Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e3132302e302f32322d3234203d3e20323633373833.roa
File: 3139302e35372e3132302e302f32322d3234203d3e20323633373833.roa (raw, json)
Hash identifier: jWFWdo0TI/UGWwbAe8L6Nj7o9Z4KPmYuNtR2iRUY1vc=
Subject key identifier: B5:1A:38:A6:13:CF:42:2D:03:B7:E8:08:98:ED:7C:74:88:D8:98:2D
Certificate issuer: /CN=DCDE245406EF53D802AC05030F2AF3C618B69FF2
Certificate serial: 1D3C349E8F942D510DD7F8BA31518F57405C24AD
Authority key identifier: DC:DE:24:54:06:EF:53:D8:02:AC:05:03:0F:2A:F3:C6:18:B6:9F:F2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e3132302e302f32322d3234203d3e20323633373833.roa
Signing time: Tue 04 Feb 2025 18:51:26 +0000
ROA not before: Tue 04 Feb 2025 18:46:26 +0000
ROA not after: Tue 03 Feb 2026 18:51:26 +0000
asID: 263783
IP address blocks: 190.57.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:3c:34:9e:8f:94:2d:51:0d:d7:f8:ba:31:51:8f:57:40:5c:24:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCDE245406EF53D802AC05030F2AF3C618B69FF2
Validity
Not Before: Feb 4 18:46:26 2025 GMT
Not After : Feb 3 18:51:26 2026 GMT
Subject: CN=B51A38A613CF422D03B7E80898ED7C7488D8982D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a8:52:e9:35:74:c4:dd:c0:f0:18:af:61:e1:
8c:11:3f:c5:92:32:61:1e:90:53:34:e3:e9:a0:b5:
07:b5:42:ef:e6:e3:8f:b6:f5:44:f2:82:c0:24:6d:
94:92:62:14:87:da:2a:3d:2d:f6:61:b9:25:68:3f:
12:71:8a:fb:7c:55:ce:ee:dc:f5:3f:d8:4b:d8:24:
a5:3b:46:cd:bb:e7:3a:02:8f:75:e2:d6:7d:ff:c3:
27:07:22:fc:2b:41:64:9e:1e:c4:5f:20:12:03:11:
ec:57:a7:df:39:aa:66:52:0c:f6:2c:57:f7:9b:56:
05:57:04:42:46:44:e1:23:a3:76:92:01:d3:44:a0:
61:6d:7f:2c:34:50:ce:eb:ca:27:90:94:a9:85:e0:
14:91:ef:f6:c0:dd:cb:bc:7e:4b:e6:59:9a:16:d1:
6b:cc:c8:b9:19:7f:fa:26:5a:2f:27:17:c9:72:9b:
ce:17:8b:39:cf:61:ea:70:99:a4:bd:e0:95:9c:09:
54:86:e7:4b:48:4f:90:af:21:63:7e:d8:d7:3d:df:
a7:0c:7a:02:84:fa:df:b5:65:40:94:f6:ba:87:08:
f5:8a:b8:4e:01:56:0d:fe:1d:12:8a:ab:66:37:4a:
2a:a2:aa:6a:9c:1c:ca:05:d8:70:38:a4:8e:83:c0:
f8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:1A:38:A6:13:CF:42:2D:03:B7:E8:08:98:ED:7C:74:88:D8:98:2D
X509v3 Authority Key Identifier:
keyid:DC:DE:24:54:06:EF:53:D8:02:AC:05:03:0F:2A:F3:C6:18:B6:9F:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e3132302e302f32322d3234203d3e20323633373833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.57.120.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:bd:87:30:e0:f5:55:ab:fc:30:ae:b6:13:d8:2f:06:d1:35:
a5:62:46:6b:31:71:ec:a6:82:2b:5e:91:18:6d:2b:0a:2b:9c:
3a:4e:d5:f0:74:ae:6f:ae:27:8f:19:5d:71:96:1d:41:73:c4:
4a:4b:1b:14:74:85:7b:3f:e5:85:8f:03:09:cc:ee:96:04:7b:
32:af:9e:1a:78:b0:7f:64:2a:49:a4:bb:ad:25:fe:a9:5c:18:
80:04:81:db:4a:c2:fd:9d:71:1a:17:de:5c:c3:29:29:c0:38:
d2:0c:0d:09:a6:6b:4b:97:70:9d:75:fd:76:1a:7c:4a:2e:92:
a2:21:cd:db:7e:b1:7b:8f:c9:8a:dd:da:3a:28:25:bf:53:65:
d4:56:e1:1a:5b:fa:02:ff:a8:5b:d3:9f:10:ec:5c:a5:95:dd:
b4:38:15:46:ae:c2:a0:78:95:5c:08:f6:d2:a8:09:db:2d:04:
ec:ec:b3:44:da:87:55:74:bb:3e:f5:3b:2b:f5:31:8a:39:90:
3f:c8:5b:94:27:1a:8e:50:1b:81:75:ee:95:d1:b4:7e:0c:63:
1b:0d:a6:f6:f5:30:78:0f:d1:32:ff:25:4f:87:a8:13:16:01:
8b:ba:d9:7b:ae:97:db:51:04:6e:89:09:76:0c:2a:f8:50:2c:
1a:d0:df:85
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUHTw0no+ULVEN1/i6MVGPV0BcJK0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRENERTI0NTQwNkVGNTNEODAyQUMwNTAzMEYyQUYzQzYx
OEI2OUZGMjAeFw0yNTAyMDQxODQ2MjZaFw0yNjAyMDMxODUxMjZaMDMxMTAvBgNV
BAMTKEI1MUEzOEE2MTNDRjQyMkQwM0I3RTgwODk4RUQ3Qzc0ODhEODk4MkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcqFLpNXTE3cDwGK9h4YwRP8WS
MmEekFM04+mgtQe1Qu/m44+29UTygsAkbZSSYhSH2io9LfZhuSVoPxJxivt8Vc7u
3PU/2EvYJKU7Rs275zoCj3Xi1n3/wycHIvwrQWSeHsRfIBIDEexXp985qmZSDPYs
V/ebVgVXBEJGROEjo3aSAdNEoGFtfyw0UM7ryieQlKmF4BSR7/bA3cu8fkvmWZoW
0WvMyLkZf/omWi8nF8lym84XiznPYepwmaS94JWcCVSG50tIT5CvIWN+2Nc936cM
egKE+t+1ZUCU9rqHCPWKuE4BVg3+HRKKq2Y3SiqiqmqcHMoF2HA4pI6DwPhXAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUtRo4phPPQi0Dt+gImO18dIjYmC0wHwYDVR0j
BBgwFoAU3N4kVAbvU9gCrAUDDyrzxhi2n/IwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CRTVENDdBMzU5MkIyNTlCNUE0M0EzRTAxQkM5REQ0QjdE
NzZEOEFFQzM4N0UxOTU1RkU5MDk0QTNBQzZERTQ3LzAvRENERTI0NTQwNkVGNTNE
ODAyQUMwNTAzMEYyQUYzQzYxOEI2OUZGMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EQ0RFMjQ1NDA2RUY1M0Q4MDJB
QzA1MDMwRjJBRjNDNjE4QjY5RkYyLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQkU1RDQ3QTM1OTJCMjU5QjVBNDNBM0UwMUJDOURENEI3RDc2RDhBRUMz
ODdFMTk1NUZFOTA5NEEzQUM2REU0Ny8wLzMxMzkzMDJlMzUzNzJlMzEzMjMwMmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjMzMzczODMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCvjl4
MA0GCSqGSIb3DQEBCwUAA4IBAQDJvYcw4PVVq/wwrrYT2C8G0TWlYkZrMXHspoIr
XpEYbSsKK5w6TtXwdK5vriePGV1xlh1Bc8RKSxsUdIV7P+WFjwMJzO6WBHsyr54a
eLB/ZCpJpLutJf6pXBiABIHbSsL9nXEaF95cwykpwDjSDA0JpmtLl3Cddf12GnxK
LpKiIc3bfrF7j8mK3do6KCW/U2XUVuEaW/oC/6hb058Q7Fylld20OBVGrsKgeJVc
CPbSqAnbLQTs7LNE2odVdLs+9Tsr9TGKOZA/yFuUJxqOUBuBde6V0bR+DGMbDab2
9TB4D9Ey/yVPh6gTFgGLutl7rpfbUQRuiQl2DCr4UCwa0N+F
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:22 2025 by rpki-client