Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e31382e302f32332d3234203d3e203130363230.roa
File: 3139312e3135362e31382e302f32332d3234203d3e203130363230.roa (raw, json)
Hash identifier: ekBvW5iOrDY1qpVMFfQt+TMZ3lPa0VHDBCkmA0GzZEU=
Subject key identifier: E6:44:C2:0B:DE:AF:9E:0D:E7:B1:6D:16:D4:C1:04:7F:8F:B2:78:8F
Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial: 405789994A52EA9680B29B2B916447DDE49C544E
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e31382e302f32332d3234203d3e203130363230.roa
Signing time: Tue 04 Feb 2025 18:05:11 +0000
ROA not before: Tue 04 Feb 2025 18:00:11 +0000
ROA not after: Tue 03 Feb 2026 18:05:11 +0000
asID: 10620
IP address blocks: 191.156.18.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:57:89:99:4a:52:ea:96:80:b2:9b:2b:91:64:47:dd:e4:9c:54:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Validity
Not Before: Feb 4 18:00:11 2025 GMT
Not After : Feb 3 18:05:11 2026 GMT
Subject: CN=E644C20BDEAF9E0DE7B16D16D4C1047F8FB2788F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:31:56:38:11:0b:b9:89:62:86:60:5e:67:1c:
d1:45:c8:e1:25:43:60:68:77:88:b7:8d:9c:57:c2:
2a:cc:2b:3b:23:de:1c:8b:27:35:49:6f:a7:a9:e6:
85:0a:5a:03:ab:d6:11:60:d8:3f:b5:77:68:a0:90:
af:84:3c:3b:60:93:c6:a3:69:0e:cc:86:a8:92:26:
f2:3b:96:73:fc:5a:c9:c6:f1:1c:0b:ad:36:fe:c0:
59:ff:a1:c9:ef:1d:e5:72:91:60:aa:d8:43:01:f0:
68:eb:0c:eb:0d:98:a8:30:ee:2b:2f:d1:80:16:f9:
70:9b:1d:c1:55:6e:0a:eb:b3:5b:eb:f5:96:12:75:
e4:34:30:d7:b5:e4:41:5b:5e:22:f6:fc:58:dc:1b:
ef:16:e0:ff:65:bb:e1:88:75:06:77:f6:13:e7:9a:
fc:1e:ef:49:b0:b9:4a:0e:22:58:32:2b:82:b7:f0:
28:28:0e:39:d9:e7:58:0a:46:37:6a:c6:be:ef:a2:
c3:c5:72:41:5d:6e:ef:65:1d:80:a1:2f:6f:3b:84:
54:99:6a:7a:19:cb:fc:a7:68:d7:52:49:70:63:06:
4e:f1:13:af:8d:fe:7a:6c:49:70:a5:a8:34:93:fd:
d5:5b:0f:f8:be:df:c1:5c:bf:a4:f9:01:68:e6:3b:
f7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:44:C2:0B:DE:AF:9E:0D:E7:B1:6D:16:D4:C1:04:7F:8F:B2:78:8F
X509v3 Authority Key Identifier:
keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e31382e302f32332d3234203d3e203130363230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.156.18.0/23
Signature Algorithm: sha256WithRSAEncryption
45:d5:be:ee:eb:cf:fa:45:27:97:b8:44:62:eb:f6:36:bd:91:
3c:d5:27:ea:40:5c:8e:9f:c8:f6:9c:f9:ec:e2:49:64:08:66:
31:a8:71:75:90:51:5f:ab:f8:a7:4b:51:a7:74:94:51:36:a0:
4c:73:09:4c:76:49:74:75:a4:9c:07:01:23:55:3a:bf:14:5a:
fc:f5:dc:e4:e9:22:d1:0d:7e:de:7b:5d:98:94:84:df:f7:d1:
4c:88:84:fd:66:a3:f5:9d:48:0f:73:72:e9:15:1c:00:45:75:
35:b0:f9:1e:21:1e:c8:ff:4c:c4:36:b0:bd:60:9d:f7:33:85:
5d:6b:ff:90:f9:47:02:24:2b:8b:84:37:37:1d:35:3c:7a:69:
44:ce:2f:3f:01:14:b7:e4:32:af:ca:ce:3b:92:d8:9b:56:dd:
82:48:4e:7e:3d:f3:e6:51:9f:0c:bc:dc:54:d4:2b:5c:f8:00:
83:78:9f:7c:e4:51:da:69:50:18:c5:1d:48:2b:1a:34:d4:45:
6a:9f:53:ab:cf:3a:6b:0c:39:a1:4e:01:5d:27:5e:75:53:a8:
90:e9:d0:63:69:90:53:d9:21:75:f5:96:ba:4e:8c:96:5c:e6:
5b:13:97:4e:de:66:8b:05:c6:9f:b7:86:54:39:3f:16:27:64:
72:60:5d:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:46:44 2025 by rpki-client