Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e32342e302f32312d3232203d3e203236363131.roa
File: 3139312e3135362e32342e302f32312d3232203d3e203236363131.roa (raw, json)
Hash identifier: RHUjBwXM0DcrYyXF49beTxT9FDLV/AEU9mhmzC+qRdM=
Subject key identifier: E3:BD:14:E1:68:74:0A:A3:3D:21:DD:59:9C:98:2E:E7:DD:99:A3:83
Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial: 1196BBA8ED0A7ECE6240626018FBCB00B403F630
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e32342e302f32312d3232203d3e203236363131.roa
Signing time: Tue 04 Feb 2025 18:05:03 +0000
ROA not before: Tue 04 Feb 2025 18:00:03 +0000
ROA not after: Tue 03 Feb 2026 18:05:03 +0000
asID: 26611
IP address blocks: 191.156.24.0/21 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:96:bb:a8:ed:0a:7e:ce:62:40:62:60:18:fb:cb:00:b4:03:f6:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Validity
Not Before: Feb 4 18:00:03 2025 GMT
Not After : Feb 3 18:05:03 2026 GMT
Subject: CN=E3BD14E168740AA33D21DD599C982EE7DD99A383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bd:c7:e9:16:67:fa:6d:36:cf:61:22:22:1d:
f7:8d:9e:8d:70:e5:20:0c:c6:98:91:f1:35:ba:24:
09:2d:03:be:98:97:e7:9d:f2:f5:1a:2d:09:8c:74:
9c:71:5b:6f:d6:ef:2b:a8:1f:fa:9d:3b:21:7a:f6:
24:86:7c:4b:3d:f8:eb:76:88:0f:2e:61:b5:24:0f:
b8:04:ec:c4:6b:4d:c8:c9:30:46:26:0e:67:8f:36:
f3:29:54:cd:7e:01:90:2c:27:3b:67:cc:67:aa:ed:
59:12:60:a0:0f:7b:57:8c:9b:ce:88:ff:f9:d4:00:
03:3b:b7:a7:b6:2e:a3:9e:3f:2f:d3:9d:4d:eb:43:
78:e4:85:5e:d3:b1:c2:e6:f6:69:52:94:ec:6a:11:
52:74:49:7f:bf:53:30:43:cd:c8:9b:4e:bf:76:e7:
16:33:39:5c:0a:ed:77:f5:f1:ca:44:64:ae:d8:3a:
9a:cf:02:14:ac:d4:1e:f7:7b:7b:b8:22:98:f2:ad:
60:62:ef:7b:b2:3d:54:db:03:1c:e0:72:59:cf:4a:
76:6b:44:84:67:08:fd:67:76:1a:63:e4:37:68:6f:
31:5f:8b:a8:5d:70:f6:23:50:75:c6:b7:86:e7:07:
92:77:17:3f:86:dc:ed:97:df:06:13:a7:1c:c8:0c:
1e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:BD:14:E1:68:74:0A:A3:3D:21:DD:59:9C:98:2E:E7:DD:99:A3:83
X509v3 Authority Key Identifier:
keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e32342e302f32312d3232203d3e203236363131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.156.24.0/21
Signature Algorithm: sha256WithRSAEncryption
14:6d:8a:2f:1b:ca:9b:4b:52:75:d0:73:ec:c3:56:65:38:df:
24:d3:ed:5c:00:84:1f:ab:1d:34:bd:47:36:70:0b:35:10:0a:
cb:d2:5f:17:57:ff:e0:9c:a8:6e:76:e2:f6:43:e1:64:c7:ee:
76:4a:f1:24:d3:df:03:fa:01:b7:21:04:09:de:5d:35:1a:a5:
72:4d:1f:29:13:9d:4d:7b:2f:70:77:9d:1c:ee:ed:5c:6b:c7:
79:2b:8b:44:e6:70:3b:5f:9a:45:ae:85:8d:4c:e1:fc:a6:9a:
06:8b:08:0a:11:79:26:ac:00:b8:84:3a:ec:7b:c3:9a:fc:77:
21:84:aa:b5:e0:7d:c1:77:d3:3f:0d:7b:c5:86:bc:2e:b4:c6:
14:1e:d6:ae:ac:a5:0d:c0:0e:ef:c8:d2:4e:fe:32:c4:d9:a6:
30:20:6e:5c:41:ec:2e:a9:86:4a:0e:05:14:eb:d5:34:f2:e9:
3b:58:bf:b9:72:e2:ab:42:a1:98:b9:58:a5:22:8b:ef:97:b2:
29:af:03:3a:f6:ad:6c:20:0a:7d:ba:34:e5:52:28:f5:66:7e:
be:be:ba:15:43:1d:3f:91:38:f0:3d:8e:9a:95:c9:8c:08:1b:
f4:f4:17:b2:b6:18:c9:e5:b4:cf:d6:a6:3a:a5:3b:8d:a8:e0:
aa:af:ca:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:11:33 2025 by rpki-client