Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A1FCECC3D570D3DFE78A2EEC1CAF6F07E8AD1FD3A359CD6FA8735C1A880A05E9/0/3139302e38382e33332e302f32342d3234203d3e203237373438.roa
File: 3139302e38382e33332e302f32342d3234203d3e203237373438.roa (raw, json)
Hash identifier: Gh7VXnvcalIFKJCE31Vh47VWlVGL/DOVDiPwJde6Nq0=
Subject key identifier: 3F:13:2F:18:F5:A1:6B:78:5A:EC:40:10:42:06:80:47:97:0B:55:F7
Certificate issuer: /CN=237D63DAE61C3211909C89DEBD463B26F873E44B
Certificate serial: 49633B5BB56DC8B8F6924F865B8BDA8B2CE57071
Authority key identifier: 23:7D:63:DA:E6:1C:32:11:90:9C:89:DE:BD:46:3B:26:F8:73:E4:4B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/237D63DAE61C3211909C89DEBD463B26F873E44B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A1FCECC3D570D3DFE78A2EEC1CAF6F07E8AD1FD3A359CD6FA8735C1A880A05E9/0/3139302e38382e33332e302f32342d3234203d3e203237373438.roa
Signing time: Tue 04 Feb 2025 18:51:00 +0000
ROA not before: Tue 04 Feb 2025 18:46:00 +0000
ROA not after: Tue 03 Feb 2026 18:51:00 +0000
asID: 27748
IP address blocks: 190.88.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:63:3b:5b:b5:6d:c8:b8:f6:92:4f:86:5b:8b:da:8b:2c:e5:70:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237D63DAE61C3211909C89DEBD463B26F873E44B
Validity
Not Before: Feb 4 18:46:00 2025 GMT
Not After : Feb 3 18:51:00 2026 GMT
Subject: CN=3F132F18F5A16B785AEC401042068047970B55F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:32:3a:53:35:ff:62:7c:96:e0:09:68:3b:42:
45:85:0d:af:a8:e9:81:e6:91:c2:41:52:e9:5e:53:
98:22:c6:24:23:69:55:e1:ab:27:46:60:05:70:6e:
df:a3:f0:44:f9:63:29:94:7e:fc:7b:cb:10:3d:2a:
31:8a:da:60:6e:28:4f:ae:67:59:be:c8:86:55:96:
1c:07:75:36:72:13:ba:03:e6:91:3e:29:85:00:21:
e0:56:44:88:c3:50:b1:a8:e9:82:69:80:9f:86:53:
c3:f6:c3:d4:1e:80:9e:33:10:b7:a7:1a:ac:8b:e5:
aa:ab:60:73:f7:c4:60:61:af:eb:bf:83:5d:bd:87:
8f:ce:c8:7c:1e:57:9c:21:7e:8e:d3:b6:de:17:45:
04:5d:a1:7f:7b:f3:2b:66:11:6e:d9:bd:4d:2e:55:
e8:a2:58:27:c6:2d:a4:a2:ba:60:6e:fb:d8:78:91:
17:2f:87:e4:98:00:eb:f0:5c:0e:df:4f:b6:e6:43:
2c:4b:b2:a3:6d:65:9a:1b:78:c1:89:31:ef:34:dc:
ab:6f:72:00:35:ab:8b:9f:da:6b:a9:50:6d:bc:ff:
0c:b7:86:9d:9c:42:39:91:a9:2e:16:f3:60:97:e8:
95:90:03:44:57:9e:fd:25:39:96:f6:bb:6b:09:c5:
dc:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:13:2F:18:F5:A1:6B:78:5A:EC:40:10:42:06:80:47:97:0B:55:F7
X509v3 Authority Key Identifier:
keyid:23:7D:63:DA:E6:1C:32:11:90:9C:89:DE:BD:46:3B:26:F8:73:E4:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A1FCECC3D570D3DFE78A2EEC1CAF6F07E8AD1FD3A359CD6FA8735C1A880A05E9/0/237D63DAE61C3211909C89DEBD463B26F873E44B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/237D63DAE61C3211909C89DEBD463B26F873E44B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A1FCECC3D570D3DFE78A2EEC1CAF6F07E8AD1FD3A359CD6FA8735C1A880A05E9/0/3139302e38382e33332e302f32342d3234203d3e203237373438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.88.33.0/24
Signature Algorithm: sha256WithRSAEncryption
52:e7:4f:03:e2:63:59:45:c4:62:41:69:88:83:21:b1:d1:f2:
d9:68:22:76:af:dd:ae:83:1a:d1:7f:70:1a:8e:f1:23:47:02:
96:22:47:7d:45:69:a5:24:87:cb:a9:5e:d2:0b:4a:d6:0e:9a:
77:20:e2:fa:77:6f:f9:0a:b2:9d:34:46:cf:4c:14:df:4c:de:
ba:41:ac:04:d1:58:76:0e:7a:40:21:59:a3:e3:ae:4c:1c:87:
e0:db:16:4d:a3:68:ed:74:2a:7d:13:54:b8:30:4b:31:97:bb:
51:42:86:e2:7b:5d:a2:b1:ee:e1:b8:2f:21:cd:30:4a:a9:75:
ea:78:3b:43:6e:56:9d:bd:e5:8f:ec:05:bc:a5:c9:cb:30:ef:
df:12:1c:16:b9:3f:64:6f:ef:2c:aa:54:86:c9:f0:48:74:5b:
b0:5a:25:d0:e2:d1:8e:89:c8:b6:88:c1:c0:70:ce:d5:c4:33:
d9:3c:56:bc:31:52:c5:f5:b1:a5:f5:8c:75:55:b0:d6:b9:29:
1b:67:2d:d2:33:80:9a:38:81:27:44:1d:75:a2:74:31:e1:f6:
c8:96:bf:f3:86:1e:d9:11:43:7f:4f:fa:84:a3:b4:52:a1:50:
a9:7c:c6:d5:06:2c:3a:e1:79:3c:73:12:58:8b:db:c0:56:32:
f6:6d:b6:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:46:10 2025 by rpki-client