Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/07F5458804AC01560C7B2FAC95BC071138C1BA21D3E073D16DBE32F097CDEC75/0/3139302e3130372e3232342e302f32312d3234203d3e203532333431.roa
File: 3139302e3130372e3232342e302f32312d3234203d3e203532333431.roa (raw, json)
Hash identifier: NZDNU+7qrqkUThZ2TJ9HL16NnfkFFpqh1S5ploh0bPs=
Subject key identifier: 39:9F:9C:FA:C4:DE:06:60:B6:07:EF:7B:93:75:B7:79:C2:A9:21:D3
Certificate issuer: /CN=AAC427B2B3F66FD0421C36F9D8A4A625ECE850FC
Certificate serial: 2E75BF7D0161E31DA8FDCF950F8CA3203A25112F
Authority key identifier: AA:C4:27:B2:B3:F6:6F:D0:42:1C:36:F9:D8:A4:A6:25:EC:E8:50:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AAC427B2B3F66FD0421C36F9D8A4A625ECE850FC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/07F5458804AC01560C7B2FAC95BC071138C1BA21D3E073D16DBE32F097CDEC75/0/3139302e3130372e3232342e302f32312d3234203d3e203532333431.roa
Signing time: Tue 04 Feb 2025 18:43:27 +0000
ROA not before: Tue 04 Feb 2025 18:38:27 +0000
ROA not after: Tue 03 Feb 2026 18:43:27 +0000
asID: 52341
IP address blocks: 190.107.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:75:bf:7d:01:61:e3:1d:a8:fd:cf:95:0f:8c:a3:20:3a:25:11:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AAC427B2B3F66FD0421C36F9D8A4A625ECE850FC
Validity
Not Before: Feb 4 18:38:27 2025 GMT
Not After : Feb 3 18:43:27 2026 GMT
Subject: CN=399F9CFAC4DE0660B607EF7B9375B779C2A921D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2d:7e:f2:b6:c6:25:7c:56:40:02:46:37:bf:
51:b4:2e:a9:91:1f:c6:fa:0a:2e:4e:2a:78:d4:f8:
e5:9e:d0:5c:33:92:ad:5f:4a:81:55:bb:62:22:9a:
95:41:5d:be:39:83:9e:77:2a:e9:94:df:5e:d7:25:
df:29:b3:f9:61:2a:19:47:44:3b:18:95:34:d0:d1:
35:91:11:86:67:06:cd:c9:68:65:1b:f8:6d:4e:4c:
d9:e7:f9:61:17:d8:5c:02:d8:70:5e:20:d1:3b:22:
4e:02:78:ba:37:1c:2c:5e:00:d3:80:55:c9:19:bf:
3f:78:3a:ac:17:26:a8:1f:ac:b8:9d:12:14:71:07:
65:86:35:d9:ef:8d:49:55:81:6a:64:03:cc:20:ec:
ec:37:6d:f0:e8:2c:6c:a1:9c:b7:4c:22:f7:e3:15:
8e:50:3b:9f:85:90:e0:a9:e6:37:28:f6:a2:a7:4c:
c1:4b:53:8e:28:65:bf:d7:42:14:c1:c5:e3:fd:62:
48:36:74:ff:c9:74:81:c4:91:c1:43:da:d2:c4:27:
1d:25:d8:ac:fc:4e:08:57:4b:bc:a9:5a:76:36:82:
9b:c9:42:a9:8e:ae:b5:6d:8b:ab:f8:36:36:9e:fc:
b0:73:c2:28:6a:99:66:b2:82:93:a5:8d:d8:3e:f3:
05:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:9F:9C:FA:C4:DE:06:60:B6:07:EF:7B:93:75:B7:79:C2:A9:21:D3
X509v3 Authority Key Identifier:
keyid:AA:C4:27:B2:B3:F6:6F:D0:42:1C:36:F9:D8:A4:A6:25:EC:E8:50:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/07F5458804AC01560C7B2FAC95BC071138C1BA21D3E073D16DBE32F097CDEC75/0/AAC427B2B3F66FD0421C36F9D8A4A625ECE850FC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AAC427B2B3F66FD0421C36F9D8A4A625ECE850FC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/07F5458804AC01560C7B2FAC95BC071138C1BA21D3E073D16DBE32F097CDEC75/0/3139302e3130372e3232342e302f32312d3234203d3e203532333431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.107.224.0/21
Signature Algorithm: sha256WithRSAEncryption
42:30:81:24:11:e0:c3:41:89:8d:a6:25:78:1c:74:84:40:d1:
76:c0:5f:84:6e:16:2b:69:bf:2f:4d:7b:c3:eb:d1:2a:12:4c:
9f:fb:38:85:73:b6:28:fc:2f:f4:79:77:d3:4a:c3:69:31:7f:
86:eb:1f:5e:ff:84:3e:c7:77:7f:09:1a:66:53:1c:22:5a:08:
63:e1:df:ed:38:30:4d:56:77:79:cc:17:2a:35:64:80:ec:40:
fa:f9:de:17:c0:24:b9:7f:33:57:d1:71:19:b6:b1:70:39:04:
69:86:1e:6e:c9:b6:02:d8:af:6e:e0:73:b7:8d:a8:cc:74:34:
fe:81:64:dd:68:d2:ec:c2:f0:8c:57:4f:4c:e0:4a:ec:17:5c:
4f:77:6e:76:b7:97:1d:e6:11:41:d5:e3:d6:b7:ec:13:23:7a:
4c:bd:aa:91:99:99:f1:22:44:4d:b0:ab:02:b1:49:e3:d7:7c:
46:04:85:4e:ed:67:78:0d:78:fe:15:68:3a:6c:28:66:d8:3b:
30:c6:ac:b6:08:a4:0a:53:e3:36:da:32:b6:ad:70:b7:50:fd:
3f:7a:10:bb:07:6e:29:4a:6b:a9:eb:b9:7d:b0:71:25:81:07:
a6:f6:50:9a:30:89:a9:23:40:19:12:d9:28:04:5f:ba:ef:65:
78:54:b6:7e
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIULnW/fQFh4x2o/c+VD4yjIDolES8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUFDNDI3QjJCM0Y2NkZEMDQyMUMzNkY5RDhBNEE2MjVF
Q0U4NTBGQzAeFw0yNTAyMDQxODM4MjdaFw0yNjAyMDMxODQzMjdaMDMxMTAvBgNV
BAMTKDM5OUY5Q0ZBQzRERTA2NjBCNjA3RUY3QjkzNzVCNzc5QzJBOTIxRDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3LX7ytsYlfFZAAkY3v1G0LqmR
H8b6Ci5OKnjU+OWe0Fwzkq1fSoFVu2IimpVBXb45g553KumU317XJd8ps/lhKhlH
RDsYlTTQ0TWREYZnBs3JaGUb+G1OTNnn+WEX2FwC2HBeINE7Ik4CeLo3HCxeANOA
VckZvz94OqwXJqgfrLidEhRxB2WGNdnvjUlVgWpkA8wg7Ow3bfDoLGyhnLdMIvfj
FY5QO5+FkOCp5jco9qKnTMFLU44oZb/XQhTBxeP9Ykg2dP/JdIHEkcFD2tLEJx0l
2Kz8TghXS7ypWnY2gpvJQqmOrrVti6v4Njae/LBzwihqmWaygpOljdg+8wUZAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUOZ+c+sTeBmC2B+97k3W3ecKpIdMwHwYDVR0j
BBgwFoAUqsQnsrP2b9BCHDb52KSmJezoUPwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wN0Y1NDU4ODA0QUMwMTU2MEM3QjJGQUM5NUJDMDcxMTM4
QzFCQTIxRDNFMDczRDE2REJFMzJGMDk3Q0RFQzc1LzAvQUFDNDI3QjJCM0Y2NkZE
MDQyMUMzNkY5RDhBNEE2MjVFQ0U4NTBGQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BQUM0MjdCMkIzRjY2RkQwNDIx
QzM2RjlEOEE0QTYyNUVDRTg1MEZDLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMDdGNTQ1ODgwNEFDMDE1NjBDN0IyRkFDOTVCQzA3MTEzOEMxQkEyMUQz
RTA3M0QxNkRCRTMyRjA5N0NERUM3NS8wLzMxMzkzMDJlMzEzMDM3MmUzMjMyMzQy
ZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzNTMyMzMzNDMxLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDvmvg
MA0GCSqGSIb3DQEBCwUAA4IBAQBCMIEkEeDDQYmNpiV4HHSEQNF2wF+EbhYrab8v
TXvD69EqEkyf+ziFc7Yo/C/0eXfTSsNpMX+G6x9e/4Q+x3d/CRpmUxwiWghj4d/t
ODBNVnd5zBcqNWSA7ED6+d4XwCS5fzNX0XEZtrFwOQRphh5uybYC2K9u4HO3jajM
dDT+gWTdaNLswvCMV09M4ErsF1xPd252t5cd5hFB1ePWt+wTI3pMvaqRmZnxIkRN
sKsCsUnj13xGBIVO7Wd4DXj+FWg6bChm2Dswxqy2CKQKU+M22jK2rXC3UP0/ehC7
B24pSmup67l9sHElgQem9lCaMImpI0AZEtkoBF+672V4VLZ+
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:24:12 2025 by rpki-client