Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3E9CB817C9E7C54352D64D5548E6B5A119192DF7EC2D8D81E379C4924B78A1FC/0/3139302e39372e36382e302f32332d3233203d3e203237383435.roa
File: 3139302e39372e36382e302f32332d3233203d3e203237383435.roa (raw, json)
Hash identifier: yw+z5cSoJudEc+VPlOQewMDLHUmTjVG4uAq4HEeeTqM=
Subject key identifier: 70:99:6C:29:42:ED:D6:39:70:B8:6F:D8:C0:0B:01:6E:BF:44:EE:6F
Certificate issuer: /CN=55DB0D17B157BF6AD08BAC25988489AFD55B85BC
Certificate serial: 233192D41713EAC7999C505E766547A1366D2FBA
Authority key identifier: 55:DB:0D:17:B1:57:BF:6A:D0:8B:AC:25:98:84:89:AF:D5:5B:85:BC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55DB0D17B157BF6AD08BAC25988489AFD55B85BC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3E9CB817C9E7C54352D64D5548E6B5A119192DF7EC2D8D81E379C4924B78A1FC/0/3139302e39372e36382e302f32332d3233203d3e203237383435.roa
Signing time: Tue 04 Feb 2025 18:51:47 +0000
ROA not before: Tue 04 Feb 2025 18:46:47 +0000
ROA not after: Tue 03 Feb 2026 18:51:47 +0000
asID: 27845
IP address blocks: 190.97.68.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:31:92:d4:17:13:ea:c7:99:9c:50:5e:76:65:47:a1:36:6d:2f:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55DB0D17B157BF6AD08BAC25988489AFD55B85BC
Validity
Not Before: Feb 4 18:46:47 2025 GMT
Not After : Feb 3 18:51:47 2026 GMT
Subject: CN=70996C2942EDD63970B86FD8C00B016EBF44EE6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:57:bc:d2:96:84:b4:14:f9:11:4a:c2:58:45:
ec:52:f0:cd:51:39:6c:2f:21:6b:70:c5:1b:f8:26:
dc:30:67:57:93:73:18:ac:26:fc:11:39:53:9a:94:
f6:56:07:76:1d:50:96:90:3a:d6:ad:d9:45:b8:6c:
6d:9c:ed:5c:fd:f3:21:6a:b5:54:39:00:a5:f5:be:
de:d7:94:ac:2f:1b:37:f3:b7:40:b1:51:b3:f3:0c:
9b:ca:65:80:e0:62:28:21:40:a8:a6:29:5b:98:fb:
84:52:37:c9:c5:bb:5f:e1:da:97:11:d5:67:5a:5f:
63:0d:7d:7c:62:de:6c:c2:13:6a:33:d3:be:ce:9b:
6d:4c:a6:9f:71:28:d2:83:e5:80:08:c5:6c:5f:dd:
ad:b1:46:05:0f:93:ea:7f:5f:7f:c4:ff:01:f9:43:
93:9b:17:d0:e1:c6:c0:24:80:1c:21:42:ca:c6:21:
67:c4:9c:90:48:75:48:9e:41:10:2f:40:0f:50:54:
3a:e3:37:fd:3f:98:87:42:03:8f:15:bc:2b:8e:bf:
68:c7:bf:f4:c8:3a:1c:1f:df:1c:f7:2c:c2:ca:bb:
a9:05:18:84:47:80:dd:e5:12:d4:a0:9f:7c:ad:a6:
2f:0a:bd:98:62:96:2b:7c:ae:07:a8:2b:19:b8:ba:
9e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:99:6C:29:42:ED:D6:39:70:B8:6F:D8:C0:0B:01:6E:BF:44:EE:6F
X509v3 Authority Key Identifier:
keyid:55:DB:0D:17:B1:57:BF:6A:D0:8B:AC:25:98:84:89:AF:D5:5B:85:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3E9CB817C9E7C54352D64D5548E6B5A119192DF7EC2D8D81E379C4924B78A1FC/0/55DB0D17B157BF6AD08BAC25988489AFD55B85BC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55DB0D17B157BF6AD08BAC25988489AFD55B85BC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3E9CB817C9E7C54352D64D5548E6B5A119192DF7EC2D8D81E379C4924B78A1FC/0/3139302e39372e36382e302f32332d3233203d3e203237383435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.97.68.0/23
Signature Algorithm: sha256WithRSAEncryption
72:cc:d5:d9:50:e1:05:4d:23:3c:db:35:08:97:a1:90:52:13:
ca:8c:e9:60:93:fb:41:be:9d:d1:21:09:61:f4:59:c9:09:80:
af:a3:e6:c7:fe:51:35:7b:2e:0b:08:d2:26:b7:9a:bf:c1:28:
1f:1c:2f:27:40:4d:5b:ac:d0:96:d1:f3:ea:47:8f:3f:8c:d0:
56:9b:c9:87:01:a3:5a:77:34:3a:22:b8:e0:11:24:61:7a:e0:
cd:0b:a6:d9:e4:c7:69:5d:df:3a:7b:11:b9:4a:bc:7a:46:1d:
41:27:85:84:b9:cf:89:25:29:9e:fb:63:1b:cc:cb:25:75:50:
c6:9e:7f:5c:ec:37:8e:97:fb:e7:13:6e:98:c5:f7:2b:cb:95:
6d:b3:1e:ae:ea:3c:b4:88:93:1f:5f:b9:02:6f:e6:b6:82:20:
1d:03:85:32:92:94:3f:20:10:ac:98:76:14:dd:b0:2d:9c:4a:
4b:3d:72:8c:eb:cf:97:fb:e8:9f:de:ba:d2:5f:9c:da:d1:43:
bf:1d:3f:4e:02:50:9c:f7:a2:20:a0:b1:db:9d:80:eb:1b:0b:
26:81:7f:78:d1:f9:20:bf:d8:6e:c1:32:6a:c6:f5:f0:a2:31:
e9:13:20:f3:cc:1c:08:f4:71:09:f4:a5:7f:c3:47:e1:0e:fb:
9b:9e:3b:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:02:33 2025 by rpki-client