Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3139302e3231312e37312e302f32342d3234203d3e203532333238.roa
File: 3139302e3231312e37312e302f32342d3234203d3e203532333238.roa (raw, json)
Hash identifier: o1S98cUIsqMJw2lxIeEexcaieOR6rHv6s4RQpj1UiYk=
Subject key identifier: FA:D2:E1:90:3B:E3:92:29:5F:2E:ED:CD:A9:06:6B:B2:9D:B4:7C:F6
Certificate issuer: /CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Certificate serial: 0A86B1C4C59799B66F915A3A84F7EFD51EFD8518
Authority key identifier: D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3139302e3231312e37312e302f32342d3234203d3e203532333238.roa
Signing time: Tue 04 Feb 2025 18:16:21 +0000
ROA not before: Tue 04 Feb 2025 18:11:21 +0000
ROA not after: Tue 03 Feb 2026 18:16:21 +0000
asID: 52328
IP address blocks: 190.211.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:86:b1:c4:c5:97:99:b6:6f:91:5a:3a:84:f7:ef:d5:1e:fd:85:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Validity
Not Before: Feb 4 18:11:21 2025 GMT
Not After : Feb 3 18:16:21 2026 GMT
Subject: CN=FAD2E1903BE392295F2EEDCDA9066BB29DB47CF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6d:a8:11:91:95:c5:47:97:b1:49:e3:8f:4d:
3c:7d:c4:6c:b3:ee:4e:35:bf:c9:d6:65:02:97:da:
86:a5:20:c3:49:61:c5:f8:1b:c6:1a:f7:73:1f:10:
82:cb:d8:64:8b:92:be:39:d0:dd:4a:47:79:de:f6:
8c:ff:44:96:b4:a7:a0:2c:75:e5:2c:f5:10:c2:ca:
b2:f4:45:5d:36:37:33:3c:1b:e2:bd:f7:80:42:f6:
15:a7:da:f4:e9:3e:06:6a:df:90:a3:fe:18:0a:18:
92:27:bc:62:c2:f1:37:90:9e:6c:e6:91:3f:81:92:
75:83:cf:d2:d9:72:3b:1b:bf:cd:1e:9a:27:9a:15:
2d:f8:b1:41:b8:d3:5a:68:e1:9e:c7:42:d6:3b:64:
90:c4:b9:e0:d7:29:ed:20:6c:63:79:fc:26:d9:51:
81:91:93:eb:b8:ff:07:e8:42:bd:b0:19:ea:37:c9:
46:72:bb:56:47:94:e7:7c:f7:d7:bb:97:70:dd:bf:
40:4b:9c:4d:5f:a2:d0:7a:de:a2:21:47:5e:c4:61:
60:ed:05:c1:19:36:1b:f9:d8:e2:80:1e:b8:56:19:
e5:66:a3:0d:70:31:8d:83:d2:9b:81:d3:c1:9c:1e:
0f:e4:9b:0e:c6:ec:08:68:7e:ad:8a:14:be:6f:88:
4e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D2:E1:90:3B:E3:92:29:5F:2E:ED:CD:A9:06:6B:B2:9D:B4:7C:F6
X509v3 Authority Key Identifier:
keyid:D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3139302e3231312e37312e302f32342d3234203d3e203532333238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.211.71.0/24
Signature Algorithm: sha256WithRSAEncryption
29:23:20:4a:8f:f0:70:93:73:0a:93:02:87:a7:6d:1e:1f:69:
84:74:f5:f8:48:db:02:65:44:fc:5f:ff:fe:68:24:56:df:9d:
bd:f5:a9:9b:f5:d1:aa:47:2a:5d:3e:06:df:c5:20:6e:cc:01:
89:d0:6c:b2:72:72:dd:84:4f:de:19:1a:c8:66:d8:12:a2:00:
e6:72:3d:de:7e:77:b3:7a:ed:91:58:32:b4:86:84:1f:fe:a3:
b4:5a:98:e1:fa:ea:ca:40:1a:38:60:93:99:5d:04:4c:bf:5a:
9f:b7:40:b6:af:c7:c0:fb:6a:0c:29:09:24:c9:4a:5c:08:0e:
e5:4a:f6:29:62:40:a5:a3:2c:e7:e9:5a:16:e6:98:ef:8f:40:
f5:83:a0:a8:22:18:d5:7b:1b:15:70:e1:de:22:4f:0a:04:41:
76:bb:98:5a:f7:7f:24:60:53:f8:68:4d:2e:c4:06:76:c3:08:
9a:d3:da:0d:18:0f:8f:6b:ff:9e:0a:c7:bc:67:84:0d:1c:e2:
b4:9f:23:3f:ec:2d:8b:1f:13:43:dc:9a:ed:8f:aa:23:33:57:
56:10:49:c0:4f:43:ca:a8:0f:ae:54:1e:62:09:14:99:99:c8:
53:e5:e3:63:14:68:51:98:4d:d6:2f:fe:23:5e:4e:c0:b0:ba:
72:6b:f4:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:40 2025 by rpki-client