Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F345C766F28AEFBCCC4C3107A2217A819764A7E0EE8A43E68AE3A181DD96713D/0/34352e3233392e3132382e302f32322d3234203d3e20323636383633.roa
File: 34352e3233392e3132382e302f32322d3234203d3e20323636383633.roa (raw, json)
Hash identifier: jO8vsS/+uGUIW9WQLyhWlQtHOCExISuZOdwmvClUwyU=
Subject key identifier: E8:1D:3D:92:F5:A6:41:55:62:2C:D7:87:60:B9:71:A9:95:63:42:18
Certificate issuer: /CN=DF7CCE89EE1A19AE75BC29236EF6D7409EBD4D07
Certificate serial: 79E243007ED909D9AD3277EA72E1CB2F86CFF086
Authority key identifier: DF:7C:CE:89:EE:1A:19:AE:75:BC:29:23:6E:F6:D7:40:9E:BD:4D:07
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF7CCE89EE1A19AE75BC29236EF6D7409EBD4D07.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F345C766F28AEFBCCC4C3107A2217A819764A7E0EE8A43E68AE3A181DD96713D/0/34352e3233392e3132382e302f32322d3234203d3e20323636383633.roa
Signing time: Tue 04 Feb 2025 18:00:07 +0000
ROA not before: Tue 04 Feb 2025 17:55:07 +0000
ROA not after: Tue 03 Feb 2026 18:00:07 +0000
asID: 266863
IP address blocks: 45.239.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:e2:43:00:7e:d9:09:d9:ad:32:77:ea:72:e1:cb:2f:86:cf:f0:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF7CCE89EE1A19AE75BC29236EF6D7409EBD4D07
Validity
Not Before: Feb 4 17:55:07 2025 GMT
Not After : Feb 3 18:00:07 2026 GMT
Subject: CN=E81D3D92F5A64155622CD78760B971A995634218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:77:50:99:a5:de:35:bc:14:e6:8b:73:5a:47:
1b:40:cc:13:23:3d:81:4f:ff:d4:1c:91:38:c4:a2:
71:9c:20:ef:f4:97:22:a7:ad:97:32:1c:81:9d:91:
c4:7f:02:fe:ad:65:67:9f:2c:74:cf:0c:b8:4b:5a:
c4:ec:29:46:6a:08:78:64:00:22:06:26:a0:74:a3:
c2:13:94:66:49:90:55:49:7a:e2:4e:b8:6c:1b:1d:
cc:22:94:c0:63:e1:60:1a:ff:ae:da:a0:c6:17:62:
a5:31:19:45:4e:c9:21:d1:0a:86:16:3a:d5:75:ad:
ce:86:cd:2a:9e:75:b4:ed:d6:53:43:80:4e:a5:b5:
9d:9e:50:5c:33:1a:25:2e:a2:8f:34:32:03:01:78:
7d:82:ad:bd:8f:86:a9:67:6e:0e:5c:8b:6b:2e:3b:
45:11:e6:8f:ef:0c:45:52:eb:76:4c:bc:d2:ce:86:
bc:fe:3e:08:0e:19:5e:2e:44:a6:8d:39:d4:9a:a8:
e6:0f:ce:fd:c0:4a:a3:11:37:d6:34:8a:23:d9:28:
21:68:37:6e:c3:37:6c:fb:79:c6:91:94:e8:06:b8:
93:73:84:91:86:87:74:4c:58:5c:3d:04:1d:9b:52:
66:92:06:af:91:cb:6f:68:69:f3:90:99:a0:bf:41:
75:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:1D:3D:92:F5:A6:41:55:62:2C:D7:87:60:B9:71:A9:95:63:42:18
X509v3 Authority Key Identifier:
keyid:DF:7C:CE:89:EE:1A:19:AE:75:BC:29:23:6E:F6:D7:40:9E:BD:4D:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F345C766F28AEFBCCC4C3107A2217A819764A7E0EE8A43E68AE3A181DD96713D/0/DF7CCE89EE1A19AE75BC29236EF6D7409EBD4D07.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF7CCE89EE1A19AE75BC29236EF6D7409EBD4D07.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F345C766F28AEFBCCC4C3107A2217A819764A7E0EE8A43E68AE3A181DD96713D/0/34352e3233392e3132382e302f32322d3234203d3e20323636383633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.239.128.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:af:f7:98:3e:8e:59:3e:d4:67:9c:5a:67:77:b4:36:b7:fc:
3e:bf:2b:64:2c:be:2d:45:36:f8:df:82:36:87:d5:1c:ff:94:
14:87:f4:ed:9a:95:ca:52:f7:04:26:e1:01:fe:71:8c:c4:55:
dd:35:aa:0d:8f:5a:95:47:3c:54:a4:ee:27:60:92:88:1c:e6:
fa:a1:34:c0:d2:9e:29:97:c5:c0:54:f4:51:86:ef:77:11:50:
12:ae:17:df:44:d0:a7:02:cc:c2:35:7c:df:d8:ce:e6:20:29:
ab:a8:41:62:3f:b8:d7:ae:77:8f:18:47:d0:fa:c2:37:db:b9:
0d:cc:83:91:7f:1d:89:57:cc:5d:24:87:de:2e:ce:91:c3:01:
d5:df:ff:15:cc:d4:8b:ef:a2:e8:5a:b7:ad:fa:fe:d6:28:0e:
2a:ba:22:3b:e9:d0:e0:7a:c4:0c:cd:ab:e7:3b:06:e7:56:0c:
3b:c7:29:e0:95:02:fd:3b:83:79:58:09:10:5b:e2:5b:d3:5b:
c0:f7:76:b2:06:ad:1f:52:d9:1e:76:db:3c:5a:2d:2f:f6:4e:
d7:3f:6c:0a:97:a6:b5:d8:34:80:f9:a0:f7:58:b5:93:c1:8d:
62:bd:3d:40:34:60:1f:81:72:fe:b5:9b:9e:59:6e:7d:09:6b:
48:56:5e:ed
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUeeJDAH7ZCdmtMnfqcuHLL4bP8IYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREY3Q0NFODlFRTFBMTlBRTc1QkMyOTIzNkVGNkQ3NDA5
RUJENEQwNzAeFw0yNTAyMDQxNzU1MDdaFw0yNjAyMDMxODAwMDdaMDMxMTAvBgNV
BAMTKEU4MUQzRDkyRjVBNjQxNTU2MjJDRDc4NzYwQjk3MUE5OTU2MzQyMTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7d1CZpd41vBTmi3NaRxtAzBMj
PYFP/9QckTjEonGcIO/0lyKnrZcyHIGdkcR/Av6tZWefLHTPDLhLWsTsKUZqCHhk
ACIGJqB0o8ITlGZJkFVJeuJOuGwbHcwilMBj4WAa/67aoMYXYqUxGUVOySHRCoYW
OtV1rc6GzSqedbTt1lNDgE6ltZ2eUFwzGiUuoo80MgMBeH2Crb2Phqlnbg5ci2su
O0UR5o/vDEVS63ZMvNLOhrz+PggOGV4uRKaNOdSaqOYPzv3ASqMRN9Y0iiPZKCFo
N27DN2z7ecaRlOgGuJNzhJGGh3RMWFw9BB2bUmaSBq+Ry29oafOQmaC/QXWdAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQU6B09kvWmQVViLNeHYLlxqZVjQhgwHwYDVR0j
BBgwFoAU33zOie4aGa51vCkjbvbXQJ69TQcwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9GMzQ1Qzc2NkYyOEFFRkJDQ0M0QzMxMDdBMjIxN0E4MTk3
NjRBN0UwRUU4QTQzRTY4QUUzQTE4MUREOTY3MTNELzAvREY3Q0NFODlFRTFBMTlB
RTc1QkMyOTIzNkVGNkQ3NDA5RUJENEQwNy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ERjdDQ0U4OUVFMUExOUFFNzVC
QzI5MjM2RUY2RDc0MDlFQkQ0RDA3LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRjM0NUM3NjZGMjhBRUZCQ0NDNEMzMTA3QTIyMTdBODE5NzY0QTdFMEVF
OEE0M0U2OEFFM0ExODFERDk2NzEzRC8wLzM0MzUyZTMyMzMzOTJlMzEzMjM4MmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM2MzgzNjMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLe+A
MA0GCSqGSIb3DQEBCwUAA4IBAQB+r/eYPo5ZPtRnnFpnd7Q2t/w+vytkLL4tRTb4
34I2h9Uc/5QUh/TtmpXKUvcEJuEB/nGMxFXdNaoNj1qVRzxUpO4nYJKIHOb6oTTA
0p4pl8XAVPRRhu93EVASrhffRNCnAszCNXzf2M7mICmrqEFiP7jXrnePGEfQ+sI3
27kNzIORfx2JV8xdJIfeLs6RwwHV3/8VzNSL76LoWret+v7WKA4quiI76dDgesQM
zavnOwbnVgw7xynglQL9O4N5WAkQW+Jb01vA93ayBq0fUtkedts8Wi0v9k7XP2wK
l6a12DSA+aD3WLWTwY1ivT1ANGAfgXL+tZueWW59CWtIVl7t
-----END CERTIFICATE-----
Generated at Sat Apr 5 22:21:16 2025 by rpki-client