Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8A1C9722391B934E58B785E7CB43CE4B3F3556686D396FBA61FE06EC4CCD1E4C/0/3137392e302e32302e302f32322d3330203d3e203532343730.roa
File: 3137392e302e32302e302f32322d3330203d3e203532343730.roa (raw, json)
Hash identifier: 8rUcU657m71mniNtmrWC6Tz2lvD/AWBUWeAsHChNH+0=
Subject key identifier: D5:8A:33:1F:14:67:EA:ED:35:96:DA:B8:2F:78:49:24:E2:1B:79:8B
Certificate issuer: /CN=991D588A86F87B224C9CDAEAF9C96C6555E8038E
Certificate serial: 12F4550256170CC496938973A62815855CF18032
Authority key identifier: 99:1D:58:8A:86:F8:7B:22:4C:9C:DA:EA:F9:C9:6C:65:55:E8:03:8E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/991D588A86F87B224C9CDAEAF9C96C6555E8038E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8A1C9722391B934E58B785E7CB43CE4B3F3556686D396FBA61FE06EC4CCD1E4C/0/3137392e302e32302e302f32322d3330203d3e203532343730.roa
Signing time: Tue 04 Feb 2025 18:20:58 +0000
ROA not before: Tue 04 Feb 2025 18:15:58 +0000
ROA not after: Tue 03 Feb 2026 18:20:58 +0000
asID: 52470
IP address blocks: 179.0.20.0/22 maxlen: 30
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:f4:55:02:56:17:0c:c4:96:93:89:73:a6:28:15:85:5c:f1:80:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991D588A86F87B224C9CDAEAF9C96C6555E8038E
Validity
Not Before: Feb 4 18:15:58 2025 GMT
Not After : Feb 3 18:20:58 2026 GMT
Subject: CN=D58A331F1467EAED3596DAB82F784924E21B798B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:46:04:75:9c:c1:3a:3c:df:85:c5:c7:03:9a:
a0:a2:b5:72:a6:f0:81:91:c3:4b:40:3f:02:25:d1:
27:48:2c:31:4b:83:f8:87:d3:cc:9b:ae:70:4e:94:
32:83:68:fc:9b:10:00:13:37:c8:fc:6c:10:00:25:
51:6c:be:6c:e4:17:c0:91:0a:6a:ed:5a:14:2a:90:
2f:7e:19:65:95:65:c7:32:dd:68:f2:a3:84:b8:62:
f9:ac:95:e2:d6:8f:be:7b:23:5e:60:bb:e2:9d:de:
28:b4:3c:44:b8:97:b6:3e:38:38:09:43:08:a4:0b:
b2:42:d0:56:ab:f1:4a:93:c8:82:b8:56:2b:67:5d:
b8:88:27:49:7d:81:96:4a:36:37:99:ae:26:36:fc:
9e:e1:08:b6:d0:2c:02:64:24:e0:a7:d7:11:7e:26:
be:88:50:05:84:04:ce:03:2f:74:ad:3c:d3:8c:1e:
f6:88:ba:28:b3:39:35:c5:87:04:68:cf:da:b3:f5:
72:ee:c5:57:ba:f1:2a:af:3a:09:78:3e:e8:12:a5:
32:5b:1e:4f:2b:db:46:81:71:86:dc:a4:de:4f:f2:
85:d3:dd:cf:81:9b:35:8d:e4:5a:4f:a9:98:62:c9:
34:90:29:71:8f:dd:e2:60:02:b1:f7:1a:bc:fe:51:
59:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8A:33:1F:14:67:EA:ED:35:96:DA:B8:2F:78:49:24:E2:1B:79:8B
X509v3 Authority Key Identifier:
keyid:99:1D:58:8A:86:F8:7B:22:4C:9C:DA:EA:F9:C9:6C:65:55:E8:03:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8A1C9722391B934E58B785E7CB43CE4B3F3556686D396FBA61FE06EC4CCD1E4C/0/991D588A86F87B224C9CDAEAF9C96C6555E8038E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/991D588A86F87B224C9CDAEAF9C96C6555E8038E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8A1C9722391B934E58B785E7CB43CE4B3F3556686D396FBA61FE06EC4CCD1E4C/0/3137392e302e32302e302f32322d3330203d3e203532343730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.0.20.0/22
Signature Algorithm: sha256WithRSAEncryption
d5:65:6a:3d:f4:4d:d6:c1:2e:ba:0e:87:40:0f:cc:22:b3:99:
b6:c8:be:d3:ef:ac:ea:05:27:45:d8:05:5e:cb:2e:f2:9d:16:
ab:fb:00:b8:b5:0c:77:a1:be:fc:94:de:7e:16:ac:37:e5:96:
e7:7e:39:7f:30:09:ec:05:76:a6:e0:58:9b:bb:74:dc:e9:27:
b0:37:2d:d1:68:6b:a7:97:78:3d:c8:2a:06:6a:f3:66:a5:9c:
98:ab:0c:d6:67:a0:1d:88:c6:30:f5:7e:5d:8b:6e:6b:ca:22:
b2:d2:1d:00:4e:76:12:fb:cf:51:10:fb:e2:fd:79:82:e2:73:
c9:40:3a:c5:74:b9:27:2c:df:ab:93:e5:18:e0:ee:97:a3:80:
fb:54:42:86:0c:4c:17:ba:a8:b1:05:b1:08:ac:c0:47:57:13:
27:e8:8b:b8:0a:5c:2f:03:d8:bf:bd:8c:d0:37:ce:b2:e2:15:
6f:4d:1c:42:d3:22:f5:39:77:88:3d:b9:02:ab:71:51:79:36:
ee:93:96:7a:71:8a:c8:8e:0c:a5:26:9b:93:e2:64:32:89:ad:
d7:c7:67:81:fb:40:21:dc:6a:1a:05:4e:4f:1f:f8:0d:8b:84:
11:60:e8:27:a5:1d:36:71:c9:40:21:4f:67:32:1e:5a:4f:e8:
07:74:66:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:07:57 2025 by rpki-client