Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FC831F138F3C11AAF23CAC0CFC5BBA832ABCC3274EB44C043D1A2640B513DEC6/0/34352e37312e3235332e302f32342d3234203d3e20323732393534.roa
File: 34352e37312e3235332e302f32342d3234203d3e20323732393534.roa (raw, json)
Hash identifier: KZ9WW/APYG/ReVcAH79a9pkFhiPYfVifmrl0VFGlV8g=
Subject key identifier: E8:BD:D8:52:44:60:6E:D0:1B:99:52:30:9F:ED:CD:A3:5F:4B:60:E1
Certificate issuer: /CN=896E033E875BDBE6F2217610A8C83D959EB2168F
Certificate serial: 4F26C8239C8BD205EE33E9E24905D2ACC297001F
Authority key identifier: 89:6E:03:3E:87:5B:DB:E6:F2:21:76:10:A8:C8:3D:95:9E:B2:16:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/896E033E875BDBE6F2217610A8C83D959EB2168F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/FC831F138F3C11AAF23CAC0CFC5BBA832ABCC3274EB44C043D1A2640B513DEC6/0/34352e37312e3235332e302f32342d3234203d3e20323732393534.roa
Signing time: Tue 04 Feb 2025 18:17:03 +0000
ROA not before: Tue 04 Feb 2025 18:12:03 +0000
ROA not after: Tue 03 Feb 2026 18:17:03 +0000
asID: 272954
IP address blocks: 45.71.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:26:c8:23:9c:8b:d2:05:ee:33:e9:e2:49:05:d2:ac:c2:97:00:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896E033E875BDBE6F2217610A8C83D959EB2168F
Validity
Not Before: Feb 4 18:12:03 2025 GMT
Not After : Feb 3 18:17:03 2026 GMT
Subject: CN=E8BDD85244606ED01B9952309FEDCDA35F4B60E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c3:85:a1:bc:51:a4:20:ac:0d:c3:f8:c2:67:
aa:b5:45:6d:fa:fc:5a:33:d5:5f:64:44:77:7c:25:
ca:47:96:fd:91:04:a6:02:19:7c:8f:ec:7f:1e:d2:
7e:62:13:9f:c7:e3:a6:0c:92:0d:33:dd:cd:76:e0:
ea:48:a7:fb:02:ca:8d:2d:64:56:60:57:37:0d:3f:
7c:21:6b:bc:47:42:fb:bf:c7:fc:b2:9c:f8:25:ad:
d6:88:c7:0a:43:e7:51:0a:8c:3b:c7:91:2c:62:fc:
4a:cc:4f:4b:4c:26:7b:cb:47:ca:33:41:b7:19:35:
1e:11:85:5f:ef:5e:ea:72:72:ec:bd:4b:32:01:5b:
d5:38:af:42:32:8e:2e:07:3d:ca:01:ea:da:77:5f:
81:f1:94:4f:47:5d:ad:e6:d2:fb:5b:b2:05:c8:c7:
ef:f5:1c:e5:78:68:53:65:ab:01:bb:a9:c6:af:ac:
c9:ff:3f:35:fa:e3:46:65:7b:ca:89:01:07:9f:37:
d5:bf:ee:84:92:31:32:da:ff:d4:1b:d8:06:67:f7:
87:de:42:8d:49:47:d2:aa:68:8d:5f:4a:e9:77:02:
a9:59:06:5d:e7:bc:f6:46:0b:1d:d0:d7:2a:ba:84:
fb:df:11:8d:04:13:5a:60:56:f2:47:e1:2e:0c:90:
cc:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:BD:D8:52:44:60:6E:D0:1B:99:52:30:9F:ED:CD:A3:5F:4B:60:E1
X509v3 Authority Key Identifier:
keyid:89:6E:03:3E:87:5B:DB:E6:F2:21:76:10:A8:C8:3D:95:9E:B2:16:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/FC831F138F3C11AAF23CAC0CFC5BBA832ABCC3274EB44C043D1A2640B513DEC6/0/896E033E875BDBE6F2217610A8C83D959EB2168F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/896E033E875BDBE6F2217610A8C83D959EB2168F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/FC831F138F3C11AAF23CAC0CFC5BBA832ABCC3274EB44C043D1A2640B513DEC6/0/34352e37312e3235332e302f32342d3234203d3e20323732393534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.71.253.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:9f:b1:21:80:36:29:fa:b3:f9:c9:24:8d:b7:cc:a8:67:76:
6b:8f:fa:d9:f4:f0:01:98:16:2a:38:34:e7:bf:6b:50:5e:a3:
4b:77:78:08:b6:2d:56:de:6e:ab:30:5d:f8:41:eb:9c:02:6a:
d6:85:5a:55:97:77:95:52:30:63:27:6d:3d:a2:69:bd:45:cf:
4b:10:64:94:38:0b:d8:b0:25:21:4e:7d:b2:e5:6c:51:a3:c4:
d7:62:e2:ac:d8:5b:be:1d:f6:38:a0:d9:81:ca:4b:22:2b:2d:
bc:91:2a:07:c0:71:85:04:66:af:96:5c:2f:07:57:f6:a5:c3:
4a:4e:70:bb:77:bc:52:8c:61:ea:29:b8:b0:49:8c:79:65:f5:
08:2c:3a:b6:8f:09:b4:6a:39:c0:ec:fe:a6:94:6f:02:3a:2d:
b6:f0:33:43:8e:60:03:ac:15:0d:50:8c:13:3b:dd:05:5b:bb:
5e:99:c8:ec:86:8c:6d:f8:08:0a:93:9a:1f:e8:96:f2:c6:0c:
63:f6:c1:d5:26:71:00:bd:0f:6b:db:18:42:8f:44:f9:12:15:
3d:34:78:fd:a1:1f:6e:04:9f:66:fa:e6:b6:27:dc:26:e6:33:
fa:b3:51:7e:ec:ce:c8:a0:d5:08:53:4b:ff:db:45:6a:13:11:
ca:6f:da:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:09 2025 by rpki-client