Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DADF6F2635782C95EA66F8DD5DB0E82E1AFA021F7BFD5F93A49B990278F350A5/0/3136372e3234392e3139362e302f32322d3234203d3e20323633363939.roa
File: 3136372e3234392e3139362e302f32322d3234203d3e20323633363939.roa (raw, json)
Hash identifier: QLPZvKiwO0UcWHIN5VD/XFbczBsNMJM5X8BLzveNAHk=
Subject key identifier: 80:7C:D6:32:98:82:FB:B8:64:7D:CC:9E:8F:3D:A0:D4:6C:47:FE:52
Certificate issuer: /CN=5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F
Certificate serial: 60210052D4B6110CD5237594F8F5F9957A71519C
Authority key identifier: 5E:40:F5:09:D8:EC:34:62:F8:B8:D1:E2:2D:50:FF:EE:08:48:A4:1F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DADF6F2635782C95EA66F8DD5DB0E82E1AFA021F7BFD5F93A49B990278F350A5/0/3136372e3234392e3139362e302f32322d3234203d3e20323633363939.roa
Signing time: Tue 04 Feb 2025 18:06:13 +0000
ROA not before: Tue 04 Feb 2025 18:01:13 +0000
ROA not after: Tue 03 Feb 2026 18:06:13 +0000
asID: 263699
IP address blocks: 167.249.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:21:00:52:d4:b6:11:0c:d5:23:75:94:f8:f5:f9:95:7a:71:51:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F
Validity
Not Before: Feb 4 18:01:13 2025 GMT
Not After : Feb 3 18:06:13 2026 GMT
Subject: CN=807CD6329882FBB8647DCC9E8F3DA0D46C47FE52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:30:1b:35:ef:19:13:18:8f:97:ec:c3:3f:76:
36:82:6f:be:f0:28:2c:29:31:d3:61:31:22:a2:d3:
2c:11:f4:9c:ad:6b:a4:68:ec:a4:43:c9:95:a9:c3:
17:57:cb:c6:43:a6:04:51:6e:f6:e6:8c:3e:8a:09:
c4:56:ce:8b:9d:26:62:07:99:55:db:b9:2e:df:e2:
06:61:82:37:c9:24:97:d9:11:4e:c8:1f:2d:b5:27:
96:8b:96:23:85:68:0c:8d:88:65:25:84:77:6b:c1:
7c:66:5f:4e:5a:59:07:55:cf:af:9f:62:15:f9:fb:
aa:15:6a:28:ce:29:40:29:ff:4d:1c:29:98:70:09:
1a:63:ec:26:de:a1:4e:57:6e:82:ad:b3:c3:35:da:
36:b5:74:c0:97:33:8c:a3:3c:92:04:99:8b:7b:d2:
89:be:ed:bb:f9:79:f9:4d:e8:bf:c4:f7:1c:51:e2:
06:86:04:73:79:43:46:ba:49:19:02:9f:fc:c6:90:
17:f0:98:f9:0e:3f:1b:5d:ba:a9:0a:c0:ac:c8:28:
03:1a:62:68:db:91:0f:b1:7f:04:74:4f:7c:e5:6a:
7d:3a:85:c2:ba:91:39:51:83:73:16:7a:40:e0:0d:
bf:ec:e9:5b:bc:9e:9f:c4:b9:dd:9a:c5:b7:64:54:
c0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7C:D6:32:98:82:FB:B8:64:7D:CC:9E:8F:3D:A0:D4:6C:47:FE:52
X509v3 Authority Key Identifier:
keyid:5E:40:F5:09:D8:EC:34:62:F8:B8:D1:E2:2D:50:FF:EE:08:48:A4:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DADF6F2635782C95EA66F8DD5DB0E82E1AFA021F7BFD5F93A49B990278F350A5/0/5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5E40F509D8EC3462F8B8D1E22D50FFEE0848A41F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DADF6F2635782C95EA66F8DD5DB0E82E1AFA021F7BFD5F93A49B990278F350A5/0/3136372e3234392e3139362e302f32322d3234203d3e20323633363939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.249.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:92:20:ed:b2:a0:65:48:15:a0:6f:7d:41:c3:5f:90:bd:9a:
85:51:e2:b7:de:0a:e4:0d:f8:25:2e:9e:ab:9e:d5:79:5e:88:
b3:c2:91:6d:ee:a8:31:7b:b6:1a:8e:05:36:d4:ca:fa:4b:3d:
7e:36:73:9c:78:67:1d:1b:71:a8:4b:c6:1b:3d:9f:d6:26:d4:
39:97:17:9f:1e:60:03:90:fc:ac:15:fd:85:7e:21:5d:12:21:
2b:e0:3c:2b:0d:26:47:61:09:9a:56:9f:95:d9:80:30:fc:aa:
91:22:c7:96:c1:79:13:b4:d5:cf:5a:e7:61:f7:8e:a0:27:51:
52:28:15:0b:df:7c:48:3f:a4:f5:44:06:4b:20:10:e8:27:d7:
14:a5:df:c0:7a:50:9b:8e:3e:75:45:38:00:09:ef:b1:f2:80:
d4:f1:63:7e:0c:bd:8c:94:8c:4a:7d:32:b5:cc:72:8c:cd:78:
7a:87:71:12:d7:e5:c4:ad:83:dd:96:f8:55:f5:ac:89:ea:38:
e4:ad:09:77:56:07:88:45:61:13:7a:23:e4:05:8d:ee:53:a0:
cd:cc:de:b0:fc:35:92:ee:7e:d5:86:b0:24:4a:02:00:73:b2:
2b:2d:c2:57:0c:e0:4a:63:d6:ae:d5:f8:78:0d:40:58:f5:c0:
1f:b1:4e:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:18:34 2025 by rpki-client