Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/636FF6D8D8EC63E16B2FEC4411B685E89C831C4E1924C0D16A5BF1D9FFD965EE/0/3139302e3130382e3230392e302f32342d3234203d3e203532323533.roa
File: 3139302e3130382e3230392e302f32342d3234203d3e203532323533.roa (raw, json)
Hash identifier: icHgGs7jUUamgMGSvc07tPUcTT5VAJlmp3frfK7yuDc=
Subject key identifier: CD:F1:21:4A:99:21:AD:C1:0E:5F:D3:5E:4B:2A:ED:4E:0B:C6:B2:1B
Certificate issuer: /CN=430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14
Certificate serial: 1A8CE122408D093525B9B97D5159F1767826B030
Authority key identifier: 43:0B:8C:C1:EC:30:DC:6E:F3:BF:59:36:9D:AA:6F:85:C0:22:BC:14
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/636FF6D8D8EC63E16B2FEC4411B685E89C831C4E1924C0D16A5BF1D9FFD965EE/0/3139302e3130382e3230392e302f32342d3234203d3e203532323533.roa
Signing time: Tue 04 Feb 2025 18:28:42 +0000
ROA not before: Tue 04 Feb 2025 18:23:42 +0000
ROA not after: Tue 03 Feb 2026 18:28:42 +0000
asID: 52253
IP address blocks: 190.108.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:8c:e1:22:40:8d:09:35:25:b9:b9:7d:51:59:f1:76:78:26:b0:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14
Validity
Not Before: Feb 4 18:23:42 2025 GMT
Not After : Feb 3 18:28:42 2026 GMT
Subject: CN=CDF1214A9921ADC10E5FD35E4B2AED4E0BC6B21B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:23:87:64:c1:8d:9d:ad:00:f8:88:64:30:4f:
f5:03:7f:ef:6d:2d:a7:bc:8e:b9:a8:64:1b:aa:11:
e4:7f:e6:69:da:4a:ec:ee:7c:d9:e3:71:30:2d:50:
3d:5f:cc:f6:fb:40:ca:34:b8:5c:9b:e6:b0:a1:f0:
53:e2:96:99:08:4d:a5:e5:7b:9c:cc:64:37:59:86:
11:7f:ed:a0:7a:39:51:19:2c:e7:60:6b:de:96:a2:
e9:25:92:57:fa:a8:95:41:77:46:a5:e7:e5:13:a1:
5d:be:41:d7:0b:e8:c0:48:25:fa:3b:14:9e:f9:a3:
16:5a:f5:f6:a3:50:55:d5:07:b3:c4:08:50:3b:5e:
0f:75:de:56:4c:a8:d4:ca:c1:3e:eb:6b:c0:f6:7a:
1a:8f:64:48:4f:33:c8:38:96:5b:01:fd:30:01:46:
41:46:e1:e4:b2:0c:f2:97:25:43:4c:fa:14:fa:91:
e7:16:71:94:d8:f3:02:af:1e:ed:3c:db:26:5d:40:
f3:17:35:50:b1:30:3f:52:2c:e2:fc:a2:84:ff:10:
8d:26:47:e6:fa:23:4a:00:15:bf:55:9c:e0:08:b5:
4a:85:cd:90:dc:50:29:15:d3:44:12:fa:10:3a:1d:
8f:ad:7a:fc:4f:c6:6e:f2:9a:db:cb:1c:a6:e1:b0:
d1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:F1:21:4A:99:21:AD:C1:0E:5F:D3:5E:4B:2A:ED:4E:0B:C6:B2:1B
X509v3 Authority Key Identifier:
keyid:43:0B:8C:C1:EC:30:DC:6E:F3:BF:59:36:9D:AA:6F:85:C0:22:BC:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/636FF6D8D8EC63E16B2FEC4411B685E89C831C4E1924C0D16A5BF1D9FFD965EE/0/430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/636FF6D8D8EC63E16B2FEC4411B685E89C831C4E1924C0D16A5BF1D9FFD965EE/0/3139302e3130382e3230392e302f32342d3234203d3e203532323533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.108.209.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:a8:bb:92:9c:0d:db:b7:55:aa:45:e5:e9:41:64:30:28:0e:
3f:7c:78:ce:ab:d8:2e:7d:20:75:cd:f9:35:a7:eb:a0:e0:f4:
08:d5:21:ea:79:d5:34:df:4a:2f:e0:07:b2:ef:75:39:51:22:
5b:7c:ee:3a:22:a1:12:be:ad:b1:a6:7a:58:77:15:a4:c0:3a:
38:b6:1c:99:ac:e3:95:e0:cc:11:0c:f9:9d:fc:be:5c:06:ae:
73:49:37:2b:ef:34:92:37:93:79:b3:20:eb:dc:11:40:1a:1d:
b8:2d:53:94:95:e7:76:11:f9:f8:f6:be:ac:7d:b0:fd:13:b4:
ec:c0:18:69:75:a3:92:c1:5a:1b:e4:9b:46:5f:a8:e6:59:06:
50:2f:63:5e:cc:b3:5e:36:82:50:38:b5:15:db:d9:35:bd:90:
a7:da:a7:97:eb:13:5a:ec:c6:f7:e4:35:67:2d:5e:d0:b0:f6:
98:d0:ef:cb:e1:c7:36:29:05:4b:04:f3:db:84:a4:72:cb:07:
a2:a4:6f:e2:de:8c:83:c5:3c:ff:9f:41:4e:6e:ee:18:9b:01:
df:7e:67:05:ab:56:13:73:6f:01:c1:fe:98:f0:f0:a6:18:dd:
8f:1d:de:94:37:24:c7:12:09:31:81:5d:f8:3a:85:6d:7f:7a:
4a:a6:49:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:17:00 2025 by rpki-client