Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3139392e36302e3231352e302f32342d3234203d3e203532343233.roa
File: 3139392e36302e3231352e302f32342d3234203d3e203532343233.roa (raw, json)
Hash identifier: QCtVibB6gAvHWFUyIZtItwCdAa5rhI9gnqhSLeKnQNI=
Subject key identifier: C8:89:F1:40:42:AD:96:DE:2D:95:86:F9:9E:63:E3:BF:54:8A:F0:15
Certificate issuer: /CN=044328B588D7E6AB4F049D26F9E6FDBB2FB51970
Certificate serial: 45C90972D60E7878C7032C1E46FB8F4D4EB77982
Authority key identifier: 04:43:28:B5:88:D7:E6:AB:4F:04:9D:26:F9:E6:FD:BB:2F:B5:19:70
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3139392e36302e3231352e302f32342d3234203d3e203532343233.roa
Signing time: Tue 04 Feb 2025 18:54:31 +0000
ROA not before: Tue 04 Feb 2025 18:49:31 +0000
ROA not after: Tue 03 Feb 2026 18:54:31 +0000
asID: 52423
IP address blocks: 199.60.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:c9:09:72:d6:0e:78:78:c7:03:2c:1e:46:fb:8f:4d:4e:b7:79:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=044328B588D7E6AB4F049D26F9E6FDBB2FB51970
Validity
Not Before: Feb 4 18:49:31 2025 GMT
Not After : Feb 3 18:54:31 2026 GMT
Subject: CN=C889F14042AD96DE2D9586F99E63E3BF548AF015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e1:02:d8:99:de:00:1b:ac:74:f6:28:37:73:
aa:ff:ca:9d:1e:45:1a:aa:47:0b:7a:84:7b:f0:b2:
8b:5e:1d:e3:68:35:5e:e3:40:ef:69:17:2d:09:e9:
3b:2b:93:0b:e8:df:f6:2c:ea:d9:64:7a:76:37:63:
3f:c6:e6:14:28:89:ab:1e:a3:8a:49:2d:dd:8f:81:
35:9b:5a:8c:a6:f1:ec:63:04:fc:01:55:d2:69:96:
21:7c:69:b1:b4:8c:ab:3a:07:48:de:b8:86:18:e5:
c1:2c:4e:e3:b1:b8:d3:bd:bd:b3:1a:03:51:c4:6a:
1a:11:f5:49:2f:87:c4:d8:ae:8a:c8:99:65:95:64:
6a:5d:3c:a9:a9:86:49:9b:42:35:47:1e:c5:44:f8:
aa:1a:e3:e9:53:93:4f:00:a7:4b:a1:5d:0a:73:42:
13:d4:37:c3:60:cf:2e:69:ac:51:b3:65:eb:d9:f0:
bc:d2:a7:a1:75:81:30:d2:5c:19:d1:bb:4a:dc:e5:
b8:f4:52:4b:cd:b8:d2:26:61:5f:62:85:9a:76:fa:
41:3e:dc:83:93:7d:83:6f:ff:eb:13:47:e3:78:9a:
ad:4a:75:20:4e:12:83:08:45:16:8d:63:3a:60:93:
3a:bc:07:6d:bb:6a:8f:24:bb:9e:2f:bb:6a:c8:a9:
b8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:89:F1:40:42:AD:96:DE:2D:95:86:F9:9E:63:E3:BF:54:8A:F0:15
X509v3 Authority Key Identifier:
keyid:04:43:28:B5:88:D7:E6:AB:4F:04:9D:26:F9:E6:FD:BB:2F:B5:19:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3139392e36302e3231352e302f32342d3234203d3e203532343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.60.215.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:80:1e:31:cf:18:1b:80:cf:a6:bb:ec:26:2a:f6:d4:71:2f:
18:cd:7f:5c:fe:49:0f:2c:19:6f:aa:be:8e:ff:d7:84:a6:29:
d0:5e:8c:f8:80:c3:16:bc:c0:ea:1d:22:de:4b:14:63:78:32:
cd:58:5d:64:36:f9:18:4e:bf:dc:b1:aa:22:3c:f2:bb:27:f6:
51:f3:a6:d2:d9:57:96:98:27:8e:12:cd:9f:6f:5a:98:66:e7:
e0:d2:ae:e4:d5:c9:e5:80:a2:f8:8b:2c:d3:a2:22:a2:a0:90:
62:e5:ae:c9:7d:ef:01:9b:24:79:9e:e7:66:fb:28:12:24:98:
d1:51:a6:1b:5f:ef:b0:55:f2:58:34:8b:b0:5f:c6:66:59:fb:
30:30:a5:f4:e6:5d:ee:9b:66:83:ae:d7:c1:d4:e4:85:d9:53:
5c:a8:66:ab:19:5e:79:55:7e:61:1f:be:ff:35:d4:23:4f:e0:
03:78:7d:ca:42:68:0a:6b:24:5c:45:6a:1d:4c:fd:e6:ba:f7:
71:5a:ed:90:75:e1:e1:49:3e:b8:d7:23:7e:7a:b1:d4:65:d1:
ef:ec:74:e3:40:20:5f:dc:2b:e1:66:56:77:5d:76:a0:70:d7:
ca:31:08:76:b3:9c:6e:25:5e:46:eb:71:09:eb:0c:f3:fa:9b:
ed:f4:09:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:22 2025 by rpki-client