Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/46FE705F6DDBD162B8DEDBA9935386FCFF6B2A810DBF8C7F333E276285B9CF0F/0/3139302e322e3230382e302f32312d3234203d3e20323632313836.roa
File: 3139302e322e3230382e302f32312d3234203d3e20323632313836.roa (raw, json)
Hash identifier: bTW0JiZlxLfaE0LhNoMa+OFUPAbNRcavkkq75CB30tE=
Subject key identifier: 4C:DB:88:E6:20:A1:C9:50:D3:A3:18:31:11:86:03:89:00:E6:C6:92
Certificate issuer: /CN=81D6C23F88D2D34992A43FAB01EF5A5B04037BAB
Certificate serial: 35ADD11AC63B278598E320C17A042867E8153EE6
Authority key identifier: 81:D6:C2:3F:88:D2:D3:49:92:A4:3F:AB:01:EF:5A:5B:04:03:7B:AB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/81D6C23F88D2D34992A43FAB01EF5A5B04037BAB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/46FE705F6DDBD162B8DEDBA9935386FCFF6B2A810DBF8C7F333E276285B9CF0F/0/3139302e322e3230382e302f32312d3234203d3e20323632313836.roa
Signing time: Tue 04 Feb 2025 20:00:21 +0000
ROA not before: Tue 04 Feb 2025 19:55:21 +0000
ROA not after: Tue 03 Feb 2026 20:00:21 +0000
asID: 262186
IP address blocks: 190.2.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:ad:d1:1a:c6:3b:27:85:98:e3:20:c1:7a:04:28:67:e8:15:3e:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81D6C23F88D2D34992A43FAB01EF5A5B04037BAB
Validity
Not Before: Feb 4 19:55:21 2025 GMT
Not After : Feb 3 20:00:21 2026 GMT
Subject: CN=4CDB88E620A1C950D3A318311186038900E6C692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2d:7b:23:6c:62:95:ab:04:0c:88:f2:b0:56:
35:b5:d8:15:81:15:d5:b6:90:f6:ca:9d:1f:55:cc:
a1:b5:9c:26:28:9a:86:02:10:23:b6:98:ed:5f:a4:
f6:f5:d4:cc:b6:5a:83:2f:3c:46:1d:29:e5:c7:12:
2b:50:06:43:4d:28:e3:9b:53:3b:77:22:9f:a6:dd:
13:7f:14:96:32:d5:b5:d4:c5:27:d9:90:ba:f5:de:
e6:72:94:3a:22:e7:28:87:33:c6:72:54:66:48:13:
ee:80:06:67:4e:61:01:39:af:4a:93:3f:22:1c:f0:
90:93:86:db:a7:c9:b2:45:2c:46:32:f2:17:42:cd:
5a:db:84:39:93:19:67:7f:43:7a:1c:f1:56:0f:09:
47:a1:01:91:ff:85:00:d7:ee:71:d0:a3:68:4b:b4:
8b:e5:7e:c4:b1:cb:be:b9:a9:06:f2:51:07:a2:0a:
00:0e:1d:7a:6f:53:fd:c4:00:6c:2a:cf:cb:6a:33:
3e:37:9f:60:d5:e1:38:25:cb:a1:6a:7d:f1:00:48:
4f:b5:9d:ed:c8:33:cc:59:cc:c9:88:97:e8:36:87:
14:ff:a7:bb:d1:73:61:36:5b:86:ed:42:50:8a:6e:
f7:a1:bb:d7:75:ca:b9:9b:ad:24:6a:c2:5f:71:79:
a9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:DB:88:E6:20:A1:C9:50:D3:A3:18:31:11:86:03:89:00:E6:C6:92
X509v3 Authority Key Identifier:
keyid:81:D6:C2:3F:88:D2:D3:49:92:A4:3F:AB:01:EF:5A:5B:04:03:7B:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/46FE705F6DDBD162B8DEDBA9935386FCFF6B2A810DBF8C7F333E276285B9CF0F/0/81D6C23F88D2D34992A43FAB01EF5A5B04037BAB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/81D6C23F88D2D34992A43FAB01EF5A5B04037BAB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/46FE705F6DDBD162B8DEDBA9935386FCFF6B2A810DBF8C7F333E276285B9CF0F/0/3139302e322e3230382e302f32312d3234203d3e20323632313836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.2.208.0/21
Signature Algorithm: sha256WithRSAEncryption
a3:78:6a:db:56:63:51:b6:b9:1e:5f:41:ed:5c:3e:cd:49:d6:
85:18:aa:c1:08:a6:8a:d5:96:13:81:a5:1b:13:d0:5b:60:93:
2d:ee:88:30:da:3c:8f:4d:88:83:fc:2d:79:38:b4:95:51:26:
6d:e2:cb:4e:ce:91:d9:27:f4:d6:e1:30:08:7f:38:81:10:c6:
81:0b:e2:62:ae:d4:c6:17:d6:42:ff:65:e4:3e:f3:22:92:a0:
40:d8:d0:a6:8b:12:e9:5c:56:69:e4:ac:ea:52:b3:25:01:09:
00:21:7d:75:3e:38:2b:ae:f2:f6:4b:4c:6d:3a:d1:94:d5:55:
43:f4:86:f2:c2:bf:de:9e:14:b3:c0:74:55:4c:30:35:90:2e:
d9:b0:6e:d3:3d:29:9c:df:f9:a5:a2:60:df:c0:c8:fc:30:59:
d8:83:81:ed:b3:4e:51:88:c4:b0:31:d3:ab:0d:04:73:5c:e4:
27:f2:56:e6:91:1c:40:1f:94:90:19:db:01:d5:87:52:18:b9:
34:d7:77:3c:a3:6c:41:f3:d9:60:0f:02:d8:0f:60:1f:96:ce:
2d:ab:99:63:17:3a:9d:be:1e:c1:e1:ed:1f:be:27:fe:54:20:
95:0b:68:7f:76:ab:4d:7e:e2:41:60:f4:90:52:5c:41:74:4f:
b8:5f:10:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:19 2025 by rpki-client