Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CFC63211A8F9C6FF567972E914B866B7E4BD6F9E5612597420EE70B61A4C723F/0/3139302e3138372e302e302f31362d3234203d3e203139393035.roa
File: 3139302e3138372e302e302f31362d3234203d3e203139393035.roa (raw, json)
Hash identifier: 6lIph/ocKl6UlFWpyxWgSCk6syEnAvtXiZRkhuZ+xHw=
Subject key identifier: A0:83:65:EF:7A:83:FF:BB:B6:73:FD:36:27:08:28:81:39:D8:47:17
Certificate issuer: /CN=2B1C1B7B81836005B455C4FF26DDAA1FB3A678E5
Certificate serial: 6170E17F0368FAA0B717A7409A9021A4C024477A
Authority key identifier: 2B:1C:1B:7B:81:83:60:05:B4:55:C4:FF:26:DD:AA:1F:B3:A6:78:E5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2B1C1B7B81836005B455C4FF26DDAA1FB3A678E5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CFC63211A8F9C6FF567972E914B866B7E4BD6F9E5612597420EE70B61A4C723F/0/3139302e3138372e302e302f31362d3234203d3e203139393035.roa
Signing time: Tue 04 Feb 2025 18:42:28 +0000
ROA not before: Tue 04 Feb 2025 18:37:28 +0000
ROA not after: Tue 03 Feb 2026 18:42:28 +0000
asID: 19905
IP address blocks: 190.187.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:70:e1:7f:03:68:fa:a0:b7:17:a7:40:9a:90:21:a4:c0:24:47:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B1C1B7B81836005B455C4FF26DDAA1FB3A678E5
Validity
Not Before: Feb 4 18:37:28 2025 GMT
Not After : Feb 3 18:42:28 2026 GMT
Subject: CN=A08365EF7A83FFBBB673FD362708288139D84717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5b:a7:a9:ac:fd:ba:a5:7e:eb:81:67:f5:97:
2d:71:a5:94:4c:ca:09:4a:64:0c:e6:f2:6d:69:60:
bd:a6:85:9c:81:52:3d:c7:96:8c:63:6a:fb:5f:1b:
44:ab:8a:0f:d6:44:1c:d7:d1:70:1a:14:6b:a6:a2:
4c:ed:66:37:20:a0:65:f9:cc:60:4f:02:ae:7a:d3:
9a:23:bf:1e:fb:a9:35:2c:9f:12:91:f6:cf:cc:9d:
1e:6f:34:0d:94:70:c9:8b:52:59:30:c3:6c:1a:5a:
5d:36:aa:82:c1:6e:27:f1:9b:2d:26:d2:82:48:90:
bd:45:7b:0b:64:4a:99:31:e1:fc:ab:46:8a:a4:da:
7d:3e:dd:bf:0b:08:4d:b3:09:62:4d:bf:df:d1:5b:
7a:25:cd:bb:e5:fb:25:61:72:5d:ea:96:a9:be:ee:
1b:f3:8e:e4:37:35:87:05:82:9e:ad:51:b0:38:85:
67:ac:03:d0:08:ad:28:cb:c8:04:6d:36:55:bc:d6:
4d:b3:93:5d:be:c8:a0:0e:e7:18:b5:08:c4:b8:95:
4c:52:0b:74:63:da:11:04:d5:2a:c6:33:ac:35:0c:
5c:9d:46:21:49:14:e8:7d:95:0c:46:2d:1a:a7:55:
6d:98:c0:a8:a0:a1:18:d5:98:1b:3d:81:72:26:c3:
94:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:83:65:EF:7A:83:FF:BB:B6:73:FD:36:27:08:28:81:39:D8:47:17
X509v3 Authority Key Identifier:
keyid:2B:1C:1B:7B:81:83:60:05:B4:55:C4:FF:26:DD:AA:1F:B3:A6:78:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CFC63211A8F9C6FF567972E914B866B7E4BD6F9E5612597420EE70B61A4C723F/0/2B1C1B7B81836005B455C4FF26DDAA1FB3A678E5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2B1C1B7B81836005B455C4FF26DDAA1FB3A678E5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CFC63211A8F9C6FF567972E914B866B7E4BD6F9E5612597420EE70B61A4C723F/0/3139302e3138372e302e302f31362d3234203d3e203139393035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.187.0.0/16
Signature Algorithm: sha256WithRSAEncryption
20:4c:b2:fb:e5:3b:15:b2:61:d4:3e:e6:2b:77:8c:ed:2f:21:
58:04:5b:ab:65:7a:8a:7c:b4:c8:1a:f2:c2:c5:8b:a7:e5:bb:
b4:4f:40:05:b7:70:23:dd:0b:98:7c:13:1d:de:e7:bb:7a:76:
39:c6:6b:a0:c5:39:ea:0d:a8:22:68:d9:fd:bd:3a:a5:f3:ab:
48:d3:f4:86:ad:f4:44:59:00:9a:39:72:65:ab:89:d2:f4:c4:
44:8a:93:a8:cb:a0:3d:25:74:c4:fe:69:7e:f9:db:ad:d7:d2:
a8:ee:78:df:10:de:3e:1e:78:1d:f2:6c:f2:b6:53:50:2c:ce:
74:62:90:b5:e1:69:25:f9:13:a7:37:6b:96:a5:f0:8c:ef:57:
49:f6:c8:6d:bd:ad:9b:39:93:9c:45:3a:47:23:d8:26:97:7d:
69:b1:3f:14:7c:a9:4f:59:c9:6b:5b:31:4e:14:2c:15:e8:d9:
c9:80:59:d6:12:88:2f:8a:56:e2:48:be:06:5d:37:9b:e0:42:
1c:a4:54:e5:86:22:d8:dd:3b:8c:9c:4f:7c:f0:75:92:8d:95:
f3:54:de:00:2f:bb:1c:c4:b6:d5:4e:e5:5a:16:e3:8b:2d:b8:
0e:eb:b6:6f:e0:42:14:1d:d5:62:ca:52:dc:ab:7a:c6:b8:b5:
ea:41:fc:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:02:36 2025 by rpki-client