Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0F8223E41FDFCC8B3F32557B09F7D1D458E59A066FC7368917479D5DA0122974/0/3139322e3138382e35382e302f32342d3234203d3e2033353439.roa
File: 3139322e3138382e35382e302f32342d3234203d3e2033353439.roa (raw, json)
Hash identifier: OIObDn9Q9FnZsaGoEZoV05WpGD2atjlewYiWoi1fmtk=
Subject key identifier: F5:DD:A9:62:B0:80:9D:5A:DF:05:2E:5E:51:99:77:FB:E1:39:A2:94
Certificate issuer: /CN=BB2B2E89891085EE92514B5D91EFE9F59005C933
Certificate serial: 4338807074C219808590A6ADC9AAA4BD370AD01E
Authority key identifier: BB:2B:2E:89:89:10:85:EE:92:51:4B:5D:91:EF:E9:F5:90:05:C9:33
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BB2B2E89891085EE92514B5D91EFE9F59005C933.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0F8223E41FDFCC8B3F32557B09F7D1D458E59A066FC7368917479D5DA0122974/0/3139322e3138382e35382e302f32342d3234203d3e2033353439.roa
Signing time: Tue 04 Feb 2025 20:08:57 +0000
ROA not before: Tue 04 Feb 2025 20:03:57 +0000
ROA not after: Tue 03 Feb 2026 20:08:57 +0000
asID: 3549
IP address blocks: 192.188.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:38:80:70:74:c2:19:80:85:90:a6:ad:c9:aa:a4:bd:37:0a:d0:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB2B2E89891085EE92514B5D91EFE9F59005C933
Validity
Not Before: Feb 4 20:03:57 2025 GMT
Not After : Feb 3 20:08:57 2026 GMT
Subject: CN=F5DDA962B0809D5ADF052E5E519977FBE139A294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a0:ee:43:62:58:ce:22:7b:96:4c:75:db:a0:
a4:b8:c1:92:a9:00:f7:85:92:29:af:8a:60:8a:f8:
79:a3:09:8b:4c:d5:16:55:28:cd:63:07:b2:8c:bb:
12:c8:3b:8a:40:5a:58:06:34:b0:39:db:0b:49:85:
07:8e:0e:ee:77:4d:d3:53:eb:50:f3:41:4c:bb:18:
b5:90:41:63:2c:8a:98:dd:35:4e:5a:66:c8:63:bb:
04:50:07:55:10:18:2a:2a:1f:aa:a8:20:1e:fc:5c:
1e:5c:ec:20:5f:a4:19:70:02:fa:d4:05:bb:8a:74:
a5:a2:d5:8e:cf:b3:d8:67:87:97:9b:cb:3b:ae:7f:
22:54:4e:4c:f5:ee:a5:f1:79:27:50:27:33:da:2e:
e4:ea:b1:86:2e:00:08:c5:1d:ad:bc:6a:8c:03:cb:
9a:6c:59:b5:5f:b2:cd:86:38:6f:fe:b8:11:bc:2a:
3b:10:27:41:bd:6c:26:94:43:f3:93:8b:db:d2:b9:
15:c9:08:35:fb:9d:9c:81:cd:c6:f1:f0:d2:a1:e7:
b0:e6:e2:22:89:09:4d:ae:e7:23:c1:28:63:54:06:
dd:8a:85:76:58:d4:e0:d2:4c:86:0a:c9:9e:ae:be:
12:95:93:b5:33:e2:12:d7:18:bc:9a:ed:82:1f:bd:
4a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:DD:A9:62:B0:80:9D:5A:DF:05:2E:5E:51:99:77:FB:E1:39:A2:94
X509v3 Authority Key Identifier:
keyid:BB:2B:2E:89:89:10:85:EE:92:51:4B:5D:91:EF:E9:F5:90:05:C9:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0F8223E41FDFCC8B3F32557B09F7D1D458E59A066FC7368917479D5DA0122974/0/BB2B2E89891085EE92514B5D91EFE9F59005C933.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BB2B2E89891085EE92514B5D91EFE9F59005C933.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0F8223E41FDFCC8B3F32557B09F7D1D458E59A066FC7368917479D5DA0122974/0/3139322e3138382e35382e302f32342d3234203d3e2033353439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.188.58.0/24
Signature Algorithm: sha256WithRSAEncryption
85:a7:87:54:32:12:61:c5:86:eb:8d:99:03:22:5f:ac:9a:b6:
c9:6c:8f:ed:96:00:11:81:d2:7e:ed:07:a4:d8:32:07:a2:4d:
6e:f1:68:20:cb:bf:63:31:88:1c:54:63:a5:13:34:23:85:bc:
47:5a:e6:22:58:2b:9e:61:e1:ea:c5:56:28:a1:70:be:5a:cf:
b1:44:12:a9:28:4c:4f:48:ce:c5:be:d8:1c:29:e7:ef:bd:1d:
63:6e:65:a3:65:8a:78:13:a2:3f:4d:d8:1c:b8:1f:60:0e:db:
ce:19:37:f6:a0:f7:0f:99:79:d3:2e:06:14:86:a3:61:5f:f9:
ef:08:29:ab:c9:5c:75:59:e2:8c:62:3c:13:0e:e9:11:3f:13:
cd:16:c2:fa:45:dd:96:4e:92:54:ee:71:84:0f:3d:d6:b5:43:
46:b7:01:17:a7:b9:09:36:d4:4c:8b:c4:3d:48:d0:82:8d:2e:
f3:2a:e5:71:a1:30:17:34:89:d3:71:5a:6d:45:6d:3f:e7:d4:
ba:d6:e2:91:fd:72:2b:2b:8d:e0:05:6b:38:19:5b:0a:34:c2:
6f:63:7d:c9:1d:06:7c:84:27:52:47:9f:f9:78:6c:a0:91:06:
5f:8c:38:ab:ed:3e:95:ae:1d:32:99:0f:f6:a1:1a:8d:17:6a:
9d:e8:7a:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:36 2025 by rpki-client