Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/712CE0FF8C33D2ACD0453B429414594ADCB4F79743EA72EC74406261A800D0FA/0/3139302e3130332e3139312e302f32342d3234203d3e20323732313430.roa
File: 3139302e3130332e3139312e302f32342d3234203d3e20323732313430.roa (raw, json)
Hash identifier: ZFz+ldthdpJDmo4FmWZ0CAydFmaLOh635KqcOcyn6Co=
Subject key identifier: D3:22:53:FD:8E:BB:4E:D4:37:B8:96:E9:AA:D0:1A:E4:70:75:55:68
Certificate issuer: /CN=3249F9F2D0369FF06E9B2651663EFA2423E42AFC
Certificate serial: 339E75D819BF2311EC53ACE9AA5C4BED59EE31C5
Authority key identifier: 32:49:F9:F2:D0:36:9F:F0:6E:9B:26:51:66:3E:FA:24:23:E4:2A:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3249F9F2D0369FF06E9B2651663EFA2423E42AFC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/712CE0FF8C33D2ACD0453B429414594ADCB4F79743EA72EC74406261A800D0FA/0/3139302e3130332e3139312e302f32342d3234203d3e20323732313430.roa
Signing time: Tue 04 Feb 2025 18:10:30 +0000
ROA not before: Tue 04 Feb 2025 18:05:30 +0000
ROA not after: Tue 03 Feb 2026 18:10:30 +0000
asID: 272140
IP address blocks: 190.103.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:9e:75:d8:19:bf:23:11:ec:53:ac:e9:aa:5c:4b:ed:59:ee:31:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3249F9F2D0369FF06E9B2651663EFA2423E42AFC
Validity
Not Before: Feb 4 18:05:30 2025 GMT
Not After : Feb 3 18:10:30 2026 GMT
Subject: CN=D32253FD8EBB4ED437B896E9AAD01AE470755568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:68:f9:40:51:80:3c:21:f0:c8:dc:92:bb:88:
b1:30:c6:45:c4:a6:47:ed:88:cc:39:dd:81:49:d0:
81:9e:26:50:78:c6:00:30:d5:7e:6f:9b:40:5d:95:
0b:fd:f1:0b:41:c6:02:e0:f6:a7:ef:83:8c:20:3d:
ee:12:90:97:ef:8b:fe:1f:9b:74:56:47:ce:2e:e6:
11:25:5f:b5:54:19:0b:97:b7:9c:6a:db:3a:65:23:
6a:11:01:bd:c2:3a:04:28:47:3d:9e:b2:6e:38:7c:
ff:75:65:6c:f1:38:8a:ca:7d:3a:b4:fa:b4:64:61:
dc:95:9f:c7:33:a0:b2:3f:d4:23:f3:00:b5:e9:99:
15:ba:bf:1c:08:6c:2f:64:11:cf:a6:13:2d:16:44:
17:85:89:ce:5d:4f:e8:33:fa:28:01:7f:31:e4:51:
d2:a4:c2:ac:c3:83:03:b9:21:59:dc:1b:48:b5:dc:
dc:07:22:12:ba:61:e5:3e:ad:34:72:c2:82:f7:20:
73:78:a2:94:8a:2f:9c:6e:27:d7:26:b2:be:00:1f:
d0:b4:cd:1b:5b:04:b5:ad:79:47:fc:12:3d:11:26:
ca:17:8e:e6:6d:1e:97:b9:9f:20:0d:d5:1d:4a:c5:
3b:95:a5:b2:7f:74:98:59:e6:6f:9f:27:e3:91:dd:
c1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:22:53:FD:8E:BB:4E:D4:37:B8:96:E9:AA:D0:1A:E4:70:75:55:68
X509v3 Authority Key Identifier:
keyid:32:49:F9:F2:D0:36:9F:F0:6E:9B:26:51:66:3E:FA:24:23:E4:2A:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/712CE0FF8C33D2ACD0453B429414594ADCB4F79743EA72EC74406261A800D0FA/0/3249F9F2D0369FF06E9B2651663EFA2423E42AFC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3249F9F2D0369FF06E9B2651663EFA2423E42AFC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/712CE0FF8C33D2ACD0453B429414594ADCB4F79743EA72EC74406261A800D0FA/0/3139302e3130332e3139312e302f32342d3234203d3e20323732313430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.103.191.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:64:fc:15:91:ef:5e:26:70:d1:43:25:e8:47:74:4a:4e:35:
fc:60:37:05:4d:28:8d:a7:54:c3:d8:b2:6c:47:6b:11:c8:f8:
9b:38:86:eb:bd:26:3b:0b:c3:ac:26:98:3a:26:f9:2e:e9:92:
ad:0d:62:b3:b2:51:0d:0e:0d:60:6f:07:d5:02:7f:aa:30:3a:
5e:38:08:48:d4:9d:bd:eb:40:56:35:38:73:9b:cf:15:5a:23:
8a:2f:06:c6:ef:c5:81:4f:1e:6c:ae:1e:cc:f3:bd:29:80:8a:
85:41:14:01:17:92:56:69:df:85:fb:62:68:14:cf:62:da:95:
63:8c:e1:57:46:9f:86:34:32:9f:a3:2a:e7:e4:56:b2:64:73:
9e:9a:66:1e:fa:52:74:9c:b8:9b:2c:8e:56:1d:5b:aa:92:ad:
e5:59:6f:5c:04:df:16:78:91:b8:02:77:83:49:7e:19:6a:0d:
94:6a:c9:76:48:e3:d5:80:56:9c:d0:81:ae:50:e1:3d:d1:69:
31:03:fb:85:d4:a6:13:02:59:99:e5:6b:3b:d4:05:fa:87:11:
d2:0d:23:23:64:64:48:28:52:5b:db:eb:21:fe:22:4f:99:c2:
7c:b6:ea:8b:06:9b:29:dd:2e:59:bc:e5:4e:6a:94:11:65:ed:
bf:4d:6d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:10:37 2025 by rpki-client