Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8417D57E06C4F99B8AA5C98B4406E320D9C0C4A511ACC1C930FBDE8341B2DF8E/0/3139302e3131322e3231362e302f32322d3234203d3e203532343635.roa
File: 3139302e3131322e3231362e302f32322d3234203d3e203532343635.roa (raw, json)
Hash identifier: 0ylMgPTuLg8S37iEPgZz2spcP7mtIZpftZmicNcZLU0=
Subject key identifier: ED:BE:01:29:D1:7D:02:6D:BA:24:80:9B:34:68:2D:93:19:FA:B5:9D
Certificate issuer: /CN=F11671E8AD1F6827AB7D45E8CB857EE1C49499AF
Certificate serial: 5A11222B7CBD3F670EE12F2DCAD877F717628255
Authority key identifier: F1:16:71:E8:AD:1F:68:27:AB:7D:45:E8:CB:85:7E:E1:C4:94:99:AF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F11671E8AD1F6827AB7D45E8CB857EE1C49499AF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8417D57E06C4F99B8AA5C98B4406E320D9C0C4A511ACC1C930FBDE8341B2DF8E/0/3139302e3131322e3231362e302f32322d3234203d3e203532343635.roa
Signing time: Tue 04 Feb 2025 18:46:18 +0000
ROA not before: Tue 04 Feb 2025 18:41:18 +0000
ROA not after: Tue 03 Feb 2026 18:46:18 +0000
asID: 52465
IP address blocks: 190.112.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:11:22:2b:7c:bd:3f:67:0e:e1:2f:2d:ca:d8:77:f7:17:62:82:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F11671E8AD1F6827AB7D45E8CB857EE1C49499AF
Validity
Not Before: Feb 4 18:41:18 2025 GMT
Not After : Feb 3 18:46:18 2026 GMT
Subject: CN=EDBE0129D17D026DBA24809B34682D9319FAB59D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:a4:29:c3:08:3f:a5:dc:ad:4d:43:ff:26:d5:
bc:fd:f1:05:2f:90:ba:7f:e0:4d:4c:bf:5d:b7:e7:
27:fc:e8:2c:96:19:15:df:1b:aa:ee:a3:16:f2:7a:
be:3d:d3:36:94:51:1c:8d:e6:7f:f7:7f:cc:3e:d0:
d8:c4:e9:25:5a:55:ff:17:75:59:eb:ff:42:73:0d:
7e:5b:d5:73:1f:25:20:16:b5:76:18:80:d9:75:2d:
c9:5f:3e:0a:e3:42:23:1d:08:3c:97:6b:a4:06:ee:
f6:7e:36:f6:a0:c3:b7:3e:fd:24:26:da:67:16:d2:
00:25:cc:f9:97:8a:32:1f:6e:1b:43:4f:c4:db:2d:
32:24:66:74:b2:4c:f4:aa:e9:98:d6:a5:a6:f5:8c:
02:3b:41:e3:23:da:24:a3:00:4a:07:52:74:58:8e:
cd:8a:1e:52:c6:72:43:a9:d4:98:a1:6b:71:89:5b:
f0:6f:d5:f2:4e:8c:76:c8:99:39:f4:02:3e:b1:c7:
49:bc:2f:77:b7:60:4d:a7:8b:e6:ca:29:14:d1:d3:
3a:a9:4c:3e:2b:32:f7:71:49:b9:6f:2d:8d:10:a2:
3c:ea:5a:59:ce:81:ec:af:ed:a1:d8:92:d9:ed:ac:
b5:9e:3e:fd:0c:71:a9:ab:ac:87:44:21:f7:c0:a0:
56:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:BE:01:29:D1:7D:02:6D:BA:24:80:9B:34:68:2D:93:19:FA:B5:9D
X509v3 Authority Key Identifier:
keyid:F1:16:71:E8:AD:1F:68:27:AB:7D:45:E8:CB:85:7E:E1:C4:94:99:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8417D57E06C4F99B8AA5C98B4406E320D9C0C4A511ACC1C930FBDE8341B2DF8E/0/F11671E8AD1F6827AB7D45E8CB857EE1C49499AF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F11671E8AD1F6827AB7D45E8CB857EE1C49499AF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8417D57E06C4F99B8AA5C98B4406E320D9C0C4A511ACC1C930FBDE8341B2DF8E/0/3139302e3131322e3231362e302f32322d3234203d3e203532343635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.112.216.0/22
Signature Algorithm: sha256WithRSAEncryption
72:d4:34:ba:2e:0b:3d:36:d0:6d:a5:cf:61:e6:18:d7:31:08:
b5:2b:02:61:c8:a1:48:26:82:7e:50:cd:80:c2:b6:6d:12:91:
29:ee:8f:0e:7f:79:9c:91:c0:78:63:9b:22:31:11:a6:e1:06:
a3:49:e9:bb:7f:6a:84:55:66:53:c4:19:e6:34:59:64:3f:46:
ab:20:ed:11:54:bf:4d:c2:fb:b1:c2:69:33:9c:56:db:27:20:
cf:80:92:7b:cf:2b:17:c8:f5:1f:bd:d9:3f:38:54:6c:ae:bc:
99:81:a2:d4:cf:39:bf:a9:94:18:2c:fe:c9:65:a4:88:9e:87:
a8:3e:11:57:88:44:d4:0d:c2:db:26:53:2f:5f:0c:59:b8:e9:
b5:f7:59:b4:d0:c9:ea:fb:71:17:e0:9e:64:2b:89:1f:0c:2e:
f4:22:92:b5:b5:55:43:3a:27:1c:ef:a4:73:3a:c6:0e:a3:9c:
55:c2:7d:1a:cb:72:6d:cf:ae:fe:21:87:0f:03:c3:1e:d4:0c:
5e:29:5a:1e:51:65:6f:88:ea:37:c7:ba:a0:7a:c8:b0:a2:dc:
75:16:ff:8a:04:54:ef:5c:e1:45:fe:96:b1:f5:4b:d2:01:be:
f9:e2:ac:be:20:c1:72:a4:a9:c3:cd:40:25:d9:41:6e:b0:9b:
0f:93:05:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:10 2025 by rpki-client