Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5633119901C08658AD44C0C7C89A1991BB52796B3B33D679E34398EBB9B50B72/0/3139312e3130322e34302e302f32312d3234203d3e203532333634.roa
File: 3139312e3130322e34302e302f32312d3234203d3e203532333634.roa (raw, json)
Hash identifier: vBS3hNHnM/o7C2J78egNJPdia8e9RbyTQVl6KDLmK90=
Subject key identifier: 54:B5:05:03:52:4F:02:E0:CE:D9:8D:60:31:F6:81:74:E4:EB:54:00
Certificate issuer: /CN=EFD449AF8474AF563FE379ADBD4F72EAF2CA1DB0
Certificate serial: 2F32007E86E81BAA28496D49F1BF14A63EBE2844
Authority key identifier: EF:D4:49:AF:84:74:AF:56:3F:E3:79:AD:BD:4F:72:EA:F2:CA:1D:B0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EFD449AF8474AF563FE379ADBD4F72EAF2CA1DB0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5633119901C08658AD44C0C7C89A1991BB52796B3B33D679E34398EBB9B50B72/0/3139312e3130322e34302e302f32312d3234203d3e203532333634.roa
Signing time: Tue 04 Feb 2025 18:54:52 +0000
ROA not before: Tue 04 Feb 2025 18:49:52 +0000
ROA not after: Tue 03 Feb 2026 18:54:52 +0000
asID: 52364
IP address blocks: 191.102.40.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:32:00:7e:86:e8:1b:aa:28:49:6d:49:f1:bf:14:a6:3e:be:28:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFD449AF8474AF563FE379ADBD4F72EAF2CA1DB0
Validity
Not Before: Feb 4 18:49:52 2025 GMT
Not After : Feb 3 18:54:52 2026 GMT
Subject: CN=54B50503524F02E0CED98D6031F68174E4EB5400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fc:82:d9:ac:1f:c0:60:90:97:9f:9e:5a:19:
29:8b:4d:9e:bb:3d:9e:6f:2b:03:95:37:0e:86:1a:
8d:e1:c0:c0:e3:2a:f8:f7:a1:c0:26:55:ea:04:33:
fe:3e:17:fb:c6:36:6c:18:4e:2a:a7:19:84:2d:47:
71:49:af:94:d7:75:68:0c:b0:6c:70:c1:99:8e:4a:
af:fe:2a:18:9d:56:aa:37:54:62:6b:a9:03:d5:6c:
6d:84:b1:ac:18:1c:35:80:74:7c:e1:51:2f:92:8c:
70:e4:c2:3b:91:e5:74:a1:02:4d:e0:ee:7d:b4:d7:
b0:06:ae:be:4a:75:d3:fe:a6:fe:21:ec:00:20:a3:
0e:f8:de:c7:6a:7f:a6:0a:cd:8d:93:8c:42:21:99:
f7:95:f4:60:a8:74:39:16:6f:d8:ae:63:ac:34:80:
6c:4b:e7:cd:10:8e:47:39:6c:42:27:d7:36:bf:3b:
e9:e7:52:36:de:b0:c4:cc:e8:ee:3b:31:fe:3b:18:
6c:c1:4f:e3:0d:90:62:70:06:5e:42:75:75:7f:60:
e0:68:12:01:21:e8:7a:78:96:58:ca:f4:24:97:72:
a1:4d:1a:bb:91:c3:6d:ee:24:75:04:50:94:6a:07:
12:12:6f:43:36:0a:35:d1:82:e2:23:ec:18:6e:0a:
7e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B5:05:03:52:4F:02:E0:CE:D9:8D:60:31:F6:81:74:E4:EB:54:00
X509v3 Authority Key Identifier:
keyid:EF:D4:49:AF:84:74:AF:56:3F:E3:79:AD:BD:4F:72:EA:F2:CA:1D:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5633119901C08658AD44C0C7C89A1991BB52796B3B33D679E34398EBB9B50B72/0/EFD449AF8474AF563FE379ADBD4F72EAF2CA1DB0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EFD449AF8474AF563FE379ADBD4F72EAF2CA1DB0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5633119901C08658AD44C0C7C89A1991BB52796B3B33D679E34398EBB9B50B72/0/3139312e3130322e34302e302f32312d3234203d3e203532333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.102.40.0/21
Signature Algorithm: sha256WithRSAEncryption
97:ee:40:61:07:6c:3d:7d:24:c2:c8:b9:39:39:78:da:ea:db:
b0:0c:9d:bb:6a:f4:28:01:b7:d6:ca:73:63:c0:56:b6:70:f6:
23:03:e2:d2:57:d5:59:8c:51:80:c2:ea:a3:8f:a0:e7:23:87:
75:35:bd:57:ff:fb:be:89:59:96:c0:ad:cc:99:0d:40:40:25:
72:2d:61:36:b0:13:e9:e7:23:ea:30:ab:c3:8b:c9:b5:09:2e:
48:83:1a:cd:9d:b6:65:d5:f4:59:2b:f6:9f:11:15:92:44:b3:
5f:57:ae:98:c3:ab:1c:8d:f1:82:8a:ab:da:4e:ef:70:d4:d9:
e8:c1:a6:a2:a2:c2:f3:83:48:4d:d7:e1:82:d2:66:33:2a:c1:
57:9c:79:5d:58:27:41:c3:3d:4b:b8:c8:3f:4e:85:31:21:f4:
cd:e5:e9:91:28:90:1d:a1:d5:0a:cf:73:cd:9a:24:ef:7e:71:
33:07:52:f3:e4:01:37:e5:9f:2e:b4:56:61:35:76:00:57:e8:
0e:4f:9f:59:6d:a0:d5:41:91:cf:39:6b:45:82:29:a0:74:ea:
64:ed:d2:ae:47:3d:4d:b8:6e:ec:a9:49:c7:1c:fb:45:70:4e:
df:89:ce:2d:1e:b3:a2:f0:28:1c:c2:b4:c9:7c:dd:6b:2f:bf:
8b:1e:88:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:58:26 2025 by rpki-client