Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138362e3138392e3232302e302f32322d3234203d3e203233323433.roa
File: 3138362e3138392e3232302e302f32322d3234203d3e203233323433.roa (raw, json)
Hash identifier: 0qFcJULuqo+qF60OAYMEtV4Qn3THidyeagZTeE4xpcY=
Subject key identifier: 44:19:FD:92:39:62:5A:FA:E4:4D:25:26:52:FD:96:43:32:8E:DA:F0
Certificate issuer: /CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Certificate serial: 6EF7EA042948289BAE21FB5D548E159B347C686E
Authority key identifier: 8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138362e3138392e3232302e302f32322d3234203d3e203233323433.roa
Signing time: Tue 04 Feb 2025 18:25:47 +0000
ROA not before: Tue 04 Feb 2025 18:20:47 +0000
ROA not after: Tue 03 Feb 2026 18:25:47 +0000
asID: 23243
IP address blocks: 186.189.220.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:f7:ea:04:29:48:28:9b:ae:21:fb:5d:54:8e:15:9b:34:7c:68:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Validity
Not Before: Feb 4 18:20:47 2025 GMT
Not After : Feb 3 18:25:47 2026 GMT
Subject: CN=4419FD9239625AFAE44D252652FD9643328EDAF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b5:26:0a:e7:21:84:ea:7b:14:9f:d9:fb:f8:
64:c1:3d:4b:97:6f:40:ba:ea:5b:46:37:88:a8:31:
ba:14:39:b8:87:9f:47:b8:86:5c:00:3e:d6:ad:42:
4d:0b:33:f3:d5:bb:df:57:c8:0b:14:fd:a6:89:dc:
94:3c:a8:cd:63:f3:5b:ff:41:a0:09:f6:35:53:f5:
90:7e:e2:13:03:de:87:bd:d0:00:c5:33:55:45:6f:
9c:88:60:a8:c0:a8:34:38:1e:40:29:f3:27:3c:ac:
6f:34:2b:a0:de:07:44:77:e4:62:7b:ea:41:a7:3d:
4a:65:ae:5d:ec:54:47:ac:d3:1a:6b:55:4b:17:04:
d7:da:3b:5d:ee:7f:2c:0d:d9:c1:fe:03:79:ff:4c:
27:4f:51:92:c6:e5:29:00:8d:ba:27:c8:2f:ea:87:
29:2f:7e:e8:e1:d5:65:a8:38:cd:bc:12:ac:74:fb:
b8:09:7e:93:8a:6f:fc:50:fe:a1:64:3f:5e:9e:0a:
1c:1a:80:32:8b:d6:82:99:cc:d0:bc:74:8f:df:1b:
30:e0:8a:1b:d4:3b:15:27:b0:d1:4c:34:25:a7:07:
07:24:7e:3b:d5:fb:a7:5b:2b:69:8f:47:8a:94:c4:
43:df:b4:00:e5:77:c9:a4:c7:38:43:89:05:7c:73:
04:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:19:FD:92:39:62:5A:FA:E4:4D:25:26:52:FD:96:43:32:8E:DA:F0
X509v3 Authority Key Identifier:
keyid:8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138362e3138392e3232302e302f32322d3234203d3e203233323433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.189.220.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:19:88:ac:dc:18:03:83:7c:fa:b0:0e:61:26:6a:ba:9a:5e:
70:78:96:34:56:67:7b:54:04:4e:08:ba:51:da:b5:62:c7:db:
40:81:40:0b:b7:65:7c:4f:14:8c:7d:78:5b:0e:8b:9e:ca:32:
4b:c9:f1:83:f9:99:a1:49:e0:39:c3:0f:3c:e4:ba:12:57:9f:
37:cc:d1:c0:9c:c0:36:e3:f3:00:0d:14:7c:76:04:03:5b:cf:
34:14:c4:b7:91:99:c0:74:2d:fa:9c:ab:9c:99:b9:88:42:72:
c2:f6:1d:da:75:41:1a:e6:18:62:b2:99:64:b7:0b:9c:d8:e6:
d3:c6:d2:dd:c3:1b:96:60:56:8e:f9:c3:b8:b6:e1:dc:c3:a6:
29:70:75:e4:ee:11:76:da:ff:1b:34:ea:9f:2f:a6:d5:92:45:
a8:df:8d:6a:8a:79:9a:81:fb:ed:16:be:6a:b8:32:e9:79:67:
a2:5e:d5:a2:3e:0a:a8:27:68:54:f3:9d:5f:52:7b:77:a7:bb:
32:0a:b9:52:85:d1:e0:34:b1:ad:09:82:23:bc:89:7f:f3:3f:
3f:fe:10:ee:c1:d1:90:c4:8f:bf:a7:cd:79:09:d2:cc:f8:d4:
73:25:4b:71:84:f2:50:57:55:f6:d9:ba:6c:01:ef:24:25:66:
ea:d0:ff:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:58 2025 by rpki-client