Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3138362e3134382e332e302f32342d3234203d3e203532333936.roa
File: 3138362e3134382e332e302f32342d3234203d3e203532333936.roa (raw, json)
Hash identifier: VmZYZkyyUgq2OagK3F38R6MWkJ5ysj0bFJsfdk8u/8k=
Subject key identifier: D0:9F:40:B1:BE:1A:61:69:42:48:80:A0:B6:AA:F3:F2:5A:A4:95:BA
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 44F174EAE24529BB38713D3A360A2C0F2172FDD6
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3138362e3134382e332e302f32342d3234203d3e203532333936.roa
Signing time: Wed 22 Jan 2025 20:00:00 +0000
ROA not before: Wed 22 Jan 2025 19:55:00 +0000
ROA not after: Wed 21 Jan 2026 20:00:00 +0000
asID: 52396
IP address blocks: 186.148.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:f1:74:ea:e2:45:29:bb:38:71:3d:3a:36:0a:2c:0f:21:72:fd:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Jan 22 19:55:00 2025 GMT
Not After : Jan 21 20:00:00 2026 GMT
Subject: CN=D09F40B1BE1A6169424880A0B6AAF3F25AA495BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d0:ae:53:c9:ef:eb:51:88:c4:1d:37:b2:79:
38:14:8a:2c:77:86:32:ad:a0:ca:4e:f2:2e:51:51:
c3:ca:d8:82:f7:73:9e:26:25:eb:a8:7a:c9:3d:66:
e6:49:45:cb:5d:8e:6a:f0:78:06:aa:97:65:b2:ba:
10:46:c5:e7:4e:7c:56:e0:0b:98:57:6a:a0:76:c9:
bf:9c:66:d4:03:b0:5a:2e:7c:ec:d7:b1:f7:a9:b8:
d3:c5:b9:7d:05:4e:d9:c6:ec:de:7a:0c:98:0f:5b:
7a:3e:97:b8:b9:f8:bc:4f:53:fa:b7:35:b8:7b:8c:
f0:1a:14:26:9b:56:8e:01:4e:9e:dc:5b:76:c0:78:
8b:a9:ba:a5:5e:71:46:94:43:8b:5c:52:26:14:5d:
d5:ff:a9:f3:7a:5a:26:3a:68:3e:00:b2:ed:07:c8:
0a:43:28:f8:4e:ef:f5:2d:e0:80:4d:e6:fa:2b:c0:
fd:ea:34:e5:5e:7b:a2:33:7b:b9:d0:cc:a5:7e:9f:
a9:2c:64:98:07:bc:97:b5:bd:eb:06:61:a8:e7:f1:
4e:c7:cd:f8:36:a4:f0:0f:75:06:d7:b9:27:72:ce:
91:dc:1d:1a:00:3c:2a:31:0a:22:78:f0:4f:4a:05:
ff:9f:ff:5c:d5:e7:56:25:f4:61:e3:a3:63:97:d4:
ba:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9F:40:B1:BE:1A:61:69:42:48:80:A0:B6:AA:F3:F2:5A:A4:95:BA
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3138362e3134382e332e302f32342d3234203d3e203532333936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.148.3.0/24
Signature Algorithm: sha256WithRSAEncryption
10:a0:a6:ae:46:9a:13:9c:15:c5:be:22:b4:88:84:8c:be:64:
71:0c:8a:c0:2b:a8:db:5a:94:95:51:74:ea:5a:77:9d:19:ac:
e3:00:69:fe:15:3c:19:6f:0e:16:45:77:23:eb:8d:b1:12:99:
91:2e:c5:57:5c:e2:ac:09:91:81:ab:5a:91:6e:30:e5:7c:45:
c9:e0:20:7b:db:a0:33:86:6c:80:cb:5d:b6:10:b4:64:e0:3e:
24:97:30:45:0b:45:62:fa:f2:44:ba:40:9f:5e:53:60:44:6d:
29:7a:5b:05:25:87:7f:ca:4a:37:83:48:30:3e:12:cb:97:1c:
7d:7c:ca:d8:dc:f5:43:5b:1b:c7:e6:4d:d9:52:42:f2:85:bd:
95:e8:35:a5:9d:b2:2d:90:4d:7e:d3:37:b1:83:bf:8b:d2:6a:
0c:e5:f6:d2:bb:b4:79:12:cf:79:4e:98:ef:4f:91:ab:e3:e7:
5d:70:15:46:8b:4e:54:6e:b3:50:1e:95:03:30:f5:28:e6:ff:
70:28:0f:d2:d7:14:64:0c:f0:ef:1d:c2:09:e6:63:0a:3d:c6:
12:af:06:ff:e3:f9:b7:61:77:6a:a9:18:b0:2f:d3:e3:c6:60:
79:82:db:69:a3:86:03:3b:38:53:6e:e0:60:b6:1e:29:8b:36:
1b:24:fc:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:32:11 2025 by rpki-client