Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3133322e3135372e302e302f31362d3234203d3e203139393035.roa
File: 3133322e3135372e302e302f31362d3234203d3e203139393035.roa (raw, json)
Hash identifier: pjLDqHDqO67ab/NaWClllmjLo3EycwuYmkXv467IbYY=
Subject key identifier: 53:49:FC:7B:57:18:7B:5B:37:1B:92:1D:40:EE:6C:10:90:2D:97:B8
Certificate issuer: /CN=24D42265AC44C52C720364B7A5C0074DD2179046
Certificate serial: 0114FD414E7206C66315271B9E80678294D06593
Authority key identifier: 24:D4:22:65:AC:44:C5:2C:72:03:64:B7:A5:C0:07:4D:D2:17:90:46
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24D42265AC44C52C720364B7A5C0074DD2179046.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3133322e3135372e302e302f31362d3234203d3e203139393035.roa
Signing time: Tue 04 Feb 2025 18:18:04 +0000
ROA not before: Tue 04 Feb 2025 18:13:04 +0000
ROA not after: Tue 03 Feb 2026 18:18:04 +0000
asID: 19905
IP address blocks: 132.157.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:14:fd:41:4e:72:06:c6:63:15:27:1b:9e:80:67:82:94:d0:65:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24D42265AC44C52C720364B7A5C0074DD2179046
Validity
Not Before: Feb 4 18:13:04 2025 GMT
Not After : Feb 3 18:18:04 2026 GMT
Subject: CN=5349FC7B57187B5B371B921D40EE6C10902D97B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e4:0e:16:0b:92:05:cf:56:30:69:16:db:53:
80:03:f3:0a:ef:8c:17:01:a3:72:1a:2d:a4:fe:ec:
04:df:b3:e9:2f:db:3f:09:40:c5:0a:1a:d3:7b:a0:
f9:15:e2:09:0b:f8:24:76:9e:fa:0a:a9:d0:45:49:
4c:3d:c2:21:4c:12:27:13:62:ab:98:3d:00:1f:10:
6a:4e:5f:33:80:88:5e:9e:77:bb:2c:ac:f8:c3:68:
bb:80:a8:d8:90:32:bf:7c:77:d1:55:6f:23:2c:4f:
6e:e1:2a:57:de:5d:3d:15:48:ad:e6:ff:01:63:6f:
cd:ce:e5:17:cb:02:e0:ea:e6:3a:bc:0b:32:de:92:
fb:42:19:a4:93:93:f9:4b:0e:74:78:53:71:02:d5:
ae:28:fc:15:23:63:6d:89:0d:24:7c:a6:ba:fb:b1:
79:f7:90:29:f6:37:f9:39:dc:23:23:a7:96:34:1a:
65:c2:5e:33:28:d7:97:56:e1:0a:07:66:b5:99:27:
36:32:31:f3:69:b7:cd:be:a0:86:c5:6d:78:59:95:
93:ec:1e:25:9b:28:50:74:df:dc:37:f6:65:6c:a1:
70:2f:08:bc:d0:a0:b1:8c:f1:7b:99:b7:39:1d:b7:
a9:eb:8e:7b:b8:e7:55:12:8b:00:29:a7:52:3c:fd:
2b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:49:FC:7B:57:18:7B:5B:37:1B:92:1D:40:EE:6C:10:90:2D:97:B8
X509v3 Authority Key Identifier:
keyid:24:D4:22:65:AC:44:C5:2C:72:03:64:B7:A5:C0:07:4D:D2:17:90:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/24D42265AC44C52C720364B7A5C0074DD2179046.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24D42265AC44C52C720364B7A5C0074DD2179046.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3133322e3135372e302e302f31362d3234203d3e203139393035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a0:e4:26:92:81:69:b8:84:52:22:ff:60:53:57:84:d3:ef:43:
6d:88:6f:e8:4b:1a:d5:3c:6a:d1:28:89:4d:15:3f:84:0c:a9:
1d:94:96:1b:fa:7a:21:7c:7c:50:00:1d:09:81:66:7e:2d:14:
d3:1d:ab:60:c8:0d:21:cf:32:65:c5:85:9d:34:48:c9:94:3f:
71:e3:66:ee:ac:02:81:58:63:db:52:8c:76:67:bb:bf:de:b9:
2a:23:5a:b3:d5:d6:14:89:e2:bb:30:de:a5:01:5a:d5:46:c1:
9b:da:14:da:40:0d:4f:6c:5f:55:4a:9e:e0:af:b3:c7:31:93:
68:a4:96:6a:40:1c:91:61:8f:73:4c:6e:72:fb:52:9e:13:48:
02:44:bb:06:6c:4f:80:06:6d:e5:22:63:2b:7c:7a:9f:3d:7b:
6a:33:2d:f9:ba:62:70:ac:c4:9f:86:8c:84:69:64:37:24:e5:
4c:ad:56:a6:0c:85:3d:19:10:a9:f6:10:ed:1b:19:6e:29:5a:
d8:21:a4:22:3b:66:23:ea:62:bc:c1:78:a9:00:5d:8c:e0:f5:
e5:a4:fd:98:7a:d4:2f:f7:41:62:f9:53:9d:52:36:8b:79:56:
91:09:6f:4a:b0:67:73:bd:42:5a:6c:82:18:9b:6d:8a:ce:83:
e2:08:e8:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:14:30 2025 by rpki-client