Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7BA04F3BF61DC0454379E83625D7693221D247D7E77E1CEB2F9E7A49974AB707/0/AS12956.roa
File: AS12956.roa (raw, json)
Hash identifier: aEZQshqhwvvdXh3mmH2TMuIhlcrF0IwGl068kC4NuiM=
Subject key identifier: 6A:6B:79:E2:A9:27:24:72:62:5A:77:E6:16:BC:E4:2C:07:86:45:E2
Certificate issuer: /CN=DB06236B96EE00934FCD39A560E5BC04EB7B9EA4
Certificate serial: 05EA5DBE0654220E4A60602A26A3076B949F9FF3
Authority key identifier: DB:06:23:6B:96:EE:00:93:4F:CD:39:A5:60:E5:BC:04:EB:7B:9E:A4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DB06236B96EE00934FCD39A560E5BC04EB7B9EA4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7BA04F3BF61DC0454379E83625D7693221D247D7E77E1CEB2F9E7A49974AB707/0/AS12956.roa
Signing time: Tue 04 Feb 2025 18:19:58 +0000
ROA not before: Tue 04 Feb 2025 18:14:58 +0000
ROA not after: Tue 03 Feb 2026 18:19:58 +0000
asID: 12956
IP address blocks: 190.66.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:ea:5d:be:06:54:22:0e:4a:60:60:2a:26:a3:07:6b:94:9f:9f:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DB06236B96EE00934FCD39A560E5BC04EB7B9EA4
Validity
Not Before: Feb 4 18:14:58 2025 GMT
Not After : Feb 3 18:19:58 2026 GMT
Subject: CN=6A6B79E2A9272472625A77E616BCE42C078645E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:22:07:5c:44:b0:7d:26:b2:68:b2:6f:80:e7:
f8:8d:27:f3:78:da:5a:18:2a:b0:1b:18:4d:f1:df:
a8:71:a2:12:6a:64:1c:09:64:4a:c2:dd:9e:d0:7f:
f8:a6:c4:32:7c:a1:d2:f3:b8:64:44:46:f1:71:c3:
dc:7a:d5:ed:43:f2:93:c5:ad:75:44:9e:91:ee:1d:
9c:46:8b:70:ad:ab:64:bd:a4:9e:2d:b3:62:93:4d:
cc:20:27:58:e5:9b:f4:97:6b:33:f4:f6:68:88:e2:
03:b6:6f:fe:df:5e:fa:cd:90:b3:25:bc:84:e2:4c:
58:ae:87:01:bb:01:57:10:f8:49:84:5a:42:fd:fa:
dd:f2:f1:fa:62:34:f7:43:23:a2:f2:09:e2:34:f8:
31:4b:7a:da:15:e7:74:a9:5b:9b:d8:0b:35:f8:9d:
2c:46:65:00:87:95:10:f8:cb:e3:70:73:05:00:ba:
a5:53:6f:a9:c2:ff:5e:9b:35:87:d1:2a:05:e3:80:
45:f6:a2:77:47:d4:40:0b:c5:3d:8c:72:f2:ca:5d:
5c:65:6a:6f:fe:cb:33:68:2a:3e:e9:20:de:a6:58:
bc:a0:1f:3a:51:4a:7b:af:34:fc:07:85:72:f6:e5:
95:ab:63:33:d1:0c:47:e4:65:97:c9:0c:6b:2b:6b:
fb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:6B:79:E2:A9:27:24:72:62:5A:77:E6:16:BC:E4:2C:07:86:45:E2
X509v3 Authority Key Identifier:
keyid:DB:06:23:6B:96:EE:00:93:4F:CD:39:A5:60:E5:BC:04:EB:7B:9E:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7BA04F3BF61DC0454379E83625D7693221D247D7E77E1CEB2F9E7A49974AB707/0/DB06236B96EE00934FCD39A560E5BC04EB7B9EA4.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DB06236B96EE00934FCD39A560E5BC04EB7B9EA4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7BA04F3BF61DC0454379E83625D7693221D247D7E77E1CEB2F9E7A49974AB707/0/AS12956.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.66.4.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:f2:85:ff:32:41:3c:58:65:ed:64:b9:92:29:f4:da:2e:7c:
03:1d:db:8c:24:1b:f9:59:d2:59:1b:55:c5:04:5a:c7:46:05:
ed:28:b3:da:4d:1a:5c:b4:43:fd:71:15:88:c2:be:0a:55:50:
c8:a3:d4:3c:80:83:63:d0:fc:28:ed:9d:b8:d4:b0:d9:d2:28:
d1:6b:b6:f7:fb:7f:5f:e2:1b:c4:10:87:67:89:eb:5e:37:9a:
8e:b1:56:2d:7c:ce:0f:05:47:94:66:f3:15:0e:11:2e:90:2a:
a9:94:3d:24:5a:52:f7:f9:84:fe:58:80:e2:a8:ef:53:74:37:
66:27:47:10:73:bb:4b:98:ca:f2:5d:27:c2:14:4f:3b:e3:9a:
2f:30:74:66:52:0b:70:51:8e:05:0e:37:cc:4d:c0:84:6f:25:
1c:d2:6f:38:7a:0d:0a:e4:33:12:84:5c:8f:0c:79:e5:54:89:
80:c3:57:51:8b:d9:3d:0c:2c:eb:34:83:45:38:73:45:04:57:
37:55:b6:92:e9:06:dc:91:f4:ae:87:03:1e:b0:5d:cd:9e:55:
d0:dc:fc:3c:b7:ef:23:07:fa:f2:a7:82:c3:41:d0:94:e0:0f:
3c:47:22:83:73:15:c8:61:14:80:69:23:27:27:37:cb:5b:2d:
cf:38:75:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:52 2025 by rpki-client