Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AE88E1895A1AA42D5A10A7ED389A0BACFD7B4874CBAB86A7B790A78C1457EFC/0/3139302e38392e32392e302f32342d3234203d3e20323634363238.roa
File: 3139302e38392e32392e302f32342d3234203d3e20323634363238.roa (raw, json)
Hash identifier: QGu+sC4ZY/13AwhpK6x9pa6Sm8jmiUbyCdWRDJfG+oU=
Subject key identifier: 28:94:04:0D:4A:D8:E4:08:29:80:70:F4:25:3D:88:A1:EA:FA:75:63
Certificate issuer: /CN=597B422C63F4E901AB522655E1EDFD64C35BD133
Certificate serial: 334013ADB69610AACF5363D028FD9C284CD4B932
Authority key identifier: 59:7B:42:2C:63:F4:E9:01:AB:52:26:55:E1:ED:FD:64:C3:5B:D1:33
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/597B422C63F4E901AB522655E1EDFD64C35BD133.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AE88E1895A1AA42D5A10A7ED389A0BACFD7B4874CBAB86A7B790A78C1457EFC/0/3139302e38392e32392e302f32342d3234203d3e20323634363238.roa
Signing time: Tue 04 Feb 2025 18:02:20 +0000
ROA not before: Tue 04 Feb 2025 17:57:20 +0000
ROA not after: Tue 03 Feb 2026 18:02:20 +0000
asID: 264628
IP address blocks: 190.89.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:40:13:ad:b6:96:10:aa:cf:53:63:d0:28:fd:9c:28:4c:d4:b9:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=597B422C63F4E901AB522655E1EDFD64C35BD133
Validity
Not Before: Feb 4 17:57:20 2025 GMT
Not After : Feb 3 18:02:20 2026 GMT
Subject: CN=2894040D4AD8E408298070F4253D88A1EAFA7563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4b:1b:b5:82:b8:e4:fd:1c:c6:f5:bc:cf:6b:
41:5e:88:41:fa:06:39:88:0e:ba:82:f9:b1:93:f0:
6c:83:b3:7d:7b:5b:9a:30:2b:dd:fa:84:cd:ac:dd:
39:23:68:3f:22:03:4a:75:a7:5e:35:80:57:31:e7:
95:5c:b3:f2:dc:07:da:72:cf:9f:a4:c1:8a:c6:e7:
cb:8c:38:a4:f4:4c:23:1e:54:fd:aa:3f:8c:60:a2:
3d:4a:23:86:fb:85:6b:a1:10:68:e8:43:e2:76:2a:
dc:a8:56:bd:2f:22:cd:73:e1:16:20:ea:ba:af:28:
92:50:53:76:29:1e:c3:49:82:c1:0c:f6:3c:4b:53:
98:14:48:b7:56:36:0a:38:5d:36:74:19:74:8f:56:
0a:ee:12:56:22:2c:cf:70:d5:7e:09:37:5d:23:ee:
7a:b5:bd:b7:f9:a3:f1:7b:1a:06:53:73:9b:71:22:
7f:30:70:b1:ef:19:85:5f:e1:72:12:4d:05:be:57:
10:b9:03:f8:81:88:d1:60:57:16:b0:ac:c1:00:56:
34:25:a7:b1:35:cf:f3:00:67:5b:9d:4e:e4:69:83:
c1:93:5f:72:66:e2:52:1d:c8:54:fa:4e:81:6b:d2:
69:bf:d6:3d:98:b9:bd:53:bf:4c:34:a4:1b:2d:90:
63:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:94:04:0D:4A:D8:E4:08:29:80:70:F4:25:3D:88:A1:EA:FA:75:63
X509v3 Authority Key Identifier:
keyid:59:7B:42:2C:63:F4:E9:01:AB:52:26:55:E1:ED:FD:64:C3:5B:D1:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1AE88E1895A1AA42D5A10A7ED389A0BACFD7B4874CBAB86A7B790A78C1457EFC/0/597B422C63F4E901AB522655E1EDFD64C35BD133.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/597B422C63F4E901AB522655E1EDFD64C35BD133.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AE88E1895A1AA42D5A10A7ED389A0BACFD7B4874CBAB86A7B790A78C1457EFC/0/3139302e38392e32392e302f32342d3234203d3e20323634363238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.89.29.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:29:f7:6f:64:37:62:6b:22:e4:ed:ff:66:f8:7d:d7:e7:e1:
1c:99:fd:c9:e0:37:93:32:a3:c6:06:7c:28:c2:21:87:2d:f6:
56:6d:f6:70:dc:cc:8b:ae:36:82:93:79:af:02:36:4c:3f:10:
64:aa:ea:16:7f:48:cb:ee:32:a1:9a:d2:8c:d6:21:03:52:d4:
3e:fd:8c:eb:c7:1e:98:6c:fe:33:0f:2d:16:d8:f4:5d:13:44:
cf:fa:8b:05:c8:ad:98:f2:69:66:75:07:05:33:74:34:82:9d:
1d:3f:d1:32:4b:f6:b3:42:34:2b:28:a4:9a:a3:ac:0b:d9:08:
4b:50:9c:59:10:06:48:65:15:bc:85:7d:a6:12:f6:76:43:a7:
eb:1b:21:fc:27:0f:35:75:fa:21:2f:b4:e5:c3:a5:d9:3d:95:
41:b4:d8:71:a3:63:83:66:30:a8:b5:ee:94:e9:dc:62:19:d4:
31:d4:cf:12:01:60:b4:9c:07:c3:f4:37:c7:08:53:5b:74:eb:
aa:31:08:c9:95:4a:00:19:37:1e:97:ae:9d:28:98:9c:d2:c4:
29:14:86:df:f7:4c:c8:9e:cf:bf:9e:58:10:82:97:91:ea:fd:
46:86:dd:cd:72:52:9e:7a:95:37:40:49:ea:63:14:c0:8f:cc:
1b:d2:d2:1d
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUM0ATrbaWEKrPU2PQKP2cKEzUuTIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTk3QjQyMkM2M0Y0RTkwMUFCNTIyNjU1RTFFREZENjRD
MzVCRDEzMzAeFw0yNTAyMDQxNzU3MjBaFw0yNjAyMDMxODAyMjBaMDMxMTAvBgNV
BAMTKDI4OTQwNDBENEFEOEU0MDgyOTgwNzBGNDI1M0Q4OEExRUFGQTc1NjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLSxu1grjk/RzG9bzPa0FeiEH6
BjmIDrqC+bGT8GyDs317W5owK936hM2s3TkjaD8iA0p1p141gFcx55Vcs/LcB9py
z5+kwYrG58uMOKT0TCMeVP2qP4xgoj1KI4b7hWuhEGjoQ+J2KtyoVr0vIs1z4RYg
6rqvKJJQU3YpHsNJgsEM9jxLU5gUSLdWNgo4XTZ0GXSPVgruElYiLM9w1X4JN10j
7nq1vbf5o/F7GgZTc5txIn8wcLHvGYVf4XISTQW+VxC5A/iBiNFgVxawrMEAVjQl
p7E1z/MAZ1udTuRpg8GTX3Jm4lIdyFT6ToFr0mm/1j2Yub1Tv0w0pBstkGMBAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUKJQEDUrY5AgpgHD0JT2Ioer6dWMwHwYDVR0j
BBgwFoAUWXtCLGP06QGrUiZV4e39ZMNb0TMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xQUU4OEUxODk1QTFBQTQyRDVBMTBBN0VEMzg5QTBCQUNG
RDdCNDg3NENCQUI4NkE3Qjc5MEE3OEMxNDU3RUZDLzAvNTk3QjQyMkM2M0Y0RTkw
MUFCNTIyNjU1RTFFREZENjRDMzVCRDEzMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81OTdCNDIyQzYzRjRFOTAxQUI1
MjI2NTVFMUVERkQ2NEMzNUJEMTMzLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUFFODhFMTg5NUExQUE0MkQ1QTEwQTdFRDM4OUEwQkFDRkQ3QjQ4NzRD
QkFCODZBN0I3OTBBNzhDMTQ1N0VGQy8wLzMxMzkzMDJlMzgzOTJlMzIzOTJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzYzNDM2MzIzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAL5ZHTAN
BgkqhkiG9w0BAQsFAAOCAQEAbSn3b2Q3Ymsi5O3/Zvh91+fhHJn9yeA3kzKjxgZ8
KMIhhy32Vm32cNzMi642gpN5rwI2TD8QZKrqFn9Iy+4yoZrSjNYhA1LUPv2M68ce
mGz+Mw8tFtj0XRNEz/qLBcitmPJpZnUHBTN0NIKdHT/RMkv2s0I0KyikmqOsC9kI
S1CcWRAGSGUVvIV9phL2dkOn6xsh/CcPNXX6IS+05cOl2T2VQbTYcaNjg2YwqLXu
lOncYhnUMdTPEgFgtJwHw/Q3xwhTW3TrqjEIyZVKABk3HpeunSiYnNLEKRSG3/dM
yJ7Pv55YEIKXker9RobdzXJSnnqVN0BJ6mMUwI/MG9LSHQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:25:28 2025 by rpki-client