Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/585E16F22B3A513BB6975769CF815AAB853A91127D446D3A0E4CC11562F8BCC9/0/3139302e35322e39362e302f32302d3234203d3e20333934363834.roa
File: 3139302e35322e39362e302f32302d3234203d3e20333934363834.roa (raw, json)
Hash identifier: BKXL5NGgefeFt7SUv3gaWUycR1Yn5dtpPQboROJ3UW4=
Subject key identifier: 63:1D:DA:6D:84:F2:7B:85:67:A2:07:AA:42:E4:D3:DC:DD:36:22:4C
Certificate issuer: /CN=00C0ACD86F331A95D261959180F50CBCC82F52AB
Certificate serial: 1CB666762B500EDC0FE49B8AF5A392E964BF5299
Authority key identifier: 00:C0:AC:D8:6F:33:1A:95:D2:61:95:91:80:F5:0C:BC:C8:2F:52:AB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/00C0ACD86F331A95D261959180F50CBCC82F52AB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/585E16F22B3A513BB6975769CF815AAB853A91127D446D3A0E4CC11562F8BCC9/0/3139302e35322e39362e302f32302d3234203d3e20333934363834.roa
Signing time: Tue 04 Feb 2025 18:38:20 +0000
ROA not before: Tue 04 Feb 2025 18:33:20 +0000
ROA not after: Tue 03 Feb 2026 18:38:20 +0000
asID: 394684
IP address blocks: 190.52.96.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:b6:66:76:2b:50:0e:dc:0f:e4:9b:8a:f5:a3:92:e9:64:bf:52:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00C0ACD86F331A95D261959180F50CBCC82F52AB
Validity
Not Before: Feb 4 18:33:20 2025 GMT
Not After : Feb 3 18:38:20 2026 GMT
Subject: CN=631DDA6D84F27B8567A207AA42E4D3DCDD36224C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e4:d8:ac:3e:49:98:e8:cc:e8:92:78:9e:52:
e4:10:03:7a:a3:ec:1f:b0:a2:2c:2b:37:70:34:6a:
b1:b2:a4:68:35:72:62:4c:6f:38:f2:d4:98:1c:ff:
78:b7:23:3b:ee:b4:a4:28:9a:01:d4:a5:82:9c:85:
29:18:b4:a0:72:3e:e2:10:9b:86:97:1e:68:fb:66:
27:f0:23:f2:d7:da:b9:e6:82:78:d4:38:d8:57:65:
58:e7:a8:58:9a:cb:0f:34:02:8c:c2:84:dd:81:3d:
ea:3b:41:93:3f:3f:aa:37:df:ae:61:f8:ba:fc:0f:
6f:0a:f4:14:33:c4:bb:03:0c:ae:1f:4a:aa:74:ba:
f8:ab:da:4a:8d:80:b6:6f:ee:5c:8c:6c:d2:24:c1:
8a:b3:70:a2:f8:8b:74:2c:dc:cc:f3:8f:9c:e3:f1:
62:f1:1e:c4:d8:55:09:15:cc:6e:b7:4e:bb:f1:31:
e4:e7:5d:6c:a5:c5:15:08:df:90:7c:27:c8:53:74:
a1:26:5c:cc:09:d3:36:cb:ff:01:1d:73:89:82:a8:
17:b6:05:47:dc:00:df:f8:2b:6f:ad:2f:fa:29:d0:
a1:c3:57:00:fd:ae:77:e6:dd:27:d1:de:50:23:eb:
ab:77:c9:f9:f8:50:b2:df:b6:5f:00:b4:a0:c7:95:
e6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:1D:DA:6D:84:F2:7B:85:67:A2:07:AA:42:E4:D3:DC:DD:36:22:4C
X509v3 Authority Key Identifier:
keyid:00:C0:AC:D8:6F:33:1A:95:D2:61:95:91:80:F5:0C:BC:C8:2F:52:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/585E16F22B3A513BB6975769CF815AAB853A91127D446D3A0E4CC11562F8BCC9/0/00C0ACD86F331A95D261959180F50CBCC82F52AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/00C0ACD86F331A95D261959180F50CBCC82F52AB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/585E16F22B3A513BB6975769CF815AAB853A91127D446D3A0E4CC11562F8BCC9/0/3139302e35322e39362e302f32302d3234203d3e20333934363834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.52.96.0/20
Signature Algorithm: sha256WithRSAEncryption
77:66:4f:a0:dd:13:2f:fe:d2:a6:37:f4:6c:e3:e3:33:f8:19:
31:b7:1b:92:b7:46:61:bc:e2:16:90:b3:5f:d5:c3:a7:2f:c5:
f7:1f:e3:70:c3:13:16:83:53:35:9b:9c:ed:4a:7d:04:21:d0:
15:a2:8e:7e:12:2e:d2:5f:ba:ed:17:f1:21:4a:f5:01:da:3a:
89:19:0f:d4:be:40:39:da:ed:d1:dc:32:23:f1:2f:c0:67:d4:
1b:cc:c5:2f:da:8a:3c:82:35:30:d3:ef:1c:6f:4b:cb:4b:d6:
2d:ba:00:97:78:ee:82:19:a4:42:f5:bd:02:7f:c0:c9:8b:3a:
dc:7a:7a:5f:7e:c1:a4:6e:49:3f:98:81:38:e5:1d:c5:c8:7e:
1e:0a:74:be:30:a6:38:91:48:b1:e3:f7:1d:20:46:e2:4f:93:
93:87:c0:ed:5d:1c:40:c7:29:dc:2f:36:d8:dd:d7:35:0e:aa:
be:35:34:1f:15:ec:fb:5a:64:af:a4:c4:ca:54:72:c4:f9:ec:
da:8b:ab:3e:03:52:0e:60:8c:4f:22:23:da:46:9c:0b:21:0a:
51:c2:c4:58:98:41:4a:47:d6:07:92:83:e4:bb:57:f2:38:7d:
45:af:a2:c0:32:bc:c9:fe:79:e1:12:cf:2d:7b:f8:0c:5f:79:
af:e2:8f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:24:56 2025 by rpki-client