Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e37312e3132382e302f31372d3234203d3e203130363230.roa
File: 3139312e37312e3132382e302f31372d3234203d3e203130363230.roa (raw, json)
Hash identifier: u19bs65hGhA48DVfyFJNU2YAH9aW//QxU173q104iRI=
Subject key identifier: 10:0A:15:41:08:09:EE:1A:1C:9D:63:09:52:EE:A1:8C:57:9B:2D:BD
Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial: 44505FDF3A87947A05F1F46165227FE036B230BA
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e37312e3132382e302f31372d3234203d3e203130363230.roa
Signing time: Tue 04 Feb 2025 18:05:15 +0000
ROA not before: Tue 04 Feb 2025 18:00:15 +0000
ROA not after: Tue 03 Feb 2026 18:05:15 +0000
asID: 10620
IP address blocks: 191.71.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:50:5f:df:3a:87:94:7a:05:f1:f4:61:65:22:7f:e0:36:b2:30:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Validity
Not Before: Feb 4 18:00:15 2025 GMT
Not After : Feb 3 18:05:15 2026 GMT
Subject: CN=100A15410809EE1A1C9D630952EEA18C579B2DBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d9:a3:96:f6:97:46:8c:46:a9:01:02:c8:db:
6d:78:d1:02:08:a0:ba:89:1b:a9:a8:55:80:27:75:
9f:99:19:aa:f3:cf:5e:92:60:65:fe:a8:25:c8:e3:
df:a9:35:6f:ea:61:e5:c3:09:77:32:cb:d6:d4:20:
e7:e0:60:a6:79:12:68:91:61:ba:91:34:c3:80:0c:
16:58:c0:9e:dc:8b:a0:2a:c6:89:b2:75:16:a9:12:
de:1a:76:0e:ff:c3:c8:1a:58:c5:6d:90:24:ba:00:
47:d9:14:9c:f4:25:91:57:bf:eb:21:7c:7b:91:ae:
cb:26:d9:e0:63:59:45:79:42:b9:23:57:b8:2e:45:
16:94:65:4e:a1:39:97:4c:bb:ee:f3:31:9d:4d:4f:
a4:77:82:a5:2b:9c:e8:b9:e7:6f:8f:12:54:da:5e:
a9:05:3a:4f:3f:87:47:cd:ac:99:98:dd:54:d7:ed:
a0:4f:c8:54:be:51:56:93:b5:90:e7:fa:05:a1:a6:
04:a8:91:89:ea:9b:e6:ef:f1:ec:0b:da:20:6a:bd:
f2:a5:c7:2e:6b:42:a6:33:51:ca:37:8b:52:af:6d:
9f:b7:ab:de:84:85:14:03:01:45:2e:cc:c2:d9:38:
75:e6:48:30:95:0f:0b:29:09:3b:21:61:2d:78:24:
c9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:0A:15:41:08:09:EE:1A:1C:9D:63:09:52:EE:A1:8C:57:9B:2D:BD
X509v3 Authority Key Identifier:
keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e37312e3132382e302f31372d3234203d3e203130363230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.71.128.0/17
Signature Algorithm: sha256WithRSAEncryption
6c:98:86:a4:19:c4:d9:dc:ca:e4:7a:a7:27:3d:2b:a3:98:f6:
1a:23:e5:b4:09:85:06:2e:ed:48:11:a8:6b:f1:2c:a2:8e:f1:
c5:ca:1c:ee:1d:86:4d:eb:9a:50:37:ca:d4:0b:8f:75:c2:ff:
d1:f7:aa:90:8d:f8:2f:6e:57:8b:4d:78:0e:65:3b:87:37:0f:
d0:a4:e7:e3:29:e7:cd:e3:38:ed:8a:2b:00:dc:c0:93:20:57:
66:d0:b9:65:47:bb:d4:12:48:bc:ef:d2:66:a5:cf:a7:a9:ff:
9a:c3:19:4c:c0:bd:60:82:07:65:71:5f:14:20:3b:54:c0:26:
9d:ea:e8:02:2e:b5:3d:dd:36:57:2f:8b:0a:b7:b2:40:68:56:
2d:cd:83:7b:bb:9a:fe:23:88:9a:e0:71:c8:0b:61:20:6b:87:
0b:bb:23:74:6f:5b:9f:17:7f:2e:2e:6d:03:20:1d:b4:fd:61:
44:6e:5b:f8:2e:cf:f9:99:7e:fb:c9:60:2e:5d:56:32:ee:2e:
97:c6:d3:b8:a8:48:65:7a:a1:32:8e:6d:88:f4:c7:05:52:cc:
85:da:43:da:ec:47:1b:a9:be:71:d7:ab:5f:d9:21:61:5d:89:
db:0e:a3:28:01:9c:84:37:78:01:3d:d3:69:39:d2:90:17:b5:
b8:82:2a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:40:47 2025 by rpki-client