Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CE87875795D50155FE74C45EEB511607BD0543560BFE918140F25EE2548B34E5/0/3139302e312e36342e302f31392d3234203d3e20323635373035.roa
File: 3139302e312e36342e302f31392d3234203d3e20323635373035.roa (raw, json)
Hash identifier: REg0zqV8xU6/6nCrjv4pZJralMNo6f5ng2OTNfjgdOk=
Subject key identifier: D6:54:83:8C:6E:F1:F8:CC:3E:A9:2F:B9:A0:02:C9:FF:A2:15:0B:94
Certificate issuer: /CN=CEFE34210764BCD42CB6C0FCD93828A016623EF1
Certificate serial: 1C6944D78F6023EFA782C1E4E8D76AECB83809EF
Authority key identifier: CE:FE:34:21:07:64:BC:D4:2C:B6:C0:FC:D9:38:28:A0:16:62:3E:F1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFE34210764BCD42CB6C0FCD93828A016623EF1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CE87875795D50155FE74C45EEB511607BD0543560BFE918140F25EE2548B34E5/0/3139302e312e36342e302f31392d3234203d3e20323635373035.roa
Signing time: Tue 04 Feb 2025 18:00:23 +0000
ROA not before: Tue 04 Feb 2025 17:55:23 +0000
ROA not after: Tue 03 Feb 2026 18:00:23 +0000
asID: 265705
IP address blocks: 190.1.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:69:44:d7:8f:60:23:ef:a7:82:c1:e4:e8:d7:6a:ec:b8:38:09:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEFE34210764BCD42CB6C0FCD93828A016623EF1
Validity
Not Before: Feb 4 17:55:23 2025 GMT
Not After : Feb 3 18:00:23 2026 GMT
Subject: CN=D654838C6EF1F8CC3EA92FB9A002C9FFA2150B94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8a:5f:d2:cc:0a:f5:05:c7:76:8d:cf:c4:de:
0f:bc:6f:5f:29:43:3b:aa:93:4d:1a:9d:66:94:b0:
e7:b1:2b:4a:44:9f:3c:25:3c:b6:26:78:2e:dc:f1:
5f:7a:f3:f0:be:0e:af:73:c9:74:9b:b4:91:37:31:
73:3c:03:8a:93:af:ad:86:4d:dc:16:32:b5:46:20:
17:b8:85:70:e1:58:57:40:43:da:f9:fc:e1:3a:d7:
03:4a:ac:21:b6:36:fe:cf:c7:44:71:f4:56:a0:62:
25:85:25:24:36:28:b0:de:b8:8e:04:87:cb:82:59:
88:c2:07:8c:18:6c:a1:d1:11:f0:17:ee:22:11:f2:
c0:81:29:ee:db:56:46:20:95:9f:ae:ec:92:c9:e3:
73:78:a2:ef:89:b0:02:a2:33:62:f5:40:51:62:72:
dc:e8:ea:4b:2b:f0:3e:49:db:b5:2e:d8:70:ef:ad:
e7:ab:55:fb:a6:85:a8:a5:b8:f3:98:ee:7c:05:bf:
9f:3e:cc:d3:de:4c:47:8e:3d:c9:f7:02:af:be:60:
bd:56:28:10:c0:44:d3:fe:9a:30:47:b9:b5:16:7d:
3e:aa:e2:ea:ea:0a:81:e2:8f:e0:c5:5d:ee:1b:e8:
d6:db:eb:17:3a:1f:0f:3d:da:63:5e:81:10:f1:b6:
8c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:54:83:8C:6E:F1:F8:CC:3E:A9:2F:B9:A0:02:C9:FF:A2:15:0B:94
X509v3 Authority Key Identifier:
keyid:CE:FE:34:21:07:64:BC:D4:2C:B6:C0:FC:D9:38:28:A0:16:62:3E:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CE87875795D50155FE74C45EEB511607BD0543560BFE918140F25EE2548B34E5/0/CEFE34210764BCD42CB6C0FCD93828A016623EF1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFE34210764BCD42CB6C0FCD93828A016623EF1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CE87875795D50155FE74C45EEB511607BD0543560BFE918140F25EE2548B34E5/0/3139302e312e36342e302f31392d3234203d3e20323635373035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.1.64.0/19
Signature Algorithm: sha256WithRSAEncryption
2f:e3:ed:77:32:9a:8a:06:d4:f2:3a:75:94:dd:a6:bb:ea:b4:
81:3e:47:9c:74:18:3e:44:51:1a:8b:5d:f5:a6:03:f5:38:fd:
04:43:63:cc:16:3f:1a:03:ca:e2:47:6b:ec:0e:9e:63:ac:c0:
6a:71:f2:9d:60:74:34:76:8f:75:ea:37:90:5f:a3:d6:5f:2d:
6b:17:23:d6:82:b9:a3:30:1c:53:38:50:60:02:a0:49:74:a2:
9a:c0:5b:25:18:71:78:20:06:1b:63:3b:d2:a5:19:47:a7:68:
ca:74:3c:cf:85:b6:3d:fa:b3:41:c9:cd:5c:8a:31:40:be:18:
31:89:a4:27:b6:1c:61:d8:c2:a2:e4:07:4d:07:55:c6:dc:f5:
02:d0:5d:39:23:bc:0d:45:25:23:23:e7:4f:7e:86:21:e6:e5:
b8:d8:8d:c3:c7:13:0c:06:54:fe:da:17:48:ea:55:e3:2e:28:
bd:37:f4:4b:99:1a:1e:cd:09:ef:d4:d7:4e:fb:7e:61:4f:af:
7f:a9:69:dd:a6:9d:9a:6b:73:75:93:43:d5:a2:37:8e:5e:02:
8b:12:f9:8b:99:33:4f:de:2f:26:7f:db:60:cf:4b:1c:cb:83:
c9:78:16:35:ff:aa:fd:cc:27:64:23:38:9f:91:56:dd:1f:31:
d4:6e:eb:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:39:20 2025 by rpki-client