Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FF2D4DC420C4C39790BC2C03D51255D0A1C01933F37C28DC074059858B00573E/0/3138312e3139312e32352e302f32342d3234203d3e203532343235.roa
File: 3138312e3139312e32352e302f32342d3234203d3e203532343235.roa (raw, json)
Hash identifier: /8X80f0D2T+Z7BPNIwmdZXDZ8PeOKgVJn1i/1T3KLiE=
Subject key identifier: A7:E2:EE:71:71:4B:9A:F3:32:3B:67:B3:B2:46:8A:EF:7B:83:91:2B
Certificate issuer: /CN=3D06F0A5D3F0CFD84CF1A81F12D5E3C7623ECD76
Certificate serial: 06115F4B70B5F2C6D4BBF4FA458EDE3253FE2A2A
Authority key identifier: 3D:06:F0:A5:D3:F0:CF:D8:4C:F1:A8:1F:12:D5:E3:C7:62:3E:CD:76
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D06F0A5D3F0CFD84CF1A81F12D5E3C7623ECD76.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/FF2D4DC420C4C39790BC2C03D51255D0A1C01933F37C28DC074059858B00573E/0/3138312e3139312e32352e302f32342d3234203d3e203532343235.roa
Signing time: Tue 04 Feb 2025 18:37:02 +0000
ROA not before: Tue 04 Feb 2025 18:32:02 +0000
ROA not after: Tue 03 Feb 2026 18:37:02 +0000
asID: 52425
IP address blocks: 181.191.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:11:5f:4b:70:b5:f2:c6:d4:bb:f4:fa:45:8e:de:32:53:fe:2a:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D06F0A5D3F0CFD84CF1A81F12D5E3C7623ECD76
Validity
Not Before: Feb 4 18:32:02 2025 GMT
Not After : Feb 3 18:37:02 2026 GMT
Subject: CN=A7E2EE71714B9AF3323B67B3B2468AEF7B83912B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:25:7a:f7:c2:8d:07:8c:23:7c:04:83:a7:71:
dd:61:7a:94:56:57:94:7e:83:ca:88:ee:8f:98:7e:
56:b1:61:39:73:1e:62:72:6f:69:d2:95:4d:4a:bb:
f3:5f:39:d0:03:74:5f:16:17:bd:c4:18:ff:3c:a2:
b6:93:44:2f:b9:4c:f7:da:b6:44:62:d0:50:e5:55:
53:eb:5a:c3:81:44:57:21:7d:28:0c:cb:d4:6a:1f:
c5:a1:9c:bf:e4:c2:ca:8b:d6:26:94:9f:34:2c:6b:
b1:b6:c4:22:e0:7f:11:8d:ac:71:e0:5c:4a:e4:d7:
3a:7c:a7:57:d3:61:d0:61:e1:28:f4:a4:00:02:10:
3f:e9:b8:b7:60:87:e8:4e:26:03:7c:b4:57:0e:37:
26:f3:d0:a4:b9:4e:95:2f:dc:8e:c7:c6:6d:e1:5b:
86:30:64:80:ab:ea:ac:66:a8:e0:92:62:24:53:1c:
7f:23:8e:06:0c:b7:35:a2:ea:d1:f7:c0:97:99:07:
05:89:c4:0e:3c:8c:e3:14:e7:3e:ce:c3:00:95:60:
02:bd:70:98:98:8f:0b:30:f4:4f:40:e0:65:9d:69:
42:f6:de:9b:f8:a6:57:09:f1:90:11:65:57:ee:2b:
59:90:df:8b:ca:e5:20:2d:21:1b:22:a6:9f:25:8b:
e6:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E2:EE:71:71:4B:9A:F3:32:3B:67:B3:B2:46:8A:EF:7B:83:91:2B
X509v3 Authority Key Identifier:
keyid:3D:06:F0:A5:D3:F0:CF:D8:4C:F1:A8:1F:12:D5:E3:C7:62:3E:CD:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/FF2D4DC420C4C39790BC2C03D51255D0A1C01933F37C28DC074059858B00573E/0/3D06F0A5D3F0CFD84CF1A81F12D5E3C7623ECD76.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D06F0A5D3F0CFD84CF1A81F12D5E3C7623ECD76.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/FF2D4DC420C4C39790BC2C03D51255D0A1C01933F37C28DC074059858B00573E/0/3138312e3139312e32352e302f32342d3234203d3e203532343235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.191.25.0/24
Signature Algorithm: sha256WithRSAEncryption
24:24:c9:6f:7a:41:a2:b9:2d:39:5f:c1:70:f6:b4:e2:25:f5:
6d:9d:f7:03:c2:94:5a:92:90:bd:58:a2:a9:56:56:5e:ab:fc:
5a:a2:4a:16:ff:19:f9:59:81:da:fd:b8:5d:97:e5:76:b8:13:
8e:0e:4d:af:88:03:b1:b1:7b:0d:d3:15:58:6e:24:c8:ab:b0:
f7:cf:3b:b3:8f:ea:b7:6c:68:8b:78:12:b6:47:6d:f0:6e:3c:
5d:4d:18:62:4a:16:58:72:1a:00:c6:bf:62:57:5f:b3:d9:65:
83:95:0a:4e:65:ec:8b:32:6a:13:f7:0e:22:42:59:f6:9b:0a:
5e:a5:21:a4:8f:fa:cf:01:3c:7a:23:b9:5b:c2:dc:82:b3:ef:
2f:d5:88:9a:27:8c:04:b4:11:ab:bc:4c:4b:ae:a4:be:01:f7:
fb:50:20:8b:c7:67:2e:f2:a5:8d:f1:3b:9e:6d:b5:b3:d3:88:
69:d5:d6:d0:a6:7a:36:c7:04:64:b4:42:29:7d:e8:8d:ef:16:
68:9d:1f:54:7d:27:40:f5:08:a5:2e:07:11:3d:df:9e:6d:47:
ef:06:2c:e8:8a:b9:f3:06:47:b1:8d:01:1c:54:cf:60:48:17:
5e:54:a8:73:5a:0d:ac:8a:48:a1:31:2a:b9:a5:de:3b:da:21:
ef:fd:eb:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:04:51 2025 by rpki-client