Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS11311.roa
File: AS11311.roa (raw, json)
Hash identifier: oPKzH00YZCFgqKJS4Deq9LS+28d81MLJoxb8WpfX0fg=
Subject key identifier: D5:02:F5:DE:F9:93:DC:10:09:20:E4:76:11:3E:67:71:77:03:07:B4
Certificate issuer: /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial: 65AC6D6202667E0C50A58916743467F24E1EC519
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS11311.roa
Signing time: Tue 04 Feb 2025 18:13:44 +0000
ROA not before: Tue 04 Feb 2025 18:08:44 +0000
ROA not after: Tue 03 Feb 2026 18:13:44 +0000
asID: 11311
IP address blocks: 168.226.64.0/20 maxlen: 20
186.61.176.0/20 maxlen: 20
190.50.176.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:ac:6d:62:02:66:7e:0c:50:a5:89:16:74:34:67:f2:4e:1e:c5:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Validity
Not Before: Feb 4 18:08:44 2025 GMT
Not After : Feb 3 18:13:44 2026 GMT
Subject: CN=D502F5DEF993DC100920E476113E6771770307B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:af:71:5a:0f:c4:5e:11:ce:e9:69:36:3d:01:
72:d7:1e:69:a5:e9:35:a6:b7:a4:9f:01:72:5c:ff:
4e:bd:58:9b:25:f6:8e:f6:f8:27:63:5c:ff:f0:ce:
11:38:0d:89:5d:25:dd:e1:43:c7:ba:75:ac:5f:20:
0e:3e:41:bc:c3:92:b3:eb:74:74:84:92:03:16:f7:
5d:ff:fb:ec:96:e4:b3:32:63:30:98:f4:9a:1d:dc:
c8:19:60:91:42:d6:aa:43:89:e6:97:35:0c:5e:f2:
75:f4:bc:8e:f3:d6:ae:57:55:04:82:0d:ec:b4:8e:
3c:ac:aa:8c:66:7f:56:34:3b:c9:5e:72:c4:60:2b:
c8:3d:0d:d0:62:d6:1d:cb:5c:9b:71:60:c1:af:b8:
9a:e7:7d:a0:0e:05:3b:f5:4f:f2:fb:c3:1e:49:36:
fe:8e:78:9d:e6:07:4f:f0:0f:73:95:96:ad:18:aa:
02:bc:18:0d:db:36:d8:55:27:4c:bb:a9:f4:fa:62:
e4:96:df:0e:98:d3:55:92:c0:4c:a5:ad:67:a7:77:
f3:07:3e:ab:5d:58:38:b0:85:e8:7a:fb:4b:92:9a:
66:05:f6:bd:3b:46:5c:9e:b4:68:ee:ae:27:c7:36:
a2:4f:9e:8c:85:04:31:56:f4:ee:67:95:16:8b:53:
b4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:02:F5:DE:F9:93:DC:10:09:20:E4:76:11:3E:67:71:77:03:07:B4
X509v3 Authority Key Identifier:
keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS11311.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.226.64.0/20
186.61.176.0/20
190.50.176.0/20
Signature Algorithm: sha256WithRSAEncryption
a3:cc:e1:ee:59:9e:bd:53:e7:3f:75:02:6d:38:5c:1a:4c:c4:
d5:38:ed:0d:d9:4c:4c:e7:a8:ff:eb:72:74:22:49:a2:e3:40:
1d:4d:97:7a:9b:7e:0f:cb:c8:e5:7e:42:cc:81:a6:b2:52:41:
9d:bc:4b:3f:e4:2e:93:78:16:77:e0:1d:19:66:c7:8d:5f:a7:
9f:6c:0d:10:35:1b:1a:fb:9b:2f:4d:9c:66:bb:a6:73:00:d6:
82:26:65:a7:cf:eb:30:e1:77:19:f5:ee:24:45:06:59:f6:02:
48:9d:a3:10:17:a3:03:6d:86:b7:d9:ae:75:e3:6f:a3:05:c4:
d5:ce:58:8a:00:68:5b:23:1f:54:43:53:a7:98:5b:86:09:95:
a4:30:78:6a:f5:ad:30:4b:2d:31:e9:28:04:78:2e:c3:83:54:
e8:d8:55:d1:3d:cb:5b:9c:64:ea:7b:6f:16:b9:ff:7e:c2:9e:
a2:37:4d:f2:66:6f:39:89:22:2c:58:40:83:b6:21:1e:f6:b5:
23:c4:d4:52:18:4b:b1:ae:81:61:e6:62:e9:c3:e7:ce:a9:fd:
5a:96:40:ce:76:cf:65:db:8c:00:7f:d6:74:04:eb:ec:5b:d5:
ad:65:40:5c:41:14:63:64:a2:e8:45:cc:4b:72:60:16:1d:d6:
90:5c:7c:45
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:11:59 2025 by rpki-client