b:bb:8d:6d:b3:83:37:0e:b4:d6:17:
cf:d6:ef:ae:29:de:2c:ff:63:04:b5:d1:ed:12:4e:
34:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:F8:0E:61:B4:77:98:91:5C:37:1A:79:89:C9:59:01:F9:0F:4F:D4
X509v3 Authority Key Identifier:
keyid:76:5D:05:12:82:98:87:3F:41:D1:D6:56:32:AB:25:BD:BE:11:33:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F33622924E5F8D4BD0F1A61FAF7716DAD8DBE66FE9AEBDA179D95AED56B2B697/0/765D05128298873F41D1D65632AB25BDBE113398.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/765D05128298873F41D1D65632AB25BDBE113398.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F33622924E5F8D4BD0F1A61FAF7716DAD8DBE66FE9AEBDA179D95AED56B2B697/0/3137302e3233392e33322e302f32322d3234203d3e20323633373737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.239.32.0/22
Signature Algorithm: sha256WithRSAEncryption
15:97:3f:51:2a:ab:ee:e7:51:d1:0d:72:04:82:68:5e:36:9a:
0c:65:2b:53:c9:c8:7b:f2:74:23:74:19:9f:8a:22:19:31:c7:
3d:be:d9:da:ba:24:c9:40:b6:6e:26:4d:bd:15:ac:76:f3:71:
e7:57:e9:0d:97:c8:81:2b:78:c0:21:a2:5f:34:2b:49:12:ed:
77:cf:c2:78:25:3d:98:5a:e8:3e:5a:e6:fa:88:5a:b8:9e:00:
0b:d7:24:63:94:b2:f3:f2:6b:d1:63:b7:40:d5:40:7b:ce:7b:
01:7a:9e:ea:ba:9e:ea:1a:f9:fa:39:de:2b:8e:ae:71:5a:2b:
77:2c:c1:cb:db:de:43:50:c0:67:34:ad:ee:54:81:72:99:0f:
30:0a:ba:56:48:c2:2c:37:eb:26:81:09:6a:0d:cc:52:81:22:
e4:f3:8e:64:ed:f8:e4:57:62:cd:28:48:84:cf:34:83:6b:6a:
4a:94:30:72:16:1a:f5:f2:f6:12:9e:77:54:d6:d7:ff:5b:a3:
11:ac:8f:9d:bf:97:ab:a3:a8:bf:28:3d:38:9f:b1:98:ec:0c:
0d:5d:1b:e7:1e:13:e4:d2:62:d2:f6:69:02:db:ef:5c:89:72:
aa:03:87:4b:40:71:cf:cf:c3:51:40:35:e4:d9:12:48:09:5d:
e2:7b:a2:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:55:58 2025 by rpki-client