Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e32332e302f32342d3234203d3e203134303830.roa
File: 3139312e3135362e32332e302f32342d3234203d3e203134303830.roa (raw, json)
Hash identifier: s1iENZ/udA5t2kR4l9+QtS1YNj8hhHqJPrR+lblVScU=
Subject key identifier: 4D:49:56:61:6A:CA:30:1A:02:41:9B:48:62:08:A7:6E:94:3B:DD:53
Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial: 0DF02AFFF32C9ED976F993B91387FBD35706D0A2
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e32332e302f32342d3234203d3e203134303830.roa
Signing time: Tue 04 Feb 2025 18:05:16 +0000
ROA not before: Tue 04 Feb 2025 18:00:16 +0000
ROA not after: Tue 03 Feb 2026 18:05:16 +0000
asID: 14080
IP address blocks: 191.156.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:f0:2a:ff:f3:2c:9e:d9:76:f9:93:b9:13:87:fb:d3:57:06:d0:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Validity
Not Before: Feb 4 18:00:16 2025 GMT
Not After : Feb 3 18:05:16 2026 GMT
Subject: CN=4D4956616ACA301A02419B486208A76E943BDD53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0e:62:20:cd:2a:a6:ea:f3:3b:c8:e5:60:2d:
cf:ff:12:9d:22:e3:01:46:fc:cd:3d:69:8c:53:45:
e5:a1:9c:d4:1f:46:46:88:31:8b:98:e3:f2:e4:b6:
d3:0c:3c:e7:cb:3b:78:f4:51:36:99:35:bb:ac:90:
0b:7e:00:4e:81:cc:42:55:67:c9:f9:1c:27:71:f5:
f3:99:46:6a:3c:25:6a:1e:1b:8e:c4:3f:df:15:67:
fc:8c:13:90:64:7f:43:31:e0:dc:41:e0:84:d6:d2:
dd:be:bc:4b:e1:3c:8c:f2:63:3e:1e:4e:2b:75:ba:
b6:26:3d:89:ef:9d:9f:94:ee:0e:f6:08:5b:0a:2f:
1b:b7:e0:49:80:58:c2:72:e1:3c:b4:67:88:7f:1d:
1a:f7:8b:63:ae:ca:36:c8:05:28:3f:51:08:24:71:
f7:d1:d1:b9:50:44:a3:30:d0:99:fd:8d:68:0a:ac:
91:9a:b6:61:bf:87:af:c3:85:98:75:86:3f:80:ab:
d8:e6:62:f4:a4:08:24:e3:1a:99:f3:be:46:9e:c0:
01:39:a9:56:4f:36:8d:97:64:f7:f4:60:ea:15:6d:
0f:17:a1:9f:ed:4e:09:47:92:9b:e3:d2:d4:0e:b4:
8b:7b:c9:79:64:16:4e:a3:8c:1b:a2:f9:85:6c:1c:
74:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:49:56:61:6A:CA:30:1A:02:41:9B:48:62:08:A7:6E:94:3B:DD:53
X509v3 Authority Key Identifier:
keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e32332e302f32342d3234203d3e203134303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.156.23.0/24
Signature Algorithm: sha256WithRSAEncryption
99:f5:8f:1f:4e:cf:36:c9:72:82:70:55:91:56:7c:e8:38:e0:
2b:17:94:eb:a1:67:10:68:ef:13:70:5f:cd:1c:7d:e7:55:01:
25:ef:47:5d:e1:d5:a4:d6:45:21:9a:56:20:08:a9:22:c8:a7:
ee:fe:54:5e:c9:a1:36:2b:7c:87:5a:63:c3:74:da:d6:35:d8:
6c:b0:e4:18:53:fe:24:0e:db:cb:b2:d0:6c:5e:1a:84:74:63:
fd:38:4d:00:4d:cf:eb:67:7a:e4:1d:39:66:71:f1:a7:b8:12:
e7:40:c7:fa:84:91:50:a2:eb:32:6a:7f:7d:e2:31:bd:b5:eb:
29:81:90:74:7e:8c:72:ef:b3:c7:a5:e3:8f:81:db:3d:1d:f1:
c8:3b:5d:c3:f4:be:f1:8b:c9:f8:0c:52:5f:ce:21:ea:d0:ec:
93:2b:a7:36:ad:a3:87:37:14:bd:6c:a7:cd:5d:11:17:f5:02:
30:00:a5:53:d6:ed:9f:58:4d:57:47:9f:8d:35:63:cc:91:51:
f5:5b:ec:ab:63:da:bd:3b:56:90:f6:7f:f2:66:2b:d5:03:ee:
d5:4f:63:1f:c4:4f:fa:fe:e4:e1:76:5b:4d:67:59:c1:cd:c6:
25:6f:ab:ab:12:c8:0b:5a:1d:50:a8:03:2a:ba:31:1c:d5:a8:
ae:b1:33:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:58:55 2025 by rpki-client