Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B04A2DF34E4F232E4B89D386BCC8374360C42BB940E77DDD8B35800B6355CBB3/0/3136382e3139342e3139372e302f32342d3234203d3e203238303939.roa
File: 3136382e3139342e3139372e302f32342d3234203d3e203238303939.roa (raw, json)
Hash identifier: ypAcxll4XFlYZXs+6hatlsUU42bcRQARdDXXh3cBH00=
Subject key identifier: 54:97:FC:9B:DD:84:3A:A2:96:5F:9F:9A:C0:62:BE:66:F0:B3:27:ED
Certificate issuer: /CN=4937097E14B869A93E421FF4BF07878F7FE1DB12
Certificate serial: 1A3885B8C7D19302C8F08C01C60CE8DB1B330154
Authority key identifier: 49:37:09:7E:14:B8:69:A9:3E:42:1F:F4:BF:07:87:8F:7F:E1:DB:12
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4937097E14B869A93E421FF4BF07878F7FE1DB12.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B04A2DF34E4F232E4B89D386BCC8374360C42BB940E77DDD8B35800B6355CBB3/0/3136382e3139342e3139372e302f32342d3234203d3e203238303939.roa
Signing time: Tue 04 Feb 2025 18:27:48 +0000
ROA not before: Tue 04 Feb 2025 18:22:48 +0000
ROA not after: Tue 03 Feb 2026 18:27:48 +0000
asID: 28099
IP address blocks: 168.194.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:38:85:b8:c7:d1:93:02:c8:f0:8c:01:c6:0c:e8:db:1b:33:01:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4937097E14B869A93E421FF4BF07878F7FE1DB12
Validity
Not Before: Feb 4 18:22:48 2025 GMT
Not After : Feb 3 18:27:48 2026 GMT
Subject: CN=5497FC9BDD843AA2965F9F9AC062BE66F0B327ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:17:04:50:15:87:0b:af:b5:c3:56:1b:d6:28:
9a:b2:c7:bf:a4:7f:66:42:b1:ef:22:52:72:70:97:
2d:df:48:32:46:4f:21:b6:91:ba:81:2d:23:e8:95:
5d:03:8a:05:bb:f1:42:ee:88:5a:79:57:da:35:16:
13:8d:86:14:ce:3c:84:bf:24:f9:25:cd:da:94:6d:
64:e8:dc:19:6b:e2:a9:08:ed:0f:1d:1a:fa:21:c4:
2b:27:89:19:81:e7:4a:79:1b:24:73:14:3d:21:6e:
cd:68:19:67:ab:24:c0:14:a5:7d:90:70:05:b3:03:
53:a9:18:2d:8b:2e:33:ca:46:80:7b:7a:46:99:da:
df:e3:3b:07:24:a3:a0:c7:73:98:fa:3f:80:86:0b:
03:61:13:ad:1a:45:e0:d1:35:18:55:fa:84:44:6e:
00:24:0b:61:72:95:f6:23:41:3b:06:3c:b5:7b:71:
d3:14:09:bf:52:92:73:8b:c6:5c:c2:ca:56:77:6f:
a6:07:9e:ee:0c:63:b3:09:48:28:b9:99:92:41:d0:
3e:a6:45:83:78:46:b0:c1:80:09:bc:c8:a1:05:ff:
c2:b9:2b:e4:a4:5f:01:a4:80:b7:b7:1b:ca:45:f0:
9b:51:5f:77:77:03:79:35:31:cc:a5:14:63:d1:ff:
0e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:97:FC:9B:DD:84:3A:A2:96:5F:9F:9A:C0:62:BE:66:F0:B3:27:ED
X509v3 Authority Key Identifier:
keyid:49:37:09:7E:14:B8:69:A9:3E:42:1F:F4:BF:07:87:8F:7F:E1:DB:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B04A2DF34E4F232E4B89D386BCC8374360C42BB940E77DDD8B35800B6355CBB3/0/4937097E14B869A93E421FF4BF07878F7FE1DB12.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4937097E14B869A93E421FF4BF07878F7FE1DB12.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B04A2DF34E4F232E4B89D386BCC8374360C42BB940E77DDD8B35800B6355CBB3/0/3136382e3139342e3139372e302f32342d3234203d3e203238303939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.194.197.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:6a:c3:87:23:6b:9a:15:cd:f1:3e:94:d9:70:bc:8a:19:eb:
a3:32:f0:85:4a:b4:0c:1e:62:0f:5c:c6:bf:e9:74:e1:55:4c:
0a:85:8e:c8:f4:91:c7:0b:67:a7:55:05:34:98:09:71:16:de:
d3:59:fa:44:b8:25:56:34:bf:03:58:3d:32:be:3d:c5:80:8a:
de:60:77:fd:a0:b5:e1:a0:b0:da:6e:40:69:4b:fa:72:d2:1c:
27:2e:ed:10:a5:b5:ba:c0:cd:3b:dc:79:38:da:92:f9:68:3b:
bd:93:ba:cd:56:9b:53:65:b9:3b:b7:48:12:9b:1d:10:62:f3:
cd:81:90:fa:79:95:1b:28:da:44:75:73:a0:c3:54:3d:85:75:
67:59:61:b1:75:9f:dc:e9:4f:6e:4d:35:6f:69:38:e9:aa:a7:
67:4e:ed:75:ba:2b:77:ee:37:52:6a:bd:7c:3e:45:c4:37:69:
30:db:5b:59:25:da:53:cc:05:f2:10:4f:7b:e4:a4:f7:13:9d:
3a:bf:e3:fb:67:29:77:24:71:3f:fa:84:2b:f4:0a:c0:58:4a:
6f:89:25:b8:ef:b7:0a:83:ad:7e:09:18:4c:f7:7d:28:88:ab:
0b:3b:07:b5:0f:b5:87:1e:37:54:40:44:66:02:24:d7:5b:63:
35:4f:c4:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:50:43 2025 by rpki-client