Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/EA0A9C723385F61A659B6E7B07083079A51AEE4F85230593BE9634B5976BC539/0/3133312e3139362e31302e3132382f32352d3235203d3e20323635363332.roa
File: 3133312e3139362e31302e3132382f32352d3235203d3e20323635363332.roa (raw, json)
Hash identifier: EKGA1Oaa4wHPbQG7EV3tybF/I44wVQfpIqDVtw2drSI=
Subject key identifier: 91:F5:C7:67:3C:1A:CC:E8:75:E0:DA:D9:77:D1:AE:27:88:16:51:BA
Certificate issuer: /CN=F0F37A34F33318012581A719E771F871552D0509
Certificate serial: 4A1E67E244EAC704A54D7D586D265A556F26524F
Authority key identifier: F0:F3:7A:34:F3:33:18:01:25:81:A7:19:E7:71:F8:71:55:2D:05:09
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F0F37A34F33318012581A719E771F871552D0509.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/EA0A9C723385F61A659B6E7B07083079A51AEE4F85230593BE9634B5976BC539/0/3133312e3139362e31302e3132382f32352d3235203d3e20323635363332.roa
Signing time: Tue 04 Feb 2025 18:54:27 +0000
ROA not before: Tue 04 Feb 2025 18:49:27 +0000
ROA not after: Tue 03 Feb 2026 18:54:27 +0000
asID: 265632
IP address blocks: 131.196.10.128/25 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:1e:67:e2:44:ea:c7:04:a5:4d:7d:58:6d:26:5a:55:6f:26:52:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F0F37A34F33318012581A719E771F871552D0509
Validity
Not Before: Feb 4 18:49:27 2025 GMT
Not After : Feb 3 18:54:27 2026 GMT
Subject: CN=91F5C7673C1ACCE875E0DAD977D1AE27881651BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:56:5c:2a:1a:ed:3d:9e:2f:db:21:cf:bb:4c:
81:27:46:49:33:74:00:69:ae:f5:46:23:01:63:6b:
0d:47:17:10:70:e6:18:8a:d0:f8:ca:a5:5a:ef:10:
c8:28:14:84:7d:8a:8d:db:c6:e0:f8:9e:ad:20:a7:
3e:cf:45:a4:d0:13:14:bb:73:25:17:fc:56:cb:a3:
50:96:d9:cb:d8:30:83:7b:73:a6:7b:07:6f:60:8f:
68:66:38:b1:5b:e1:8f:c3:94:06:0e:f1:97:02:91:
50:8d:59:65:c7:19:e6:ec:9f:3f:67:5d:24:6e:22:
14:a0:bf:3a:34:78:0b:79:f7:a7:ca:3a:98:07:60:
12:0f:17:7f:ea:48:d9:55:86:d7:1e:9a:fc:b1:b3:
5a:a3:29:77:9b:75:49:0c:98:20:52:ff:99:66:96:
32:dd:07:31:36:e9:16:56:65:b5:26:7c:75:3b:80:
35:c6:81:33:16:9d:cf:44:28:8e:9b:09:4b:1a:e1:
ee:a8:e1:42:36:18:03:25:25:2b:2d:ba:4a:06:97:
85:8c:a4:e5:94:e6:7c:f5:5d:76:94:95:18:4e:9e:
e7:1b:4c:44:77:13:62:cd:6f:f0:67:6c:4c:34:be:
0f:27:0f:c4:08:05:0a:ec:59:6f:11:26:95:84:21:
a3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:F5:C7:67:3C:1A:CC:E8:75:E0:DA:D9:77:D1:AE:27:88:16:51:BA
X509v3 Authority Key Identifier:
keyid:F0:F3:7A:34:F3:33:18:01:25:81:A7:19:E7:71:F8:71:55:2D:05:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/EA0A9C723385F61A659B6E7B07083079A51AEE4F85230593BE9634B5976BC539/0/F0F37A34F33318012581A719E771F871552D0509.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F0F37A34F33318012581A719E771F871552D0509.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/EA0A9C723385F61A659B6E7B07083079A51AEE4F85230593BE9634B5976BC539/0/3133312e3139362e31302e3132382f32352d3235203d3e20323635363332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.196.10.128/25
Signature Algorithm: sha256WithRSAEncryption
07:f7:b0:92:fb:01:13:6b:6d:f5:61:6e:68:a1:70:a2:e2:a7:
9d:4b:2d:b4:90:dc:df:09:f2:7a:0f:1f:59:61:c7:6f:24:48:
f1:4c:2d:d9:55:5a:8e:f2:a5:b9:56:2e:f7:db:11:b5:56:15:
0b:eb:60:76:b8:e5:a0:37:38:d1:9f:35:a6:2e:d5:b0:77:8c:
9b:1b:8c:20:6c:0c:c8:89:45:54:1a:d4:32:dd:25:eb:4d:68:
e8:10:94:40:74:b3:b5:42:6c:00:db:c8:c0:79:bc:a4:97:81:
40:b3:3a:36:09:05:e0:c6:2c:42:37:bc:fc:60:0d:51:98:3a:
31:0b:c6:c6:de:52:72:07:95:a6:76:cf:b3:36:b9:57:f7:9c:
85:5c:cd:5e:40:76:e5:79:f6:e9:b4:92:13:4a:8f:4b:0a:4b:
63:61:d2:26:dc:1b:d4:13:5c:4b:d6:aa:1a:86:b1:65:59:82:
b6:e5:9f:a7:d1:81:c3:1e:59:b9:23:9f:b3:67:d4:65:83:d8:
84:c5:81:44:ad:d0:2e:63:a3:7f:f0:6e:02:27:4d:8f:1e:25:
89:bc:fc:b1:38:c9:4a:24:ed:3a:9c:24:8c:96:c6:dd:64:10:
4e:c5:d9:e9:ef:31:85:89:5d:29:2c:4b:01:71:6c:10:ff:6f:
da:8a:0d:3b
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgIUSh5n4kTqxwSlTX1YbSZaVW8mUk8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjBGMzdBMzRGMzMzMTgwMTI1ODFBNzE5RTc3MUY4NzE1
NTJEMDUwOTAeFw0yNTAyMDQxODQ5MjdaFw0yNjAyMDMxODU0MjdaMDMxMTAvBgNV
BAMTKDkxRjVDNzY3M0MxQUNDRTg3NUUwREFEOTc3RDFBRTI3ODgxNjUxQkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeVlwqGu09ni/bIc+7TIEnRkkz
dABprvVGIwFjaw1HFxBw5hiK0PjKpVrvEMgoFIR9io3bxuD4nq0gpz7PRaTQExS7
cyUX/FbLo1CW2cvYMIN7c6Z7B29gj2hmOLFb4Y/DlAYO8ZcCkVCNWWXHGebsnz9n
XSRuIhSgvzo0eAt596fKOpgHYBIPF3/qSNlVhtcemvyxs1qjKXebdUkMmCBS/5lm
ljLdBzE26RZWZbUmfHU7gDXGgTMWnc9EKI6bCUsa4e6o4UI2GAMlJSstukoGl4WM
pOWU5nz1XXaUlRhOnucbTER3E2LNb/BnbEw0vg8nD8QIBQrsWW8RJpWEIaPpAgMB
AAGjggLPMIICyzAdBgNVHQ4EFgQUkfXHZzwazOh14NrZd9GuJ4gWUbowHwYDVR0j
BBgwFoAU8PN6NPMzGAElgacZ53H4cVUtBQkwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9FQTBBOUM3MjMzODVGNjFBNjU5QjZFN0IwNzA4MzA3OUE1
MUFFRTRGODUyMzA1OTNCRTk2MzRCNTk3NkJDNTM5LzAvRjBGMzdBMzRGMzMzMTgw
MTI1ODFBNzE5RTc3MUY4NzE1NTJEMDUwOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GMEYzN0EzNEYzMzMxODAxMjU4
MUE3MTlFNzcxRjg3MTU1MkQwNTA5LmNlcjCBzQYIKwYBBQUHAQsEgcAwgb0wgboG
CCsGAQUFBzALhoGtcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRUEwQTlDNzIzMzg1RjYxQTY1OUI2RTdCMDcwODMwNzlBNTFBRUU0Rjg1
MjMwNTkzQkU5NjM0QjU5NzZCQzUzOS8wLzMxMzMzMTJlMzEzOTM2MmUzMTMwMmUz
MTMyMzgyZjMyMzUyZDMyMzUyMDNkM2UyMDMyMzYzNTM2MzMzMi5yb2EwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMF
B4PECoAwDQYJKoZIhvcNAQELBQADggEBAAf3sJL7ARNrbfVhbmihcKLip51LLbSQ
3N8J8noPH1lhx28kSPFMLdlVWo7ypblWLvfbEbVWFQvrYHa45aA3ONGfNaYu1bB3
jJsbjCBsDMiJRVQa1DLdJetNaOgQlEB0s7VCbADbyMB5vKSXgUCzOjYJBeDGLEI3
vPxgDVGYOjELxsbeUnIHlaZ2z7M2uVf3nIVczV5AduV59um0khNKj0sKS2Nh0ibc
G9QTXEvWqhqGsWVZgrbln6fRgcMeWbkjn7Nn1GWD2ITFgUSt0C5jo3/wbgInTY8e
JYm8/LE4yUok7TqcJIyWxt1kEE7F2envMYWJXSksSwFxbBD/b9qKDTs=
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:04:49 2025 by rpki-client