Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/3139302e352e36382e302f32342d3234203d3e20323633323339.roa
File: 3139302e352e36382e302f32342d3234203d3e20323633323339.roa (raw, json)
Hash identifier: Kipllp+lJ6OfktCSGaMdMgX05Hoz5NvQCGh5axOliEU=
Subject key identifier: D0:07:01:A1:50:B0:49:47:32:81:13:46:2E:70:80:D3:E9:CD:E1:04
Certificate issuer: /CN=995577D85E32451D9695955CFACF83EA0CB6F2A8
Certificate serial: 06E1C6DABA923DB1405E00F0A7B2F5C89321C955
Authority key identifier: 99:55:77:D8:5E:32:45:1D:96:95:95:5C:FA:CF:83:EA:0C:B6:F2:A8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/995577D85E32451D9695955CFACF83EA0CB6F2A8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/3139302e352e36382e302f32342d3234203d3e20323633323339.roa
Signing time: Tue 04 Feb 2025 18:29:14 +0000
ROA not before: Tue 04 Feb 2025 18:24:14 +0000
ROA not after: Tue 03 Feb 2026 18:29:14 +0000
asID: 263239
IP address blocks: 190.5.68.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:e1:c6:da:ba:92:3d:b1:40:5e:00:f0:a7:b2:f5:c8:93:21:c9:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=995577D85E32451D9695955CFACF83EA0CB6F2A8
Validity
Not Before: Feb 4 18:24:14 2025 GMT
Not After : Feb 3 18:29:14 2026 GMT
Subject: CN=D00701A150B04947328113462E7080D3E9CDE104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:8d:71:63:b7:c8:3e:5f:16:ca:89:bd:f7:
5a:0f:a9:e8:72:2e:13:a5:08:a5:5e:d7:2c:88:08:
cc:3d:ab:cb:5a:2a:48:0d:16:a3:51:de:9b:48:ad:
64:d9:a4:88:73:b5:e0:60:9e:2d:6d:b7:b6:08:d7:
90:46:9f:b6:f4:ca:9d:49:28:bc:eb:f4:e4:78:0e:
74:24:d5:60:0c:8a:16:98:50:db:c4:f5:55:50:06:
3a:da:0f:14:92:f5:49:ef:dc:22:0b:02:86:1c:67:
cc:64:3c:ef:ff:c0:89:c5:da:a5:e5:b7:66:ea:21:
94:36:1b:cb:cd:6d:47:b9:36:75:9b:b5:86:bc:11:
8e:49:2e:44:c3:05:cd:c0:46:43:94:67:80:49:77:
68:ab:64:38:d0:2d:44:81:b9:67:14:b2:9c:27:5f:
73:98:93:b1:af:60:51:10:d0:29:fa:bb:12:34:64:
88:7b:67:53:7d:7f:f3:6a:ac:73:45:9d:7a:23:28:
44:46:f3:40:9d:14:b9:a6:52:bf:64:a8:37:b9:23:
d5:fe:31:05:d7:63:22:e5:bf:8f:d2:ae:df:0b:5f:
4b:b2:0a:49:01:97:1c:35:a0:0f:72:96:0f:7d:b8:
26:9b:1e:b3:b8:0e:bc:8f:03:aa:f0:27:11:9f:b9:
0f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:07:01:A1:50:B0:49:47:32:81:13:46:2E:70:80:D3:E9:CD:E1:04
X509v3 Authority Key Identifier:
keyid:99:55:77:D8:5E:32:45:1D:96:95:95:5C:FA:CF:83:EA:0C:B6:F2:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/995577D85E32451D9695955CFACF83EA0CB6F2A8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/995577D85E32451D9695955CFACF83EA0CB6F2A8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/3139302e352e36382e302f32342d3234203d3e20323633323339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.5.68.0/24
Signature Algorithm: sha256WithRSAEncryption
20:7e:00:0e:09:6a:aa:03:30:73:0c:56:78:8e:11:78:83:ad:
e7:8f:3d:e3:60:29:4a:38:05:f4:e5:0e:b4:df:16:5b:03:b9:
e3:a0:88:a3:15:be:17:79:f7:86:c8:6d:c9:8a:42:57:25:f0:
51:d2:c2:97:cd:89:74:56:c3:cb:5b:1e:5b:b3:1f:74:32:06:
56:b4:75:55:23:1d:a5:29:be:a2:82:a2:8f:6f:da:28:cd:f5:
91:f8:21:ea:5a:8a:4e:66:c7:ad:9b:c5:81:b3:1e:68:cf:d9:
e5:23:f7:53:71:f3:df:97:0e:8c:d0:be:28:4f:6c:be:86:fb:
5c:ed:0f:ea:ec:25:fb:9c:8b:d5:03:1e:25:07:c7:fd:03:fc:
98:1d:6d:d6:f8:d8:7f:34:a8:9a:13:dd:50:f7:0a:da:fb:94:
ef:e6:13:8a:e5:7a:33:61:55:52:c0:79:e6:38:e6:49:a9:e9:
5e:08:d2:6b:55:6b:b0:80:5e:74:16:84:ff:3d:2f:67:8a:49:
df:cd:a0:8f:c8:dc:ce:ca:98:6d:34:fa:5f:9c:73:a7:e9:51:
61:16:6d:04:be:d7:82:39:0f:53:dc:63:78:4a:b4:f3:f3:3d:
f4:39:79:a2:36:eb:9c:af:b2:07:d4:60:c2:00:30:fc:de:d9:
cc:65:20:86
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUBuHG2rqSPbFAXgDwp7L1yJMhyVUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTk1NTc3RDg1RTMyNDUxRDk2OTU5NTVDRkFDRjgzRUEw
Q0I2RjJBODAeFw0yNTAyMDQxODI0MTRaFw0yNjAyMDMxODI5MTRaMDMxMTAvBgNV
BAMTKEQwMDcwMUExNTBCMDQ5NDczMjgxMTM0NjJFNzA4MEQzRTlDREUxMDQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChZI1xY7fIPl8Wyom991oPqehy
LhOlCKVe1yyICMw9q8taKkgNFqNR3ptIrWTZpIhzteBgni1tt7YI15BGn7b0yp1J
KLzr9OR4DnQk1WAMihaYUNvE9VVQBjraDxSS9Unv3CILAoYcZ8xkPO//wInF2qXl
t2bqIZQ2G8vNbUe5NnWbtYa8EY5JLkTDBc3ARkOUZ4BJd2irZDjQLUSBuWcUspwn
X3OYk7GvYFEQ0Cn6uxI0ZIh7Z1N9f/NqrHNFnXojKERG80CdFLmmUr9kqDe5I9X+
MQXXYyLlv4/Srt8LX0uyCkkBlxw1oA9ylg99uCabHrO4DryPA6rwJxGfuQ/xAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQU0AcBoVCwSUcygRNGLnCA0+nN4QQwHwYDVR0j
BBgwFoAUmVV32F4yRR2WlZVc+s+D6gy28qgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83MDY3RjUwRTJFQjQ5QTg0MjY2MTA3NjUyMjlCRTk5ODMw
QUUzQjdEQkYxQzBCRTA5QUY0MkExMjlFRDNGOEZFLzAvOTk1NTc3RDg1RTMyNDUx
RDk2OTU5NTVDRkFDRjgzRUEwQ0I2RjJBOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85OTU1NzdEODVFMzI0NTFEOTY5
NTk1NUNGQUNGODNFQTBDQjZGMkE4LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNzA2N0Y1MEUyRUI0OUE4NDI2NjEwNzY1MjI5QkU5OTgzMEFFM0I3REJG
MUMwQkUwOUFGNDJBMTI5RUQzRjhGRS8wLzMxMzkzMDJlMzUyZTM2MzgyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM2MzMzMjMzMzkucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC+BUQwDQYJ
KoZIhvcNAQELBQADggEBACB+AA4JaqoDMHMMVniOEXiDreePPeNgKUo4BfTlDrTf
FlsDueOgiKMVvhd594bIbcmKQlcl8FHSwpfNiXRWw8tbHluzH3QyBla0dVUjHaUp
vqKCoo9v2ijN9ZH4Iepaik5mx62bxYGzHmjP2eUj91Nx89+XDozQvihPbL6G+1zt
D+rsJfuci9UDHiUHx/0D/Jgdbdb42H80qJoT3VD3Ctr7lO/mE4rlejNhVVLAeeY4
5kmp6V4I0mtVa7CAXnQWhP89L2eKSd/NoI/I3M7KmG00+l+cc6fpUWEWbQS+14I5
D1PcY3hKtPPzPfQ5eaI265yvsgfUYMIAMPze2cxlIIY=
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:34:15 2025 by rpki-client