Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3139302e3230302e302e302f31332d3234203d3e2038303438.roa
File: 3139302e3230302e302e302f31332d3234203d3e2038303438.roa (raw, json)
Hash identifier: 0c6nghu34Wkz92YQK33EJ2iFm1D/8qLQs9BI5M6ajyo=
Subject key identifier: DB:72:61:D7:23:6B:86:6F:82:B2:38:F9:78:0F:E5:D9:72:E8:1A:FF
Certificate issuer: /CN=9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4
Certificate serial: 60EE04A2C14076F2813D7392B99B77538DDF1762
Authority key identifier: 9F:56:FC:23:A8:C5:FC:06:7B:7D:0B:FD:60:5C:0F:5A:33:D0:36:B4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3139302e3230302e302e302f31332d3234203d3e2038303438.roa
Signing time: Tue 04 Feb 2025 18:55:37 +0000
ROA not before: Tue 04 Feb 2025 18:50:37 +0000
ROA not after: Tue 03 Feb 2026 18:55:37 +0000
asID: 8048
IP address blocks: 190.200.0.0/13 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:ee:04:a2:c1:40:76:f2:81:3d:73:92:b9:9b:77:53:8d:df:17:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4
Validity
Not Before: Feb 4 18:50:37 2025 GMT
Not After : Feb 3 18:55:37 2026 GMT
Subject: CN=DB7261D7236B866F82B238F9780FE5D972E81AFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a0:16:8d:75:9b:a0:ad:7f:56:a7:95:34:db:
dd:70:01:99:1e:63:5b:32:42:fc:76:c8:71:6f:f5:
be:d2:5f:c2:e9:dc:e4:8f:e0:f2:1c:3f:73:9b:82:
3b:37:99:c2:65:2f:12:87:6c:e0:5e:e4:c5:66:19:
50:8c:73:18:f7:46:ae:1c:f4:c1:93:19:08:42:d7:
ce:f3:14:84:e1:aa:d7:3f:f5:9a:c2:b2:7f:fb:2c:
94:87:67:42:74:26:f9:4a:3d:2b:5d:c8:22:4f:95:
1f:71:80:96:db:a7:b9:12:b1:1f:b0:ec:ea:3c:39:
c5:4c:70:13:25:ac:03:1d:21:2c:44:7a:15:6e:03:
41:51:e7:37:d6:7e:7c:7b:3a:7c:4a:86:01:0b:ed:
03:54:9c:4f:ad:c4:3d:7a:f9:3f:4b:fe:84:0a:31:
07:f6:64:c8:76:48:5a:96:ca:01:5f:ac:f2:33:3d:
34:14:93:08:30:cc:ed:de:73:77:a6:1c:47:42:b9:
1a:54:69:0c:4f:65:26:fc:fc:91:03:34:91:17:ae:
93:b0:5a:b1:f7:1b:41:06:bf:af:ca:3c:35:ff:8c:
a7:d4:d9:7b:2b:b1:2f:40:29:a3:36:3f:de:66:9e:
38:3e:a8:0e:51:fe:29:ad:9f:41:ab:05:c7:ee:ad:
17:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:72:61:D7:23:6B:86:6F:82:B2:38:F9:78:0F:E5:D9:72:E8:1A:FF
X509v3 Authority Key Identifier:
keyid:9F:56:FC:23:A8:C5:FC:06:7B:7D:0B:FD:60:5C:0F:5A:33:D0:36:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3139302e3230302e302e302f31332d3234203d3e2038303438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.200.0.0/13
Signature Algorithm: sha256WithRSAEncryption
52:be:00:dd:16:ec:20:b1:e5:a8:5f:87:41:4e:9c:2f:4d:a9:
2a:3d:13:68:ab:fa:5c:98:08:c2:9b:39:7f:b5:d4:1f:5e:0e:
7b:95:e0:bf:b1:e7:d5:a8:8a:85:37:d4:1f:60:3e:8e:a4:ab:
0f:b1:c6:5e:24:a0:99:5d:73:61:19:d3:c2:b2:d8:a8:a3:df:
40:68:31:0d:89:78:6f:df:63:a7:5c:2c:77:88:fa:57:b2:a1:
ec:0a:56:54:9b:81:58:4a:cf:97:af:04:bc:ad:66:75:42:a7:
39:6e:83:2c:36:da:74:54:03:dc:20:a7:3c:21:e4:eb:8e:57:
63:3b:4e:69:10:db:5d:a2:36:97:40:9b:10:bf:55:d6:ac:08:
9e:a8:ca:4f:b0:35:be:ee:1c:e1:ed:6f:2b:3e:c3:f8:c9:43:
ba:5d:2a:b5:fc:8e:e4:52:29:e0:35:2a:74:f2:17:08:b5:9e:
fa:01:00:6c:74:6e:06:96:6d:cf:97:80:db:8d:24:ff:34:1a:
0b:e0:bf:ac:b2:d8:f5:c5:26:80:cf:58:b5:01:82:d7:31:d4:
75:e2:3a:f4:a1:b6:08:3e:3e:72:58:92:c4:2d:b8:d2:9b:29:
ee:87:23:b6:5c:95:24:ac:3c:3f:07:6b:9d:e4:2c:40:7d:80:
0a:98:0c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:55 2025 by rpki-client