Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e35382e302f32342d3234203d3e203132313237.roa
File: 3139302e35372e35382e302f32342d3234203d3e203132313237.roa (raw, json)
Hash identifier: ISvinO9sZGuiPUi5E0lSNLWoQYQ7/QHFo2B4FpuNnSg=
Subject key identifier: FE:96:0C:BC:83:50:AB:AB:B1:C6:3F:07:A1:F4:DD:92:E8:E9:82:C2
Certificate issuer: /CN=DCDE245406EF53D802AC05030F2AF3C618B69FF2
Certificate serial: 56883ECD1BAB10C9EAD76300283415C01A1F6C32
Authority key identifier: DC:DE:24:54:06:EF:53:D8:02:AC:05:03:0F:2A:F3:C6:18:B6:9F:F2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e35382e302f32342d3234203d3e203132313237.roa
Signing time: Tue 04 Feb 2025 18:51:33 +0000
ROA not before: Tue 04 Feb 2025 18:46:33 +0000
ROA not after: Tue 03 Feb 2026 18:51:33 +0000
asID: 12127
IP address blocks: 190.57.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:88:3e:cd:1b:ab:10:c9:ea:d7:63:00:28:34:15:c0:1a:1f:6c:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCDE245406EF53D802AC05030F2AF3C618B69FF2
Validity
Not Before: Feb 4 18:46:33 2025 GMT
Not After : Feb 3 18:51:33 2026 GMT
Subject: CN=FE960CBC8350ABABB1C63F07A1F4DD92E8E982C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0d:e7:6a:a1:02:26:d6:58:23:34:06:f1:ab:
e6:ca:be:b5:0a:27:e7:a8:00:bb:3e:f5:29:bd:77:
8a:cb:ae:09:27:ab:30:ea:21:7b:42:fb:b1:49:c1:
e0:55:79:97:4b:ee:1b:56:20:a0:9c:81:55:41:10:
b9:de:48:2d:03:5e:58:9e:9d:e1:92:34:49:e8:af:
2f:c2:cc:72:c2:2c:83:1a:d0:f6:c4:2a:78:59:03:
92:81:46:a3:03:4c:79:a4:ff:28:49:8d:6a:9d:f1:
cd:da:9d:41:7c:03:13:92:3d:ee:23:40:f5:82:80:
e3:83:6f:09:5e:e3:e8:df:4c:92:89:ab:15:7b:93:
40:27:72:2a:66:8d:ce:82:6d:14:e7:ba:a6:68:9f:
d9:7a:da:d8:26:8a:9a:5d:35:92:11:03:98:b1:f8:
35:84:a4:6f:98:7d:92:4b:f2:d9:db:aa:ca:85:17:
3c:b6:fa:2d:cf:7d:33:07:c8:53:c7:81:87:7b:20:
e9:f0:bc:d2:2d:0d:62:73:bf:71:7b:d0:bb:93:18:
4c:18:f0:41:f7:22:91:ed:94:7d:84:28:e1:98:4c:
f5:a0:03:2c:d1:16:f9:0c:ef:02:c7:c2:fc:59:4b:
3e:be:f2:92:28:53:20:7c:44:6d:55:b9:d4:45:a0:
34:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:96:0C:BC:83:50:AB:AB:B1:C6:3F:07:A1:F4:DD:92:E8:E9:82:C2
X509v3 Authority Key Identifier:
keyid:DC:DE:24:54:06:EF:53:D8:02:AC:05:03:0F:2A:F3:C6:18:B6:9F:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e35382e302f32342d3234203d3e203132313237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.57.58.0/24
Signature Algorithm: sha256WithRSAEncryption
43:7a:5c:cb:d6:5c:d2:d0:fe:f3:7b:5a:32:04:bc:31:43:be:
fd:bf:d4:06:75:34:eb:d1:7d:a2:7c:87:b6:10:e7:e1:9c:e8:
43:44:1c:be:ee:3c:ab:ac:27:e7:d7:a9:98:81:bd:1f:30:55:
a2:4d:8a:33:5e:35:2a:31:1b:f9:7c:89:fb:f6:3d:6f:46:13:
11:e4:64:3a:8b:a9:69:b5:fc:a6:5e:a9:38:91:45:c6:78:bb:
7d:c1:d8:32:7c:3d:47:51:6c:44:f3:fe:c6:39:b9:27:86:d6:
e3:ee:c4:9d:30:bf:a0:b1:d2:ca:10:ae:cf:21:bd:2b:02:d2:
7f:17:93:46:2c:37:cd:79:e9:75:a7:54:b5:cf:af:70:13:c8:
72:eb:72:a7:ed:1d:2d:58:ed:96:56:89:2d:fc:95:ef:41:64:
a8:50:22:98:f7:cb:4d:95:13:f1:65:3e:2e:dc:59:a3:f7:c3:
32:d8:86:b5:73:c0:51:ee:86:35:94:89:a2:43:c6:0a:62:e6:
3e:51:3a:4e:eb:8b:6a:54:bb:a0:c3:21:f7:82:55:c0:82:c7:
5f:cb:0c:6a:42:26:31:f1:57:5b:e3:ec:58:45:f9:f8:2c:f1:
a3:22:aa:45:63:54:b6:c3:04:b1:4b:aa:1f:ad:dd:b2:a5:b0:
ca:56:99:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:48 2025 by rpki-client