Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5AE7BDDB80FC5E9DE20624E93E7F65668F98B4369CB1616AA475344237A87FF4/0/3133312e3232312e342e302f32322d3232203d3e203132303636.roa
File: 3133312e3232312e342e302f32322d3232203d3e203132303636.roa (raw, json)
Hash identifier: q4s0cvolIEUAt1Ef4a4aInmI+Gqvtqt/DIzX8N5lu8Q=
Subject key identifier: 69:69:5D:0E:2D:96:FD:DE:23:F8:D6:3A:5B:96:CE:D5:2C:13:4A:50
Certificate issuer: /CN=BA1555F56F1EE9CECA76B3AD5D23EE829D006D98
Certificate serial: 2B64DC921378B63746AA9EE3EA4B5E5EB0C083D9
Authority key identifier: BA:15:55:F5:6F:1E:E9:CE:CA:76:B3:AD:5D:23:EE:82:9D:00:6D:98
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA1555F56F1EE9CECA76B3AD5D23EE829D006D98.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5AE7BDDB80FC5E9DE20624E93E7F65668F98B4369CB1616AA475344237A87FF4/0/3133312e3232312e342e302f32322d3232203d3e203132303636.roa
Signing time: Tue 04 Feb 2025 18:09:33 +0000
ROA not before: Tue 04 Feb 2025 18:04:33 +0000
ROA not after: Tue 03 Feb 2026 18:09:33 +0000
asID: 12066
IP address blocks: 131.221.4.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:64:dc:92:13:78:b6:37:46:aa:9e:e3:ea:4b:5e:5e:b0:c0:83:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA1555F56F1EE9CECA76B3AD5D23EE829D006D98
Validity
Not Before: Feb 4 18:04:33 2025 GMT
Not After : Feb 3 18:09:33 2026 GMT
Subject: CN=69695D0E2D96FDDE23F8D63A5B96CED52C134A50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b1:ab:1b:66:e9:c2:69:68:0b:a0:b1:5d:21:
eb:d3:f5:dc:2b:cc:8c:33:04:c9:93:2e:db:59:74:
f2:3f:d2:f2:a2:c4:69:57:bb:a4:3c:45:90:ba:7e:
cc:25:0f:d7:66:69:c0:28:83:03:3e:d1:0b:17:b4:
be:d5:4d:c5:78:e6:fa:99:7d:36:92:54:30:5d:21:
eb:90:1f:ba:a7:69:af:c5:a9:06:24:da:29:fb:3c:
f2:41:fd:f2:3f:c9:7b:bc:90:14:bc:57:a2:f6:49:
35:45:65:ab:b7:07:a7:08:e9:81:33:69:6c:14:aa:
04:14:b0:9b:21:07:79:9d:65:e0:2e:9c:06:6f:5c:
62:f2:f5:82:3e:b9:93:1a:01:6c:da:03:a6:a8:7f:
2a:a3:5c:96:ca:cb:a1:d2:3d:25:56:32:26:28:57:
6c:cc:17:09:03:da:18:d9:6b:43:5a:0b:13:7a:86:
93:39:da:5a:81:83:56:2a:4a:94:7d:6d:fc:b0:ce:
9a:d5:10:8d:d6:16:8f:fc:6f:c1:e5:51:36:9b:27:
3d:d2:fe:1e:32:11:8a:d9:f6:e0:7f:d2:68:77:d6:
2e:56:7d:a1:e8:c3:82:e2:a8:c6:1d:e4:ab:8f:a8:
4b:44:92:68:6b:7b:e8:34:1d:71:b1:5e:74:13:92:
0f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:69:5D:0E:2D:96:FD:DE:23:F8:D6:3A:5B:96:CE:D5:2C:13:4A:50
X509v3 Authority Key Identifier:
keyid:BA:15:55:F5:6F:1E:E9:CE:CA:76:B3:AD:5D:23:EE:82:9D:00:6D:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5AE7BDDB80FC5E9DE20624E93E7F65668F98B4369CB1616AA475344237A87FF4/0/BA1555F56F1EE9CECA76B3AD5D23EE829D006D98.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA1555F56F1EE9CECA76B3AD5D23EE829D006D98.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5AE7BDDB80FC5E9DE20624E93E7F65668F98B4369CB1616AA475344237A87FF4/0/3133312e3232312e342e302f32322d3232203d3e203132303636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.221.4.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:5a:3e:ed:33:19:3a:04:a7:7d:98:ce:3a:10:59:d6:d2:b5:
2f:6d:83:52:3e:35:cc:83:4d:00:0f:73:a3:cb:78:fb:47:b9:
ac:44:79:19:b5:43:d9:29:30:b4:4c:d1:cf:38:f5:ba:54:b1:
f2:50:dd:7b:aa:cd:97:0c:5e:e8:73:07:c6:cc:70:e0:a1:b2:
28:71:c0:e6:0a:42:f6:e3:9a:67:e1:2c:96:d3:7a:b9:26:99:
55:ad:b1:20:f4:57:5b:5f:0d:34:ec:40:99:2b:7d:34:6a:30:
2c:7d:32:e5:db:a4:e2:45:15:fe:e6:c3:aa:97:79:f2:f5:cf:
ce:2b:c8:7a:fa:9e:7e:46:e5:06:84:78:e9:d7:dd:ce:51:fd:
52:e8:b2:7b:f5:2c:98:5c:c9:ca:a0:02:fd:07:23:74:76:77:
cf:4d:9a:ca:17:54:3b:fc:02:ab:c3:a5:ee:ec:66:5d:4d:38:
17:60:12:fa:05:1b:c9:02:93:5e:30:12:8b:4e:01:b1:0e:48:
b2:75:46:8a:d2:14:fa:c3:c9:2a:b9:f2:b1:70:6d:e0:d1:b8:
e8:d9:dc:14:8d:43:4d:cf:ac:bd:0d:26:09:bb:8c:b9:e6:80:
5a:fe:58:59:aa:b2:7b:c8:3a:3b:1f:14:d8:b9:78:62:f1:78:
fd:70:c8:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:32 2025 by rpki-client