Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D41A055DBF36FBB2F8E5AB51A1E19DF2860F5802EF1D4CBDA8CE7A25067E1F33/0/3139322e3130302e3136312e302f32342d3234203d3e2038313531.roa
File: 3139322e3130302e3136312e302f32342d3234203d3e2038313531.roa (raw, json)
Hash identifier: d3dJQv8uey5yfpWRwXwR89dbhdHPfcFmpinQxG0BIRY=
Subject key identifier: 7E:F8:A0:5B:C1:FF:F7:0E:F7:FD:04:87:15:97:5D:6E:EA:BC:B8:38
Certificate issuer: /CN=B6D38CFDC9CFDC41C617EF92AD75122590D93E87
Certificate serial: 3D39845D6D560872C503E4FCF1CD5C94E14B9E76
Authority key identifier: B6:D3:8C:FD:C9:CF:DC:41:C6:17:EF:92:AD:75:12:25:90:D9:3E:87
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B6D38CFDC9CFDC41C617EF92AD75122590D93E87.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D41A055DBF36FBB2F8E5AB51A1E19DF2860F5802EF1D4CBDA8CE7A25067E1F33/0/3139322e3130302e3136312e302f32342d3234203d3e2038313531.roa
Signing time: Tue 04 Feb 2025 18:21:18 +0000
ROA not before: Tue 04 Feb 2025 18:16:18 +0000
ROA not after: Tue 03 Feb 2026 18:21:18 +0000
asID: 8151
IP address blocks: 192.100.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:39:84:5d:6d:56:08:72:c5:03:e4:fc:f1:cd:5c:94:e1:4b:9e:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6D38CFDC9CFDC41C617EF92AD75122590D93E87
Validity
Not Before: Feb 4 18:16:18 2025 GMT
Not After : Feb 3 18:21:18 2026 GMT
Subject: CN=7EF8A05BC1FFF70EF7FD048715975D6EEABCB838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d6:85:e5:c6:f4:df:a5:8a:28:90:8c:98:f9:
0b:02:ba:7f:b9:0a:ba:83:94:9d:e8:28:9e:7e:73:
50:20:e2:63:4a:81:d4:21:b2:7b:fa:ef:8e:5f:82:
d7:80:ef:ba:ed:56:76:63:79:78:9e:39:d8:86:af:
66:d3:37:3d:c3:45:57:fb:35:21:80:d8:e8:0a:c5:
42:62:ff:25:e3:f6:c9:47:00:20:b7:6c:86:60:92:
00:65:4d:0a:30:6f:c5:b3:02:ae:96:36:f9:00:38:
be:7e:0c:2a:03:d8:3d:a8:f9:be:7d:31:b4:4d:2d:
07:95:44:27:7a:c3:77:f6:ff:91:34:1f:f3:e3:0c:
6f:5f:72:4c:10:8d:1d:65:2c:25:3d:37:5e:5f:02:
50:a4:86:81:d4:77:ce:f8:be:43:c7:ff:2c:13:c1:
d8:46:92:80:9b:95:a0:ef:6b:0d:03:67:b2:5c:a5:
94:36:23:6b:90:87:75:ba:c9:12:ef:f2:6c:28:ca:
bd:ba:22:ab:ca:4d:2e:82:3d:a6:8d:b3:09:d8:44:
89:58:8a:35:b0:1f:57:d3:ab:c4:ea:54:dd:9b:67:
a3:c3:d5:f7:a7:2f:21:15:c1:5a:d6:cd:80:fe:f0:
ea:39:23:b4:0d:61:d7:c8:ba:ce:84:ec:ee:6e:3a:
86:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F8:A0:5B:C1:FF:F7:0E:F7:FD:04:87:15:97:5D:6E:EA:BC:B8:38
X509v3 Authority Key Identifier:
keyid:B6:D3:8C:FD:C9:CF:DC:41:C6:17:EF:92:AD:75:12:25:90:D9:3E:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D41A055DBF36FBB2F8E5AB51A1E19DF2860F5802EF1D4CBDA8CE7A25067E1F33/0/B6D38CFDC9CFDC41C617EF92AD75122590D93E87.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B6D38CFDC9CFDC41C617EF92AD75122590D93E87.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D41A055DBF36FBB2F8E5AB51A1E19DF2860F5802EF1D4CBDA8CE7A25067E1F33/0/3139322e3130302e3136312e302f32342d3234203d3e2038313531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.100.161.0/24
Signature Algorithm: sha256WithRSAEncryption
28:b7:6a:1a:04:65:6e:b5:29:c5:6c:1f:79:ab:da:eb:47:b9:
a1:ad:bc:37:0c:2c:fb:a2:61:2d:4f:92:9a:80:85:49:59:fe:
c7:7f:6a:ee:0e:c2:38:1e:ca:11:58:c4:44:e1:40:8c:1a:bf:
3a:e6:6b:50:23:af:fe:3f:78:06:b2:f6:21:69:70:3a:46:f7:
91:46:1d:8b:b3:59:5b:84:50:3d:d5:54:c4:8a:f6:ea:2b:d5:
91:3d:7f:1a:f1:a5:5f:6a:ce:f2:3b:2a:93:38:1b:cb:e8:ad:
04:aa:9b:e6:98:f2:59:21:8f:8f:c8:ea:c1:8d:4c:0a:3d:04:
9b:fc:40:28:aa:7d:4b:e1:c4:a0:6f:9e:c9:88:07:39:ed:66:
ba:a7:63:21:7e:cd:52:82:7e:88:5a:d4:a5:22:34:62:de:ed:
af:9b:a7:c0:4c:01:54:b2:a1:26:79:92:c1:94:bb:96:cb:90:
46:52:a3:8e:59:2c:f3:91:b6:cd:e6:76:9a:cf:29:6f:6b:81:
d8:de:43:17:c6:dc:68:fc:6a:7c:b2:ce:bb:1e:19:e9:45:23:
0e:15:49:73:9f:0d:6b:33:d4:7f:ed:64:f8:ff:a7:93:dd:d3:
3f:50:c6:52:a9:f8:9a:eb:87:98:5e:68:9b:54:26:84:4b:6a:
79:82:df:03
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUPTmEXW1WCHLFA+T88c1clOFLnnYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjZEMzhDRkRDOUNGREM0MUM2MTdFRjkyQUQ3NTEyMjU5
MEQ5M0U4NzAeFw0yNTAyMDQxODE2MThaFw0yNjAyMDMxODIxMThaMDMxMTAvBgNV
BAMTKDdFRjhBMDVCQzFGRkY3MEVGN0ZEMDQ4NzE1OTc1RDZFRUFCQ0I4MzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm1oXlxvTfpYookIyY+QsCun+5
CrqDlJ3oKJ5+c1Ag4mNKgdQhsnv6745fgteA77rtVnZjeXieOdiGr2bTNz3DRVf7
NSGA2OgKxUJi/yXj9slHACC3bIZgkgBlTQowb8WzAq6WNvkAOL5+DCoD2D2o+b59
MbRNLQeVRCd6w3f2/5E0H/PjDG9fckwQjR1lLCU9N15fAlCkhoHUd874vkPH/ywT
wdhGkoCblaDvaw0DZ7JcpZQ2I2uQh3W6yRLv8mwoyr26IqvKTS6CPaaNswnYRIlY
ijWwH1fTq8TqVN2bZ6PD1fenLyEVwVrWzYD+8Oo5I7QNYdfIus6E7O5uOoY9AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUfvigW8H/9w73/QSHFZddbuq8uDgwHwYDVR0j
BBgwFoAUttOM/cnP3EHGF++SrXUSJZDZPocwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9ENDFBMDU1REJGMzZGQkIyRjhFNUFCNTFBMUUxOURGMjg2
MEY1ODAyRUYxRDRDQkRBOENFN0EyNTA2N0UxRjMzLzAvQjZEMzhDRkRDOUNGREM0
MUM2MTdFRjkyQUQ3NTEyMjU5MEQ5M0U4Ny5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CNkQzOENGREM5Q0ZEQzQxQzYx
N0VGOTJBRDc1MTIyNTkwRDkzRTg3LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDQxQTA1NURCRjM2RkJCMkY4RTVBQjUxQTFFMTlERjI4NjBGNTgwMkVG
MUQ0Q0JEQThDRTdBMjUwNjdFMUYzMy8wLzMxMzkzMjJlMzEzMDMwMmUzMTM2MzEy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzODMxMzUzMS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBkoTAN
BgkqhkiG9w0BAQsFAAOCAQEAKLdqGgRlbrUpxWwfeava60e5oa28Nwws+6JhLU+S
moCFSVn+x39q7g7COB7KEVjEROFAjBq/OuZrUCOv/j94BrL2IWlwOkb3kUYdi7NZ
W4RQPdVUxIr26ivVkT1/GvGlX2rO8jsqkzgby+itBKqb5pjyWSGPj8jqwY1MCj0E
m/xAKKp9S+HEoG+eyYgHOe1muqdjIX7NUoJ+iFrUpSI0Yt7tr5unwEwBVLKhJnmS
wZS7lsuQRlKjjlks85G2zeZ2ms8pb2uB2N5DF8bcaPxqfLLOux4Z6UUjDhVJc58N
azPUf+1k+P+nk93TP1DGUqn4muuHmF5om1QmhEtqeYLfAw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:23:03 2025 by rpki-client