Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A88696740092563695A1589D301612FA9DE2FCDC21BF295A45423A94F9F0B2F2/0/3139302e3134332e3234302e302f32322d3234203d3e203238303336.roa
File: 3139302e3134332e3234302e302f32322d3234203d3e203238303336.roa (raw, json)
Hash identifier: WVJv4Tq37q7rzqRA6tP06y+prNeVQLrNRWi+Kje4teY=
Subject key identifier: B7:88:6F:45:AC:7B:E9:82:6A:65:8D:26:53:74:1A:C5:75:30:B8:B9
Certificate issuer: /CN=C0CE7DDA676A306A376374B13782ABD923687F5D
Certificate serial: 3C64204E817BDED415C04AD50F30E38D4935B604
Authority key identifier: C0:CE:7D:DA:67:6A:30:6A:37:63:74:B1:37:82:AB:D9:23:68:7F:5D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C0CE7DDA676A306A376374B13782ABD923687F5D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A88696740092563695A1589D301612FA9DE2FCDC21BF295A45423A94F9F0B2F2/0/3139302e3134332e3234302e302f32322d3234203d3e203238303336.roa
Signing time: Tue 05 Mar 2024 17:42:12 +0000
ROA not before: Tue 05 Mar 2024 17:37:12 +0000
ROA not after: Tue 04 Mar 2025 17:42:12 +0000
asID: 28036
IP address blocks: 190.143.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:64:20:4e:81:7b:de:d4:15:c0:4a:d5:0f:30:e3:8d:49:35:b6:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0CE7DDA676A306A376374B13782ABD923687F5D
Validity
Not Before: Mar 5 17:37:12 2024 GMT
Not After : Mar 4 17:42:12 2025 GMT
Subject: CN=B7886F45AC7BE9826A658D2653741AC57530B8B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1e:b5:9d:51:01:23:2a:18:2e:63:56:1a:45:
1c:1f:b7:f4:f1:10:63:76:52:3c:58:5d:9c:c3:bd:
da:dc:fc:93:96:15:fc:05:1e:95:9c:71:70:b6:5d:
00:6d:81:c7:19:f7:06:e6:5c:28:c7:c0:aa:c5:2b:
24:65:68:e0:f0:c7:40:0b:90:18:e1:7a:52:83:b6:
69:08:aa:99:c2:2a:b3:1b:5b:cc:bf:83:2d:b1:f1:
22:52:62:9f:f1:56:99:e6:47:ce:bb:85:f7:b4:43:
c7:f4:b4:74:23:01:9a:a0:1d:b2:6d:84:85:ca:ae:
26:7e:4e:e9:c5:71:d4:5b:99:34:72:64:60:a6:8b:
95:2c:d7:58:58:90:f2:bd:d3:32:8d:ce:e3:0d:cc:
92:4a:8e:76:2c:f5:60:d5:db:e9:f2:da:2b:71:8c:
29:e4:f3:98:0b:04:4b:99:ff:27:ca:4d:9a:93:db:
32:d0:f6:e6:3f:be:ad:5c:0f:d2:b6:7a:7b:7d:51:
0d:ca:e5:b1:3a:80:fa:56:27:19:db:45:76:ca:a3:
e1:67:67:24:90:8b:81:5f:5e:42:b6:07:a0:48:b8:
3b:88:7a:1c:b1:19:79:98:66:35:33:68:46:db:86:
62:4d:b0:d3:99:f1:21:26:d8:2b:d7:01:4b:cb:8e:
28:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:88:6F:45:AC:7B:E9:82:6A:65:8D:26:53:74:1A:C5:75:30:B8:B9
X509v3 Authority Key Identifier:
keyid:C0:CE:7D:DA:67:6A:30:6A:37:63:74:B1:37:82:AB:D9:23:68:7F:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A88696740092563695A1589D301612FA9DE2FCDC21BF295A45423A94F9F0B2F2/0/C0CE7DDA676A306A376374B13782ABD923687F5D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C0CE7DDA676A306A376374B13782ABD923687F5D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A88696740092563695A1589D301612FA9DE2FCDC21BF295A45423A94F9F0B2F2/0/3139302e3134332e3234302e302f32322d3234203d3e203238303336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.143.240.0/22
Signature Algorithm: sha256WithRSAEncryption
93:a2:67:59:01:4e:da:59:21:82:6e:e8:6d:25:16:99:52:42:
c5:95:4c:fe:17:48:ca:f8:5b:fe:30:92:e5:9b:cd:59:a2:11:
a6:01:05:95:75:bd:de:5c:82:38:ab:8f:84:dd:77:51:ac:ee:
02:b9:82:6b:8d:b2:46:a5:59:5e:42:96:72:39:f9:7b:19:fd:
d5:7c:f5:6e:d6:5f:89:13:a6:af:a5:da:2a:c2:30:4f:36:9c:
86:72:20:83:fe:82:c6:d2:99:60:66:63:fa:07:1c:86:82:5c:
84:b3:6d:09:eb:94:27:ca:7f:ad:e5:9b:6c:3c:68:ef:23:53:
75:26:23:20:35:14:17:e2:cc:1a:f0:68:80:b1:5f:a9:f2:7d:
0c:ff:77:2d:67:66:ee:1e:e1:08:14:70:8c:ec:ec:d8:2c:a6:
38:22:db:df:d7:2b:6a:fe:1c:2d:5e:7d:fa:c4:fa:bb:f1:81:
c0:3e:2f:eb:f0:59:83:7b:2f:2b:f5:75:04:bd:00:3c:6f:e2:
b9:d2:0e:12:d4:c4:1f:3a:a2:f1:b1:30:72:49:c5:27:5b:d2:
5f:18:af:ef:e4:8c:bc:3d:4a:3f:3f:4c:76:5a:d8:03:37:84:
74:5b:5f:da:d6:25:3b:27:46:3b:ba:63:e1:62:39:ff:db:9f:
68:85:f6:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:20:26 2025 by rpki-client