Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3139302e3231312e36382e302f32322d3232203d3e203532333238.roa
File: 3139302e3231312e36382e302f32322d3232203d3e203532333238.roa (raw, json)
Hash identifier: ng4+KKyZxyRzS5luuK2Djvnu2mxSbzQuuauZBdPo9gI=
Subject key identifier: 33:87:AE:1E:B7:FE:89:B5:B9:21:F5:D7:4E:6A:5E:0F:08:25:F3:A4
Certificate issuer: /CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Certificate serial: 5E2F473CCA21F88B3FA375A6C222559F8106BE94
Authority key identifier: D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3139302e3231312e36382e302f32322d3232203d3e203532333238.roa
Signing time: Tue 04 Feb 2025 18:16:24 +0000
ROA not before: Tue 04 Feb 2025 18:11:24 +0000
ROA not after: Tue 03 Feb 2026 18:16:24 +0000
asID: 52328
IP address blocks: 190.211.68.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:2f:47:3c:ca:21:f8:8b:3f:a3:75:a6:c2:22:55:9f:81:06:be:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Validity
Not Before: Feb 4 18:11:24 2025 GMT
Not After : Feb 3 18:16:24 2026 GMT
Subject: CN=3387AE1EB7FE89B5B921F5D74E6A5E0F0825F3A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e1:89:11:90:b4:3a:8d:d2:54:41:37:31:ad:
5a:f3:dd:47:c1:af:de:33:77:e5:1f:af:9c:7c:62:
5a:b4:e5:ea:85:45:15:a5:54:2f:a9:4a:d8:f9:1f:
f1:d7:fd:fa:d7:68:4f:36:7a:cf:7c:b6:2a:1f:75:
ef:36:b6:3a:61:e7:34:84:c3:b5:c8:e1:e7:df:d8:
91:43:9a:14:05:00:5a:9b:65:31:e4:a9:5e:3c:ef:
d9:2b:77:4b:04:45:c2:f0:bd:27:86:5b:3d:b7:a9:
69:77:dd:88:7f:87:d5:26:a1:f8:06:41:7f:a7:b8:
7c:2f:0d:06:3c:73:0c:17:bc:c8:a6:32:dc:83:ac:
32:43:bb:98:97:5f:fe:58:27:aa:6f:9b:38:1d:73:
1a:cc:24:c6:6e:30:29:6a:c6:77:90:ac:d7:3c:71:
bf:83:2d:9d:05:db:7d:bc:e6:c8:23:6a:e2:2e:ba:
20:87:90:55:24:26:c1:9e:49:1f:30:4f:64:79:b6:
1b:75:f2:5a:01:23:97:2f:87:48:3b:fa:3c:6c:1a:
0c:66:f9:3f:5d:2c:6f:05:4a:31:80:1f:9a:85:c1:
32:45:ed:11:f8:83:f3:b3:8e:c5:98:b4:63:33:e2:
64:6d:ec:c8:3e:2c:4a:01:b7:8d:9a:bc:01:ae:2f:
0b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:87:AE:1E:B7:FE:89:B5:B9:21:F5:D7:4E:6A:5E:0F:08:25:F3:A4
X509v3 Authority Key Identifier:
keyid:D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3139302e3231312e36382e302f32322d3232203d3e203532333238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.211.68.0/22
Signature Algorithm: sha256WithRSAEncryption
11:de:15:04:41:4c:90:fb:b9:32:02:16:6b:7e:2a:20:b8:3f:
71:96:31:8e:5a:b1:de:68:53:67:cd:e4:5c:8a:d0:4a:95:70:
8f:f5:43:c8:e0:25:0c:9b:bb:6a:d7:dd:8c:e0:45:91:52:77:
f5:60:8b:b8:a1:07:8a:f5:08:8e:ed:8f:f8:97:50:cd:fe:f3:
f1:f3:46:6f:85:85:2d:4e:fb:98:56:f9:e8:4d:e8:ae:2a:c0:
8a:08:88:90:5d:72:11:20:d2:93:53:71:63:bd:48:09:4a:48:
b5:6a:84:78:95:88:db:3c:92:d8:33:c6:cc:c2:bf:af:44:10:
70:36:e3:b5:18:3b:b2:7f:32:74:08:58:f1:d4:61:a0:e8:06:
c6:87:54:d4:1e:af:c1:36:93:78:92:df:45:78:14:88:42:4a:
cc:94:ec:12:87:f6:a8:a1:d1:e5:30:c7:62:0f:0f:5c:0c:cf:
6f:c8:f8:7f:d5:a3:af:fa:28:7b:f3:1c:03:bc:2c:b4:64:2f:
1a:bf:c3:27:b9:1f:54:6b:fa:75:d6:dd:84:de:dd:88:6d:af:
b3:eb:67:86:82:bd:dd:89:fb:78:09:f3:63:f1:a0:96:6e:ec:
71:10:17:b4:c0:7f:0d:86:97:56:ab:cc:5d:4a:a3:67:d2:3e:
2c:e6:30:1e
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUXi9HPMoh+Is/o3WmwiJVn4EGvpQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDNCRUUyQkMzREJGNDFFNTU5NDA4OTkxMjhFRUExQTM4
REQwNzc4RjAeFw0yNTAyMDQxODExMjRaFw0yNjAyMDMxODE2MjRaMDMxMTAvBgNV
BAMTKDMzODdBRTFFQjdGRTg5QjVCOTIxRjVENzRFNkE1RTBGMDgyNUYzQTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk4YkRkLQ6jdJUQTcxrVrz3UfB
r94zd+Ufr5x8Ylq05eqFRRWlVC+pStj5H/HX/frXaE82es98tiofde82tjph5zSE
w7XI4eff2JFDmhQFAFqbZTHkqV4879krd0sERcLwvSeGWz23qWl33Yh/h9UmofgG
QX+nuHwvDQY8cwwXvMimMtyDrDJDu5iXX/5YJ6pvmzgdcxrMJMZuMClqxneQrNc8
cb+DLZ0F23285sgjauIuuiCHkFUkJsGeSR8wT2R5tht18loBI5cvh0g7+jxsGgxm
+T9dLG8FSjGAH5qFwTJF7RH4g/OzjsWYtGMz4mRt7Mg+LEoBt42avAGuLwuzAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUM4euHrf+ibW5IfXXTmpeDwgl86QwHwYDVR0j
BBgwFoAU077ivD2/QeVZQImRKO6ho43Qd48wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85M0ZDRURCOUY2RTJDNDZBM0Y4MkIxNEQ1MEFFOEYzMzRB
QzY0Mjg3MTMxRjFGRjQ3NUFCNjRFQjdGOTZFMTBELzAvRDNCRUUyQkMzREJGNDFF
NTU5NDA4OTkxMjhFRUExQTM4REQwNzc4Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EM0JFRTJCQzNEQkY0MUU1NTk0
MDg5OTEyOEVFQTFBMzhERDA3NzhGLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOTNGQ0VEQjlGNkUyQzQ2QTNGODJCMTRENTBBRThGMzM0QUM2NDI4NzEz
MUYxRkY0NzVBQjY0RUI3Rjk2RTEwRC8wLzMxMzkzMDJlMzIzMTMxMmUzNjM4MmUz
MDJmMzIzMjJkMzIzMjIwM2QzZTIwMzUzMjMzMzIzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAr7TRDAN
BgkqhkiG9w0BAQsFAAOCAQEAEd4VBEFMkPu5MgIWa34qILg/cZYxjlqx3mhTZ83k
XIrQSpVwj/VDyOAlDJu7atfdjOBFkVJ39WCLuKEHivUIju2P+JdQzf7z8fNGb4WF
LU77mFb56E3orirAigiIkF1yESDSk1NxY71ICUpItWqEeJWI2zyS2DPGzMK/r0QQ
cDbjtRg7sn8ydAhY8dRhoOgGxodU1B6vwTaTeJLfRXgUiEJKzJTsEof2qKHR5TDH
Yg8PXAzPb8j4f9Wjr/ooe/McA7wstGQvGr/DJ7kfVGv6ddbdhN7diG2vs+tnhoK9
3Yn7eAnzY/Gglm7scRAXtMB/DYaXVqvMXUqjZ9I+LOYwHg==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:36 2025 by rpki-client