Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D165758D14E0C972F8BA5603302507FE8A677E7223D72A8211AE62DBD5565E7D/0/3138362e36342e3130342e302f32312d3231203d3e20323632323037.roa
File: 3138362e36342e3130342e302f32312d3231203d3e20323632323037.roa (raw, json)
Hash identifier: sQ3vcvkuajb8A0gi65c2qc/KNP6DvKwXx0foWlW5RB4=
Subject key identifier: F3:AF:04:2F:14:56:84:FC:2D:85:60:D8:AF:EE:08:16:DD:05:6C:B6
Certificate issuer: /CN=89BE1B948EADFCFCFDF457A0A903F357865A2553
Certificate serial: 694240D261CA5D8F882F244F25B9649D0953376F
Authority key identifier: 89:BE:1B:94:8E:AD:FC:FC:FD:F4:57:A0:A9:03:F3:57:86:5A:25:53
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89BE1B948EADFCFCFDF457A0A903F357865A2553.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D165758D14E0C972F8BA5603302507FE8A677E7223D72A8211AE62DBD5565E7D/0/3138362e36342e3130342e302f32312d3231203d3e20323632323037.roa
Signing time: Tue 04 Feb 2025 19:57:53 +0000
ROA not before: Tue 04 Feb 2025 19:52:53 +0000
ROA not after: Tue 03 Feb 2026 19:57:53 +0000
asID: 262207
IP address blocks: 186.64.104.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:42:40:d2:61:ca:5d:8f:88:2f:24:4f:25:b9:64:9d:09:53:37:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89BE1B948EADFCFCFDF457A0A903F357865A2553
Validity
Not Before: Feb 4 19:52:53 2025 GMT
Not After : Feb 3 19:57:53 2026 GMT
Subject: CN=F3AF042F145684FC2D8560D8AFEE0816DD056CB6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bf:22:1f:7a:15:6a:53:08:1a:82:5d:d1:de:
e8:4d:e7:d1:ce:4c:bf:37:a5:07:de:88:0f:7e:08:
0d:f5:62:94:52:18:fb:0e:1e:e7:61:4d:00:7c:03:
30:2b:21:f2:d7:26:f4:22:10:0a:3b:ff:10:22:45:
c3:49:a1:f5:75:32:3d:9a:99:5e:c7:92:dd:3a:c7:
9a:14:b7:68:ae:a9:f0:9b:d2:9c:cd:cc:35:a5:8b:
aa:db:aa:7f:c2:c2:d4:cc:2d:cd:d6:6f:d0:03:99:
12:17:15:81:99:47:ef:3d:79:a5:56:47:88:81:e5:
e7:ff:03:d0:67:ad:f3:60:a6:05:44:5b:f3:0a:70:
18:70:1c:38:45:63:f1:c1:dc:24:ac:d7:fb:07:09:
bf:55:10:2f:86:3d:00:cd:80:81:19:5a:21:17:44:
9f:cd:30:77:79:02:66:72:6c:24:cb:e5:b3:91:93:
62:d5:16:59:57:6a:21:eb:d1:5a:d1:de:b8:7e:a2:
3a:7c:75:a2:ce:4d:27:00:50:49:27:8f:03:ff:37:
09:34:ec:91:17:0e:86:33:07:97:fc:d1:e6:7a:75:
bc:df:66:10:a5:9a:8c:33:e0:16:1a:42:79:2b:36:
04:c1:ea:68:51:cd:73:6e:e0:16:ec:34:02:2d:3d:
ac:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:AF:04:2F:14:56:84:FC:2D:85:60:D8:AF:EE:08:16:DD:05:6C:B6
X509v3 Authority Key Identifier:
keyid:89:BE:1B:94:8E:AD:FC:FC:FD:F4:57:A0:A9:03:F3:57:86:5A:25:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D165758D14E0C972F8BA5603302507FE8A677E7223D72A8211AE62DBD5565E7D/0/89BE1B948EADFCFCFDF457A0A903F357865A2553.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89BE1B948EADFCFCFDF457A0A903F357865A2553.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D165758D14E0C972F8BA5603302507FE8A677E7223D72A8211AE62DBD5565E7D/0/3138362e36342e3130342e302f32312d3231203d3e20323632323037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.64.104.0/21
Signature Algorithm: sha256WithRSAEncryption
b0:08:96:c8:6d:74:e6:db:0a:70:79:8b:cd:26:4d:4b:82:fc:
14:78:19:27:36:ce:a6:96:36:d1:51:3b:4a:b4:10:05:5a:a5:
13:f9:09:76:3e:46:a9:10:65:52:3f:f7:f3:a9:a7:75:b7:eb:
88:58:d2:4b:25:d5:c7:ce:1a:12:e4:99:b6:92:55:32:f5:af:
58:cf:11:1a:d5:ae:8f:b9:7e:59:84:a0:58:9b:e3:a4:ba:ce:
fe:8c:90:f5:b9:37:62:44:02:76:ec:e9:c2:e9:54:a3:28:d7:
b1:36:08:35:2d:d9:fc:7a:0a:79:35:da:3d:8c:32:cb:57:42:
b8:48:e4:da:af:44:ee:b9:81:f5:8c:db:5b:d0:09:39:d2:de:
90:46:25:4b:1f:b1:12:dc:dc:8d:f6:67:28:9c:d9:e2:4a:6a:
ec:96:d9:21:b8:f2:05:b0:53:bb:74:dc:9c:93:ad:05:6e:ce:
4b:b2:91:37:0b:50:ff:fb:db:d8:88:df:1d:52:b7:6c:76:dd:
d8:c3:10:bb:36:34:b5:66:e1:67:45:c3:35:f8:be:a2:1b:12:
c7:f2:d6:b2:b4:db:04:3c:f9:c7:41:28:19:ac:cd:ef:ea:a6:
62:d9:11:1b:d7:68:a0:63:5c:e7:d0:dc:74:81:e3:7b:fc:26:
53:27:22:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:56:00 2025 by rpki-client