Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3139302e3133312e3230392e302f32342d3234203d3e203233353230.roa
File: 3139302e3133312e3230392e302f32342d3234203d3e203233353230.roa (raw, json)
Hash identifier: KrpLozMYLNMAq47iCrA+SDg3PXXygw2kSWAlZHBGLl4=
Subject key identifier: 90:3A:22:B6:ED:B2:23:8F:DE:46:74:EC:A9:FF:E2:E7:3D:51:04:03
Certificate issuer: /CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Certificate serial: 34A5954E894D97CBDDA5C2B2044297F1F8866E8A
Authority key identifier: 85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3139302e3133312e3230392e302f32342d3234203d3e203233353230.roa
Signing time: Tue 04 Feb 2025 20:04:41 +0000
ROA not before: Tue 04 Feb 2025 19:59:41 +0000
ROA not after: Tue 03 Feb 2026 20:04:41 +0000
asID: 23520
IP address blocks: 190.131.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:a5:95:4e:89:4d:97:cb:dd:a5:c2:b2:04:42:97:f1:f8:86:6e:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Validity
Not Before: Feb 4 19:59:41 2025 GMT
Not After : Feb 3 20:04:41 2026 GMT
Subject: CN=903A22B6EDB2238FDE4674ECA9FFE2E73D510403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:db:b5:0f:02:16:f9:36:8a:7c:22:05:68:f3:
d8:96:9c:55:b1:3c:65:56:e9:0b:a0:d7:b3:41:8a:
b5:f9:47:5b:67:d6:d2:2c:68:c1:20:d7:7f:46:f1:
ed:de:ee:97:f4:53:d6:1a:7e:91:3d:b8:af:06:fa:
06:9e:5e:f7:fb:65:0d:c9:d7:35:b4:66:71:1f:c5:
b7:7b:a0:11:9f:cb:bd:05:3b:0f:91:c0:0c:54:61:
77:c0:e0:ba:07:6c:8d:03:56:15:5f:94:28:c7:bf:
c1:c3:37:38:35:74:26:24:ab:ab:00:8f:d2:b4:0b:
1a:83:88:d2:41:1f:92:5d:03:c1:b0:db:5a:96:09:
aa:96:93:39:5e:64:04:bf:06:ef:44:7e:19:60:6e:
34:6d:73:39:6c:5d:e4:37:6f:6d:bd:a7:d6:0c:02:
90:75:d6:01:ac:85:23:a8:9d:ad:cc:88:6b:c1:02:
6f:8e:15:a8:47:bc:4e:7b:be:b0:3c:47:63:5f:83:
14:e0:a9:94:a0:30:84:58:37:2c:67:74:06:b3:11:
a5:d5:92:17:c1:f2:f4:9c:8c:52:80:16:3e:a1:b2:
d7:64:d1:9c:97:47:c6:4c:c3:1f:91:c0:a9:f0:1e:
c8:d8:f3:47:78:04:3f:72:97:e8:90:5c:a5:32:c6:
ba:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:3A:22:B6:ED:B2:23:8F:DE:46:74:EC:A9:FF:E2:E7:3D:51:04:03
X509v3 Authority Key Identifier:
keyid:85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/3139302e3133312e3230392e302f32342d3234203d3e203233353230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.131.209.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:8a:f3:dc:4a:fb:b2:46:6d:6a:92:03:fa:f6:54:15:d0:2a:
c5:bf:72:d4:64:50:47:d7:00:95:5f:b2:88:b3:15:ab:f2:16:
35:5d:92:4d:b8:33:a7:ce:17:38:b4:5a:f6:f0:75:0f:aa:9b:
4a:64:55:b0:42:b8:d3:cc:de:0e:8b:56:25:9e:a9:77:56:00:
45:50:20:24:58:7e:46:a0:38:1c:b8:f8:d3:1f:21:66:cf:b6:
3a:77:59:fa:60:9f:9b:32:91:d4:02:23:13:23:a6:0c:22:00:
69:0e:cf:84:c5:37:b1:e5:0c:9e:b8:e2:73:01:de:11:d4:df:
d8:64:d6:4a:06:58:11:ec:7b:90:09:f1:9d:cf:48:fc:a2:a6:
97:4f:4e:36:a6:e1:63:47:98:03:dd:b6:a2:eb:bf:eb:9f:c6:
2e:a1:3b:ca:c2:fd:0d:f1:f9:9f:13:a3:67:3f:2e:98:62:13:
27:7c:da:49:8f:b4:b3:62:69:67:95:a9:62:3a:7a:4f:3e:df:
52:79:8f:db:d8:f4:80:77:f1:fb:0b:aa:b3:d8:32:a1:88:5d:
e4:ae:43:40:06:f0:9d:02:2a:4a:e9:28:4c:f2:1d:7b:84:7c:
c5:ab:c9:18:ae:4b:6c:05:54:74:7c:a8:e0:35:b6:7f:c8:dc:
5b:55:27:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:24:26 2025 by rpki-client