Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/59F0FD8273BD179246780F8BF2D7DB0AE56FE33EEE020D07550D60E23FD01F2E/0/3136382e39302e3139362e302f32322d3232203d3e20323634383530.roa
File: 3136382e39302e3139362e302f32322d3232203d3e20323634383530.roa (raw, json)
Hash identifier: OZy3hGCKdV7735qbysuyBTw94o/oxcG86dhMgt0HsV0=
Subject key identifier: B3:D0:61:B2:95:EA:4D:BC:6A:B4:C8:B5:F2:15:3E:07:8B:30:EC:D6
Certificate issuer: /CN=FA7A92609CADE6A78C1E178DEFE7C9C24CF75169
Certificate serial: 79EF31B8A4C5275E612191BC26BE80182D5B41EE
Authority key identifier: FA:7A:92:60:9C:AD:E6:A7:8C:1E:17:8D:EF:E7:C9:C2:4C:F7:51:69
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FA7A92609CADE6A78C1E178DEFE7C9C24CF75169.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/59F0FD8273BD179246780F8BF2D7DB0AE56FE33EEE020D07550D60E23FD01F2E/0/3136382e39302e3139362e302f32322d3232203d3e20323634383530.roa
Signing time: Tue 04 Feb 2025 18:39:14 +0000
ROA not before: Tue 04 Feb 2025 18:34:14 +0000
ROA not after: Tue 03 Feb 2026 18:39:14 +0000
asID: 264850
IP address blocks: 168.90.196.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:ef:31:b8:a4:c5:27:5e:61:21:91:bc:26:be:80:18:2d:5b:41:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FA7A92609CADE6A78C1E178DEFE7C9C24CF75169
Validity
Not Before: Feb 4 18:34:14 2025 GMT
Not After : Feb 3 18:39:14 2026 GMT
Subject: CN=B3D061B295EA4DBC6AB4C8B5F2153E078B30ECD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:c3:a0:9c:58:23:d0:86:ec:34:47:2c:85:ea:
31:81:04:0e:30:5e:9c:98:77:37:63:34:45:95:8a:
b4:00:8e:c6:ce:18:57:16:e6:38:34:b5:4d:eb:e0:
9d:0b:ea:70:4a:af:8c:14:96:90:a9:28:2e:41:c5:
e6:6b:dd:73:9c:1d:79:3e:7c:b2:ca:5b:72:ed:93:
b6:44:dc:d3:10:fe:22:ae:2d:a6:67:f4:4a:59:31:
6f:2d:84:f0:fe:ff:bc:77:9e:82:71:8f:7e:7b:fc:
78:cf:c3:3a:b4:a3:49:19:4c:a9:0f:3a:cb:1e:0a:
2d:9c:09:18:cc:76:43:57:b2:5d:17:c3:ec:dd:9b:
df:4f:d9:e7:49:51:69:5b:77:34:26:74:26:23:67:
4e:4a:ac:85:20:e1:94:6d:bd:6d:1a:86:36:f1:0c:
1e:d0:53:6c:0f:6f:c0:43:ec:a9:3e:97:b8:03:1f:
52:17:10:50:63:2a:86:fc:8f:66:df:4c:bb:09:8c:
6f:cc:94:04:32:2e:b8:17:f6:5f:0b:cf:44:c2:47:
30:6c:fa:47:b2:02:41:6b:4b:e8:82:a8:6d:01:e3:
e3:ea:dd:fc:8d:3b:f3:fa:5d:c8:80:97:54:60:16:
79:a9:a9:a3:53:12:f0:03:1e:6e:55:ce:27:24:76:
2b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D0:61:B2:95:EA:4D:BC:6A:B4:C8:B5:F2:15:3E:07:8B:30:EC:D6
X509v3 Authority Key Identifier:
keyid:FA:7A:92:60:9C:AD:E6:A7:8C:1E:17:8D:EF:E7:C9:C2:4C:F7:51:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/59F0FD8273BD179246780F8BF2D7DB0AE56FE33EEE020D07550D60E23FD01F2E/0/FA7A92609CADE6A78C1E178DEFE7C9C24CF75169.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FA7A92609CADE6A78C1E178DEFE7C9C24CF75169.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/59F0FD8273BD179246780F8BF2D7DB0AE56FE33EEE020D07550D60E23FD01F2E/0/3136382e39302e3139362e302f32322d3232203d3e20323634383530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.90.196.0/22
Signature Algorithm: sha256WithRSAEncryption
70:be:98:c7:2f:26:bd:c9:52:f4:18:c7:99:f5:bf:99:5c:88:
dd:77:8b:2a:af:f5:9b:26:a0:61:ec:bc:31:28:86:86:3f:ae:
06:36:39:b7:ed:57:a5:4c:1b:c7:be:36:ec:2a:9b:0b:3b:50:
46:56:ca:dc:8e:a5:9c:1e:88:88:bb:e8:34:89:2c:8b:f3:b1:
23:71:97:fa:81:3a:59:f0:ca:b6:be:29:13:ff:6e:a7:f6:f7:
e3:f9:15:c0:e9:5c:06:0a:34:f3:d6:98:52:37:1a:f7:06:0b:
0d:05:7b:82:28:29:a6:da:01:33:33:22:a1:f1:f0:ec:40:bc:
ad:fe:94:91:d4:55:ec:cc:cd:36:e7:da:5c:1d:2f:f4:37:f2:
40:39:68:fc:32:3d:35:9a:a7:3b:85:b9:17:ca:74:1c:42:02:
ad:7c:63:de:62:9d:f0:eb:98:2b:f7:ba:38:0f:ae:00:44:b3:
72:56:99:56:d3:0c:b1:7c:3a:a7:21:b8:24:e7:17:d0:e3:81:
ea:c3:d2:a4:98:4c:eb:cc:16:1e:50:ec:be:bb:e1:d0:3b:c7:
e8:11:a3:99:a1:1c:62:b4:55:8f:9a:3a:ed:c7:7d:b6:19:5a:
36:00:9c:f6:76:8f:0f:74:50:1f:e4:9f:eb:fb:17:61:28:09:
e2:1e:55:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:54:22 2025 by rpki-client