Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/714AA9E6363D040BAE08801005DD8A8335AE50D46DFF53B3359E46BCAF42F0D6/0/3139302e3231312e3136302e302f32312d3234203d3e20323632353839.roa
File: 3139302e3231312e3136302e302f32312d3234203d3e20323632353839.roa (raw, json)
Hash identifier: QSYklESbGpTBYnLlMXWGdGvmWPOvjNsNehXg1LCC/Ug=
Subject key identifier: D9:8E:2A:C0:E5:88:43:94:34:2B:89:52:DF:3F:7B:0A:83:47:E8:C2
Certificate issuer: /CN=2152913C2D5333E6F48DA45B339F5C285841364B
Certificate serial: 43645949948C1A4755BE6925E3436CA6394D22BB
Authority key identifier: 21:52:91:3C:2D:53:33:E6:F4:8D:A4:5B:33:9F:5C:28:58:41:36:4B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2152913C2D5333E6F48DA45B339F5C285841364B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/714AA9E6363D040BAE08801005DD8A8335AE50D46DFF53B3359E46BCAF42F0D6/0/3139302e3231312e3136302e302f32312d3234203d3e20323632353839.roa
Signing time: Tue 04 Feb 2025 17:59:04 +0000
ROA not before: Tue 04 Feb 2025 17:54:04 +0000
ROA not after: Tue 03 Feb 2026 17:59:04 +0000
asID: 262589
IP address blocks: 190.211.160.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:64:59:49:94:8c:1a:47:55:be:69:25:e3:43:6c:a6:39:4d:22:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2152913C2D5333E6F48DA45B339F5C285841364B
Validity
Not Before: Feb 4 17:54:04 2025 GMT
Not After : Feb 3 17:59:04 2026 GMT
Subject: CN=D98E2AC0E5884394342B8952DF3F7B0A8347E8C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:dd:17:ee:4c:06:54:f8:22:83:ff:94:73:47:
2e:f2:bd:fe:26:7f:c5:0d:07:39:08:d4:f9:27:06:
56:72:32:f1:53:9c:4e:e6:8d:88:8a:64:5a:7f:87:
c3:47:ac:f9:11:f5:cf:82:e7:28:89:4e:53:20:2c:
76:09:a6:ec:8d:01:35:99:0c:59:93:bc:e2:97:2d:
af:80:1d:0b:fc:99:63:d5:1c:28:6e:2e:a6:57:13:
9c:b5:0f:35:c4:19:e2:33:8a:e4:83:66:af:26:53:
18:13:6a:a5:e1:ee:6d:ad:00:c0:4a:19:23:5c:57:
10:b3:bb:b7:4c:bf:50:1d:53:d3:12:b5:84:9c:72:
b7:de:e7:18:fa:18:aa:5e:03:ab:ab:d7:18:4e:62:
5a:fd:8b:84:98:93:67:9e:c1:f3:00:d3:24:a8:07:
b1:15:14:5e:f6:55:a2:f6:82:31:8d:04:6d:f2:7c:
78:07:1b:33:64:64:28:e1:b5:99:28:a6:4d:2c:de:
23:f7:fd:d1:a0:0e:bb:63:df:d6:95:84:ee:83:72:
d3:e5:0c:31:8f:d8:cb:2a:f2:20:e2:a6:bd:46:65:
6c:3e:dc:fb:9e:82:1b:42:70:fb:0d:ef:ac:f1:d5:
b3:c0:14:05:64:ce:9f:57:c0:14:df:b6:a9:48:e7:
43:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:8E:2A:C0:E5:88:43:94:34:2B:89:52:DF:3F:7B:0A:83:47:E8:C2
X509v3 Authority Key Identifier:
keyid:21:52:91:3C:2D:53:33:E6:F4:8D:A4:5B:33:9F:5C:28:58:41:36:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/714AA9E6363D040BAE08801005DD8A8335AE50D46DFF53B3359E46BCAF42F0D6/0/2152913C2D5333E6F48DA45B339F5C285841364B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2152913C2D5333E6F48DA45B339F5C285841364B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/714AA9E6363D040BAE08801005DD8A8335AE50D46DFF53B3359E46BCAF42F0D6/0/3139302e3231312e3136302e302f32312d3234203d3e20323632353839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.211.160.0/21
Signature Algorithm: sha256WithRSAEncryption
b5:20:3b:79:34:4c:5f:84:a4:31:f4:6e:8c:35:e4:b5:51:61:
b5:5c:64:75:25:25:1f:a8:c5:0c:c0:9d:ff:e8:0c:31:8f:fb:
b6:0b:c2:d3:32:e4:8d:75:00:35:b9:3d:71:06:9c:ba:43:36:
b1:d6:f7:3b:16:16:74:44:2a:e9:de:66:71:80:8a:71:fc:0d:
d4:fe:02:30:d1:a6:d4:37:8b:9e:e2:d0:fe:43:65:3d:53:37:
21:9d:4f:1e:04:b8:ce:e1:13:2b:c7:ab:50:0e:f4:9c:c4:56:
31:f4:fd:3d:47:e2:8d:55:84:8b:93:55:f5:7e:9c:46:43:98:
4b:ef:97:70:c2:73:9f:82:f7:56:2a:62:29:0c:e9:21:56:45:
95:1a:39:2c:93:8b:58:d3:c2:dc:f3:6f:26:83:e7:67:3d:2a:
56:29:9f:37:3a:17:45:eb:61:65:61:48:91:1e:2e:65:85:e3:
64:16:d8:49:4a:d5:ed:cf:b7:3a:cd:ff:dd:ae:a3:58:ae:4c:
6a:a1:0f:7b:c9:89:f5:0d:a6:64:76:2b:dd:26:df:ad:ce:6d:
05:f7:95:2f:17:68:1b:eb:3a:52:e1:8b:9a:fb:96:4c:72:0c:
b4:dc:2b:d1:7a:36:fd:56:6b:22:16:b1:ea:9b:e4:dd:56:34:
60:aa:78:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:07:59 2025 by rpki-client