Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3E9CB817C9E7C54352D64D5548E6B5A119192DF7EC2D8D81E379C4924B78A1FC/0/3139302e39372e37322e302f32312d3231203d3e203237383435.roa
File: 3139302e39372e37322e302f32312d3231203d3e203237383435.roa (raw, json)
Hash identifier: TI8ZeXgdJoFALUdfYte/Ns1G4BK7xbPt7UXZNBT0WTM=
Subject key identifier: C2:11:20:A5:95:6B:0A:44:23:1C:04:15:8F:AF:80:F5:B8:E2:B7:E4
Certificate issuer: /CN=55DB0D17B157BF6AD08BAC25988489AFD55B85BC
Certificate serial: 608EFFCE7BA5367AB971AED1277B4C9398BBBFEB
Authority key identifier: 55:DB:0D:17:B1:57:BF:6A:D0:8B:AC:25:98:84:89:AF:D5:5B:85:BC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55DB0D17B157BF6AD08BAC25988489AFD55B85BC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3E9CB817C9E7C54352D64D5548E6B5A119192DF7EC2D8D81E379C4924B78A1FC/0/3139302e39372e37322e302f32312d3231203d3e203237383435.roa
Signing time: Tue 04 Feb 2025 18:51:49 +0000
ROA not before: Tue 04 Feb 2025 18:46:49 +0000
ROA not after: Tue 03 Feb 2026 18:51:49 +0000
asID: 27845
IP address blocks: 190.97.72.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:8e:ff:ce:7b:a5:36:7a:b9:71:ae:d1:27:7b:4c:93:98:bb:bf:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55DB0D17B157BF6AD08BAC25988489AFD55B85BC
Validity
Not Before: Feb 4 18:46:49 2025 GMT
Not After : Feb 3 18:51:49 2026 GMT
Subject: CN=C21120A5956B0A44231C04158FAF80F5B8E2B7E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b6:32:bf:1d:c1:44:a4:4e:5f:1b:62:13:41:
eb:28:6a:03:05:5a:da:5d:d7:15:fc:ee:da:16:65:
60:12:94:de:3c:af:fb:2b:b8:50:9d:99:81:3c:84:
12:58:32:3e:60:aa:f4:91:1a:06:01:16:19:3a:d7:
b9:62:69:50:96:59:0f:77:d8:b4:c3:02:9d:6e:40:
47:c2:a2:1f:c7:9c:04:2f:dc:44:a8:a1:aa:e9:d4:
3e:a7:3f:5d:6e:29:9d:40:f6:91:45:fc:c4:2e:c2:
a6:93:26:9f:b5:31:51:ff:74:91:45:11:60:8b:45:
85:61:f2:e0:45:d9:8c:ea:66:78:38:8a:8b:7e:6a:
79:11:21:75:70:4e:bd:15:6c:9d:2c:1b:8f:75:05:
9c:53:5e:98:93:9c:2b:23:e7:c0:4d:5c:4e:76:e6:
dc:fc:ac:b0:8a:e2:7c:24:e1:36:1e:0a:be:e7:b7:
d6:b3:ac:ea:23:b6:98:e6:74:fc:b4:92:ac:b4:ab:
62:e8:4d:24:5a:46:28:88:d1:74:5e:50:3c:8e:80:
4b:60:73:a2:09:b6:1b:e3:79:44:3a:e6:b1:a4:8d:
93:6a:ac:19:b1:14:4f:7a:72:7d:f3:f9:5c:d0:cd:
96:70:75:09:ff:9f:4d:ec:5c:cf:5c:87:02:e2:37:
6a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:11:20:A5:95:6B:0A:44:23:1C:04:15:8F:AF:80:F5:B8:E2:B7:E4
X509v3 Authority Key Identifier:
keyid:55:DB:0D:17:B1:57:BF:6A:D0:8B:AC:25:98:84:89:AF:D5:5B:85:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3E9CB817C9E7C54352D64D5548E6B5A119192DF7EC2D8D81E379C4924B78A1FC/0/55DB0D17B157BF6AD08BAC25988489AFD55B85BC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/55DB0D17B157BF6AD08BAC25988489AFD55B85BC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3E9CB817C9E7C54352D64D5548E6B5A119192DF7EC2D8D81E379C4924B78A1FC/0/3139302e39372e37322e302f32312d3231203d3e203237383435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.97.72.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:2f:9b:83:c9:34:b6:a7:65:67:00:b8:ff:40:71:5a:66:b5:
d7:ca:61:72:b8:63:69:56:88:15:f9:9d:97:64:49:5e:c0:74:
6c:64:4c:4b:f0:f9:60:5b:69:20:c2:a0:3b:40:39:e5:82:5c:
15:12:1a:56:3b:04:46:85:fc:ab:cf:e8:98:39:ff:9d:09:f0:
d1:2a:71:3d:63:0f:00:c6:bc:91:c9:53:d2:12:2d:78:4b:ec:
29:6f:e7:2c:78:d4:e8:83:a1:91:ce:f7:b0:cf:ef:bf:42:19:
d6:32:75:02:8b:09:b3:6c:2f:7e:1d:5a:b5:76:75:e8:75:ac:
d4:b7:94:6b:2d:e8:ae:f8:6a:4f:68:1d:61:0f:28:3a:9f:b3:
25:be:20:ca:aa:0f:2b:70:1a:ba:73:32:cf:98:c4:e5:84:6b:
54:27:a5:b3:ee:cc:2d:47:1d:01:31:18:8e:fc:5f:aa:40:d1:
9d:50:e8:e9:ca:d5:06:cc:83:c7:16:0f:3d:54:dc:1c:24:19:
76:71:5a:ac:b2:42:66:f5:57:19:79:99:fe:5f:55:26:c5:93:
ee:81:4e:a4:9d:a4:6b:c5:a1:10:1d:0b:cb:92:e5:13:59:1e:
fa:9f:0c:78:43:20:2b:dd:c1:0b:89:6d:28:4e:f7:86:5d:d9:
e2:c1:78:4f
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUYI7/znulNnq5ca7RJ3tMk5i7v+swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTVEQjBEMTdCMTU3QkY2QUQwOEJBQzI1OTg4NDg5QUZE
NTVCODVCQzAeFw0yNTAyMDQxODQ2NDlaFw0yNjAyMDMxODUxNDlaMDMxMTAvBgNV
BAMTKEMyMTEyMEE1OTU2QjBBNDQyMzFDMDQxNThGQUY4MEY1QjhFMkI3RTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDctjK/HcFEpE5fG2ITQesoagMF
Wtpd1xX87toWZWASlN48r/sruFCdmYE8hBJYMj5gqvSRGgYBFhk617liaVCWWQ93
2LTDAp1uQEfCoh/HnAQv3ESooarp1D6nP11uKZ1A9pFF/MQuwqaTJp+1MVH/dJFF
EWCLRYVh8uBF2YzqZng4iot+ankRIXVwTr0VbJ0sG491BZxTXpiTnCsj58BNXE52
5tz8rLCK4nwk4TYeCr7nt9azrOojtpjmdPy0kqy0q2LoTSRaRiiI0XReUDyOgEtg
c6IJthvjeUQ65rGkjZNqrBmxFE96cn3z+VzQzZZwdQn/n03sXM9chwLiN2q7AgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUwhEgpZVrCkQjHAQVj6+A9bjit+QwHwYDVR0j
BBgwFoAUVdsNF7FXv2rQi6wlmISJr9VbhbwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zRTlDQjgxN0M5RTdDNTQzNTJENjRENTU0OEU2QjVBMTE5
MTkyREY3RUMyRDhEODFFMzc5QzQ5MjRCNzhBMUZDLzAvNTVEQjBEMTdCMTU3QkY2
QUQwOEJBQzI1OTg4NDg5QUZENTVCODVCQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81NURCMEQxN0IxNTdCRjZBRDA4
QkFDMjU5ODg0ODlBRkQ1NUI4NUJDLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvM0U5Q0I4MTdDOUU3QzU0MzUyRDY0RDU1NDhFNkI1QTExOTE5MkRGN0VD
MkQ4RDgxRTM3OUM0OTI0Qjc4QTFGQy8wLzMxMzkzMDJlMzkzNzJlMzczMjJlMzAy
ZjMyMzEyZDMyMzEyMDNkM2UyMDMyMzczODM0MzUucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO+YUgwDQYJ
KoZIhvcNAQELBQADggEBAJ8vm4PJNLanZWcAuP9AcVpmtdfKYXK4Y2lWiBX5nZdk
SV7AdGxkTEvw+WBbaSDCoDtAOeWCXBUSGlY7BEaF/KvP6Jg5/50J8NEqcT1jDwDG
vJHJU9ISLXhL7Clv5yx41OiDoZHO97DP779CGdYydQKLCbNsL34dWrV2deh1rNS3
lGst6K74ak9oHWEPKDqfsyW+IMqqDytwGrpzMs+YxOWEa1QnpbPuzC1HHQExGI78
X6pA0Z1Q6OnK1QbMg8cWDz1U3BwkGXZxWqyyQmb1Vxl5mf5fVSbFk+6BTqSdpGvF
oRAdC8uS5RNZHvqfDHhDICvdwQuJbShO94Zd2eLBeE8=
-----END CERTIFICATE-----
Generated at Sat Apr 5 15:10:13 2025 by rpki-client