Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AA2EBB687195FD49844E1D0D3115E92CDA6103B3994B0D6303D16B1799B337B/0/3133312e37322e3133362e302f32322d3234203d3e20323732303433.roa
File: 3133312e37322e3133362e302f32322d3234203d3e20323732303433.roa (raw, json)
Hash identifier: 1x91KxcDGe+GzaszHkOoQot0dXtb858whFYeE+Z/9yw=
Subject key identifier: A1:DE:9C:4E:C9:4B:EF:97:4F:BA:D4:8B:80:70:8B:2E:8E:27:67:45
Certificate issuer: /CN=AD0AC5C8188314F93F8DAB2961A0B21B0B3B2192
Certificate serial: 60DB68DF0CD2B99DF9D369F1CD490F76EA363964
Authority key identifier: AD:0A:C5:C8:18:83:14:F9:3F:8D:AB:29:61:A0:B2:1B:0B:3B:21:92
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AD0AC5C8188314F93F8DAB2961A0B21B0B3B2192.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AA2EBB687195FD49844E1D0D3115E92CDA6103B3994B0D6303D16B1799B337B/0/3133312e37322e3133362e302f32322d3234203d3e20323732303433.roa
Signing time: Tue 04 Feb 2025 18:42:13 +0000
ROA not before: Tue 04 Feb 2025 18:37:13 +0000
ROA not after: Tue 03 Feb 2026 18:42:13 +0000
asID: 272043
IP address blocks: 131.72.136.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:db:68:df:0c:d2:b9:9d:f9:d3:69:f1:cd:49:0f:76:ea:36:39:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AD0AC5C8188314F93F8DAB2961A0B21B0B3B2192
Validity
Not Before: Feb 4 18:37:13 2025 GMT
Not After : Feb 3 18:42:13 2026 GMT
Subject: CN=A1DE9C4EC94BEF974FBAD48B80708B2E8E276745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b4:74:7c:4b:95:45:24:d8:e9:c5:e8:fa:28:
c6:72:10:f1:a3:9b:74:2c:8a:fc:ee:4a:b1:30:d6:
50:aa:0d:b0:51:e6:7c:9a:27:fd:1e:e6:6e:f9:c0:
4e:d6:0b:e0:af:ed:89:b2:5f:d5:29:13:59:25:71:
54:9a:13:23:bf:28:a7:25:34:10:19:ef:f1:ac:db:
3f:1c:96:ec:8b:ad:47:ca:a2:bc:95:ec:1e:96:32:
0c:5f:64:67:cf:13:54:ab:3d:cf:60:af:4b:6b:8d:
90:f3:3d:4d:88:cf:1d:6d:44:c4:1a:71:35:52:c7:
00:f9:c1:4d:b5:fe:87:63:93:23:d6:1d:7e:52:e8:
8c:9e:0d:26:15:ce:e3:97:2f:0c:72:7a:4d:6c:9c:
f6:c5:15:10:59:83:1e:f1:a5:8f:89:d6:22:ed:de:
ed:4d:5f:e1:fc:dd:95:f2:47:95:15:a3:bb:e7:38:
0a:43:0f:64:b9:62:7e:37:60:a6:76:1e:a4:68:7a:
60:97:a5:ad:92:c3:88:2b:f0:36:0d:88:1a:ee:3d:
79:d7:79:d1:f0:fc:16:65:a3:05:1a:b3:99:3f:74:
b3:f3:f3:35:5a:9b:18:f3:59:a5:ae:fc:20:03:a7:
bf:a4:17:8f:72:dd:5c:99:7d:ad:e9:2b:e8:ad:41:
7a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:DE:9C:4E:C9:4B:EF:97:4F:BA:D4:8B:80:70:8B:2E:8E:27:67:45
X509v3 Authority Key Identifier:
keyid:AD:0A:C5:C8:18:83:14:F9:3F:8D:AB:29:61:A0:B2:1B:0B:3B:21:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1AA2EBB687195FD49844E1D0D3115E92CDA6103B3994B0D6303D16B1799B337B/0/AD0AC5C8188314F93F8DAB2961A0B21B0B3B2192.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AD0AC5C8188314F93F8DAB2961A0B21B0B3B2192.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AA2EBB687195FD49844E1D0D3115E92CDA6103B3994B0D6303D16B1799B337B/0/3133312e37322e3133362e302f32322d3234203d3e20323732303433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.72.136.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:f7:72:1c:72:0d:14:11:eb:3a:17:c0:c8:f6:82:34:35:61:
af:a5:75:b9:28:c3:4d:3f:d7:7f:23:cc:9b:91:bf:2f:04:9a:
36:14:cd:ae:d9:83:0c:fb:49:d0:26:91:28:2f:2d:7d:37:0f:
42:ed:8c:b5:8f:6d:8e:f7:02:90:95:e7:df:6b:c9:12:28:0d:
1e:77:ad:fa:39:c9:13:17:36:d5:8e:19:69:b0:02:ac:76:d5:
20:18:09:67:b7:b7:db:c6:af:5c:04:14:99:40:d9:d2:ae:a9:
bf:f5:d8:8b:48:4d:79:7c:ee:8f:b2:a5:cc:bc:4e:94:68:99:
51:e1:59:9d:3a:65:fd:24:fc:ac:1b:7e:7d:51:8e:79:ae:65:
b7:58:d5:6e:9d:35:60:cc:da:50:a0:60:e4:ce:cf:f6:c8:fa:
08:6a:ad:00:85:f6:c8:5b:f6:95:78:a3:34:ea:36:15:d6:dc:
42:5e:c9:ff:bb:02:00:88:77:3b:39:f2:0f:dd:26:10:12:57:
f2:87:ac:b7:f0:34:83:2d:7f:13:30:2a:b9:73:05:97:b3:10:
3f:d7:52:5f:da:c9:ce:b6:1c:a9:e9:38:5f:e7:69:d3:46:44:
60:75:46:cb:93:be:e8:89:ed:ef:e1:44:58:83:d0:9b:09:f8:
b4:b2:4a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:56 2025 by rpki-client