Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7396851D73BEBD3C87F555E2FAFF7A5E77DA470E2C21127CFFA5B4A2D9E636A8/0/3139302e3132302e36342e302f32302d3234203d3e203238303235.roa
File: 3139302e3132302e36342e302f32302d3234203d3e203238303235.roa (raw, json)
Hash identifier: aa1PpAch15MAXq4BwFB1nP/p7SxiD+3aGgte3YhftmU=
Subject key identifier: 6E:5E:AD:39:11:EE:98:8E:81:3D:F7:AA:01:C7:F1:9E:F3:F1:9C:D2
Certificate issuer: /CN=F64B9C43EEEB19A0ED105803DC8E9943CEDA35AA
Certificate serial: 7164FE13FFE61184D8B56B9F44A2A0B4EDD0B79F
Authority key identifier: F6:4B:9C:43:EE:EB:19:A0:ED:10:58:03:DC:8E:99:43:CE:DA:35:AA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F64B9C43EEEB19A0ED105803DC8E9943CEDA35AA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7396851D73BEBD3C87F555E2FAFF7A5E77DA470E2C21127CFFA5B4A2D9E636A8/0/3139302e3132302e36342e302f32302d3234203d3e203238303235.roa
Signing time: Tue 04 Feb 2025 18:18:31 +0000
ROA not before: Tue 04 Feb 2025 18:13:31 +0000
ROA not after: Tue 03 Feb 2026 18:18:31 +0000
asID: 28025
IP address blocks: 190.120.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:64:fe:13:ff:e6:11:84:d8:b5:6b:9f:44:a2:a0:b4:ed:d0:b7:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F64B9C43EEEB19A0ED105803DC8E9943CEDA35AA
Validity
Not Before: Feb 4 18:13:31 2025 GMT
Not After : Feb 3 18:18:31 2026 GMT
Subject: CN=6E5EAD3911EE988E813DF7AA01C7F19EF3F19CD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9b:bf:2d:a7:5d:f8:dc:a7:17:e2:49:70:97:
68:7b:6a:a5:ce:bd:7c:55:9b:93:6c:40:b5:2f:82:
00:2d:5a:fe:e2:0f:5b:fd:17:34:3b:85:2c:64:d0:
17:cc:b4:83:01:61:dc:9b:66:8d:65:38:3b:75:05:
fc:cd:f9:81:af:f9:d5:2a:c1:3e:9d:72:c8:ca:70:
83:75:ee:af:73:b6:c5:c1:d5:46:98:a5:66:95:47:
b5:80:98:0d:c6:e4:21:2e:47:4d:42:18:c2:da:5e:
cf:2b:04:3b:a0:5e:30:0e:4c:2a:43:96:67:6a:18:
2c:98:34:ae:1a:b1:da:77:b5:1e:58:9a:d4:10:d7:
48:ab:fd:c1:78:37:8d:57:bc:48:0e:a7:25:26:f7:
83:5c:8e:1c:7c:33:d3:e5:ab:fc:83:ae:f5:e3:0e:
38:18:26:47:91:30:84:74:30:d8:47:ef:e9:03:91:
96:4a:50:49:39:24:88:44:8b:30:5d:7a:39:9a:b9:
c7:8a:d4:6c:81:3d:7e:a6:ab:8d:4b:bc:d3:6a:62:
64:ab:c7:36:c9:8c:d8:cf:f6:5e:10:0a:e9:36:50:
a4:2a:c8:c7:b6:e2:19:04:84:0d:e3:e5:33:8d:57:
5c:1d:a3:7c:27:3f:bb:81:0e:9f:70:d3:6b:c7:ff:
65:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5E:AD:39:11:EE:98:8E:81:3D:F7:AA:01:C7:F1:9E:F3:F1:9C:D2
X509v3 Authority Key Identifier:
keyid:F6:4B:9C:43:EE:EB:19:A0:ED:10:58:03:DC:8E:99:43:CE:DA:35:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7396851D73BEBD3C87F555E2FAFF7A5E77DA470E2C21127CFFA5B4A2D9E636A8/0/F64B9C43EEEB19A0ED105803DC8E9943CEDA35AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F64B9C43EEEB19A0ED105803DC8E9943CEDA35AA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7396851D73BEBD3C87F555E2FAFF7A5E77DA470E2C21127CFFA5B4A2D9E636A8/0/3139302e3132302e36342e302f32302d3234203d3e203238303235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.120.64.0/20
Signature Algorithm: sha256WithRSAEncryption
a2:e2:93:f7:45:9e:08:81:af:36:af:08:e1:79:02:cb:2c:8b:
34:99:4a:98:12:58:1f:fa:8d:f1:86:25:d0:0d:26:90:23:bd:
ea:cd:4c:9d:48:f9:1d:fb:18:49:9c:f1:87:5e:01:66:36:ec:
a5:46:ad:c6:c7:2f:3d:9e:29:84:83:73:b3:46:fc:0f:82:a3:
d4:76:89:c9:58:58:19:6a:b6:3c:0c:60:9e:65:61:bf:53:58:
3f:a6:a8:e1:d1:01:f2:95:8e:f2:e4:8e:41:e3:8d:32:37:01:
6f:80:09:25:3d:27:04:a5:b9:b6:d8:f7:4c:19:a6:4e:09:8f:
77:e2:35:09:4c:6d:32:79:c0:04:8a:05:14:d8:27:7e:8f:47:
84:94:81:9c:76:50:56:e0:ac:8f:6b:4b:1c:8a:fe:76:0f:72:
be:e4:a4:d4:2e:01:3b:67:78:43:5d:2c:57:4a:5c:94:05:25:
58:12:04:ab:14:1d:d9:54:f9:90:9f:0a:ce:2b:22:9e:fc:ef:
b1:d9:71:00:25:6e:9d:be:ff:49:a6:b6:11:47:78:89:3f:1b:
2d:1e:98:26:aa:b6:a2:73:65:2e:c3:31:e7:e8:97:c3:ca:2d:
58:6a:0a:03:29:54:24:ca:68:d5:7b:65:63:ac:19:ae:13:21:
9e:b0:28:ae
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUcWT+E//mEYTYtWufRKKgtO3Qt58wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjY0QjlDNDNFRUVCMTlBMEVEMTA1ODAzREM4RTk5NDND
RURBMzVBQTAeFw0yNTAyMDQxODEzMzFaFw0yNjAyMDMxODE4MzFaMDMxMTAvBgNV
BAMTKDZFNUVBRDM5MTFFRTk4OEU4MTNERjdBQTAxQzdGMTlFRjNGMTlDRDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpm78tp1343KcX4klwl2h7aqXO
vXxVm5NsQLUvggAtWv7iD1v9FzQ7hSxk0BfMtIMBYdybZo1lODt1BfzN+YGv+dUq
wT6dcsjKcIN17q9ztsXB1UaYpWaVR7WAmA3G5CEuR01CGMLaXs8rBDugXjAOTCpD
lmdqGCyYNK4asdp3tR5YmtQQ10ir/cF4N41XvEgOpyUm94Ncjhx8M9Plq/yDrvXj
DjgYJkeRMIR0MNhH7+kDkZZKUEk5JIhEizBdejmauceK1GyBPX6mq41LvNNqYmSr
xzbJjNjP9l4QCuk2UKQqyMe24hkEhA3j5TONV1wdo3wnP7uBDp9w02vH/2W3AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUbl6tORHumI6BPfeqAcfxnvPxnNIwHwYDVR0j
BBgwFoAU9kucQ+7rGaDtEFgD3I6ZQ87aNaowDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83Mzk2ODUxRDczQkVCRDNDODdGNTU1RTJGQUZGN0E1RTc3
REE0NzBFMkMyMTEyN0NGRkE1QjRBMkQ5RTYzNkE4LzAvRjY0QjlDNDNFRUVCMTlB
MEVEMTA1ODAzREM4RTk5NDNDRURBMzVBQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GNjRCOUM0M0VFRUIxOUEwRUQx
MDU4MDNEQzhFOTk0M0NFREEzNUFBLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNzM5Njg1MUQ3M0JFQkQzQzg3RjU1NUUyRkFGRjdBNUU3N0RBNDcwRTJD
MjExMjdDRkZBNUI0QTJEOUU2MzZBOC8wLzMxMzkzMDJlMzEzMjMwMmUzNjM0MmUz
MDJmMzIzMDJkMzIzNDIwM2QzZTIwMzIzODMwMzIzNS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBL54QDAN
BgkqhkiG9w0BAQsFAAOCAQEAouKT90WeCIGvNq8I4XkCyyyLNJlKmBJYH/qN8YYl
0A0mkCO96s1MnUj5HfsYSZzxh14BZjbspUatxscvPZ4phINzs0b8D4Kj1HaJyVhY
GWq2PAxgnmVhv1NYP6ao4dEB8pWO8uSOQeONMjcBb4AJJT0nBKW5ttj3TBmmTgmP
d+I1CUxtMnnABIoFFNgnfo9HhJSBnHZQVuCsj2tLHIr+dg9yvuSk1C4BO2d4Q10s
V0pclAUlWBIEqxQd2VT5kJ8KzisinvzvsdlxACVunb7/Saa2EUd4iT8bLR6YJqq2
onNlLsMx5+iXw8otWGoKAylUJMpo1XtlY6wZrhMhnrAorg==
-----END CERTIFICATE-----
Generated at Mon Apr 7 10:25:06 2025 by rpki-client