Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/41A99261E0DB34F8D860D50382577C0E8FEB012F3B356116256B5B9E8A5DB088/0/3139302e3137312e36382e302f32322d3234203d3e20323730313236.roa
File: 3139302e3137312e36382e302f32322d3234203d3e20323730313236.roa (raw, json)
Hash identifier: MkDangO/gsIjCNRF4qXgDzzTAUkO9uo93sLBboOwkBU=
Subject key identifier: F2:9E:49:E9:29:46:0C:88:72:E6:91:0B:80:A5:7E:2C:F4:A9:3E:E4
Certificate issuer: /CN=24C97FF6B05F228A504E569D3FD7367E01EE2FCD
Certificate serial: 2ABA283D6E6DFBB4AB901C0BBDE13AAAFF0D833E
Authority key identifier: 24:C9:7F:F6:B0:5F:22:8A:50:4E:56:9D:3F:D7:36:7E:01:EE:2F:CD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24C97FF6B05F228A504E569D3FD7367E01EE2FCD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/41A99261E0DB34F8D860D50382577C0E8FEB012F3B356116256B5B9E8A5DB088/0/3139302e3137312e36382e302f32322d3234203d3e20323730313236.roa
Signing time: Tue 04 Feb 2025 18:03:42 +0000
ROA not before: Tue 04 Feb 2025 17:58:42 +0000
ROA not after: Tue 03 Feb 2026 18:03:42 +0000
asID: 270126
IP address blocks: 190.171.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:ba:28:3d:6e:6d:fb:b4:ab:90:1c:0b:bd:e1:3a:aa:ff:0d:83:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24C97FF6B05F228A504E569D3FD7367E01EE2FCD
Validity
Not Before: Feb 4 17:58:42 2025 GMT
Not After : Feb 3 18:03:42 2026 GMT
Subject: CN=F29E49E929460C8872E6910B80A57E2CF4A93EE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:22:0e:6a:d4:27:89:fb:e3:8e:63:da:98:0f:
96:63:cc:0a:ca:f5:19:ff:a4:41:da:10:f1:e5:8e:
15:b8:85:a1:82:d2:37:67:f0:65:be:09:57:07:a7:
ff:02:5b:bd:06:55:1a:b7:92:7c:1b:9a:a8:80:5d:
8a:ce:df:c6:d3:b8:c6:6a:a6:56:50:77:4f:32:d7:
a3:e1:60:46:fe:28:b3:25:9d:35:23:08:3e:39:f6:
4f:a1:f7:38:9c:79:a6:3a:40:b4:89:4b:00:fa:71:
e9:01:aa:f7:1b:bc:b6:85:2c:48:6a:2b:88:cf:d0:
85:a0:28:fc:5e:37:95:94:50:58:48:4d:f1:33:08:
e7:a7:d7:f1:e1:d0:f5:3c:52:68:12:3a:c1:04:dd:
3e:75:00:af:77:45:a6:36:4a:47:d5:fa:7c:1a:95:
bd:47:84:1c:a5:91:bb:75:4b:a0:50:40:c6:8d:f2:
72:bf:70:b4:59:2a:6c:ca:6f:a3:c1:5f:7c:f6:95:
33:a9:31:6f:3b:c9:b5:05:c4:15:f4:58:72:26:0b:
6a:16:05:b2:38:9b:ef:3b:02:8a:8a:4d:9b:25:85:
8f:d1:55:ee:8c:27:b7:65:15:cb:9b:20:ab:88:96:
ee:57:fc:6e:e4:cd:c9:f9:90:4e:ea:29:2d:0c:95:
38:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9E:49:E9:29:46:0C:88:72:E6:91:0B:80:A5:7E:2C:F4:A9:3E:E4
X509v3 Authority Key Identifier:
keyid:24:C9:7F:F6:B0:5F:22:8A:50:4E:56:9D:3F:D7:36:7E:01:EE:2F:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/41A99261E0DB34F8D860D50382577C0E8FEB012F3B356116256B5B9E8A5DB088/0/24C97FF6B05F228A504E569D3FD7367E01EE2FCD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24C97FF6B05F228A504E569D3FD7367E01EE2FCD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/41A99261E0DB34F8D860D50382577C0E8FEB012F3B356116256B5B9E8A5DB088/0/3139302e3137312e36382e302f32322d3234203d3e20323730313236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.171.68.0/22
Signature Algorithm: sha256WithRSAEncryption
29:e3:f0:db:e0:d6:e6:d2:f8:7c:24:8c:71:50:d2:17:05:9c:
84:77:2f:da:60:bf:18:6b:95:e9:4d:67:30:3c:19:a5:ea:2c:
10:f5:53:bb:ba:ee:40:c5:7a:2e:33:74:33:46:9d:ae:61:c4:
96:bf:9a:84:91:5f:4d:88:f4:9a:8e:c0:8b:66:8f:bb:59:1f:
c7:15:f0:27:32:cf:02:21:e6:02:7d:de:36:79:21:27:31:b6:
4a:69:0e:fc:dd:23:72:50:69:a4:a9:e9:c5:05:99:58:e4:9c:
b2:33:1e:e0:90:64:f1:16:07:6b:63:72:a9:67:c7:ae:39:52:
57:d3:e5:77:8c:89:c7:b6:28:7b:01:7c:47:4b:0b:62:b2:08:
52:ab:5b:0e:45:4b:15:82:5d:6d:0e:87:2a:e5:5e:8f:9c:01:
d0:47:0f:84:8f:ac:fc:e9:34:74:b5:66:43:44:29:80:70:65:
74:25:9a:84:65:15:5a:0b:07:0e:55:e6:84:49:7c:d2:cd:8b:
13:88:30:b3:6f:47:b9:82:d1:1a:c5:87:5e:6b:44:b6:19:50:
c2:d1:c7:a7:08:3b:e7:4a:74:33:36:6a:c1:b1:65:cb:39:e3:
d7:63:ab:5a:9e:d0:60:99:7f:5c:9a:b2:ca:34:79:6e:d7:d8:
a7:a2:9d:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:45:01 2025 by rpki-client