Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3139302e3133312e3139342e302f32342d3234203d3e20323632313931.roa
File: 3139302e3133312e3139342e302f32342d3234203d3e20323632313931.roa (raw, json)
Hash identifier: kZzrnR/FdC5P7ll4/xUtVjf5hE/MAV84mkVYsSeP+kE=
Subject key identifier: D7:A2:EE:56:65:C1:1A:7C:E2:AF:04:A5:34:F5:22:04:E1:E2:C4:51
Certificate issuer: /CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Certificate serial: 1DA064E60904286A2F95CC1B25692F0B81514245
Authority key identifier: 85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3139302e3133312e3139342e302f32342d3234203d3e20323632313931.roa
Signing time: Tue 04 Feb 2025 20:04:42 +0000
ROA not before: Tue 04 Feb 2025 19:59:42 +0000
ROA not after: Tue 03 Feb 2026 20:04:42 +0000
asID: 262191
IP address blocks: 190.131.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:a0:64:e6:09:04:28:6a:2f:95:cc:1b:25:69:2f:0b:81:51:42:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Validity
Not Before: Feb 4 19:59:42 2025 GMT
Not After : Feb 3 20:04:42 2026 GMT
Subject: CN=D7A2EE5665C11A7CE2AF04A534F52204E1E2C451
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:89:ca:7c:dc:64:67:56:3c:8c:d5:7e:b0:d7:
8c:15:f4:db:d2:2c:d1:35:c6:ab:17:c6:9f:61:11:
19:8d:08:fb:21:1c:54:14:7e:ad:72:c8:8e:80:4e:
2f:98:5e:86:32:35:bf:d4:5c:9d:75:fc:41:a9:5c:
66:9f:96:2d:3f:4b:e5:26:01:3e:28:46:2e:9b:db:
6c:f6:5a:e2:b5:8f:b6:c0:c1:e3:e4:21:c2:5e:48:
31:73:ed:ee:d5:18:82:2f:b9:3c:26:bd:25:54:cd:
ba:40:d1:00:9e:e4:f9:23:37:a0:b2:f8:5a:de:e2:
39:fe:ed:33:c6:e5:70:f7:b2:62:91:f8:0e:a8:1f:
d6:ba:08:c4:9b:cc:c6:32:9d:10:2f:87:0b:9b:3e:
01:c6:fb:d1:9f:9e:e4:d4:b9:75:84:97:e9:3b:14:
7e:4d:bc:e5:81:35:90:4c:01:7b:45:b9:3b:36:f1:
4d:5a:05:fe:03:5a:82:f4:da:c5:a9:e8:bb:97:99:
a9:b2:5c:1a:6c:b0:a6:53:33:5b:7c:5c:53:ea:cd:
a2:72:a0:f1:6f:e5:95:0b:1e:41:33:cb:1c:07:47:
3b:2b:56:6f:8c:6e:01:fe:b9:18:3d:38:9e:40:12:
66:0b:8c:d0:9b:32:09:1d:68:95:c1:8d:e7:2a:cd:
84:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:A2:EE:56:65:C1:1A:7C:E2:AF:04:A5:34:F5:22:04:E1:E2:C4:51
X509v3 Authority Key Identifier:
keyid:85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3139302e3133312e3139342e302f32342d3234203d3e20323632313931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.131.194.0/24
Signature Algorithm: sha256WithRSAEncryption
46:d0:b4:ac:21:23:bf:be:8c:e5:16:1e:42:7a:ee:50:99:58:
ad:aa:b6:36:3c:18:36:bb:6f:6d:a1:66:15:15:4f:7b:e9:cf:
92:10:2a:51:fc:69:ed:bf:60:51:2d:96:1f:2e:d5:30:34:32:
89:1a:f1:2f:aa:c5:f0:c0:5a:01:9b:58:f0:6d:5e:f2:1f:c7:
72:c9:60:d9:04:c9:05:ac:f3:42:1e:55:ef:c1:a7:d3:86:b2:
f4:59:c8:4f:23:6a:b1:fc:68:98:1c:d6:f3:ca:61:34:00:41:
5e:fb:4a:ac:52:56:69:70:31:dc:ec:7b:0d:cd:56:37:78:db:
e5:00:c3:49:32:9c:58:10:2a:5e:13:a1:00:bc:77:e7:d3:e2:
e0:62:74:34:09:84:16:2b:8c:a9:f1:07:ad:3a:ae:e5:ac:e6:
ee:37:ed:de:68:0b:f4:77:8f:10:b0:95:ba:66:b4:35:b8:7e:
be:ec:24:89:a9:b1:c8:3a:93:cb:42:3e:0d:57:87:4b:a3:55:
5f:39:6f:40:35:71:64:12:08:a7:b7:13:8d:d3:12:60:00:0b:
7e:2e:af:fe:8f:8e:08:47:a5:67:be:65:79:1d:9c:8f:1a:d9:
91:86:54:78:1a:2f:1e:36:86:d2:59:7c:3f:85:fc:78:53:f0:
39:4c:f8:6b
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUHaBk5gkEKGovlcwbJWkvC4FRQkUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODVEOUU3RDlCRUVGRUQwQjlFMTg4REI3RThDQzNCNjQ4
OTA2NkRDRDAeFw0yNTAyMDQxOTU5NDJaFw0yNjAyMDMyMDA0NDJaMDMxMTAvBgNV
BAMTKEQ3QTJFRTU2NjVDMTFBN0NFMkFGMDRBNTM0RjUyMjA0RTFFMkM0NTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzicp83GRnVjyM1X6w14wV9NvS
LNE1xqsXxp9hERmNCPshHFQUfq1yyI6ATi+YXoYyNb/UXJ11/EGpXGafli0/S+Um
AT4oRi6b22z2WuK1j7bAwePkIcJeSDFz7e7VGIIvuTwmvSVUzbpA0QCe5PkjN6Cy
+Fre4jn+7TPG5XD3smKR+A6oH9a6CMSbzMYynRAvhwubPgHG+9GfnuTUuXWEl+k7
FH5NvOWBNZBMAXtFuTs28U1aBf4DWoL02sWp6LuXmamyXBpssKZTM1t8XFPqzaJy
oPFv5ZULHkEzyxwHRzsrVm+MbgH+uRg9OJ5AEmYLjNCbMgkdaJXBjecqzYRHAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQU16LuVmXBGnzirwSlNPUiBOHixFEwHwYDVR0j
BBgwFoAUhdnn2b7v7QueGI236Mw7ZIkGbc0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xQUQ3MjYxQzdGRDFFNEVGRUNFQkU2RjM2MkZDRDBDNzU2
OTdFMDZCNDE0NzRCRUE4Q0FCQzcwNkY3OUVDRjNELzAvODVEOUU3RDlCRUVGRUQw
QjlFMTg4REI3RThDQzNCNjQ4OTA2NkRDRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NUQ5RTdEOUJFRUZFRDBCOUUx
ODhEQjdFOENDM0I2NDg5MDY2RENELmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUFENzI2MUM3RkQxRTRFRkVDRUJFNkYzNjJGQ0QwQzc1Njk3RTA2QjQx
NDc0QkVBOENBQkM3MDZGNzlFQ0YzRC8wLzMxMzkzMDJlMzEzMzMxMmUzMTM5MzQy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2MzIzMTM5MzEucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC+
g8IwDQYJKoZIhvcNAQELBQADggEBAEbQtKwhI7++jOUWHkJ67lCZWK2qtjY8GDa7
b22hZhUVT3vpz5IQKlH8ae2/YFEtlh8u1TA0Moka8S+qxfDAWgGbWPBtXvIfx3LJ
YNkEyQWs80IeVe/Bp9OGsvRZyE8jarH8aJgc1vPKYTQAQV77SqxSVmlwMdzsew3N
Vjd42+UAw0kynFgQKl4ToQC8d+fT4uBidDQJhBYrjKnxB606ruWs5u437d5oC/R3
jxCwlbpmtDW4fr7sJImpscg6k8tCPg1Xh0ujVV85b0A1cWQSCKe3E43TEmAAC34u
r/6PjghHpWe+ZXkdnI8a2ZGGVHgaLx42htJZfD+F/HhT8DlM+Gs=
-----END CERTIFICATE-----
Generated at Sun Apr 6 00:35:35 2025 by rpki-client