Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3139302e3231312e37302e302f32332d3233203d3e203532333238.roa
File: 3139302e3231312e37302e302f32332d3233203d3e203532333238.roa (raw, json)
Hash identifier: IpRneIGc/9nG4TjHrbZGwt3Rp0EkkKFAlCNnGZgn6aE=
Subject key identifier: 31:20:1A:BA:7F:1F:03:FD:21:13:1C:DF:AA:8B:C6:86:84:37:94:F9
Certificate issuer: /CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Certificate serial: 48B6D3437E88A5DEE5AF4FF977C748A9EEE8C759
Authority key identifier: D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3139302e3231312e37302e302f32332d3233203d3e203532333238.roa
Signing time: Tue 04 Feb 2025 18:16:30 +0000
ROA not before: Tue 04 Feb 2025 18:11:30 +0000
ROA not after: Tue 03 Feb 2026 18:16:30 +0000
asID: 52328
IP address blocks: 190.211.70.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:b6:d3:43:7e:88:a5:de:e5:af:4f:f9:77:c7:48:a9:ee:e8:c7:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Validity
Not Before: Feb 4 18:11:30 2025 GMT
Not After : Feb 3 18:16:30 2026 GMT
Subject: CN=31201ABA7F1F03FD21131CDFAA8BC686843794F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a9:b5:e6:84:a2:29:f2:7b:b5:7b:0a:50:90:
dc:d6:34:63:13:c1:d8:71:bc:50:30:1c:29:c4:ba:
33:27:e9:ee:cf:09:fe:09:d3:37:c3:24:27:09:98:
11:16:83:e4:72:d3:e6:ab:3e:55:eb:72:e3:bf:dd:
a6:a8:15:6f:e6:0d:f1:dc:d5:ac:f9:31:78:5f:28:
b3:36:94:a4:a5:81:66:f7:b0:1a:25:06:84:62:19:
f9:fb:08:83:31:e9:7a:9d:79:01:f7:e2:3b:09:d7:
5f:f4:d4:5a:6d:c6:6c:a1:84:4c:7d:f8:1c:97:f0:
ec:cb:2b:1a:c4:29:ba:c0:d6:01:80:68:0e:42:a7:
06:a7:6c:2c:ec:b9:19:e2:af:62:8c:66:4d:11:7e:
4a:5a:51:9d:15:88:4f:60:ab:c0:42:29:88:9a:b9:
5d:9e:d0:0a:35:e8:ec:33:fb:dc:06:83:39:a0:11:
27:00:79:ae:35:2e:70:d4:d3:bc:fc:76:d0:02:4d:
71:53:0f:83:66:03:d3:db:06:7d:63:e5:be:72:77:
bf:9a:91:2e:51:d1:a6:a5:b5:e8:95:ad:b0:0d:e7:
35:cc:80:a6:4a:c4:38:dc:ce:ec:ed:3f:d9:55:90:
27:6a:c6:b1:e7:a6:39:8c:45:5d:e6:3d:69:cf:79:
89:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:20:1A:BA:7F:1F:03:FD:21:13:1C:DF:AA:8B:C6:86:84:37:94:F9
X509v3 Authority Key Identifier:
keyid:D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3139302e3231312e37302e302f32332d3233203d3e203532333238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.211.70.0/23
Signature Algorithm: sha256WithRSAEncryption
07:df:8c:a1:97:f7:04:30:38:a7:cf:0c:5a:b8:b3:dd:3c:e3:
d1:2e:64:af:b3:a1:75:a8:af:5f:6b:14:1f:9a:48:f7:3c:16:
a8:a6:e8:5a:01:74:52:92:0d:3e:1d:1c:7f:d4:a2:70:60:52:
89:47:e0:85:ff:3d:5f:bf:f1:ff:16:f4:4e:60:14:b9:dc:19:
f5:1c:b2:87:af:f6:01:ec:7c:f3:0f:93:14:1a:3a:80:66:bf:
f8:21:b6:15:d2:cf:f7:3a:8f:60:65:d5:b9:71:41:19:77:ac:
0f:ba:9b:34:06:37:fc:d8:d1:d9:d2:df:07:1c:6a:7a:f6:44:
71:89:13:57:00:9a:f6:6e:bd:d0:f1:41:d9:4a:ee:9b:e0:72:
d5:cf:8e:2b:67:e4:e2:aa:b0:99:7c:7c:66:2a:07:96:54:57:
f1:f5:13:27:8e:07:42:32:1b:cd:51:63:6c:5f:33:64:ca:8f:
4a:27:09:b2:0e:78:d5:2b:fd:4e:04:c6:40:43:62:79:20:c6:
99:4e:08:74:db:84:f6:b8:a5:b9:3a:cf:ca:06:e2:92:46:0e:
96:fa:8a:04:6c:1b:de:d3:0d:f6:a6:77:b2:b5:e2:e0:28:83:
d9:77:4f:fb:97:1d:e4:2b:de:34:fa:5c:4f:06:24:63:f1:4f:
85:de:d9:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:41 2025 by rpki-client