Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AC3FC7664DC1A1621E7A5D246643C20BE3DEA6345AB0EE180974D4B4D5FFFD59/0/3138362e39362e3235322e302f32322d3234203d3e20323632313436.roa
File: 3138362e39362e3235322e302f32322d3234203d3e20323632313436.roa (raw, json)
Hash identifier: crzS4Om1ifZeE7rpTylxHTivsbi7q6/2ne1xEnwlzag=
Subject key identifier: 91:1D:89:4A:93:15:F2:DF:4E:95:8C:33:42:09:7A:84:6C:83:3D:87
Certificate issuer: /CN=E89EA7207524FF2AC1EC7BA9F4DB06116CC6D683
Certificate serial: 666E57E4041A220AFD254A64E89FE56C51E6238D
Authority key identifier: E8:9E:A7:20:75:24:FF:2A:C1:EC:7B:A9:F4:DB:06:11:6C:C6:D6:83
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E89EA7207524FF2AC1EC7BA9F4DB06116CC6D683.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AC3FC7664DC1A1621E7A5D246643C20BE3DEA6345AB0EE180974D4B4D5FFFD59/0/3138362e39362e3235322e302f32322d3234203d3e20323632313436.roa
Signing time: Tue 04 Feb 2025 18:49:00 +0000
ROA not before: Tue 04 Feb 2025 18:44:00 +0000
ROA not after: Tue 03 Feb 2026 18:49:00 +0000
asID: 262146
IP address blocks: 186.96.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:6e:57:e4:04:1a:22:0a:fd:25:4a:64:e8:9f:e5:6c:51:e6:23:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E89EA7207524FF2AC1EC7BA9F4DB06116CC6D683
Validity
Not Before: Feb 4 18:44:00 2025 GMT
Not After : Feb 3 18:49:00 2026 GMT
Subject: CN=911D894A9315F2DF4E958C3342097A846C833D87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:16:68:a6:6d:ae:18:b2:42:98:db:26:93:30:
3b:19:42:a9:d7:8e:e8:8a:28:e3:84:aa:55:45:8f:
19:99:cd:40:a1:58:99:d4:71:c3:78:90:d9:77:7c:
c9:c6:11:69:66:ca:cc:cf:31:03:54:7a:26:98:59:
b6:80:47:54:24:95:6f:b7:48:df:2d:30:ab:b9:27:
95:01:ce:69:6e:37:5e:16:04:20:3e:6d:d4:4e:f9:
10:b3:e6:ad:66:11:bd:d8:9f:9c:f2:5d:9f:c5:48:
49:49:02:21:44:93:99:4e:33:71:92:23:51:bf:5d:
ab:e8:62:b3:8d:70:3a:14:56:57:8d:8e:4d:a2:93:
91:d6:23:e8:61:e5:4b:d9:aa:8a:23:9c:7c:9b:6f:
35:62:c9:f4:95:91:84:0d:b1:b1:21:16:0b:80:c3:
49:b3:d0:38:44:75:ab:17:c6:98:2c:6d:e5:c1:9c:
1b:11:e5:1e:45:d2:c5:08:d9:92:c7:b9:e7:2a:11:
b1:ae:44:c8:82:0d:6e:d1:94:dc:1b:a2:d1:c0:be:
42:ef:0e:19:66:1d:8d:91:29:79:0f:78:21:23:e1:
e2:66:63:cc:c2:ef:ce:4a:67:08:49:ba:af:da:56:
6f:56:1c:c4:4a:b3:f8:24:f6:8d:54:87:2e:be:2f:
ad:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:1D:89:4A:93:15:F2:DF:4E:95:8C:33:42:09:7A:84:6C:83:3D:87
X509v3 Authority Key Identifier:
keyid:E8:9E:A7:20:75:24:FF:2A:C1:EC:7B:A9:F4:DB:06:11:6C:C6:D6:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AC3FC7664DC1A1621E7A5D246643C20BE3DEA6345AB0EE180974D4B4D5FFFD59/0/E89EA7207524FF2AC1EC7BA9F4DB06116CC6D683.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E89EA7207524FF2AC1EC7BA9F4DB06116CC6D683.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AC3FC7664DC1A1621E7A5D246643C20BE3DEA6345AB0EE180974D4B4D5FFFD59/0/3138362e39362e3235322e302f32322d3234203d3e20323632313436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.96.252.0/22
Signature Algorithm: sha256WithRSAEncryption
63:8c:c1:46:a6:c5:30:11:a9:e5:08:ff:04:15:76:de:36:28:
d1:6f:57:7e:8c:de:8d:15:95:c2:b0:d2:74:80:29:24:d8:3c:
fd:9a:77:dc:db:30:48:92:14:7a:f8:9e:b1:71:96:58:90:d3:
8d:06:58:aa:86:5a:ed:a1:d1:fb:c9:7e:02:f2:78:cd:d5:1f:
c7:c3:19:f0:e6:11:07:5d:b5:8a:74:a5:60:33:f0:a7:2e:89:
91:62:73:29:7f:62:c5:18:54:c5:95:63:bb:04:d0:0e:b0:b9:
fb:6a:8c:ed:19:68:c7:89:47:48:7e:7e:18:5b:b2:89:d5:79:
35:a7:32:1a:4f:9c:08:a7:92:29:53:e6:b9:18:79:f6:58:7a:
c1:44:d4:82:60:0f:66:1f:47:5f:22:61:b8:b4:7e:c6:3f:d0:
b6:24:8d:08:14:ec:e7:a0:41:7b:78:57:ca:39:de:3b:1e:b3:
8b:bb:6c:da:1a:7d:ad:13:a0:cf:45:f0:e6:b5:6b:2c:bd:2f:
95:00:0a:fd:29:2d:c5:e3:c0:7e:41:f8:b7:31:ec:75:09:32:
2c:42:35:45:4e:69:12:dd:86:8d:00:af:be:b9:b4:0f:cd:0c:
a1:28:24:ca:5e:43:63:32:e6:14:bf:2d:9c:cd:dd:37:29:b5:
5e:8b:b2:8f
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUZm5X5AQaIgr9JUpk6J/lbFHmI40wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTg5RUE3MjA3NTI0RkYyQUMxRUM3QkE5RjREQjA2MTE2
Q0M2RDY4MzAeFw0yNTAyMDQxODQ0MDBaFw0yNjAyMDMxODQ5MDBaMDMxMTAvBgNV
BAMTKDkxMUQ4OTRBOTMxNUYyREY0RTk1OEMzMzQyMDk3QTg0NkM4MzNEODcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxFmimba4YskKY2yaTMDsZQqnX
juiKKOOEqlVFjxmZzUChWJnUccN4kNl3fMnGEWlmyszPMQNUeiaYWbaAR1QklW+3
SN8tMKu5J5UBzmluN14WBCA+bdRO+RCz5q1mEb3Yn5zyXZ/FSElJAiFEk5lOM3GS
I1G/XavoYrONcDoUVleNjk2ik5HWI+hh5UvZqoojnHybbzViyfSVkYQNsbEhFguA
w0mz0DhEdasXxpgsbeXBnBsR5R5F0sUI2ZLHuecqEbGuRMiCDW7RlNwbotHAvkLv
DhlmHY2RKXkPeCEj4eJmY8zC785KZwhJuq/aVm9WHMRKs/gk9o1Uhy6+L611AgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUkR2JSpMV8t9OlYwzQgl6hGyDPYcwHwYDVR0j
BBgwFoAU6J6nIHUk/yrB7Hup9NsGEWzG1oMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BQzNGQzc2NjREQzFBMTYyMUU3QTVEMjQ2NjQzQzIwQkUz
REVBNjM0NUFCMEVFMTgwOTc0RDRCNEQ1RkZGRDU5LzAvRTg5RUE3MjA3NTI0RkYy
QUMxRUM3QkE5RjREQjA2MTE2Q0M2RDY4My5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FODlFQTcyMDc1MjRGRjJBQzFF
QzdCQTlGNERCMDYxMTZDQzZENjgzLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQUMzRkM3NjY0REMxQTE2MjFFN0E1RDI0NjY0M0MyMEJFM0RFQTYzNDVB
QjBFRTE4MDk3NEQ0QjRENUZGRkQ1OS8wLzMxMzgzNjJlMzkzNjJlMzIzNTMyMmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjMyMzEzNDM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCumD8
MA0GCSqGSIb3DQEBCwUAA4IBAQBjjMFGpsUwEanlCP8EFXbeNijRb1d+jN6NFZXC
sNJ0gCkk2Dz9mnfc2zBIkhR6+J6xcZZYkNONBliqhlrtodH7yX4C8njN1R/Hwxnw
5hEHXbWKdKVgM/CnLomRYnMpf2LFGFTFlWO7BNAOsLn7aoztGWjHiUdIfn4YW7KJ
1Xk1pzIaT5wIp5IpU+a5GHn2WHrBRNSCYA9mH0dfImG4tH7GP9C2JI0IFOznoEF7
eFfKOd47HrOLu2zaGn2tE6DPRfDmtWssvS+VAAr9KS3F48B+Qfi3Mex1CTIsQjVF
TmkS3YaNAK++ubQPzQyhKCTKXkNjMuYUvy2czd03KbVei7KP
-----END CERTIFICATE-----
Generated at Sat Apr 5 15:25:33 2025 by rpki-client