Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A8D32DDEB4727A34D781E42F81E3084692E9A32CA02C6C52A5BA410CE190F4B/0/3139302e3138352e3134352e302f32342d3234203d3e20323732383433.roa
File: 3139302e3138352e3134352e302f32342d3234203d3e20323732383433.roa (raw, json)
Hash identifier: 1gbLHzNotNVgr6T+l3BYUQ+Ec+GPo4z3r5vAJzTod6w=
Subject key identifier: 2A:A2:1D:8C:83:4F:49:67:93:AC:3B:09:AB:7E:D6:56:00:68:2B:3B
Certificate issuer: /CN=F1C35B9CF45BDDABE829A9F78BC24DC58AFD7ECA
Certificate serial: 75B603DF2BA7B3BD3545800D7D512AA9BACBD99D
Authority key identifier: F1:C3:5B:9C:F4:5B:DD:AB:E8:29:A9:F7:8B:C2:4D:C5:8A:FD:7E:CA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F1C35B9CF45BDDABE829A9F78BC24DC58AFD7ECA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A8D32DDEB4727A34D781E42F81E3084692E9A32CA02C6C52A5BA410CE190F4B/0/3139302e3138352e3134352e302f32342d3234203d3e20323732383433.roa
Signing time: Tue 04 Feb 2025 18:30:34 +0000
ROA not before: Tue 04 Feb 2025 18:25:34 +0000
ROA not after: Tue 03 Feb 2026 18:30:34 +0000
asID: 272843
IP address blocks: 190.185.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:b6:03:df:2b:a7:b3:bd:35:45:80:0d:7d:51:2a:a9:ba:cb:d9:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1C35B9CF45BDDABE829A9F78BC24DC58AFD7ECA
Validity
Not Before: Feb 4 18:25:34 2025 GMT
Not After : Feb 3 18:30:34 2026 GMT
Subject: CN=2AA21D8C834F496793AC3B09AB7ED65600682B3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a1:dd:48:be:fa:3c:9a:ea:8e:27:ce:5a:dd:
c6:88:78:34:fe:6c:29:2c:b1:af:0b:e7:44:62:49:
eb:e4:2c:6f:3f:1f:98:74:ae:b6:48:82:b0:98:9a:
0d:47:f6:aa:ac:c5:75:7f:c2:e3:f9:cc:f3:34:4f:
58:27:fd:7d:67:83:c9:96:86:c2:00:26:0b:ae:38:
1a:4d:31:e4:d7:10:20:c9:77:ff:cc:3c:05:1c:4d:
78:c0:40:0a:6a:62:3c:9c:ab:ba:3f:af:1a:c9:74:
c6:b6:a2:e8:a5:f8:8e:dd:3e:77:a5:f2:a8:43:4d:
a6:33:6d:0b:4d:57:a7:a3:26:00:4c:ca:2d:f4:a3:
3f:a4:df:27:09:ad:77:26:2a:e3:ae:cf:25:ac:16:
23:da:bd:30:cf:b0:cb:07:1a:80:6f:61:f8:98:4b:
bd:df:d5:7f:97:6d:d4:c6:47:38:a4:0d:37:85:69:
51:a5:0b:b0:8f:99:bb:93:6c:ac:07:58:ad:76:0f:
54:cc:a2:29:e5:3d:b0:91:ad:c3:ed:aa:fb:8c:67:
0e:83:9f:e2:a3:7d:d7:9b:e1:62:a6:e8:92:19:1b:
9b:f9:44:df:28:6b:c8:de:38:d8:49:d8:08:bd:c0:
e4:9d:9e:e2:74:6a:94:c9:cd:57:05:02:0d:f6:55:
91:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A2:1D:8C:83:4F:49:67:93:AC:3B:09:AB:7E:D6:56:00:68:2B:3B
X509v3 Authority Key Identifier:
keyid:F1:C3:5B:9C:F4:5B:DD:AB:E8:29:A9:F7:8B:C2:4D:C5:8A:FD:7E:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A8D32DDEB4727A34D781E42F81E3084692E9A32CA02C6C52A5BA410CE190F4B/0/F1C35B9CF45BDDABE829A9F78BC24DC58AFD7ECA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F1C35B9CF45BDDABE829A9F78BC24DC58AFD7ECA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A8D32DDEB4727A34D781E42F81E3084692E9A32CA02C6C52A5BA410CE190F4B/0/3139302e3138352e3134352e302f32342d3234203d3e20323732383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.185.145.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d3:c5:a6:ee:70:d3:c8:37:b7:d5:d0:09:cc:c4:05:a0:08:
46:2e:07:b7:e4:e3:e9:29:a5:48:c2:00:c8:75:f4:a2:a7:44:
4a:21:31:47:2b:29:6d:6f:5b:18:db:ac:b1:a7:38:17:96:2f:
36:25:2b:e7:78:f6:3c:2a:99:fd:8f:21:32:76:54:55:68:a6:
5c:47:7f:dd:44:e0:30:a0:6a:85:96:37:73:64:86:70:f4:0a:
e4:16:51:93:46:3a:68:0b:93:ce:2e:9a:bf:7a:55:68:7b:2f:
b6:eb:dd:b0:c6:7e:e7:7a:5a:c3:83:0e:de:16:09:b9:aa:c0:
4f:a7:58:6a:7d:53:60:0d:9c:77:a1:77:f5:a2:a1:3b:ad:80:
76:5f:1b:d1:88:7e:d8:d2:b9:b3:ff:f1:12:07:d4:71:1e:4c:
f2:bb:a2:ca:93:f7:99:71:97:c3:81:90:49:9e:02:91:cb:7c:
f0:ab:84:9b:37:e3:6c:92:de:f0:73:1d:5e:92:10:a3:e2:21:
5c:59:6b:aa:f2:86:9a:64:5e:4b:7e:f1:74:b4:d6:cb:c0:70:
e8:38:d6:4c:be:85:3f:2d:40:a2:19:bb:1b:d8:3f:a2:9a:4a:
76:b7:31:54:89:3f:0e:41:16:95:e8:f8:b1:2f:8b:a4:ff:32:
51:38:80:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:06:23 2025 by rpki-client