Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B77F813CD1066BE7F7C49B60652ED2C7ACFEC8632443A619B9A47BBF296E54E9/0/3136382e39362e3234302e302f32332d3234203d3e2033353937.roa
File: 3136382e39362e3234302e302f32332d3234203d3e2033353937.roa (raw, json)
Hash identifier: zoU2B5V8tVrAPiln8tBWjVNQ08Si7V6dilzelsje7TQ=
Subject key identifier: 89:DC:99:3E:E4:B8:70:D4:C9:63:F7:75:16:D5:71:B9:3F:98:01:B5
Certificate issuer: /CN=F5141320452E9DA4404C594445360E531655082A
Certificate serial: 1884C5B61E6618785C1A1396A89D9C05D2DDB7B8
Authority key identifier: F5:14:13:20:45:2E:9D:A4:40:4C:59:44:45:36:0E:53:16:55:08:2A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F5141320452E9DA4404C594445360E531655082A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B77F813CD1066BE7F7C49B60652ED2C7ACFEC8632443A619B9A47BBF296E54E9/0/3136382e39362e3234302e302f32332d3234203d3e2033353937.roa
Signing time: Tue 04 Feb 2025 18:39:29 +0000
ROA not before: Tue 04 Feb 2025 18:34:29 +0000
ROA not after: Tue 03 Feb 2026 18:39:29 +0000
asID: 3597
IP address blocks: 168.96.240.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:84:c5:b6:1e:66:18:78:5c:1a:13:96:a8:9d:9c:05:d2:dd:b7:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F5141320452E9DA4404C594445360E531655082A
Validity
Not Before: Feb 4 18:34:29 2025 GMT
Not After : Feb 3 18:39:29 2026 GMT
Subject: CN=89DC993EE4B870D4C963F77516D571B93F9801B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:a5:14:e7:0e:e1:36:c1:ec:a8:a5:54:ab:f7:
b0:00:3b:24:ff:93:85:fd:c5:f5:38:6a:85:b7:53:
d3:11:03:3a:13:f6:79:0d:63:4d:fe:cf:af:9c:a2:
32:80:ad:31:57:b8:78:c1:9f:f0:de:ca:90:9f:6a:
f2:e2:31:5a:44:ae:b6:0a:05:64:07:ca:39:90:e5:
1e:bc:e4:68:33:f5:f6:96:80:9a:57:2e:8c:36:87:
97:1f:9e:d9:a7:44:f6:73:60:c0:97:09:9a:11:14:
ad:64:8f:7a:33:d6:d0:30:86:38:9c:42:a7:2d:29:
dd:35:52:60:a9:7a:8e:9a:c6:c0:f8:d3:1b:34:55:
3f:83:54:e6:9d:2f:e0:e4:b2:74:97:57:51:58:58:
bf:3c:54:48:da:32:47:c7:a7:97:59:68:da:c4:78:
75:c4:01:ac:e9:27:66:3a:d4:c6:a3:ae:46:43:b4:
15:80:66:fd:64:3a:c7:13:0b:d0:f5:de:2b:82:5b:
36:e1:f6:dd:f7:82:41:fe:4f:fe:d3:df:ff:2e:90:
c6:30:41:be:0f:6b:4c:ac:96:4e:9d:3f:5c:84:de:
d7:37:c6:19:2c:2b:c4:75:56:40:3f:32:5f:fd:f5:
c8:c8:36:c8:69:ca:40:4c:ce:cb:77:d3:66:be:39:
bc:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:DC:99:3E:E4:B8:70:D4:C9:63:F7:75:16:D5:71:B9:3F:98:01:B5
X509v3 Authority Key Identifier:
keyid:F5:14:13:20:45:2E:9D:A4:40:4C:59:44:45:36:0E:53:16:55:08:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B77F813CD1066BE7F7C49B60652ED2C7ACFEC8632443A619B9A47BBF296E54E9/0/F5141320452E9DA4404C594445360E531655082A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F5141320452E9DA4404C594445360E531655082A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B77F813CD1066BE7F7C49B60652ED2C7ACFEC8632443A619B9A47BBF296E54E9/0/3136382e39362e3234302e302f32332d3234203d3e2033353937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.96.240.0/23
Signature Algorithm: sha256WithRSAEncryption
43:b0:da:b5:b2:10:db:bb:e1:08:cf:32:6b:8d:15:fc:74:c9:
31:c7:f6:a3:f1:c4:d9:2c:77:9f:b7:50:98:f1:a5:4f:e7:11:
3d:a8:c6:1b:93:55:8b:66:9d:f6:0a:cd:ee:00:4d:03:ff:f9:
62:ae:4c:99:27:ad:b8:8c:a8:ff:e2:f8:ee:04:8c:48:ce:68:
33:24:71:a7:e8:0e:f3:e6:fd:06:44:d8:bf:22:46:47:2d:a9:
4c:87:c5:e0:53:48:96:b1:2e:5b:74:f7:8c:51:f6:44:a4:27:
27:11:46:ba:46:7e:3a:6c:7a:b9:65:e2:7a:e5:19:c6:a2:13:
fb:f1:5a:77:1b:0f:33:ef:b9:62:15:1d:a6:fa:7d:b9:00:9a:
35:5d:51:18:54:3a:13:20:ba:7d:26:83:98:af:35:b2:cd:13:
84:bb:f1:ae:b2:55:ff:c1:bb:53:dd:4c:0c:09:93:a5:53:05:
15:d2:33:1d:36:50:29:34:a6:72:66:78:89:65:5d:82:af:03:
4d:84:63:48:ac:8f:6f:32:12:f3:92:c0:26:d9:b4:3a:19:14:
0b:bd:c8:4f:62:a2:97:88:da:4b:98:ba:de:09:92:83:23:ed:
04:a4:9a:18:12:87:a6:d7:bd:b5:dd:c7:17:77:d8:e6:c2:19:
ee:23:3c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:52:51 2025 by rpki-client