Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4238F10894D603551E7F4BA3642F0B8856C632750DC7B267F8F7C9FAFA77C44D/0/3139302e3131312e3133322e302f32322d3234203d3e20323730303131.roa
File: 3139302e3131312e3133322e302f32322d3234203d3e20323730303131.roa (raw, json)
Hash identifier: aTiXMUUHQ1KsU1rHahi57inLjbpWt+X5b9cafTNxS1o=
Subject key identifier: FC:5C:59:C6:7A:F8:55:82:D9:B8:2D:D5:0E:B8:19:24:81:F7:36:16
Certificate issuer: /CN=72E864A0AEE3572DAA878F32665466996976A41E
Certificate serial: 5674E70EE70CE0CF33DB861E0F78B3EFADFF5D8F
Authority key identifier: 72:E8:64:A0:AE:E3:57:2D:AA:87:8F:32:66:54:66:99:69:76:A4:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/72E864A0AEE3572DAA878F32665466996976A41E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4238F10894D603551E7F4BA3642F0B8856C632750DC7B267F8F7C9FAFA77C44D/0/3139302e3131312e3133322e302f32322d3234203d3e20323730303131.roa
Signing time: Tue 04 Feb 2025 18:53:13 +0000
ROA not before: Tue 04 Feb 2025 18:48:13 +0000
ROA not after: Tue 03 Feb 2026 18:53:13 +0000
asID: 270011
IP address blocks: 190.111.132.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:74:e7:0e:e7:0c:e0:cf:33:db:86:1e:0f:78:b3:ef:ad:ff:5d:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72E864A0AEE3572DAA878F32665466996976A41E
Validity
Not Before: Feb 4 18:48:13 2025 GMT
Not After : Feb 3 18:53:13 2026 GMT
Subject: CN=FC5C59C67AF85582D9B82DD50EB8192481F73616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cc:e4:c2:65:e8:01:cc:66:53:a9:19:44:79:
59:8c:01:b5:64:90:7d:da:68:7a:e8:f5:31:f7:61:
54:90:cd:25:60:de:6d:22:c7:3f:72:52:f3:c3:65:
b8:b3:fa:1d:f9:95:9d:fc:7f:40:7c:6b:ba:c2:d9:
72:98:2f:ea:47:bc:36:29:86:06:ad:5c:ce:d7:3b:
00:38:b4:1f:5c:71:6e:b3:cb:19:cd:f6:69:ed:39:
5d:fb:a2:9a:c9:03:c6:72:26:f0:49:95:4d:ca:ab:
a1:ea:4b:de:c3:ca:d7:1d:49:41:21:0d:32:ab:85:
0f:25:31:e5:36:fb:0f:e4:66:27:8c:b2:bd:36:4c:
71:ad:c4:1c:66:fa:ff:db:8a:54:45:48:84:2a:3a:
e2:0b:f7:d5:8d:7e:77:36:1f:8a:38:6b:27:50:b0:
2f:a6:27:78:97:fd:eb:28:64:71:4d:c6:56:a1:ae:
0a:5c:dd:73:d4:58:19:40:c1:01:78:44:44:6c:23:
9b:b8:0d:4a:6e:54:7e:ea:40:2d:0a:f2:73:75:a6:
d8:a6:d2:03:1b:10:4e:3c:3d:e3:08:1c:88:56:77:
aa:ac:a4:80:21:7b:af:25:9d:16:03:3b:dc:ba:82:
39:a7:fb:36:05:cd:16:6b:1f:59:91:89:25:77:84:
b0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:5C:59:C6:7A:F8:55:82:D9:B8:2D:D5:0E:B8:19:24:81:F7:36:16
X509v3 Authority Key Identifier:
keyid:72:E8:64:A0:AE:E3:57:2D:AA:87:8F:32:66:54:66:99:69:76:A4:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4238F10894D603551E7F4BA3642F0B8856C632750DC7B267F8F7C9FAFA77C44D/0/72E864A0AEE3572DAA878F32665466996976A41E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/72E864A0AEE3572DAA878F32665466996976A41E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4238F10894D603551E7F4BA3642F0B8856C632750DC7B267F8F7C9FAFA77C44D/0/3139302e3131312e3133322e302f32322d3234203d3e20323730303131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.111.132.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:19:80:0b:4b:f8:4e:aa:f3:71:67:b8:4f:e5:e7:d1:a1:df:
7f:ad:ae:ef:40:28:78:06:a5:f5:0f:43:37:da:e2:c5:d4:da:
bc:01:d9:b1:97:19:af:8f:6c:39:07:99:53:ed:12:36:a7:f4:
8d:2e:aa:ba:87:28:e0:d1:2a:ce:04:65:e9:cd:6e:ef:f9:db:
1f:25:92:7c:17:43:45:75:02:7f:43:79:3e:b1:b7:97:d4:32:
f4:2c:c3:0a:02:be:56:20:45:d3:88:8a:e8:8a:0d:c0:1b:87:
19:d0:c8:c9:ec:f8:b8:aa:49:63:9f:74:26:aa:8c:7a:d3:85:
c7:9f:9c:3e:72:dd:49:f7:d0:e9:e1:0e:89:59:91:27:ed:15:
72:ba:c8:98:aa:07:4c:06:0f:ef:36:f1:08:fb:7d:fc:2a:91:
f7:e5:6d:c0:31:84:e2:ae:cc:88:ba:b4:8d:f6:7d:24:5f:b3:
8a:9e:f5:75:91:c4:37:ed:2f:bb:99:ce:55:6e:a2:d4:ae:82:
95:16:95:a0:4a:87:ee:d3:c3:a3:eb:ea:8b:d3:43:ae:fc:66:
0e:6c:5c:a3:d4:79:1f:94:48:e7:2a:b7:fd:63:f9:09:24:61:
4d:27:3b:da:10:e6:d2:a1:08:30:b2:62:ef:bd:87:b5:ba:4a:
38:68:4b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:29 2025 by rpki-client