Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3139302e3133312e3230382e302f32332d3234203d3e20323632313931.roa
File: 3139302e3133312e3230382e302f32332d3234203d3e20323632313931.roa (raw, json)
Hash identifier: rNK8JeCcpPRT/WJHKwGCY5E3NDyHZXR990QSN7iakh4=
Subject key identifier: 65:99:07:0D:F8:0D:C9:59:EF:79:04:A3:3C:88:12:B0:1F:BD:CF:F4
Certificate issuer: /CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Certificate serial: 50FB0AA91039E991C95C8F92BAC09B91B3750555
Authority key identifier: 85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3139302e3133312e3230382e302f32332d3234203d3e20323632313931.roa
Signing time: Tue 04 Feb 2025 20:04:33 +0000
ROA not before: Tue 04 Feb 2025 19:59:33 +0000
ROA not after: Tue 03 Feb 2026 20:04:33 +0000
asID: 262191
IP address blocks: 190.131.208.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:fb:0a:a9:10:39:e9:91:c9:5c:8f:92:ba:c0:9b:91:b3:75:05:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Validity
Not Before: Feb 4 19:59:33 2025 GMT
Not After : Feb 3 20:04:33 2026 GMT
Subject: CN=6599070DF80DC959EF7904A33C8812B01FBDCFF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a5:45:0a:80:d1:40:e3:00:06:f4:8f:c4:60:
c4:d2:ea:45:86:24:08:e8:df:76:85:0c:11:50:a6:
f0:da:ac:d0:02:5c:59:42:65:ae:0e:bf:57:fc:29:
a9:38:94:05:bf:3a:ed:c6:4c:49:ed:8f:36:2a:b5:
c3:b4:e8:84:09:96:3b:63:15:3a:60:2c:08:61:17:
a6:cf:6d:57:1c:98:66:43:95:45:70:8e:5d:a9:50:
ab:c0:e6:74:47:37:11:cf:0e:bc:5a:ac:d7:6b:17:
02:7d:25:36:31:98:50:3c:91:f6:0a:6b:e1:5e:81:
b7:05:ea:e7:23:d1:d6:cb:cb:b1:84:87:9c:a3:a4:
1f:f3:3a:54:e3:a4:af:ce:42:b0:15:75:a7:e6:dd:
d5:06:63:7f:3a:0b:bc:07:14:ac:0a:e5:3d:43:72:
1e:d1:60:4c:ba:0a:d9:f7:5e:e9:c0:1f:66:1a:d5:
5b:01:e4:00:96:29:fa:c3:2e:9c:fb:c5:22:13:23:
c8:05:cb:5b:77:47:62:e4:5d:46:8e:5b:9b:64:46:
b5:c7:bf:4d:f4:2f:05:06:13:f3:1e:93:6e:93:31:
d3:fb:05:d5:11:cb:f6:48:1d:2d:97:a3:28:36:47:
5f:d3:ea:c8:b8:06:3a:18:3c:8c:c7:1a:80:3f:20:
f6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:99:07:0D:F8:0D:C9:59:EF:79:04:A3:3C:88:12:B0:1F:BD:CF:F4
X509v3 Authority Key Identifier:
keyid:85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3139302e3133312e3230382e302f32332d3234203d3e20323632313931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.131.208.0/23
Signature Algorithm: sha256WithRSAEncryption
46:33:db:77:98:43:18:82:de:8f:f6:55:19:53:5e:85:f8:d4:
e3:0b:ca:52:ba:73:eb:28:6a:ab:a9:ef:71:25:67:54:0a:2c:
98:89:e6:bf:8f:86:81:a6:a7:63:63:7d:1b:68:1d:c4:9a:8f:
22:f8:e5:f8:42:9e:fa:08:bf:8b:82:72:0f:a7:44:f2:11:26:
7d:83:99:97:a8:28:cd:5a:b7:7f:55:d5:a5:db:cf:56:39:00:
6c:ac:0e:73:5f:f1:a3:ba:7f:4b:2a:71:38:80:6c:86:80:fd:
13:a5:eb:86:27:dc:7d:61:3e:c0:e9:45:17:1c:b3:5d:06:cb:
ec:86:75:ef:5f:2d:b3:c1:b2:1c:f7:a1:0f:0b:fb:37:e7:bf:
32:b7:7b:bb:90:11:5d:28:59:46:a9:b0:8c:48:98:dd:7b:55:
9c:47:9d:ba:10:5f:9a:44:ea:39:a0:47:a9:d7:50:04:ab:57:
5d:b6:a8:1c:7d:92:d8:20:a0:4f:b9:fb:e8:3a:0f:a3:3d:9a:
96:6b:bc:df:f4:01:58:a2:b4:0c:5a:b7:4d:b1:3e:6e:09:25:
9f:ba:b6:5f:f7:a4:9c:47:74:34:ef:e6:c5:80:82:4c:25:a0:
ff:f2:c6:00:be:63:71:14:c9:ce:36:ac:4f:1c:97:53:66:68:
7f:5b:76:04
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUUPsKqRA56ZHJXI+SusCbkbN1BVUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODVEOUU3RDlCRUVGRUQwQjlFMTg4REI3RThDQzNCNjQ4
OTA2NkRDRDAeFw0yNTAyMDQxOTU5MzNaFw0yNjAyMDMyMDA0MzNaMDMxMTAvBgNV
BAMTKDY1OTkwNzBERjgwREM5NTlFRjc5MDRBMzNDODgxMkIwMUZCRENGRjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPpUUKgNFA4wAG9I/EYMTS6kWG
JAjo33aFDBFQpvDarNACXFlCZa4Ov1f8Kak4lAW/Ou3GTEntjzYqtcO06IQJljtj
FTpgLAhhF6bPbVccmGZDlUVwjl2pUKvA5nRHNxHPDrxarNdrFwJ9JTYxmFA8kfYK
a+FegbcF6ucj0dbLy7GEh5yjpB/zOlTjpK/OQrAVdafm3dUGY386C7wHFKwK5T1D
ch7RYEy6Ctn3XunAH2Ya1VsB5ACWKfrDLpz7xSITI8gFy1t3R2LkXUaOW5tkRrXH
v030LwUGE/Mek26TMdP7BdURy/ZIHS2Xoyg2R1/T6si4BjoYPIzHGoA/IPbxAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUZZkHDfgNyVnveQSjPIgSsB+9z/QwHwYDVR0j
BBgwFoAUhdnn2b7v7QueGI236Mw7ZIkGbc0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xQUQ3MjYxQzdGRDFFNEVGRUNFQkU2RjM2MkZDRDBDNzU2
OTdFMDZCNDE0NzRCRUE4Q0FCQzcwNkY3OUVDRjNELzAvODVEOUU3RDlCRUVGRUQw
QjlFMTg4REI3RThDQzNCNjQ4OTA2NkRDRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NUQ5RTdEOUJFRUZFRDBCOUUx
ODhEQjdFOENDM0I2NDg5MDY2RENELmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUFENzI2MUM3RkQxRTRFRkVDRUJFNkYzNjJGQ0QwQzc1Njk3RTA2QjQx
NDc0QkVBOENBQkM3MDZGNzlFQ0YzRC8wLzMxMzkzMDJlMzEzMzMxMmUzMjMwMzgy
ZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMjM2MzIzMTM5MzEucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG+
g9AwDQYJKoZIhvcNAQELBQADggEBAEYz23eYQxiC3o/2VRlTXoX41OMLylK6c+so
aqup73ElZ1QKLJiJ5r+PhoGmp2NjfRtoHcSajyL45fhCnvoIv4uCcg+nRPIRJn2D
mZeoKM1at39V1aXbz1Y5AGysDnNf8aO6f0sqcTiAbIaA/ROl64Yn3H1hPsDpRRcc
s10Gy+yGde9fLbPBshz3oQ8L+zfnvzK3e7uQEV0oWUapsIxImN17VZxHnboQX5pE
6jmgR6nXUASrV122qBx9ktggoE+5++g6D6M9mpZrvN/0AViitAxat02xPm4JJZ+6
tl/3pJxHdDTv5sWAgkwloP/yxgC+Y3EUyc42rE8cl1NmaH9bdgQ=
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:26:24 2025 by rpki-client