Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4ED6EB0CD247E17FF0A8DCE6B46C64555E8B6E899F5580B5E4C02BE5DC9F96EF/0/3139302e3138352e3130382e302f32322d3232203d3e203532333933.roa
File: 3139302e3138352e3130382e302f32322d3232203d3e203532333933.roa (raw, json)
Hash identifier: /7YBXhgYQTEDoXXz4pCjbFFq3yqnMU4TsqG/SPUXBKM=
Subject key identifier: 22:B6:91:55:26:29:45:06:1F:68:D6:8A:4E:62:8A:D6:5B:D1:4F:20
Certificate issuer: /CN=DB11B7707911064B45F88A13AD77795D0BCE5CC6
Certificate serial: 1F7A2168AA3D726A86ED43A6A734CD709B98EBAB
Authority key identifier: DB:11:B7:70:79:11:06:4B:45:F8:8A:13:AD:77:79:5D:0B:CE:5C:C6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DB11B7707911064B45F88A13AD77795D0BCE5CC6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4ED6EB0CD247E17FF0A8DCE6B46C64555E8B6E899F5580B5E4C02BE5DC9F96EF/0/3139302e3138352e3130382e302f32322d3232203d3e203532333933.roa
Signing time: Tue 04 Feb 2025 18:28:56 +0000
ROA not before: Tue 04 Feb 2025 18:23:56 +0000
ROA not after: Tue 03 Feb 2026 18:28:56 +0000
asID: 52393
IP address blocks: 190.185.108.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:7a:21:68:aa:3d:72:6a:86:ed:43:a6:a7:34:cd:70:9b:98:eb:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB11B7707911064B45F88A13AD77795D0BCE5CC6
Validity
Not Before: Feb 4 18:23:56 2025 GMT
Not After : Feb 3 18:28:56 2026 GMT
Subject: CN=22B69155262945061F68D68A4E628AD65BD14F20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:61:93:cd:2f:e6:68:ab:7d:43:c0:ea:67:00:
b9:49:31:17:8f:d4:5d:3d:00:21:3d:19:d1:09:f9:
c2:e7:af:12:e0:e1:86:43:3c:21:8d:a4:85:6e:a8:
73:c4:05:74:9d:e1:21:c0:83:7d:68:f3:07:9a:18:
d9:40:aa:52:13:1a:17:4f:fa:0f:bf:1c:5c:10:02:
24:26:be:1a:26:22:65:ba:b9:11:af:e3:d7:81:83:
93:37:71:13:05:db:0c:fe:a4:6c:d9:43:95:87:56:
86:28:66:31:4c:d1:65:28:b1:e1:8b:7d:85:0b:7d:
12:20:c6:58:27:a4:5f:f3:d9:5a:7f:61:0d:be:d8:
92:2f:5a:9c:90:fc:9d:4e:df:b7:0c:81:b1:0e:46:
6e:96:97:0e:60:3f:95:ef:b9:03:a4:76:e7:c3:02:
2b:5b:b3:9e:3e:0a:2d:6d:43:39:18:22:f2:2e:98:
6e:60:ed:ba:61:53:8b:97:75:5c:e1:a7:51:c9:33:
8b:fe:75:e9:82:fc:d9:70:e1:ec:1f:6a:d3:fc:af:
70:12:3e:a3:dc:2c:ef:89:88:43:0c:b4:b5:a8:ec:
b8:23:b8:35:07:8f:ef:fe:57:49:97:a3:36:c8:1c:
fb:68:3f:0c:62:7e:74:a7:7b:fa:d9:88:24:bc:0c:
44:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B6:91:55:26:29:45:06:1F:68:D6:8A:4E:62:8A:D6:5B:D1:4F:20
X509v3 Authority Key Identifier:
keyid:DB:11:B7:70:79:11:06:4B:45:F8:8A:13:AD:77:79:5D:0B:CE:5C:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4ED6EB0CD247E17FF0A8DCE6B46C64555E8B6E899F5580B5E4C02BE5DC9F96EF/0/DB11B7707911064B45F88A13AD77795D0BCE5CC6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DB11B7707911064B45F88A13AD77795D0BCE5CC6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4ED6EB0CD247E17FF0A8DCE6B46C64555E8B6E899F5580B5E4C02BE5DC9F96EF/0/3139302e3138352e3130382e302f32322d3232203d3e203532333933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.185.108.0/22
Signature Algorithm: sha256WithRSAEncryption
54:c1:09:62:b5:7b:06:c2:e8:ac:68:3a:3b:a2:28:79:19:c9:
cd:1a:a1:59:00:bf:ea:c0:f9:fe:fe:2b:3d:a3:d5:65:6b:9c:
bf:6d:27:56:54:31:2e:4f:3f:51:f6:ac:4d:da:33:48:dc:8c:
06:ac:a2:62:41:e5:eb:f2:b0:52:03:51:d7:45:e9:fb:78:fb:
71:25:6d:28:a4:29:a1:ec:80:ae:08:7f:6f:73:c9:21:ca:0a:
a4:f5:a1:d7:4d:bf:2a:8f:7b:4c:2d:26:53:af:0c:c8:37:17:
ca:51:ee:36:8b:46:b6:cd:a3:94:31:69:37:b7:8c:7b:1b:83:
e2:3b:1c:08:b2:88:89:45:5c:cd:2c:20:74:1a:09:5d:e7:b6:
d8:a4:48:5b:52:29:7d:49:ee:10:f4:21:71:5a:cb:e4:68:9a:
f2:ac:61:9a:3a:a3:4a:19:40:b8:12:4e:9b:2e:99:0e:ee:c1:
91:6a:fa:fe:03:51:52:09:c1:d1:16:64:f0:bf:70:30:03:69:
90:6f:fd:32:31:c1:3c:23:31:02:e6:08:2b:31:3b:8c:f6:bf:
c9:ce:05:36:4b:6a:f4:52:fb:e5:4e:d0:cf:77:84:b7:01:23:
9b:bd:59:4a:1c:f3:6f:fb:64:af:39:f5:3a:70:1a:8d:0d:8e:
fb:d5:1b:6b
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUH3ohaKo9cmqG7UOmpzTNcJuY66swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREIxMUI3NzA3OTExMDY0QjQ1Rjg4QTEzQUQ3Nzc5NUQw
QkNFNUNDNjAeFw0yNTAyMDQxODIzNTZaFw0yNjAyMDMxODI4NTZaMDMxMTAvBgNV
BAMTKDIyQjY5MTU1MjYyOTQ1MDYxRjY4RDY4QTRFNjI4QUQ2NUJEMTRGMjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXYZPNL+Zoq31DwOpnALlJMReP
1F09ACE9GdEJ+cLnrxLg4YZDPCGNpIVuqHPEBXSd4SHAg31o8weaGNlAqlITGhdP
+g+/HFwQAiQmvhomImW6uRGv49eBg5M3cRMF2wz+pGzZQ5WHVoYoZjFM0WUoseGL
fYULfRIgxlgnpF/z2Vp/YQ2+2JIvWpyQ/J1O37cMgbEORm6Wlw5gP5XvuQOkdufD
Aitbs54+Ci1tQzkYIvIumG5g7bphU4uXdVzhp1HJM4v+demC/Nlw4ewfatP8r3AS
PqPcLO+JiEMMtLWo7LgjuDUHj+/+V0mXozbIHPtoPwxifnSne/rZiCS8DESZAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUIraRVSYpRQYfaNaKTmKK1lvRTyAwHwYDVR0j
BBgwFoAU2xG3cHkRBktF+IoTrXd5XQvOXMYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy80RUQ2RUIwQ0QyNDdFMTdGRjBBOERDRTZCNDZDNjQ1NTVF
OEI2RTg5OUY1NTgwQjVFNEMwMkJFNURDOUY5NkVGLzAvREIxMUI3NzA3OTExMDY0
QjQ1Rjg4QTEzQUQ3Nzc5NUQwQkNFNUNDNi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EQjExQjc3MDc5MTEwNjRCNDVG
ODhBMTNBRDc3Nzk1RDBCQ0U1Q0M2LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNEVENkVCMENEMjQ3RTE3RkYwQThEQ0U2QjQ2QzY0NTU1RThCNkU4OTlG
NTU4MEI1RTRDMDJCRTVEQzlGOTZFRi8wLzMxMzkzMDJlMzEzODM1MmUzMTMwMzgy
ZTMwMmYzMjMyMmQzMjMyMjAzZDNlMjAzNTMyMzMzOTMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvrls
MA0GCSqGSIb3DQEBCwUAA4IBAQBUwQlitXsGwuisaDo7oih5GcnNGqFZAL/qwPn+
/is9o9Vla5y/bSdWVDEuTz9R9qxN2jNI3IwGrKJiQeXr8rBSA1HXRen7ePtxJW0o
pCmh7ICuCH9vc8khygqk9aHXTb8qj3tMLSZTrwzINxfKUe42i0a2zaOUMWk3t4x7
G4PiOxwIsoiJRVzNLCB0Ggld57bYpEhbUil9Se4Q9CFxWsvkaJryrGGaOqNKGUC4
Ek6bLpkO7sGRavr+A1FSCcHRFmTwv3AwA2mQb/0yMcE8IzEC5ggrMTuM9r/JzgU2
S2r0UvvlTtDPd4S3ASObvVlKHPNv+2SvOfU6cBqNDY771Rtr
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:18:50 2025 by rpki-client