Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F75D7846CDF9FB1CA71BE06C6457403E505E7413414D57C619D92F7AD559ADFB/0/3136382e3233322e3137312e302f32342d3234203d3e20323634363936.roa
File: 3136382e3233322e3137312e302f32342d3234203d3e20323634363936.roa (raw, json)
Hash identifier: kxQpZLPpTyHPrLK7HHFe48XWlh+oRsLWFUnXsbwRqdA=
Subject key identifier: 99:DC:FC:A5:6B:49:43:6E:EC:94:D4:98:AE:00:CF:1A:86:5B:35:F3
Certificate issuer: /CN=D2A5337FA87797971D233BE327907396D0813D5E
Certificate serial: 160C853DCC096C424AE622CF121B6363B6B40C4B
Authority key identifier: D2:A5:33:7F:A8:77:97:97:1D:23:3B:E3:27:90:73:96:D0:81:3D:5E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2A5337FA87797971D233BE327907396D0813D5E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F75D7846CDF9FB1CA71BE06C6457403E505E7413414D57C619D92F7AD559ADFB/0/3136382e3233322e3137312e302f32342d3234203d3e20323634363936.roa
Signing time: Tue 18 Feb 2025 22:10:10 +0000
ROA not before: Tue 18 Feb 2025 22:05:10 +0000
ROA not after: Tue 17 Feb 2026 22:10:10 +0000
asID: 264696
IP address blocks: 168.232.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:0c:85:3d:cc:09:6c:42:4a:e6:22:cf:12:1b:63:63:b6:b4:0c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A5337FA87797971D233BE327907396D0813D5E
Validity
Not Before: Feb 18 22:05:10 2025 GMT
Not After : Feb 17 22:10:10 2026 GMT
Subject: CN=99DCFCA56B49436EEC94D498AE00CF1A865B35F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:93:3f:cb:59:d3:9e:3b:78:a9:9d:87:3f:f7:
b3:7a:3b:24:3b:e0:e5:a1:35:97:25:18:47:26:a1:
c3:f6:31:7b:66:0a:81:6a:24:9a:d0:0b:61:19:c4:
f1:48:67:4c:4c:3b:83:76:29:02:11:53:a9:c2:3b:
42:2b:f9:9e:e9:fc:67:d6:7a:61:d7:cd:71:1e:ed:
d1:4b:6b:b0:da:f8:0f:41:32:c6:c3:0b:6c:17:7d:
ce:6b:ef:80:68:24:db:34:d3:21:f1:19:a2:b3:b2:
86:ce:2f:7f:a3:f5:29:d4:b0:57:88:93:69:e5:54:
ce:5c:cb:4e:77:70:bc:c6:54:5c:ab:c2:0b:97:08:
1b:3f:96:74:86:fc:4e:96:04:a4:7e:7c:55:a5:62:
dc:3b:23:27:14:fe:30:7a:e9:ee:16:ba:37:15:c8:
3a:3d:e8:8f:93:92:99:60:ea:af:4c:e5:ca:db:06:
45:ae:a3:e5:8e:72:5a:e4:dc:8c:35:b6:af:41:23:
75:88:30:d4:df:d5:dc:a9:b6:2e:02:ed:3c:8a:36:
b9:7c:31:21:38:72:90:14:b4:d9:ed:76:2c:87:67:
64:ec:56:5e:04:ef:1b:56:ef:f2:d5:8c:df:26:f1:
4e:69:c6:01:8a:eb:92:3f:50:da:a0:53:8b:40:0c:
4e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DC:FC:A5:6B:49:43:6E:EC:94:D4:98:AE:00:CF:1A:86:5B:35:F3
X509v3 Authority Key Identifier:
keyid:D2:A5:33:7F:A8:77:97:97:1D:23:3B:E3:27:90:73:96:D0:81:3D:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F75D7846CDF9FB1CA71BE06C6457403E505E7413414D57C619D92F7AD559ADFB/0/D2A5337FA87797971D233BE327907396D0813D5E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2A5337FA87797971D233BE327907396D0813D5E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F75D7846CDF9FB1CA71BE06C6457403E505E7413414D57C619D92F7AD559ADFB/0/3136382e3233322e3137312e302f32342d3234203d3e20323634363936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.232.171.0/24
Signature Algorithm: sha256WithRSAEncryption
62:56:a2:a0:11:cd:47:17:2a:73:6a:8d:fb:ef:24:b4:c0:9f:
b3:9a:df:02:6c:15:64:8d:d9:c3:f8:e4:a0:14:02:91:4e:c6:
82:d3:6c:e6:65:e4:e5:23:93:62:ee:cb:bf:ae:98:11:97:72:
ee:be:65:24:1c:cd:7a:20:8c:01:17:16:04:d9:e4:a7:8c:df:
81:28:ea:64:87:5d:8d:d2:eb:01:a0:2d:7a:84:79:22:bb:08:
e9:25:3c:52:d7:ba:f7:02:99:cd:7e:df:91:c9:6f:24:40:73:
27:2e:53:43:8d:bf:6e:06:1e:03:18:a2:17:9a:6d:d5:25:40:
bb:ac:d3:ca:8f:31:7f:8f:d2:ad:3c:c5:a5:e5:bb:18:a0:d6:
6a:cc:f8:3f:59:5f:ef:92:81:82:75:7d:87:ed:d0:a9:c1:1b:
58:a3:23:d1:2b:6c:51:44:e7:0b:8c:47:7d:be:cb:1f:6a:2b:
db:00:2b:98:03:cb:3d:31:b9:ec:85:d9:52:66:f2:ed:b8:13:
c7:32:f2:3f:ec:94:ce:9b:ce:a6:43:cf:aa:d6:a2:2c:d5:47:
00:fc:7d:0a:77:f7:f8:31:55:b1:04:b7:9e:65:06:2c:9c:b8:
96:cb:f2:3a:8a:42:bb:3e:34:16:18:b1:3e:c2:20:6e:c7:b4:
5e:09:bf:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:00:01 2025 by rpki-client