Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e39362e302f32312d3234203d3e20323633373833.roa
File: 3139302e35372e39362e302f32312d3234203d3e20323633373833.roa (raw, json)
Hash identifier: R6mrwifbydxMqROYbKh7kOX+iL4/PD0lsBYIXCN5RhA=
Subject key identifier: 00:EF:B6:8C:5C:9A:52:6F:22:FD:82:16:FB:E7:72:E4:04:D3:E3:22
Certificate issuer: /CN=DCDE245406EF53D802AC05030F2AF3C618B69FF2
Certificate serial: 29F6306FCDB476BB4F6D4036C0B63D0E84549A94
Authority key identifier: DC:DE:24:54:06:EF:53:D8:02:AC:05:03:0F:2A:F3:C6:18:B6:9F:F2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e39362e302f32312d3234203d3e20323633373833.roa
Signing time: Tue 04 Feb 2025 18:51:23 +0000
ROA not before: Tue 04 Feb 2025 18:46:23 +0000
ROA not after: Tue 03 Feb 2026 18:51:23 +0000
asID: 263783
IP address blocks: 190.57.96.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:f6:30:6f:cd:b4:76:bb:4f:6d:40:36:c0:b6:3d:0e:84:54:9a:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCDE245406EF53D802AC05030F2AF3C618B69FF2
Validity
Not Before: Feb 4 18:46:23 2025 GMT
Not After : Feb 3 18:51:23 2026 GMT
Subject: CN=00EFB68C5C9A526F22FD8216FBE772E404D3E322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:18:7d:86:17:01:bd:83:ad:38:a3:05:9c:8b:
c1:9f:0b:69:97:0f:b1:96:1f:f7:1f:ca:13:66:0a:
d9:65:68:97:a9:a8:27:d7:c0:ae:10:99:64:4e:bb:
54:4e:85:90:ba:fe:57:b1:17:6d:2d:3d:87:5e:85:
5a:8b:bd:16:91:41:ad:28:82:32:79:5a:47:ee:ee:
27:69:13:5b:6c:38:91:31:45:2e:35:71:88:ac:bd:
69:e0:aa:9f:ca:6f:42:b0:4c:77:bd:7e:a8:40:d7:
78:9d:8b:3a:db:2a:a2:99:f1:5e:34:a1:64:90:73:
3e:9d:60:99:2f:40:b7:7e:d9:4f:f1:ff:86:84:5c:
69:ef:37:b6:12:e8:c3:d7:a6:17:bd:14:f5:b4:72:
7d:ae:6d:7d:ca:cb:86:97:5e:a4:fc:87:c0:9d:0a:
82:69:88:50:1d:70:e6:72:39:bf:ad:5c:e2:6d:0c:
61:22:89:f4:35:88:68:ff:d6:68:84:bc:7b:00:8b:
62:5e:8e:e5:be:8c:1f:0c:19:72:64:6b:f7:90:c2:
1f:7b:4b:06:5e:e3:29:20:b0:9f:a6:b9:b2:12:a3:
31:6d:b8:40:1a:8d:a0:9c:a1:8b:97:87:3a:37:58:
72:0f:4e:0b:04:80:41:f1:ad:31:0d:3e:0a:66:8c:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:EF:B6:8C:5C:9A:52:6F:22:FD:82:16:FB:E7:72:E4:04:D3:E3:22
X509v3 Authority Key Identifier:
keyid:DC:DE:24:54:06:EF:53:D8:02:AC:05:03:0F:2A:F3:C6:18:B6:9F:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e39362e302f32312d3234203d3e20323633373833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.57.96.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:00:49:d4:8a:61:b1:5c:83:33:4c:ac:46:b5:38:35:fe:ec:
78:8e:72:34:92:b0:1f:31:3d:f4:9e:7b:26:69:fc:26:b2:e3:
0d:82:b4:4c:a1:81:1e:ba:0d:61:53:d9:b0:83:89:b1:87:ad:
29:7e:04:b3:f1:eb:ba:95:b4:61:bf:fb:9c:2e:e5:ba:15:d2:
aa:ae:f3:e4:b6:2c:15:9b:cd:9f:83:f1:b6:20:7e:4d:7c:9a:
be:10:40:99:ce:dc:d4:70:f8:c4:11:c8:a5:2a:ca:8f:4f:21:
7a:a8:8e:32:b2:08:ee:e1:b0:6f:78:d2:0e:b9:86:8a:b4:44:
e3:19:d6:f2:86:0b:11:2c:ec:7a:89:0e:b7:79:cd:10:a6:2f:
40:94:32:72:c4:b2:bd:11:ad:47:a4:14:e5:30:94:24:95:bb:
08:40:5b:a5:a7:d4:b8:8c:2c:13:96:eb:7f:e2:d2:7d:1b:28:
e1:d5:4f:a2:74:23:14:00:c9:c1:c2:2b:79:cc:dd:4f:08:55:
45:f1:ee:65:18:3f:9d:25:e5:89:d7:b1:86:e7:13:9c:ec:52:
0b:a7:87:bc:87:a7:f4:65:ad:e9:a3:c0:68:e7:84:09:f7:70:
3b:d9:1e:3e:85:37:83:50:9d:fa:73:fb:19:09:3e:dc:d8:5b:
7d:64:f8:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:10 2025 by rpki-client