Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/3133312e3139362e33322e302f32322d3234203d3e203238313130.roa
File: 3133312e3139362e33322e302f32322d3234203d3e203238313130.roa (raw, json)
Hash identifier: 98PZqzbYAN3oLPENZfkQD6IHiwwIJ6Szjm5vm2H8bRY=
Subject key identifier: 07:65:98:4D:52:CC:CA:38:44:B9:3F:BD:49:13:03:00:B5:17:DC:23
Certificate issuer: /CN=858889372446EF678E35E9D349C0785A81B8FBB7
Certificate serial: 5F53DFB6CE525525145502347837D9998176794D
Authority key identifier: 85:88:89:37:24:46:EF:67:8E:35:E9:D3:49:C0:78:5A:81:B8:FB:B7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/858889372446EF678E35E9D349C0785A81B8FBB7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/3133312e3139362e33322e302f32322d3234203d3e203238313130.roa
Signing time: Tue 04 Feb 2025 18:41:15 +0000
ROA not before: Tue 04 Feb 2025 18:36:15 +0000
ROA not after: Tue 03 Feb 2026 18:41:15 +0000
asID: 28110
IP address blocks: 131.196.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:53:df:b6:ce:52:55:25:14:55:02:34:78:37:d9:99:81:76:79:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=858889372446EF678E35E9D349C0785A81B8FBB7
Validity
Not Before: Feb 4 18:36:15 2025 GMT
Not After : Feb 3 18:41:15 2026 GMT
Subject: CN=0765984D52CCCA3844B93FBD49130300B517DC23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:91:b6:ac:59:6d:cf:17:2f:c8:2a:54:83:e9:
7d:97:04:ab:89:b1:a8:48:fb:ef:ff:8b:6f:f4:74:
c3:61:33:84:ad:73:4c:2b:84:f1:fb:81:f4:72:1d:
6f:4a:cb:76:fb:98:eb:2b:dd:e8:36:1d:8f:90:4e:
b4:70:49:09:72:f2:d4:8e:9d:84:1c:86:51:17:07:
cc:7e:0e:32:61:74:ba:bf:55:29:d4:fd:33:dc:a2:
56:fe:f4:5f:51:d1:38:24:df:3a:98:4a:45:d6:2f:
2b:ac:6c:ea:c4:74:3d:75:34:e8:b0:ee:16:5e:53:
cc:d4:3f:0a:ed:b3:2d:bb:9e:a9:0a:75:5f:57:18:
f1:dd:5b:65:a8:26:68:21:56:23:c7:f8:bd:5b:1a:
16:ef:17:15:01:4e:80:83:8b:aa:5a:39:c9:87:8f:
44:0c:ee:57:7f:85:88:fc:d2:b9:e8:d7:73:b2:f5:
2f:41:56:d5:55:ef:c1:fb:41:52:aa:98:72:49:86:
80:ca:15:49:69:2e:a0:24:37:cc:0e:7f:19:8e:29:
e0:11:a4:d9:86:b7:97:89:58:01:c9:97:4d:dc:28:
56:6e:f2:54:76:85:6e:16:c7:99:22:ff:2a:6b:d7:
01:cd:7d:96:7d:04:0e:6f:0f:e4:6f:b3:84:ed:51:
be:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:65:98:4D:52:CC:CA:38:44:B9:3F:BD:49:13:03:00:B5:17:DC:23
X509v3 Authority Key Identifier:
keyid:85:88:89:37:24:46:EF:67:8E:35:E9:D3:49:C0:78:5A:81:B8:FB:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/858889372446EF678E35E9D349C0785A81B8FBB7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/858889372446EF678E35E9D349C0785A81B8FBB7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/3133312e3139362e33322e302f32322d3234203d3e203238313130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.196.32.0/22
Signature Algorithm: sha256WithRSAEncryption
48:d9:18:61:e3:ae:b1:3c:82:04:0a:59:bb:c1:d2:a2:23:70:
ea:99:c8:c5:ea:55:d8:10:79:a9:ae:cf:ae:1c:c8:21:d7:4a:
7a:b7:67:1e:7c:4a:d7:e7:28:3d:2d:ca:11:84:9e:36:2d:b5:
fc:f7:12:5e:15:65:80:5b:4e:8b:63:f2:91:01:08:de:27:64:
3a:67:92:c4:b1:43:db:e1:b8:59:72:c1:66:1a:31:90:bc:b8:
72:68:c8:f2:8e:eb:73:f7:d9:df:60:df:fa:fc:c1:d7:24:46:
f5:63:f5:64:44:45:b2:9e:fa:ae:96:2b:c0:bf:6a:ca:84:d8:
db:54:b9:11:fe:86:49:6a:24:f1:72:87:ce:af:4c:94:73:5d:
1f:9e:98:30:d2:a6:f4:e9:97:37:34:eb:73:07:a9:55:b6:73:
ca:f5:0d:ba:7d:43:52:9f:e7:9f:0a:d7:4b:f1:8c:32:dd:4b:
7c:be:7f:3b:67:9f:00:a7:8e:10:cd:17:e3:df:5c:a9:18:af:
c4:9f:7f:69:41:54:f6:fd:2c:b2:51:0c:c3:fc:00:3f:10:18:
f6:19:1a:5c:b2:e7:2b:15:58:7a:ac:f2:c7:30:72:b7:17:54:
64:81:51:53:85:51:d7:20:f0:8a:16:3c:82:f1:1e:4d:2c:f9:
19:52:2f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:17:30 2025 by rpki-client