Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F41F6B566D658E37C2BE9CDF35422CCE2ABE79948367C450EAB25731EC595924/0/34352e3137332e342e302f32332d3233203d3e20323637383537.roa
File: 34352e3137332e342e302f32332d3233203d3e20323637383537.roa (raw, json)
Hash identifier: EFFg/waI0w3t36cuhEZmGKsC8oW2IV1bVMI5bW2/LsU=
Subject key identifier: C4:FB:70:D5:37:40:41:B7:F4:7C:44:0D:8A:E1:E1:21:E3:C9:8A:0E
Certificate issuer: /CN=43DD90FBD36BCA09CE09DC8B3272A69B0F97D5C8
Certificate serial: 158D490DF282AF1B7C49AB534D71F6E6D4D6DF97
Authority key identifier: 43:DD:90:FB:D3:6B:CA:09:CE:09:DC:8B:32:72:A6:9B:0F:97:D5:C8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43DD90FBD36BCA09CE09DC8B3272A69B0F97D5C8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F41F6B566D658E37C2BE9CDF35422CCE2ABE79948367C450EAB25731EC595924/0/34352e3137332e342e302f32332d3233203d3e20323637383537.roa
Signing time: Tue 04 Feb 2025 19:57:51 +0000
ROA not before: Tue 04 Feb 2025 19:52:51 +0000
ROA not after: Tue 03 Feb 2026 19:57:51 +0000
asID: 267857
IP address blocks: 45.173.4.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:8d:49:0d:f2:82:af:1b:7c:49:ab:53:4d:71:f6:e6:d4:d6:df:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43DD90FBD36BCA09CE09DC8B3272A69B0F97D5C8
Validity
Not Before: Feb 4 19:52:51 2025 GMT
Not After : Feb 3 19:57:51 2026 GMT
Subject: CN=C4FB70D5374041B7F47C440D8AE1E121E3C98A0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:48:a8:6c:1f:f2:35:f7:43:b7:1e:f3:3f:63:
2a:fa:1a:5b:a9:25:40:57:2c:cb:d5:f2:63:72:a9:
5c:0e:8d:23:13:b0:04:0b:75:a1:71:02:2d:1e:1b:
cf:37:91:bc:df:d4:00:28:3f:5e:08:8b:d4:79:ce:
02:fe:95:e7:0c:8c:1d:1d:da:8b:77:10:02:50:d7:
a9:f9:02:93:7d:ce:11:a0:2b:85:f6:fa:0f:10:6e:
0d:de:41:41:19:46:c2:67:b4:9e:78:1c:47:0d:f5:
2e:e5:31:1a:3c:b8:b5:ae:9f:b6:8f:5e:9b:95:31:
d8:9e:fa:f2:00:56:34:98:9c:f4:ae:db:56:ce:0e:
3b:d2:69:5a:15:fb:e0:cd:aa:e8:ba:78:35:da:10:
7a:7e:9a:4c:e3:85:52:61:53:2d:08:42:8b:10:b2:
9e:3d:2f:a1:eb:ea:0f:88:9e:e3:c3:4c:43:33:0d:
a1:f4:79:90:58:d6:ac:b0:0b:c7:97:61:fa:9c:8c:
05:53:47:2c:18:2a:51:31:2b:11:3a:e5:37:93:b6:
cf:4d:bb:fa:5e:56:49:6a:94:00:b5:e0:e6:d0:b4:
36:1f:89:34:2c:22:5c:c4:1b:f2:6e:16:c7:c1:9a:
37:4b:54:9e:ec:a4:ca:bb:e9:36:ba:e7:a9:d5:0d:
e7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:FB:70:D5:37:40:41:B7:F4:7C:44:0D:8A:E1:E1:21:E3:C9:8A:0E
X509v3 Authority Key Identifier:
keyid:43:DD:90:FB:D3:6B:CA:09:CE:09:DC:8B:32:72:A6:9B:0F:97:D5:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F41F6B566D658E37C2BE9CDF35422CCE2ABE79948367C450EAB25731EC595924/0/43DD90FBD36BCA09CE09DC8B3272A69B0F97D5C8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43DD90FBD36BCA09CE09DC8B3272A69B0F97D5C8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F41F6B566D658E37C2BE9CDF35422CCE2ABE79948367C450EAB25731EC595924/0/34352e3137332e342e302f32332d3233203d3e20323637383537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.173.4.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:aa:24:b3:61:d6:ef:3f:4d:9b:a7:cb:09:b1:66:d4:c7:c0:
91:69:d5:7c:fb:82:a3:21:14:24:7f:69:08:f7:b2:ac:eb:69:
95:ba:3a:79:24:07:64:13:8c:1f:f9:cf:10:f5:10:9c:1c:32:
f0:10:64:86:c7:fd:c6:7a:5e:f0:82:f6:14:38:1b:52:0f:6a:
8b:f3:27:fe:f6:33:71:41:74:55:16:a1:95:a4:31:85:12:0e:
58:89:89:de:56:51:e9:9b:9f:4d:6e:8d:ee:6f:29:fd:c2:a5:
f8:1f:81:3b:f2:6a:58:d6:28:48:fe:12:dd:30:f7:50:27:3d:
43:ce:31:71:86:fc:c6:f8:09:db:8f:4c:12:ab:2d:01:f7:fa:
2f:7a:64:eb:d6:3c:00:4d:49:5a:1c:c7:05:d8:29:e4:8a:ce:
c4:ab:ea:b8:03:fd:90:7d:d8:ea:ff:91:3a:22:b8:3f:7e:bc:
42:02:d7:73:57:96:33:2f:ed:ae:1b:7d:1d:47:4f:40:b3:44:
57:48:1d:34:d5:cf:bc:f8:0d:8a:12:e6:1a:00:ef:ca:39:4f:
f9:6f:1c:5a:3c:a5:ca:ee:b0:7d:41:34:5b:8d:28:7f:c8:8a:
93:52:4e:fa:43:aa:cc:c6:97:5a:0f:1c:a5:43:40:71:07:ce:
90:f9:7e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 12:32:40 2025 by rpki-client