Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3139302e37362e3139322e302f32302d3231203d3e203237383839.roa
File: 3139302e37362e3139322e302f32302d3231203d3e203237383839.roa (raw, json)
Hash identifier: 8EIIrjnpHzQEW/2+3dFOy5+XRfV/95VIX02yUByIBC8=
Subject key identifier: C8:F6:D4:7E:A2:CC:68:70:0E:30:39:96:E8:C0:33:66:4F:9A:B2:25
Certificate issuer: /CN=9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4
Certificate serial: 29E3105DFDE2EB9C3CE27ACAC6FC801A001DC010
Authority key identifier: 9F:56:FC:23:A8:C5:FC:06:7B:7D:0B:FD:60:5C:0F:5A:33:D0:36:B4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3139302e37362e3139322e302f32302d3231203d3e203237383839.roa
Signing time: Tue 04 Feb 2025 18:55:41 +0000
ROA not before: Tue 04 Feb 2025 18:50:41 +0000
ROA not after: Tue 03 Feb 2026 18:55:41 +0000
asID: 27889
IP address blocks: 190.76.192.0/20 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:e3:10:5d:fd:e2:eb:9c:3c:e2:7a:ca:c6:fc:80:1a:00:1d:c0:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4
Validity
Not Before: Feb 4 18:50:41 2025 GMT
Not After : Feb 3 18:55:41 2026 GMT
Subject: CN=C8F6D47EA2CC68700E303996E8C033664F9AB225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:27:85:ad:04:6e:8d:3e:31:ad:67:79:0e:ad:
b3:3a:18:85:74:ad:02:3a:ce:8a:78:f0:69:bc:39:
4e:e8:3e:d2:c2:67:1d:f7:43:a5:4e:bb:ee:9c:2b:
56:68:84:02:96:b4:b7:1c:f8:20:19:4c:3c:3f:68:
0e:33:77:8c:2d:0f:13:46:89:50:88:1e:17:f5:03:
60:82:76:7b:8a:d8:23:48:df:37:d2:ac:a7:c9:9c:
49:f7:7f:e7:84:4f:68:91:86:61:dc:0a:cd:62:ef:
43:00:c7:24:8e:9a:60:9e:fa:ee:48:3f:6d:5b:b8:
de:21:40:6f:cd:a5:72:7e:80:42:5c:9f:49:94:9f:
e0:00:ec:64:98:1f:de:81:a9:34:5d:39:1d:74:1d:
87:74:2f:ae:84:56:d1:8b:ff:fb:6c:5c:32:b1:9d:
b6:12:8b:46:01:ba:ad:63:4a:c6:00:56:92:72:4a:
49:42:8e:c4:88:91:f1:ea:71:5c:7b:47:91:c0:67:
8e:6f:91:35:70:61:01:9d:38:c6:06:31:49:69:c7:
5a:e4:7a:2a:59:01:40:43:e4:c3:bd:88:98:b5:6c:
7e:fc:19:0c:2b:47:a8:e2:ef:6d:18:13:65:3d:83:
51:2c:4a:b6:79:c8:8b:41:a3:0e:e7:8c:cf:e3:73:
86:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:F6:D4:7E:A2:CC:68:70:0E:30:39:96:E8:C0:33:66:4F:9A:B2:25
X509v3 Authority Key Identifier:
keyid:9F:56:FC:23:A8:C5:FC:06:7B:7D:0B:FD:60:5C:0F:5A:33:D0:36:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3139302e37362e3139322e302f32302d3231203d3e203237383839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.76.192.0/20
Signature Algorithm: sha256WithRSAEncryption
80:de:25:c5:dd:2d:6e:c1:31:3d:29:6b:79:a3:ce:0a:b5:93:
32:5e:1f:bc:45:ef:93:94:ae:ce:a7:69:93:6d:e4:73:b7:70:
29:6a:c5:f7:84:92:83:39:5d:5e:52:b7:13:77:9b:20:25:59:
9f:6a:6a:a3:de:0f:5b:bd:60:31:5f:d9:aa:25:8e:22:ca:20:
ab:50:88:6a:8f:20:f8:f2:17:a1:20:15:b4:86:ab:8b:c2:34:
37:af:42:88:cd:72:bb:e5:96:bb:65:ad:8d:3d:77:c8:e2:28:
a2:f2:8c:71:52:34:0d:36:69:45:56:b8:b0:b1:c5:34:a2:6d:
fc:96:b8:0a:70:58:13:2f:dc:07:50:98:62:17:83:4c:98:01:
f5:7e:50:ab:9d:bd:4f:e6:e2:6d:1d:1f:b3:58:41:09:33:b2:
d0:89:c8:5b:7e:44:5a:67:d0:34:91:98:46:ae:c5:f6:84:8e:
50:0f:49:30:2c:d6:83:db:5b:40:d2:4f:04:78:80:6d:f5:4b:
2f:6f:e6:fe:79:99:ac:c1:58:5b:14:99:cc:ef:5e:c5:56:72:
6d:d4:12:9e:8b:84:0b:b6:ff:ea:0c:e4:e3:57:62:8b:dc:07:
06:bf:2f:51:76:49:55:bc:26:d0:ce:0e:bd:35:12:35:a1:ea:
d5:05:e6:67
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUKeMQXf3i65w84nrKxvyAGgAdwBAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUY1NkZDMjNBOEM1RkMwNjdCN0QwQkZENjA1QzBGNUEz
M0QwMzZCNDAeFw0yNTAyMDQxODUwNDFaFw0yNjAyMDMxODU1NDFaMDMxMTAvBgNV
BAMTKEM4RjZENDdFQTJDQzY4NzAwRTMwMzk5NkU4QzAzMzY2NEY5QUIyMjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKJ4WtBG6NPjGtZ3kOrbM6GIV0
rQI6zop48Gm8OU7oPtLCZx33Q6VOu+6cK1ZohAKWtLcc+CAZTDw/aA4zd4wtDxNG
iVCIHhf1A2CCdnuK2CNI3zfSrKfJnEn3f+eET2iRhmHcCs1i70MAxySOmmCe+u5I
P21buN4hQG/NpXJ+gEJcn0mUn+AA7GSYH96BqTRdOR10HYd0L66EVtGL//tsXDKx
nbYSi0YBuq1jSsYAVpJySklCjsSIkfHqcVx7R5HAZ45vkTVwYQGdOMYGMUlpx1rk
eipZAUBD5MO9iJi1bH78GQwrR6ji720YE2U9g1EsSrZ5yItBow7njM/jc4bzAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUyPbUfqLMaHAOMDmW6MAzZk+asiUwHwYDVR0j
BBgwFoAUn1b8I6jF/AZ7fQv9YFwPWjPQNrQwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy80M0NDNTcwNDIzRkFGODE2M0Q4NkNDMjFGMUJBMDNEODk1
MDJBRTlDMTI0RkVGODlBRjYxRjQwMkVBRUU4QjgzLzAvOUY1NkZDMjNBOEM1RkMw
NjdCN0QwQkZENjA1QzBGNUEzM0QwMzZCNC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85RjU2RkMyM0E4QzVGQzA2N0I3
RDBCRkQ2MDVDMEY1QTMzRDAzNkI0LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNDNDQzU3MDQyM0ZBRjgxNjNEODZDQzIxRjFCQTAzRDg5NTAyQUU5QzEy
NEZFRjg5QUY2MUY0MDJFQUVFOEI4My8wLzMxMzkzMDJlMzczNjJlMzEzOTMyMmUz
MDJmMzIzMDJkMzIzMTIwM2QzZTIwMzIzNzM4MzgzOS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBL5MwDAN
BgkqhkiG9w0BAQsFAAOCAQEAgN4lxd0tbsExPSlreaPOCrWTMl4fvEXvk5Suzqdp
k23kc7dwKWrF94SSgzldXlK3E3ebICVZn2pqo94PW71gMV/ZqiWOIsogq1CIao8g
+PIXoSAVtIari8I0N69CiM1yu+WWu2WtjT13yOIoovKMcVI0DTZpRVa4sLHFNKJt
/Ja4CnBYEy/cB1CYYheDTJgB9X5Qq529T+bibR0fs1hBCTOy0InIW35EWmfQNJGY
Rq7F9oSOUA9JMCzWg9tbQNJPBHiAbfVLL2/m/nmZrMFYWxSZzO9exVZybdQSnouE
C7b/6gzk41dii9wHBr8vUXZJVbwm0M4OvTUSNaHq1QXmZw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:56:35 2025 by rpki-client