Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139302e3133302e36342e302f31382d3234203d3e203236363131.roa
File: 3139302e3133302e36342e302f31382d3234203d3e203236363131.roa (raw, json)
Hash identifier: 1HFjFpCKhvyKFvP8EKM0mkRavaqaCxIsVKRqy/vh5As=
Subject key identifier: 84:BF:38:D1:E4:C3:39:0A:9D:75:EF:D3:13:09:9F:40:69:E6:6B:C7
Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial: 6152990199F61ACAFB75282DBD422AE132A30955
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139302e3133302e36342e302f31382d3234203d3e203236363131.roa
Signing time: Tue 04 Feb 2025 18:05:18 +0000
ROA not before: Tue 04 Feb 2025 18:00:18 +0000
ROA not after: Tue 03 Feb 2026 18:05:18 +0000
asID: 26611
IP address blocks: 190.130.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:52:99:01:99:f6:1a:ca:fb:75:28:2d:bd:42:2a:e1:32:a3:09:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Validity
Not Before: Feb 4 18:00:18 2025 GMT
Not After : Feb 3 18:05:18 2026 GMT
Subject: CN=84BF38D1E4C3390A9D75EFD313099F4069E66BC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7b:43:6f:90:7e:8c:68:a6:72:4c:f6:07:a7:
69:94:43:84:97:1c:00:c9:9b:fc:04:dc:49:41:be:
e1:58:3f:c0:1e:dc:b9:64:0b:d1:cc:09:14:ab:14:
36:44:13:8d:cf:48:62:7d:37:e6:93:a9:e2:35:2f:
05:aa:3e:a1:43:38:90:70:5c:b2:92:31:93:5c:f7:
7c:22:65:6d:97:9e:e6:7a:3f:54:45:7d:8e:65:e0:
45:33:05:d0:17:85:be:83:38:f2:c0:69:63:12:73:
20:ad:0e:44:77:39:c1:26:75:fe:ab:c3:19:57:4f:
f7:68:23:fa:e3:c3:18:6c:2c:3c:d4:a3:4e:13:15:
02:69:f7:8f:29:bd:f0:71:d5:98:3c:b2:6f:da:7b:
78:38:d7:45:9f:6d:89:9c:8f:5e:5b:d4:81:41:98:
6d:e2:fe:10:0c:de:a9:83:96:0e:2e:b4:fe:a6:5e:
c6:21:c3:58:ea:3a:71:8a:cf:fb:db:60:12:a9:78:
90:82:b6:34:02:12:a0:a6:0d:64:66:cd:db:9b:8e:
5c:ff:b9:f3:d7:d8:49:33:09:60:78:a7:68:fb:e5:
98:82:18:49:42:eb:2e:54:fc:24:f9:bf:92:70:2e:
a3:eb:66:c4:6a:e3:08:0d:f6:e6:cd:ff:83:00:2a:
85:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:BF:38:D1:E4:C3:39:0A:9D:75:EF:D3:13:09:9F:40:69:E6:6B:C7
X509v3 Authority Key Identifier:
keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139302e3133302e36342e302f31382d3234203d3e203236363131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.130.64.0/18
Signature Algorithm: sha256WithRSAEncryption
87:c0:da:83:e9:f1:6a:55:ab:76:5b:60:3c:50:23:85:ce:fd:
a2:05:a4:03:d0:08:fe:dc:a9:8e:81:e6:92:e1:6b:5b:20:6d:
0e:81:ce:6e:af:c4:4a:0b:7d:9f:45:62:0b:4f:b6:33:4c:51:
a9:4c:d1:bd:bf:c8:97:7b:b3:0c:c5:32:18:89:4b:15:9e:bf:
c9:94:de:bc:56:45:e5:c4:a4:c3:19:d1:b9:a5:de:12:5c:ca:
e4:31:54:45:80:17:fc:28:89:11:56:85:6d:14:56:aa:8d:c8:
6a:71:fc:77:3c:50:76:c2:f6:4b:c0:24:6f:a8:fc:87:c8:38:
d3:64:33:19:50:f4:58:57:90:ac:e6:52:b9:8c:19:04:8c:32:
78:29:a2:44:9b:92:a7:5b:e9:8e:5e:ff:00:d8:6d:b6:33:2e:
37:49:7d:4a:c8:e5:a3:0f:df:f5:48:85:93:0c:d6:24:b9:48:
a2:da:18:82:8d:ec:6b:93:4c:05:15:61:79:e2:c4:76:af:6c:
cb:e7:0a:c7:18:09:3e:c9:70:c1:38:84:ef:f7:1f:29:09:56:
09:9f:de:6a:87:ab:c8:cd:d5:3a:bf:bc:08:6d:d4:69:80:d7:
3f:b7:9e:13:aa:6d:43:a2:30:b8:f3:df:ba:f6:6d:aa:10:8c:
65:82:8b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:11:13 2025 by rpki-client