Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3650D59C14D282419C1FFC6D534AD0B46006980772355A21D5871025F82C9883/0/3139302e39392e39362e302f32302d3234203d3e203532323431.roa
File: 3139302e39392e39362e302f32302d3234203d3e203532323431.roa (raw, json)
Hash identifier: O/46B4/u/eHOyJFeGsRSsHAhdDpnVI0nukknP3HeWiE=
Subject key identifier: 01:3C:DB:90:58:39:F4:1B:08:B3:FD:D5:46:A4:80:D9:D9:CB:99:A4
Certificate issuer: /CN=D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B
Certificate serial: 360F4C2976AB75D1775E69AD6AC144DAAD73D5AD
Authority key identifier: D7:A4:86:F4:E8:E3:2E:BB:7C:A3:2A:25:A9:EF:E1:07:EF:5F:B2:5B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3650D59C14D282419C1FFC6D534AD0B46006980772355A21D5871025F82C9883/0/3139302e39392e39362e302f32302d3234203d3e203532323431.roa
Signing time: Tue 04 Feb 2025 18:47:49 +0000
ROA not before: Tue 04 Feb 2025 18:42:49 +0000
ROA not after: Tue 03 Feb 2026 18:47:49 +0000
asID: 52241
IP address blocks: 190.99.96.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:0f:4c:29:76:ab:75:d1:77:5e:69:ad:6a:c1:44:da:ad:73:d5:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B
Validity
Not Before: Feb 4 18:42:49 2025 GMT
Not After : Feb 3 18:47:49 2026 GMT
Subject: CN=013CDB905839F41B08B3FDD546A480D9D9CB99A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e1:ca:29:70:3f:67:9e:14:aa:ab:e9:43:af:
da:e8:11:18:2d:e9:6c:7c:cc:5e:d4:55:75:fb:4c:
fa:fe:02:14:cf:66:4c:0f:52:c1:08:f6:a8:ab:17:
8e:dc:d4:48:a3:95:2b:ca:c1:0e:18:a1:33:e2:bc:
63:ca:3d:15:84:61:dd:d5:ab:bd:d7:f4:51:59:6e:
de:8c:f0:46:c8:97:90:35:b3:12:3a:8e:88:01:15:
6c:5a:ca:a6:15:0f:bc:ca:30:3a:f1:70:2a:6c:ec:
c4:49:93:93:ab:62:36:8d:d3:14:7a:89:b8:59:b7:
52:b6:7c:89:38:4b:a7:9f:fe:bc:7e:e6:a9:07:f2:
0e:9c:54:01:e5:88:d2:c1:a2:79:74:28:2e:f9:8c:
3a:42:41:84:e9:5a:0c:5a:c2:5a:f4:e2:55:82:aa:
0c:fd:4f:1a:8a:35:61:0a:e9:61:8a:47:15:55:82:
f2:22:37:b5:a0:d2:0f:77:e1:ac:e1:67:23:a2:47:
f4:b7:1e:b4:90:66:e6:15:2d:6d:c3:54:d3:74:8e:
b0:63:b7:31:dd:99:a3:02:65:46:fe:57:6f:23:3f:
97:aa:d9:e3:21:f4:59:2f:c2:4e:02:34:b4:5e:7b:
84:ce:7c:ff:a6:95:85:bc:ee:4b:38:16:ff:de:45:
46:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:3C:DB:90:58:39:F4:1B:08:B3:FD:D5:46:A4:80:D9:D9:CB:99:A4
X509v3 Authority Key Identifier:
keyid:D7:A4:86:F4:E8:E3:2E:BB:7C:A3:2A:25:A9:EF:E1:07:EF:5F:B2:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3650D59C14D282419C1FFC6D534AD0B46006980772355A21D5871025F82C9883/0/D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7A486F4E8E32EBB7CA32A25A9EFE107EF5FB25B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3650D59C14D282419C1FFC6D534AD0B46006980772355A21D5871025F82C9883/0/3139302e39392e39362e302f32302d3234203d3e203532323431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.99.96.0/20
Signature Algorithm: sha256WithRSAEncryption
96:d3:3d:ef:17:48:0f:f2:b8:c0:88:35:7a:c8:d9:ff:e3:99:
68:14:75:45:88:ae:22:19:9f:d2:a0:04:2a:4a:e6:53:43:04:
8c:87:82:1e:38:2a:9f:90:e3:7b:64:4d:f8:a7:fd:9f:d7:bb:
43:5d:12:ee:1a:3b:c9:9a:4d:08:ad:f3:27:a9:c4:78:ce:b7:
a1:59:9f:3b:c3:c5:d6:9b:92:d9:ce:ed:ca:ad:96:75:5e:a9:
38:67:df:37:a9:f0:3d:74:c8:7e:35:97:71:22:6f:21:c1:60:
91:49:b3:ae:f0:46:7d:d5:b6:27:19:9a:69:d1:2d:10:ea:85:
6d:35:db:55:98:1e:a6:68:5c:51:ef:f6:c3:b9:1e:7b:32:98:
19:72:6f:78:c2:ea:7e:22:72:2e:c3:06:4c:9e:af:c0:2a:40:
a5:d6:3f:23:d4:83:3d:8c:0d:03:8b:e2:7f:35:26:ae:5a:72:
b3:d3:32:7f:f0:b4:95:22:34:10:37:98:d7:fb:76:16:27:5a:
ca:42:72:f7:d0:9a:8a:b2:c8:60:59:40:a2:0d:48:29:e4:b1:
b0:7b:7c:ca:5d:31:76:02:ce:d3:9c:99:3a:04:62:c9:6e:46:
ee:d7:8b:e3:33:c8:38:1b:4e:0f:a6:56:ac:72:a0:a9:8e:3e:
d8:22:dc:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:22:50 2025 by rpki-client