Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/57E3E94907A4D524A56DA41D7235AE1F55C14D0B971BAE39F174104179A1BD0F/0/3139302e31322e3134342e302f32322d3234203d3e20323730313237.roa
File: 3139302e31322e3134342e302f32322d3234203d3e20323730313237.roa (raw, json)
Hash identifier: i/aGyey4Qp/zhDcDPEyURyQoAJmparKePo+PPRJ2tqU=
Subject key identifier: 70:72:B6:04:BC:7B:55:76:66:48:82:6D:0B:5A:7A:36:8A:69:A7:12
Certificate issuer: /CN=3CF3E435C7AF14892CAA1CB37514E4D15F6D852E
Certificate serial: 52DC00A39401E0B1C59A40A57AE4673712587189
Authority key identifier: 3C:F3:E4:35:C7:AF:14:89:2C:AA:1C:B3:75:14:E4:D1:5F:6D:85:2E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CF3E435C7AF14892CAA1CB37514E4D15F6D852E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/57E3E94907A4D524A56DA41D7235AE1F55C14D0B971BAE39F174104179A1BD0F/0/3139302e31322e3134342e302f32322d3234203d3e20323730313237.roa
Signing time: Tue 04 Feb 2025 18:44:45 +0000
ROA not before: Tue 04 Feb 2025 18:39:45 +0000
ROA not after: Tue 03 Feb 2026 18:44:45 +0000
asID: 270127
IP address blocks: 190.12.144.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:dc:00:a3:94:01:e0:b1:c5:9a:40:a5:7a:e4:67:37:12:58:71:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3CF3E435C7AF14892CAA1CB37514E4D15F6D852E
Validity
Not Before: Feb 4 18:39:45 2025 GMT
Not After : Feb 3 18:44:45 2026 GMT
Subject: CN=7072B604BC7B55766648826D0B5A7A368A69A712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:95:43:13:b7:80:98:54:95:06:29:71:be:89:
f5:98:8c:74:4b:3f:ac:ed:e1:1c:f9:34:aa:82:50:
c3:9e:b8:7a:ac:28:44:c1:54:29:ed:dc:0f:0b:c5:
f5:b8:eb:6e:f2:6e:50:1b:87:32:98:6c:13:ca:48:
8c:91:2a:60:a3:ba:43:7f:8e:0c:58:49:a1:a8:82:
51:76:73:53:21:cf:e6:6f:15:36:fb:d2:5f:46:42:
0e:e5:8c:0c:0d:67:de:14:ff:1e:83:0f:99:36:b2:
6e:bd:a8:43:cf:1c:7e:9c:37:93:ea:9e:a4:fd:30:
42:2c:92:9a:04:4a:44:56:ef:9a:92:48:34:da:60:
be:3e:41:d6:2e:48:00:91:37:5c:4f:61:db:c6:f9:
7c:f7:8c:77:54:53:2a:c8:72:85:ea:a9:ed:e8:01:
fb:ff:10:2b:98:8b:9b:4d:c8:b6:95:f3:38:2b:2e:
31:d8:97:22:3e:15:cd:7c:38:3c:49:d0:be:10:a4:
d5:c2:b1:78:47:49:bd:77:74:d3:48:8e:7b:b5:f3:
03:a6:20:b8:19:40:6f:fa:58:c2:5e:92:23:28:c0:
38:6f:23:1a:7c:f3:8f:26:6c:cc:f9:9f:ab:77:c1:
2b:c3:e7:30:7d:8f:72:40:6c:06:9c:ec:6d:67:cf:
ef:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:72:B6:04:BC:7B:55:76:66:48:82:6D:0B:5A:7A:36:8A:69:A7:12
X509v3 Authority Key Identifier:
keyid:3C:F3:E4:35:C7:AF:14:89:2C:AA:1C:B3:75:14:E4:D1:5F:6D:85:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/57E3E94907A4D524A56DA41D7235AE1F55C14D0B971BAE39F174104179A1BD0F/0/3CF3E435C7AF14892CAA1CB37514E4D15F6D852E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CF3E435C7AF14892CAA1CB37514E4D15F6D852E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/57E3E94907A4D524A56DA41D7235AE1F55C14D0B971BAE39F174104179A1BD0F/0/3139302e31322e3134342e302f32322d3234203d3e20323730313237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.12.144.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:ff:c6:bb:0d:1f:94:42:00:46:32:02:dc:a4:cd:40:dd:99:
bf:0a:84:80:d1:eb:15:76:8d:61:98:8b:ac:6f:6b:66:75:c9:
df:b2:a4:99:b1:cd:e8:a9:8b:d2:3c:ff:26:ad:91:4d:4a:54:
4b:ae:97:ae:f2:ce:f8:94:a8:c9:2f:4f:ce:10:6d:4e:0f:ae:
15:44:83:09:cd:8c:e8:55:3c:0e:6e:ce:65:6a:68:47:8f:77:
31:d1:1c:f3:5e:c6:b5:c7:26:91:e4:8c:90:70:22:cf:12:b1:
31:bc:b3:5a:4c:12:d8:2a:15:61:c1:e6:91:21:85:a6:1e:88:
34:31:fc:28:cf:0c:57:40:04:26:98:50:12:fb:6c:5a:fe:80:
35:82:de:61:4f:a2:21:40:82:6b:3f:f9:86:63:6f:f1:1d:f8:
2b:15:1d:f0:d1:46:10:b5:54:75:92:da:e6:2a:3a:73:85:aa:
d9:6a:ef:51:ae:f4:f3:32:84:e1:f2:2b:b9:c0:0e:24:67:fc:
26:c9:fd:0a:0d:22:11:06:8d:a4:9d:73:b7:20:25:82:14:97:
01:22:79:bb:b2:2c:75:41:c5:03:73:17:09:e8:16:81:41:8f:
7c:77:ff:0d:9f:5a:5b:83:d7:dc:51:b1:07:6f:21:75:eb:5d:
43:10:ac:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:25:25 2025 by rpki-client