Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BB056300F70344FEF06FCE9406450282937001EA1C73BFC43B0A0465790A5DE4/0/3133312e3139362e33362e302f32322d3234203d3e20323635373733.roa
File: 3133312e3139362e33362e302f32322d3234203d3e20323635373733.roa (raw, json)
Hash identifier: H7aEYtu6WVcmBJ/LYyjuVlTRTtiGzazA09PbwXTdxgA=
Subject key identifier: C8:19:F3:0B:63:AB:89:9C:66:5F:B2:A3:97:99:03:BC:CA:D6:E9:40
Certificate issuer: /CN=989AFD3A9125DDC88ADCE2B6DFBC637E38A711F5
Certificate serial: 75C6382BD9422AC78CA1155C1035F3D414283B87
Authority key identifier: 98:9A:FD:3A:91:25:DD:C8:8A:DC:E2:B6:DF:BC:63:7E:38:A7:11:F5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/989AFD3A9125DDC88ADCE2B6DFBC637E38A711F5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BB056300F70344FEF06FCE9406450282937001EA1C73BFC43B0A0465790A5DE4/0/3133312e3139362e33362e302f32322d3234203d3e20323635373733.roa
Signing time: Tue 04 Feb 2025 18:10:29 +0000
ROA not before: Tue 04 Feb 2025 18:05:29 +0000
ROA not after: Tue 03 Feb 2026 18:10:29 +0000
asID: 265773
IP address blocks: 131.196.36.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:c6:38:2b:d9:42:2a:c7:8c:a1:15:5c:10:35:f3:d4:14:28:3b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=989AFD3A9125DDC88ADCE2B6DFBC637E38A711F5
Validity
Not Before: Feb 4 18:05:29 2025 GMT
Not After : Feb 3 18:10:29 2026 GMT
Subject: CN=C819F30B63AB899C665FB2A3979903BCCAD6E940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:65:c9:90:c8:32:b4:4b:ac:64:6d:cf:8a:2f:
6a:7e:11:a1:44:b3:59:9a:1d:d7:3b:b3:14:8c:92:
10:8e:9d:77:5c:28:bb:e6:b8:eb:63:cd:4e:9e:02:
bc:e4:1e:2b:be:f2:b7:3d:c9:18:48:29:3c:a0:9c:
2b:af:65:93:a0:94:a9:4f:d6:ec:b5:ab:c8:16:47:
66:01:5e:ee:25:6b:d7:8c:6b:cc:a7:d3:9b:85:ed:
d4:68:69:2e:e2:90:10:24:78:f4:70:92:03:11:45:
97:f3:18:23:92:db:48:b1:c5:df:b8:69:ea:40:ff:
14:b4:cc:6a:bf:62:bc:ad:66:d6:7f:37:6b:a6:93:
e0:6c:f7:c2:30:ca:50:b6:72:a7:79:e8:7f:e8:63:
16:d6:8e:57:cb:6b:3e:38:2d:b4:c3:18:fd:49:7a:
27:ec:68:17:5a:e0:c1:9a:20:93:85:e5:39:e3:82:
78:5c:f5:51:a2:98:ea:43:fd:c7:8b:43:fe:16:fd:
09:64:ec:ff:00:38:7f:0f:da:e5:55:9f:41:a7:93:
44:84:22:df:d9:b7:c5:ac:ef:3f:43:29:f7:95:fc:
ee:6b:1d:61:c9:17:b7:eb:57:c8:0b:42:5c:f0:a6:
ce:e5:d7:c7:f5:4a:82:22:72:84:a4:10:b4:ac:4e:
d1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:19:F3:0B:63:AB:89:9C:66:5F:B2:A3:97:99:03:BC:CA:D6:E9:40
X509v3 Authority Key Identifier:
keyid:98:9A:FD:3A:91:25:DD:C8:8A:DC:E2:B6:DF:BC:63:7E:38:A7:11:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BB056300F70344FEF06FCE9406450282937001EA1C73BFC43B0A0465790A5DE4/0/989AFD3A9125DDC88ADCE2B6DFBC637E38A711F5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/989AFD3A9125DDC88ADCE2B6DFBC637E38A711F5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BB056300F70344FEF06FCE9406450282937001EA1C73BFC43B0A0465790A5DE4/0/3133312e3139362e33362e302f32322d3234203d3e20323635373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.196.36.0/22
Signature Algorithm: sha256WithRSAEncryption
66:50:5e:6e:a1:b9:c2:cb:3b:58:96:32:b1:88:6a:af:32:71:
c4:90:89:78:e8:37:26:28:1d:26:68:69:46:98:f9:4a:c0:bf:
ef:75:b6:45:2a:fa:47:f9:19:86:7a:e6:f7:49:90:20:d6:9d:
24:33:ff:ac:c8:8a:52:df:c8:37:2f:a7:f3:fd:d8:d0:05:5f:
e3:38:89:00:39:a4:5b:af:6c:82:b5:f9:89:ee:ae:55:f7:5e:
1e:f1:f3:76:58:c0:0e:af:7f:1a:d1:7d:1d:33:72:f9:59:2d:
e4:98:e1:3d:e4:e9:24:70:48:17:9e:fb:c0:c6:78:f5:58:8c:
36:c4:c7:6d:1b:60:27:b9:6d:03:90:4f:a0:74:91:52:3d:d0:
3c:18:1d:4d:3e:90:b6:79:27:29:cf:95:5f:e7:00:72:3f:7f:
a4:64:8f:32:71:8f:63:d7:c0:08:f6:db:f3:25:52:68:e0:39:
1b:31:1b:09:74:f3:9b:d2:04:97:ff:39:6b:c8:9f:12:3e:7e:
16:ed:80:ec:f4:75:4f:65:07:c7:41:ed:45:7a:bb:4d:57:b3:
4a:f4:f2:98:e3:2b:4e:eb:55:1d:cd:99:a1:b7:bf:61:4d:7c:
ec:be:06:72:f1:a2:33:88:84:30:7f:94:c7:8e:57:86:a0:92:
75:16:1b:7a
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUdcY4K9lCKseMoRVcEDXz1BQoO4cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTg5QUZEM0E5MTI1RERDODhBRENFMkI2REZCQzYzN0Uz
OEE3MTFGNTAeFw0yNTAyMDQxODA1MjlaFw0yNjAyMDMxODEwMjlaMDMxMTAvBgNV
BAMTKEM4MTlGMzBCNjNBQjg5OUM2NjVGQjJBMzk3OTkwM0JDQ0FENkU5NDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXZcmQyDK0S6xkbc+KL2p+EaFE
s1maHdc7sxSMkhCOnXdcKLvmuOtjzU6eArzkHiu+8rc9yRhIKTygnCuvZZOglKlP
1uy1q8gWR2YBXu4la9eMa8yn05uF7dRoaS7ikBAkePRwkgMRRZfzGCOS20ixxd+4
aepA/xS0zGq/YrytZtZ/N2umk+Bs98IwylC2cqd56H/oYxbWjlfLaz44LbTDGP1J
eifsaBda4MGaIJOF5Tnjgnhc9VGimOpD/ceLQ/4W/Qlk7P8AOH8P2uVVn0Gnk0SE
It/Zt8Ws7z9DKfeV/O5rHWHJF7frV8gLQlzwps7l18f1SoIicoSkELSsTtE1AgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUyBnzC2OriZxmX7Kjl5kDvMrW6UAwHwYDVR0j
BBgwFoAUmJr9OpEl3ciK3OK237xjfjinEfUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CQjA1NjMwMEY3MDM0NEZFRjA2RkNFOTQwNjQ1MDI4Mjkz
NzAwMUVBMUM3M0JGQzQzQjBBMDQ2NTc5MEE1REU0LzAvOTg5QUZEM0E5MTI1RERD
ODhBRENFMkI2REZCQzYzN0UzOEE3MTFGNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85ODlBRkQzQTkxMjVEREM4OEFE
Q0UyQjZERkJDNjM3RTM4QTcxMUY1LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQkIwNTYzMDBGNzAzNDRGRUYwNkZDRTk0MDY0NTAyODI5MzcwMDFFQTFD
NzNCRkM0M0IwQTA0NjU3OTBBNURFNC8wLzMxMzMzMTJlMzEzOTM2MmUzMzM2MmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM1MzczNzMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCg8Qk
MA0GCSqGSIb3DQEBCwUAA4IBAQBmUF5uobnCyztYljKxiGqvMnHEkIl46DcmKB0m
aGlGmPlKwL/vdbZFKvpH+RmGeub3SZAg1p0kM/+syIpS38g3L6fz/djQBV/jOIkA
OaRbr2yCtfmJ7q5V914e8fN2WMAOr38a0X0dM3L5WS3kmOE95OkkcEgXnvvAxnj1
WIw2xMdtG2AnuW0DkE+gdJFSPdA8GB1NPpC2eScpz5Vf5wByP3+kZI8ycY9j18AI
9tvzJVJo4DkbMRsJdPOb0gSX/zlryJ8SPn4W7YDs9HVPZQfHQe1FertNV7NK9PKY
4ytO61UdzZmht79hTXzsvgZy8aIziIQwf5THjleGoJJ1Fht6
-----END CERTIFICATE-----
Generated at Mon Apr 7 15:16:33 2025 by rpki-client