Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/849566C79F323F01399D1376D62003D03DEA34B0BD6A2FD5CBA74393F0E9B5D6/0/3137392e36332e32302e302f32322d3234203d3e203237393437.roa
File: 3137392e36332e32302e302f32322d3234203d3e203237393437.roa (raw, json)
Hash identifier: r8mhON/ik4RcxEItNGhx4GUlvoE0NtntOk1Fhwp0Lv8=
Subject key identifier: 39:37:7E:6F:9B:6D:8C:4F:20:C6:F5:3A:1D:54:4C:11:B7:55:77:41
Certificate issuer: /CN=13F664EFE791C2FAE7E4B151E394302E508408AF
Certificate serial: 55F24686164651312E6A2FA0A7A44D5F039669B2
Authority key identifier: 13:F6:64:EF:E7:91:C2:FA:E7:E4:B1:51:E3:94:30:2E:50:84:08:AF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/13F664EFE791C2FAE7E4B151E394302E508408AF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/849566C79F323F01399D1376D62003D03DEA34B0BD6A2FD5CBA74393F0E9B5D6/0/3137392e36332e32302e302f32322d3234203d3e203237393437.roa
Signing time: Tue 04 Feb 2025 18:41:08 +0000
ROA not before: Tue 04 Feb 2025 18:36:08 +0000
ROA not after: Tue 03 Feb 2026 18:41:08 +0000
asID: 27947
IP address blocks: 179.63.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:f2:46:86:16:46:51:31:2e:6a:2f:a0:a7:a4:4d:5f:03:96:69:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13F664EFE791C2FAE7E4B151E394302E508408AF
Validity
Not Before: Feb 4 18:36:08 2025 GMT
Not After : Feb 3 18:41:08 2026 GMT
Subject: CN=39377E6F9B6D8C4F20C6F53A1D544C11B7557741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:ca:97:ed:84:de:3d:3e:c4:36:6a:89:e0:2e:
88:f1:f2:24:f2:b4:30:e2:a4:d6:02:95:b1:a8:02:
1e:f3:39:36:83:6b:81:63:e5:41:b7:82:68:9f:1e:
43:4f:29:98:a0:6d:67:ea:26:fe:20:24:16:2e:02:
26:46:bc:bf:7c:d6:c7:58:40:24:89:7e:bf:d8:90:
1b:f8:8a:ac:6f:08:4e:e3:73:65:48:75:0b:77:0c:
e4:5c:8c:c0:0b:c7:19:4f:a3:e0:d2:d6:36:32:c4:
e0:ac:0d:b8:b9:22:7a:8a:ea:04:0b:cf:91:19:28:
df:45:21:34:8e:07:ab:99:58:7c:c0:bb:64:0d:ac:
c8:ff:76:88:e9:44:b8:08:1d:79:c8:fe:47:aa:c7:
ae:b4:41:16:3b:4f:64:d1:0b:00:3b:af:8b:6a:92:
53:8e:7e:bd:71:55:00:a1:96:38:c3:19:7b:d2:49:
c5:5d:ee:60:fa:9f:34:dc:ef:23:fd:ed:3d:d9:36:
05:33:cb:b8:56:9e:bd:e2:7c:22:90:12:33:ef:1c:
df:9f:24:02:69:a1:d7:79:74:91:91:5f:aa:7f:77:
6d:19:31:49:8c:58:ff:98:a2:9e:bc:e6:9e:22:e9:
18:f3:9a:6b:ae:ab:9f:03:35:3d:dd:1d:a6:a7:d5:
2e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:37:7E:6F:9B:6D:8C:4F:20:C6:F5:3A:1D:54:4C:11:B7:55:77:41
X509v3 Authority Key Identifier:
keyid:13:F6:64:EF:E7:91:C2:FA:E7:E4:B1:51:E3:94:30:2E:50:84:08:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/849566C79F323F01399D1376D62003D03DEA34B0BD6A2FD5CBA74393F0E9B5D6/0/13F664EFE791C2FAE7E4B151E394302E508408AF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/13F664EFE791C2FAE7E4B151E394302E508408AF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/849566C79F323F01399D1376D62003D03DEA34B0BD6A2FD5CBA74393F0E9B5D6/0/3137392e36332e32302e302f32322d3234203d3e203237393437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.63.20.0/22
Signature Algorithm: sha256WithRSAEncryption
33:5f:16:80:5c:4d:a8:ca:23:77:fd:8e:ea:7d:1f:dc:e4:cc:
18:d3:c3:46:3d:8a:3a:2d:e2:79:aa:3f:e9:16:10:1e:43:45:
1c:6b:4b:18:e8:a2:bf:22:33:91:8d:7f:00:12:1c:16:73:ae:
c8:51:cb:15:ad:7a:0f:80:89:5a:6e:91:4a:8e:db:1c:27:19:
e2:0f:71:e3:92:87:0d:f6:e7:69:dd:ee:36:9b:6c:ab:d5:65:
18:46:79:e1:ba:61:11:06:30:ab:1f:eb:8f:cb:b5:c0:b4:43:
ac:45:25:d9:25:14:a4:da:4a:07:7b:bc:6d:6c:cb:b1:c0:50:
7f:6f:76:3f:a5:95:99:ce:23:5d:a2:50:60:6f:50:b6:55:6a:
36:48:60:31:f9:df:67:60:c4:14:7d:1e:b1:f7:84:6d:bf:85:
72:4e:e5:3d:1c:ef:e8:3e:8d:f2:59:d2:1a:1a:ab:8f:a2:0c:
8e:61:7f:76:2b:fe:22:ce:31:8e:61:30:1a:b6:fb:ee:70:a4:
99:ac:90:9a:38:6d:86:d3:37:2c:82:d3:63:bf:05:41:ca:68:
9b:30:bb:db:91:9d:8d:a3:7c:1f:1e:f5:af:b6:39:dc:ba:8a:
d2:c7:1d:e2:7b:34:c2:20:dc:84:9f:ce:ee:ab:cf:d5:31:ff:
c2:72:4d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:05:20 2025 by rpki-client