Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3133312e3139362e3230382e302f32322d3233203d3e20323635363936.roa
File: 3133312e3139362e3230382e302f32322d3233203d3e20323635363936.roa (raw, json)
Hash identifier: 7GqgIgSLOF8PuSIFWCgjDBFutkgX5hDz2WoTNnEnlWw=
Subject key identifier: F3:8D:39:48:41:F1:8E:6C:CC:EC:50:FE:AE:52:D6:DE:56:90:CF:0F
Certificate issuer: /CN=0D60903B8375FC5C2CB891635E0EA87B50DA3595
Certificate serial: 0B6E584E60D1FF42DE06C8020485C801B37EA5E2
Authority key identifier: 0D:60:90:3B:83:75:FC:5C:2C:B8:91:63:5E:0E:A8:7B:50:DA:35:95
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3133312e3139362e3230382e302f32322d3233203d3e20323635363936.roa
Signing time: Tue 04 Feb 2025 18:48:36 +0000
ROA not before: Tue 04 Feb 2025 18:43:36 +0000
ROA not after: Tue 03 Feb 2026 18:48:36 +0000
asID: 265696
IP address blocks: 131.196.208.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:6e:58:4e:60:d1:ff:42:de:06:c8:02:04:85:c8:01:b3:7e:a5:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D60903B8375FC5C2CB891635E0EA87B50DA3595
Validity
Not Before: Feb 4 18:43:36 2025 GMT
Not After : Feb 3 18:48:36 2026 GMT
Subject: CN=F38D394841F18E6CCCEC50FEAE52D6DE5690CF0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e9:7e:61:1d:9c:bb:4f:d5:46:88:7f:07:b6:
95:d5:34:e8:87:ed:31:14:a7:c3:f9:ce:3e:24:96:
6c:2c:78:1e:26:ca:ba:f4:16:b0:22:92:d0:40:f7:
89:34:5e:e1:c7:93:ab:b1:a7:ac:12:70:82:42:d7:
34:1c:b1:66:2c:7c:47:b4:66:05:64:30:c3:89:ab:
51:05:1d:6b:46:5f:4d:50:6e:c2:15:12:1d:59:83:
a8:60:49:de:73:3c:89:48:b4:70:6e:4d:0b:c1:43:
9c:6f:90:61:76:1e:11:3d:84:b4:dc:d1:7b:77:78:
15:74:b5:d0:1d:4d:d6:c8:60:d2:3a:65:26:de:25:
83:97:34:f7:aa:36:82:b5:54:80:93:13:a7:0d:16:
48:00:26:8b:6f:6d:c6:b4:04:3f:08:72:10:b0:3c:
c9:72:6b:03:35:bf:8d:1f:2c:cc:e2:ee:c2:e6:e5:
fe:96:00:37:92:e9:57:37:95:2c:e3:63:00:24:16:
b1:0e:05:a7:59:34:98:64:cb:c9:f8:73:db:7d:a3:
46:e6:45:dd:10:ec:0b:32:19:3a:9c:71:b8:20:7e:
bb:77:3d:0f:3b:c3:78:fc:32:82:92:0d:3b:97:9f:
03:ae:9b:63:6e:6e:cf:c5:e7:90:e5:39:26:58:47:
81:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:8D:39:48:41:F1:8E:6C:CC:EC:50:FE:AE:52:D6:DE:56:90:CF:0F
X509v3 Authority Key Identifier:
keyid:0D:60:90:3B:83:75:FC:5C:2C:B8:91:63:5E:0E:A8:7B:50:DA:35:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3133312e3139362e3230382e302f32322d3233203d3e20323635363936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.196.208.0/22
Signature Algorithm: sha256WithRSAEncryption
61:63:26:12:3f:38:86:a9:74:28:6f:c6:29:1a:e6:0c:24:77:
ec:af:e7:95:d3:77:49:5e:02:c4:15:cc:b2:23:60:5e:4a:92:
cc:db:88:6f:6f:09:ac:65:f5:38:c3:e1:f1:a7:62:e0:d4:fd:
44:ad:93:23:46:0a:10:f5:25:f0:86:2b:bd:28:ab:7f:3c:73:
51:d7:80:4c:20:88:db:92:20:62:7e:33:65:01:fe:02:c9:7a:
9f:02:10:cf:97:99:6a:59:a1:e5:56:8c:75:4f:45:a3:fa:74:
79:56:90:ba:a7:92:d7:6a:1d:cc:6e:a3:8f:c7:6c:35:7d:dc:
d3:4e:a3:7f:66:13:64:79:5c:3a:02:6c:b8:7c:bf:eb:ec:06:
d9:d1:bf:55:81:e0:45:d5:17:82:34:c5:58:9b:70:a3:6f:d2:
45:31:3c:2f:cc:73:1c:f6:df:4d:59:97:b1:8b:a3:97:b5:72:
db:2b:f1:aa:9c:d7:11:49:2a:af:2f:16:91:ab:d7:50:bc:c7:
ad:8d:48:5e:36:01:ff:c4:dc:00:ba:16:7a:85:87:8c:10:41:
36:31:d8:df:32:cb:d7:86:2c:5c:fa:79:2f:5c:26:7a:6c:8d:
56:11:f0:aa:81:99:0f:3a:91:a4:5b:a0:3d:42:dc:0a:8c:ce:
dd:9f:c5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:47 2025 by rpki-client