Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e33322e302f31392d3234203d3e203236363131.roa
File: 3139312e3135362e33322e302f31392d3234203d3e203236363131.roa (raw, json)
Hash identifier: 5sgLs/Ld+l9zyuw6cI/TQxsqUWXxFFXSadDvPYrik3s=
Subject key identifier: 41:71:A5:E3:84:D7:90:B6:F3:6F:F4:A4:88:2A:EC:FE:17:E8:91:11
Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial: 1E66B0A454FFF4DF94C3A36C56F91A0D03549DE5
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e33322e302f31392d3234203d3e203236363131.roa
Signing time: Tue 04 Feb 2025 18:05:04 +0000
ROA not before: Tue 04 Feb 2025 18:00:04 +0000
ROA not after: Tue 03 Feb 2026 18:05:04 +0000
asID: 26611
IP address blocks: 191.156.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:66:b0:a4:54:ff:f4:df:94:c3:a3:6c:56:f9:1a:0d:03:54:9d:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Validity
Not Before: Feb 4 18:00:04 2025 GMT
Not After : Feb 3 18:05:04 2026 GMT
Subject: CN=4171A5E384D790B6F36FF4A4882AECFE17E89111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b5:26:1a:fc:b4:e3:1f:c7:06:b2:eb:45:b6:
9e:69:25:65:e0:fc:ac:86:04:cf:cd:22:1c:ac:07:
17:b5:9f:5b:8f:00:e5:a6:8e:02:a4:6f:c3:d3:da:
c5:6b:b3:f7:71:8a:53:8f:81:d1:0e:05:9d:c0:8a:
b8:69:1a:37:a4:62:9a:fb:9f:a5:b4:4f:74:10:00:
20:64:6f:f9:94:f8:eb:53:e0:ea:24:ba:95:d5:94:
70:f5:be:d4:eb:9e:cd:31:d9:f7:98:f5:9c:59:2d:
04:e2:b0:b9:7f:23:e2:72:1b:3b:13:68:ca:4d:5e:
9e:e9:28:0a:fa:fd:fe:66:1a:58:9a:4d:b8:dc:d7:
4a:6d:22:f5:98:f2:62:82:a3:cd:28:0b:f9:b5:4d:
ad:2d:92:e7:0d:5d:d6:a2:c8:7d:2c:24:6c:f4:5f:
9e:3c:6b:90:1c:a8:38:d8:88:30:b8:7e:42:7d:72:
b7:b2:47:8b:74:ee:dc:24:5f:3e:75:1b:cf:f7:02:
f0:16:5e:c3:bb:94:c3:ea:20:39:a0:ae:5f:38:80:
d7:fa:4f:23:3c:2e:a8:84:99:fb:21:ab:f9:42:b0:
bf:f1:7e:2e:6c:7a:77:d9:e9:15:5e:5e:9a:fb:68:
df:83:e8:ce:34:91:37:09:64:08:95:f7:64:ed:52:
02:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:71:A5:E3:84:D7:90:B6:F3:6F:F4:A4:88:2A:EC:FE:17:E8:91:11
X509v3 Authority Key Identifier:
keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e33322e302f31392d3234203d3e203236363131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.156.32.0/19
Signature Algorithm: sha256WithRSAEncryption
16:22:dc:50:a1:72:9b:62:86:8f:6a:7d:59:f4:90:4a:6d:f6:
e5:26:31:16:1e:5a:0c:35:00:55:e0:f4:b2:c4:af:e6:91:af:
61:7f:3f:2e:e4:19:1c:74:10:36:fb:9f:66:10:b0:a1:08:23:
8b:09:c4:3a:04:3e:2d:05:36:4b:5f:9f:7d:11:97:3f:f2:f7:
19:0e:76:d4:5f:b3:0b:64:ad:ec:1b:21:81:3d:8d:b9:95:f3:
f4:96:a4:57:13:a0:43:35:9c:c7:f3:04:5f:8b:f8:35:17:ac:
60:95:90:33:f9:b6:66:11:f4:2b:0c:9d:5e:e5:05:7f:47:ee:
b3:eb:c2:87:e0:e2:e9:2b:c5:c4:04:80:4a:13:b9:3c:c4:49:
92:29:04:26:db:33:c2:4b:af:bb:f7:48:bb:b9:7a:72:1c:cd:
fc:d2:41:f8:45:bd:f2:db:67:e0:e9:ab:dc:d0:da:fa:00:34:
8e:3e:84:2f:c1:21:d4:b3:18:b6:77:33:77:df:c1:2d:0f:db:
6e:02:7f:58:d7:e3:84:c4:bb:c3:d0:ad:ca:c9:ab:6f:40:07:
eb:81:d3:3e:21:1a:d6:60:83:3c:65:77:8d:a4:0e:91:bd:03:
0a:80:63:07:0e:aa:ae:ed:4c:2b:a6:00:e4:7a:44:df:3d:fa:
aa:6f:4a:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:11:06 2025 by rpki-client