Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FB80E8ADAA77BD517BB952045EA56E0FD41A53E4B9AE5E7E1544A0EF08CA7C3A/0/34352e3233382e3135382e302f32342d3234203d3e20323636383432.roa
File: 34352e3233382e3135382e302f32342d3234203d3e20323636383432.roa (raw, json)
Hash identifier: BIbABLYZ+tfLyjjLGrjMHbkfB4NN13bpauMN5bwZd9s=
Subject key identifier: E2:D0:89:B5:5E:9F:02:49:A1:5B:C0:6B:CF:3D:96:DD:79:85:C2:42
Certificate issuer: /CN=99AC90C6431B27F29FD3D3C3FECE807D86BFE025
Certificate serial: 5CFCC0DB2E183EA7EC7510290B9F8B226C4CF9C1
Authority key identifier: 99:AC:90:C6:43:1B:27:F2:9F:D3:D3:C3:FE:CE:80:7D:86:BF:E0:25
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/99AC90C6431B27F29FD3D3C3FECE807D86BFE025.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/FB80E8ADAA77BD517BB952045EA56E0FD41A53E4B9AE5E7E1544A0EF08CA7C3A/0/34352e3233382e3135382e302f32342d3234203d3e20323636383432.roa
Signing time: Tue 04 Feb 2025 18:30:30 +0000
ROA not before: Tue 04 Feb 2025 18:25:30 +0000
ROA not after: Tue 03 Feb 2026 18:30:30 +0000
asID: 266842
IP address blocks: 45.238.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:fc:c0:db:2e:18:3e:a7:ec:75:10:29:0b:9f:8b:22:6c:4c:f9:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99AC90C6431B27F29FD3D3C3FECE807D86BFE025
Validity
Not Before: Feb 4 18:25:30 2025 GMT
Not After : Feb 3 18:30:30 2026 GMT
Subject: CN=E2D089B55E9F0249A15BC06BCF3D96DD7985C242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:33:f2:17:12:ab:c4:ae:56:01:69:4e:68:07:
6f:33:d9:8d:5b:69:8f:e6:0a:10:41:c7:5e:d3:3b:
f4:a4:52:fc:12:fe:08:da:bd:a7:cd:2f:c5:90:ca:
aa:86:37:b3:d6:14:c5:d8:4f:dd:0b:8f:9b:98:43:
90:f9:42:50:dc:c0:9e:33:1d:91:1c:40:42:25:9c:
28:66:ab:fe:5e:ae:34:3f:74:4d:35:d0:12:86:93:
6a:f7:c2:d1:32:1a:37:7f:80:6b:35:02:38:a2:7a:
0c:d4:43:aa:4c:7e:53:8d:43:5f:62:b2:76:04:4c:
66:53:d2:27:ac:87:e3:69:27:c5:8b:b4:47:d4:5b:
6e:6e:17:ee:5e:d4:8d:ea:01:8d:07:ac:08:7c:11:
64:c7:3e:5f:1f:15:7b:19:ab:1b:da:66:5e:68:ec:
10:68:11:bf:6a:33:49:ff:dd:9c:12:74:e6:9b:ce:
61:c5:59:54:28:d4:e1:85:c1:ee:96:de:cc:0b:8c:
70:ea:ad:da:31:e1:ef:b5:b5:01:c9:73:85:31:c9:
cc:9a:32:77:4c:c9:78:13:62:c7:b9:a5:82:6a:d9:
98:30:22:ab:d1:9e:d7:b0:3a:4d:90:a1:4b:26:19:
00:e4:50:db:48:0f:5e:82:18:f8:ee:63:9c:fe:9f:
9b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D0:89:B5:5E:9F:02:49:A1:5B:C0:6B:CF:3D:96:DD:79:85:C2:42
X509v3 Authority Key Identifier:
keyid:99:AC:90:C6:43:1B:27:F2:9F:D3:D3:C3:FE:CE:80:7D:86:BF:E0:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/FB80E8ADAA77BD517BB952045EA56E0FD41A53E4B9AE5E7E1544A0EF08CA7C3A/0/99AC90C6431B27F29FD3D3C3FECE807D86BFE025.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/99AC90C6431B27F29FD3D3C3FECE807D86BFE025.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/FB80E8ADAA77BD517BB952045EA56E0FD41A53E4B9AE5E7E1544A0EF08CA7C3A/0/34352e3233382e3135382e302f32342d3234203d3e20323636383432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.238.158.0/24
Signature Algorithm: sha256WithRSAEncryption
88:cd:a9:6a:f8:20:3d:80:52:fc:79:0c:d6:43:aa:a7:c9:f6:
40:b7:c8:d0:f0:40:34:62:22:38:b0:25:74:47:a3:54:2a:5e:
ea:5a:9c:b8:10:80:64:98:8f:0a:34:b6:47:02:06:79:62:18:
92:33:45:8d:02:f3:4e:2e:b7:c9:97:4b:5c:1b:95:0c:cf:39:
9e:11:0f:15:92:12:ca:05:33:8b:2f:0b:a9:a4:62:49:cd:79:
25:aa:61:28:cf:73:a3:2d:ce:09:7a:64:2b:60:6b:5e:9b:df:
19:e7:1e:37:cf:20:0c:a4:67:26:23:c1:ee:b1:51:32:d3:ce:
17:bf:90:a2:c1:92:dd:59:12:c6:11:28:28:67:b4:f5:99:96:
60:d8:20:49:3d:c8:61:3a:94:8e:17:20:bc:c8:6e:78:d3:e7:
13:9e:0b:47:5b:59:31:cf:4f:56:55:c7:10:6b:67:20:41:d4:
d0:3f:46:c0:05:2f:f9:e9:b5:c2:7a:06:c2:8e:f5:2b:f6:4d:
23:f2:0c:db:d8:8d:88:e6:2a:41:d2:fe:19:24:a1:8e:54:e1:
35:a5:dd:6c:1e:07:a3:21:91:4e:b7:6b:7a:fb:ec:27:6b:d0:
b6:c7:34:75:ef:c6:05:50:f9:8a:21:95:72:bc:10:94:b7:86:
66:54:42:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:55:59 2025 by rpki-client