Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e35362e302f32342d3234203d3e203132313237.roa
File: 3139302e35372e35362e302f32342d3234203d3e203132313237.roa (raw, json)
Hash identifier: 7ibX/UZHM0ArRSbKsi+uAB4iEO8xepdbUY4P7W8hb2w=
Subject key identifier: A4:D8:B4:AE:AC:BF:F4:79:B7:6A:59:56:34:BD:6F:E6:62:65:81:1F
Certificate issuer: /CN=DCDE245406EF53D802AC05030F2AF3C618B69FF2
Certificate serial: 05493F92F1083084494BE58D7511885B4368492E
Authority key identifier: DC:DE:24:54:06:EF:53:D8:02:AC:05:03:0F:2A:F3:C6:18:B6:9F:F2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e35362e302f32342d3234203d3e203132313237.roa
Signing time: Tue 04 Feb 2025 18:51:34 +0000
ROA not before: Tue 04 Feb 2025 18:46:34 +0000
ROA not after: Tue 03 Feb 2026 18:51:34 +0000
asID: 12127
IP address blocks: 190.57.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:49:3f:92:f1:08:30:84:49:4b:e5:8d:75:11:88:5b:43:68:49:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCDE245406EF53D802AC05030F2AF3C618B69FF2
Validity
Not Before: Feb 4 18:46:34 2025 GMT
Not After : Feb 3 18:51:34 2026 GMT
Subject: CN=A4D8B4AEACBFF479B76A595634BD6FE66265811F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:71:60:3c:38:bc:55:43:f5:23:dc:0b:1d:03:
4d:26:eb:f6:6d:dd:66:9c:e3:42:1a:f6:05:f5:cb:
e7:af:ec:f8:0e:4a:e7:e4:6b:60:81:b8:3b:94:a6:
3a:f4:a9:a6:da:5f:89:90:07:83:57:96:5f:33:94:
20:df:65:21:27:9b:86:b6:ed:cb:2b:31:49:c2:70:
64:ac:ba:66:23:19:03:c3:07:b3:3a:93:7a:d6:88:
49:33:de:8c:e4:36:fc:c4:36:26:ee:cd:96:08:f1:
db:74:c9:67:93:dc:f6:be:c2:96:71:39:87:2d:6a:
39:6f:a4:dc:ad:60:90:a0:32:90:90:a3:5c:c0:61:
20:eb:fb:ef:23:79:6b:2f:fa:a6:12:c6:0b:4e:fc:
60:a5:66:e3:f5:ac:6a:74:33:ad:3b:9c:e4:c6:1d:
59:cc:f6:d4:d0:58:41:a4:92:ce:f3:ca:85:28:1d:
86:99:55:e9:cd:c6:2b:2d:07:82:5e:e3:04:c7:be:
53:2b:8b:39:6b:0f:c2:07:c8:55:a5:6b:ac:c4:66:
77:83:7f:18:c6:11:61:a1:84:ff:b7:ad:24:40:31:
42:1f:71:23:a3:8a:e4:7e:f2:5c:20:d2:54:15:19:
a9:f3:55:be:aa:6f:80:2c:f0:08:25:23:34:e5:f9:
30:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D8:B4:AE:AC:BF:F4:79:B7:6A:59:56:34:BD:6F:E6:62:65:81:1F
X509v3 Authority Key Identifier:
keyid:DC:DE:24:54:06:EF:53:D8:02:AC:05:03:0F:2A:F3:C6:18:B6:9F:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e35362e302f32342d3234203d3e203132313237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.57.56.0/24
Signature Algorithm: sha256WithRSAEncryption
76:72:22:d6:43:20:90:db:43:5a:b4:d5:26:0b:98:58:3c:7a:
92:46:07:58:bf:6d:17:c0:88:9a:da:38:bb:51:b2:61:a7:4d:
5c:d9:76:d4:16:5f:9c:58:6d:f6:63:ca:d7:db:6b:3e:fb:c5:
2a:77:28:fd:c2:9b:34:ae:57:e9:70:b5:59:e7:fd:b0:0d:91:
13:c9:50:88:7d:44:21:45:99:52:13:ca:20:90:f2:ba:fe:a2:
45:3f:64:1e:c8:6b:6d:98:26:38:ee:53:e7:bd:fc:1e:cc:47:
4b:65:d6:58:05:ed:3e:cf:e1:dc:55:69:0f:ef:cd:43:65:e2:
4c:60:3d:f2:0a:9e:f8:97:32:06:35:05:8e:98:bc:eb:0c:5d:
2b:0a:db:6d:c0:7c:5b:71:49:96:4d:84:09:8d:16:28:2c:34:
0d:10:db:f1:b7:10:ab:e2:9a:44:ba:80:ef:70:18:87:5a:7e:
45:ed:67:84:ae:8f:03:b7:f9:67:c7:b7:cb:10:03:93:1a:9a:
15:fa:bb:45:f5:98:a5:62:46:7f:86:ac:51:4f:33:8f:3d:db:
3c:1b:a1:c2:37:b0:c4:91:52:ed:5b:a3:5a:e4:e7:05:3a:ed:
df:ef:f2:ae:af:bf:78:7d:32:dd:8f:08:a1:70:49:15:68:e9:
d0:6d:e8:9a
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUBUk/kvEIMIRJS+WNdRGIW0NoSS4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRENERTI0NTQwNkVGNTNEODAyQUMwNTAzMEYyQUYzQzYx
OEI2OUZGMjAeFw0yNTAyMDQxODQ2MzRaFw0yNjAyMDMxODUxMzRaMDMxMTAvBgNV
BAMTKEE0RDhCNEFFQUNCRkY0NzlCNzZBNTk1NjM0QkQ2RkU2NjI2NTgxMUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0cWA8OLxVQ/Uj3AsdA00m6/Zt
3Wac40Ia9gX1y+ev7PgOSufka2CBuDuUpjr0qabaX4mQB4NXll8zlCDfZSEnm4a2
7csrMUnCcGSsumYjGQPDB7M6k3rWiEkz3ozkNvzENibuzZYI8dt0yWeT3Pa+wpZx
OYctajlvpNytYJCgMpCQo1zAYSDr++8jeWsv+qYSxgtO/GClZuP1rGp0M607nOTG
HVnM9tTQWEGkks7zyoUoHYaZVenNxistB4Je4wTHvlMrizlrD8IHyFWla6zEZneD
fxjGEWGhhP+3rSRAMUIfcSOjiuR+8lwg0lQVGanzVb6qb4As8AglIzTl+TDJAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUpNi0rqy/9Hm3allWNL1v5mJlgR8wHwYDVR0j
BBgwFoAU3N4kVAbvU9gCrAUDDyrzxhi2n/IwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CRTVENDdBMzU5MkIyNTlCNUE0M0EzRTAxQkM5REQ0QjdE
NzZEOEFFQzM4N0UxOTU1RkU5MDk0QTNBQzZERTQ3LzAvRENERTI0NTQwNkVGNTNE
ODAyQUMwNTAzMEYyQUYzQzYxOEI2OUZGMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EQ0RFMjQ1NDA2RUY1M0Q4MDJB
QzA1MDMwRjJBRjNDNjE4QjY5RkYyLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQkU1RDQ3QTM1OTJCMjU5QjVBNDNBM0UwMUJDOURENEI3RDc2RDhBRUMz
ODdFMTk1NUZFOTA5NEEzQUM2REU0Ny8wLzMxMzkzMDJlMzUzNzJlMzUzNjJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzIzMTMyMzcucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC+OTgwDQYJ
KoZIhvcNAQELBQADggEBAHZyItZDIJDbQ1q01SYLmFg8epJGB1i/bRfAiJraOLtR
smGnTVzZdtQWX5xYbfZjytfbaz77xSp3KP3CmzSuV+lwtVnn/bANkRPJUIh9RCFF
mVITyiCQ8rr+okU/ZB7Ia22YJjjuU+e9/B7MR0tl1lgF7T7P4dxVaQ/vzUNl4kxg
PfIKnviXMgY1BY6YvOsMXSsK223AfFtxSZZNhAmNFigsNA0Q2/G3EKvimkS6gO9w
GIdafkXtZ4SujwO3+WfHt8sQA5MamhX6u0X1mKViRn+GrFFPM4892zwbocI3sMSR
Uu1bo1rk5wU67d/v8q6vv3h9Mt2PCKFwSRVo6dBt6Jo=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:13 2025 by rpki-client