Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/3139302e31342e31382e302f32342d3234203d3e20323635383637.roa
File: 3139302e31342e31382e302f32342d3234203d3e20323635383637.roa (raw, json)
Hash identifier: 4bJKftXq8f1EvHuEUEUzwZAZV1N4eSQWEpmoa8B5nGo=
Subject key identifier: D9:4C:E6:14:CB:DA:E7:0E:A4:07:82:0B:EE:94:2E:B1:2B:36:DC:7B
Certificate issuer: /CN=EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D
Certificate serial: 6062491EB3EFB28BE5FB030CC734EE7357C30848
Authority key identifier: EF:64:06:F2:A9:DB:B0:8A:9E:E3:AC:2B:4F:78:EC:25:F2:DF:D7:2D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/3139302e31342e31382e302f32342d3234203d3e20323635383637.roa
Signing time: Tue 04 Feb 2025 18:18:23 +0000
ROA not before: Tue 04 Feb 2025 18:13:23 +0000
ROA not after: Tue 03 Feb 2026 18:18:23 +0000
asID: 265867
IP address blocks: 190.14.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:62:49:1e:b3:ef:b2:8b:e5:fb:03:0c:c7:34:ee:73:57:c3:08:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D
Validity
Not Before: Feb 4 18:13:23 2025 GMT
Not After : Feb 3 18:18:23 2026 GMT
Subject: CN=D94CE614CBDAE70EA407820BEE942EB12B36DC7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:34:1e:b6:a6:56:78:a3:c8:6f:6c:b0:32:42:
14:eb:64:9a:07:4e:da:23:87:1f:fb:f0:0c:ed:5e:
2e:87:82:4a:b2:78:a4:9f:73:9d:46:14:ff:42:ce:
ea:9e:3a:12:2d:36:c8:a3:fe:4a:d7:82:86:44:59:
20:8c:f4:3a:47:f8:c7:0f:95:86:a7:d6:61:11:15:
32:c4:cc:2d:84:4a:91:06:48:7b:91:78:8a:a7:e8:
5b:d4:d3:4d:27:82:ba:b1:75:39:55:2e:c3:ec:63:
93:65:22:cd:35:e3:83:34:2d:e8:ce:ea:da:06:50:
cf:68:ff:52:f7:d1:bf:4e:3a:e8:d5:10:79:84:0c:
04:ad:b4:08:af:0d:0c:fa:6e:e1:0c:e4:58:62:59:
58:6c:2e:51:6a:a1:1b:85:32:62:86:da:fc:5a:ac:
73:64:26:2e:74:5f:09:77:87:01:e0:d2:60:53:07:
8a:95:4a:29:4a:f5:d5:e7:b9:59:c8:1f:01:37:d7:
df:c1:22:6e:41:c6:bd:8e:bd:03:53:9c:ce:29:64:
f9:a3:7f:30:6c:fe:2e:93:5f:61:8b:21:3b:b1:8e:
32:7e:41:0d:03:a1:36:cb:fd:54:9c:a3:94:52:45:
97:36:b9:06:76:e3:4f:11:04:d3:6c:2b:d5:94:17:
ca:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4C:E6:14:CB:DA:E7:0E:A4:07:82:0B:EE:94:2E:B1:2B:36:DC:7B
X509v3 Authority Key Identifier:
keyid:EF:64:06:F2:A9:DB:B0:8A:9E:E3:AC:2B:4F:78:EC:25:F2:DF:D7:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/3139302e31342e31382e302f32342d3234203d3e20323635383637.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.14.18.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:c3:e1:c1:80:f5:37:ad:40:38:87:55:dd:23:cb:00:b9:d5:
ef:ec:ab:b4:86:44:98:08:4c:4f:1a:fd:25:65:b9:79:3c:6e:
ee:89:7e:ee:9b:70:dc:8a:9c:18:70:f0:05:ad:44:31:e4:e4:
11:fd:63:9b:51:43:64:f8:4a:b0:9f:e4:1e:df:f0:ca:a7:05:
03:26:fb:5d:03:04:4e:6b:56:2a:f3:dd:df:88:2a:7e:18:d4:
a8:cf:5a:88:db:4e:2f:5e:75:80:1b:b5:cf:ad:dd:d7:82:32:
9e:e5:55:38:71:0a:9f:1a:af:8f:9b:85:b1:59:e1:9b:cd:76:
79:2c:51:ac:72:50:07:e3:68:30:8a:62:d4:68:41:de:9f:43:
03:37:09:88:30:4c:25:61:8a:84:82:52:b8:77:9e:00:65:41:
9d:be:09:00:18:3b:e0:46:cf:0a:11:38:3e:a1:6a:51:38:a5:
bd:09:0b:56:83:2e:b6:e3:db:5b:a3:d6:3d:3a:26:54:76:27:
2f:f0:b6:fb:de:b6:be:8b:5e:08:0c:9f:b4:8c:98:0c:21:38:
28:53:9f:9f:bb:2f:2e:9d:61:76:47:30:7a:e0:b3:24:c5:28:
fb:19:fa:63:60:90:24:be:f7:c3:8e:69:b8:1f:6f:a3:b9:09:
19:c0:6a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:21 2025 by rpki-client