Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e3231362e302f32332d3234203d3e203236363131.roa
File: 3139312e3135362e3231362e302f32332d3234203d3e203236363131.roa (raw, json)
Hash identifier: nNk0Zbl3pNZiBbfZmDfUjL1oaOwqeOISTTKHYZEcz9M=
Subject key identifier: 5E:CE:A1:3C:9E:B5:A4:22:EC:12:E8:76:67:2C:80:02:28:E9:93:ED
Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial: 0D6146113EB6B70A8C5CCFD8C718469122997841
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e3231362e302f32332d3234203d3e203236363131.roa
Signing time: Tue 04 Feb 2025 18:05:20 +0000
ROA not before: Tue 04 Feb 2025 18:00:20 +0000
ROA not after: Tue 03 Feb 2026 18:05:20 +0000
asID: 26611
IP address blocks: 191.156.216.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:61:46:11:3e:b6:b7:0a:8c:5c:cf:d8:c7:18:46:91:22:99:78:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Validity
Not Before: Feb 4 18:00:20 2025 GMT
Not After : Feb 3 18:05:20 2026 GMT
Subject: CN=5ECEA13C9EB5A422EC12E876672C800228E993ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:65:3c:a3:9f:78:7e:e2:9a:56:22:85:b5:90:
34:b7:c9:f9:a4:7b:f9:3b:51:d9:25:f9:23:70:cc:
76:20:e8:df:fc:b1:29:9b:3c:0d:54:91:7b:17:88:
4f:51:c0:8e:bd:a7:e3:bf:66:c0:fe:ab:e5:67:16:
62:69:d0:41:75:58:a1:4d:31:3e:3d:40:ad:8c:90:
82:e8:42:f3:8e:12:b7:3b:ae:40:e3:71:ae:18:fc:
60:fe:5c:ca:f0:d6:de:ff:76:e4:3c:f2:4f:4a:d3:
a2:bb:c3:39:d7:ee:ea:b8:e0:66:e8:b5:7c:4c:b8:
6a:6c:21:68:4e:29:75:90:c4:be:34:fa:ff:0a:e5:
a5:d2:43:ac:2a:8b:e5:7f:8d:52:27:07:7b:aa:1e:
89:eb:c5:5d:1f:d8:7b:c9:39:22:d5:f4:9a:20:98:
48:d7:fc:89:0a:70:82:f1:12:c8:e3:ce:d9:cc:3b:
6c:b0:08:3d:18:e9:e6:61:6c:64:6c:01:44:63:5d:
47:3d:0a:81:86:7e:b5:f5:24:67:57:09:59:8f:0e:
e2:cc:67:3f:29:29:f3:f3:4e:68:8b:eb:da:4e:1a:
18:b4:c1:ee:8e:11:d7:0a:e8:1c:0d:f9:a0:5e:9c:
d9:7b:6a:51:da:0c:f1:1b:4b:e4:f7:c9:5c:15:9d:
c6:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CE:A1:3C:9E:B5:A4:22:EC:12:E8:76:67:2C:80:02:28:E9:93:ED
X509v3 Authority Key Identifier:
keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e3231362e302f32332d3234203d3e203236363131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.156.216.0/23
Signature Algorithm: sha256WithRSAEncryption
05:77:ca:28:b5:0a:91:e3:32:41:8d:76:8e:a5:46:c8:3a:6b:
f8:0c:13:af:4b:58:57:e7:84:cb:06:5f:b9:e4:da:e2:ba:7c:
10:b6:48:0d:98:b6:0c:0e:78:22:9e:f2:57:65:87:07:0f:84:
f1:1f:c8:fe:8d:81:91:cb:1c:a0:c4:35:c6:c3:a8:99:d9:f8:
c6:c5:6c:7e:d9:42:81:87:16:25:c5:a4:e2:c2:dc:19:f3:10:
91:20:fe:0b:77:9b:88:01:c2:a9:6e:8a:d6:56:61:16:d8:b7:
0b:29:99:0b:48:d3:17:bd:65:ba:56:c5:5b:3e:1e:f7:b7:2e:
60:18:62:d1:d9:4f:8d:55:24:42:45:b8:82:8a:6f:6e:45:69:
f8:df:43:46:d0:2a:25:90:e3:74:11:6f:db:48:79:8d:c9:de:
02:9d:fa:69:1e:31:5d:25:f0:3f:39:d4:f6:54:a9:4c:ce:51:
89:f5:5c:28:12:c5:2d:fe:99:4b:40:e1:74:52:47:0a:4f:d5:
4c:f2:86:27:64:a5:0c:90:01:7c:9e:07:b4:fa:c6:c8:ae:14:
17:97:64:5f:90:d5:76:10:c1:f3:f5:40:25:5f:32:37:bf:f5:
f4:84:a2:e5:c3:15:dd:9c:16:2e:ec:3a:ee:da:1c:c6:b9:65:
e2:d9:69:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:10:19 2025 by rpki-client