Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A1BD3A4FA722A25F6559ACE6DEF9D7CBFFAF5643CD009E7913DBE50679A51636/0/3139322e3134302e31362e302f32322d3232203d3e20323635373139.roa
File: 3139322e3134302e31362e302f32322d3232203d3e20323635373139.roa (raw, json)
Hash identifier: enoy92b+aKywaylyxiA+Lk2YQl7QDcfKFXEGXorYVy0=
Subject key identifier: C1:05:F9:37:A4:15:FC:DB:AE:A1:35:74:F9:8F:18:D4:C7:E3:8F:D3
Certificate issuer: /CN=86B23684C23826B0D30069E095D5822718033CB5
Certificate serial: 79680F46835007B6A3300689C2D979901D542951
Authority key identifier: 86:B2:36:84:C2:38:26:B0:D3:00:69:E0:95:D5:82:27:18:03:3C:B5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/86B23684C23826B0D30069E095D5822718033CB5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A1BD3A4FA722A25F6559ACE6DEF9D7CBFFAF5643CD009E7913DBE50679A51636/0/3139322e3134302e31362e302f32322d3232203d3e20323635373139.roa
Signing time: Tue 04 Feb 2025 18:35:46 +0000
ROA not before: Tue 04 Feb 2025 18:30:46 +0000
ROA not after: Tue 03 Feb 2026 18:35:46 +0000
asID: 265719
IP address blocks: 192.140.16.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:68:0f:46:83:50:07:b6:a3:30:06:89:c2:d9:79:90:1d:54:29:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86B23684C23826B0D30069E095D5822718033CB5
Validity
Not Before: Feb 4 18:30:46 2025 GMT
Not After : Feb 3 18:35:46 2026 GMT
Subject: CN=C105F937A415FCDBAEA13574F98F18D4C7E38FD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a8:56:2f:59:ff:3d:cd:b1:21:21:4a:6d:0d:
c2:c2:c6:83:1e:45:87:a1:96:7c:40:26:2b:d4:2f:
60:f0:0f:52:ee:f7:15:1e:9b:95:a8:9a:cf:b5:8d:
f3:2b:5c:60:0f:82:85:b3:68:79:0a:54:65:63:a1:
44:b5:b1:70:71:2d:48:32:0f:99:93:9c:28:15:46:
cc:22:45:a4:29:c6:2f:9a:b0:eb:cd:63:38:00:00:
fb:b3:ff:7f:10:4b:c3:1f:af:0f:c9:ba:47:c3:85:
94:09:a4:ab:86:23:9c:99:9e:19:4f:06:14:c8:89:
ec:a6:93:7f:64:7a:c7:c9:b6:be:d0:73:ca:5a:2c:
ad:b4:e3:1d:64:04:63:e1:d0:88:5a:c5:2c:fd:d4:
1d:28:f9:5d:03:2c:e1:80:c1:4e:17:5c:c4:6d:41:
ce:ee:18:28:d5:2e:b6:5d:55:c9:d7:65:4f:c1:3f:
48:41:43:b4:22:07:51:02:ae:21:4c:45:6b:1e:50:
e2:56:d6:ce:0a:72:c4:3c:8b:d1:cb:c6:cf:08:0b:
ea:7e:6c:02:7f:2d:3a:5f:d1:cc:f2:71:32:1b:51:
d2:62:25:6d:67:8c:c9:eb:21:63:91:37:18:29:80:
a5:28:4b:1f:63:7c:d9:76:54:57:a2:de:ac:a6:38:
44:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:05:F9:37:A4:15:FC:DB:AE:A1:35:74:F9:8F:18:D4:C7:E3:8F:D3
X509v3 Authority Key Identifier:
keyid:86:B2:36:84:C2:38:26:B0:D3:00:69:E0:95:D5:82:27:18:03:3C:B5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A1BD3A4FA722A25F6559ACE6DEF9D7CBFFAF5643CD009E7913DBE50679A51636/0/86B23684C23826B0D30069E095D5822718033CB5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/86B23684C23826B0D30069E095D5822718033CB5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A1BD3A4FA722A25F6559ACE6DEF9D7CBFFAF5643CD009E7913DBE50679A51636/0/3139322e3134302e31362e302f32322d3232203d3e20323635373139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.140.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:4e:d4:93:2e:f9:be:22:b6:e3:36:ad:82:fa:bf:52:99:a3:
2d:66:43:be:5e:02:f7:5b:9e:f4:72:09:bc:8a:05:96:c9:5d:
d6:a3:f5:d6:28:dd:19:ae:eb:7e:37:47:2a:ba:b5:23:9f:c5:
0d:cc:af:87:01:0f:6d:4e:6c:c5:19:b5:35:87:cb:66:df:55:
2d:c7:3a:47:7f:45:f2:93:2f:9a:6c:48:ad:b3:cc:41:80:95:
c5:bf:3d:82:43:63:1b:77:9b:0c:9c:9c:70:d7:85:9c:c3:93:
5e:4b:d8:f4:bd:23:31:b2:65:65:a2:c2:10:c0:59:41:28:c6:
db:32:fb:88:ab:18:1e:bb:b5:c9:28:ef:65:ba:77:12:af:58:
e2:06:d1:f8:dc:fb:14:2e:54:ad:66:05:ae:05:14:ba:b5:88:
2e:1c:d6:3b:d1:dd:fc:1c:fa:de:99:fe:e7:06:d3:91:14:b6:
ff:43:a8:6a:f1:90:2f:91:32:00:2c:de:bf:fb:3b:65:05:3f:
12:d9:f0:76:12:28:64:d2:80:f6:35:0b:d6:f7:b1:75:77:53:
fd:84:0e:91:03:63:b4:c1:e4:4a:cc:40:22:bb:81:d4:58:fd:
0b:21:c9:72:ec:9f:8f:5c:93:88:2a:34:f8:5b:5b:d7:ef:59:
cc:bf:af:62
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUeWgPRoNQB7ajMAaJwtl5kB1UKVEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODZCMjM2ODRDMjM4MjZCMEQzMDA2OUUwOTVENTgyMjcx
ODAzM0NCNTAeFw0yNTAyMDQxODMwNDZaFw0yNjAyMDMxODM1NDZaMDMxMTAvBgNV
BAMTKEMxMDVGOTM3QTQxNUZDREJBRUExMzU3NEY5OEYxOEQ0QzdFMzhGRDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAqFYvWf89zbEhIUptDcLCxoMe
RYehlnxAJivUL2DwD1Lu9xUem5Woms+1jfMrXGAPgoWzaHkKVGVjoUS1sXBxLUgy
D5mTnCgVRswiRaQpxi+asOvNYzgAAPuz/38QS8Mfrw/JukfDhZQJpKuGI5yZnhlP
BhTIieymk39kesfJtr7Qc8paLK204x1kBGPh0IhaxSz91B0o+V0DLOGAwU4XXMRt
Qc7uGCjVLrZdVcnXZU/BP0hBQ7QiB1ECriFMRWseUOJW1s4KcsQ8i9HLxs8IC+p+
bAJ/LTpf0czycTIbUdJiJW1njMnrIWORNxgpgKUoSx9jfNl2VFei3qymOERHAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUwQX5N6QV/NuuoTV0+Y8Y1Mfjj9MwHwYDVR0j
BBgwFoAUhrI2hMI4JrDTAGngldWCJxgDPLUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BMUJEM0E0RkE3MjJBMjVGNjU1OUFDRTZERUY5RDdDQkZG
QUY1NjQzQ0QwMDlFNzkxM0RCRTUwNjc5QTUxNjM2LzAvODZCMjM2ODRDMjM4MjZC
MEQzMDA2OUUwOTVENTgyMjcxODAzM0NCNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NkIyMzY4NEMyMzgyNkIwRDMw
MDY5RTA5NUQ1ODIyNzE4MDMzQ0I1LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQTFCRDNBNEZBNzIyQTI1RjY1NTlBQ0U2REVGOUQ3Q0JGRkFGNTY0M0NE
MDA5RTc5MTNEQkU1MDY3OUE1MTYzNi8wLzMxMzkzMjJlMzEzNDMwMmUzMTM2MmUz
MDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNjM1MzczMTM5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwIwQ
MA0GCSqGSIb3DQEBCwUAA4IBAQCkTtSTLvm+IrbjNq2C+r9SmaMtZkO+XgL3W570
cgm8igWWyV3Wo/XWKN0Zrut+N0cqurUjn8UNzK+HAQ9tTmzFGbU1h8tm31UtxzpH
f0Xyky+abEits8xBgJXFvz2CQ2Mbd5sMnJxw14Wcw5NeS9j0vSMxsmVlosIQwFlB
KMbbMvuIqxgeu7XJKO9luncSr1jiBtH43PsULlStZgWuBRS6tYguHNY70d38HPre
mf7nBtORFLb/Q6hq8ZAvkTIALN6/+ztlBT8S2fB2Eihk0oD2NQvW97F1d1P9hA6R
A2O0weRKzEAiu4HUWP0LIcly7J+PXJOIKjT4W1vX71nMv69i
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:00 2025 by rpki-client