Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e36392e302f32342d3234203d3e20323633323039.roa
File: 3139312e39372e36392e302f32342d3234203d3e20323633323039.roa (raw, json)
Hash identifier: oh+QZn/AMkY+eUa7BT2log2iTCWyDwwpbkyA1Wl7whw=
Subject key identifier: 0E:78:4A:A8:E6:74:89:2B:5A:5C:61:78:BB:5D:1B:16:32:2D:BC:0A
Certificate issuer: /CN=2D96E2BA3FE89933F1CF36BB037764F824FED7F0
Certificate serial: 4F46C933369CED7D57DCDA67E8DB4C3C530824FB
Authority key identifier: 2D:96:E2:BA:3F:E8:99:33:F1:CF:36:BB:03:77:64:F8:24:FE:D7:F0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e36392e302f32342d3234203d3e20323633323039.roa
Signing time: Tue 04 Feb 2025 18:28:32 +0000
ROA not before: Tue 04 Feb 2025 18:23:32 +0000
ROA not after: Tue 03 Feb 2026 18:28:32 +0000
asID: 263209
IP address blocks: 191.97.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:46:c9:33:36:9c:ed:7d:57:dc:da:67:e8:db:4c:3c:53:08:24:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D96E2BA3FE89933F1CF36BB037764F824FED7F0
Validity
Not Before: Feb 4 18:23:32 2025 GMT
Not After : Feb 3 18:28:32 2026 GMT
Subject: CN=0E784AA8E674892B5A5C6178BB5D1B16322DBC0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c1:39:72:28:af:2c:29:f6:5b:c1:81:27:0a:
8f:fe:d6:53:46:f0:de:e7:99:84:53:f6:c5:fd:43:
b1:01:b5:ed:88:a6:ca:86:05:62:73:72:31:7f:30:
e4:9f:0d:cd:30:4d:02:6c:c5:81:b2:95:b1:e2:cd:
cd:9e:ff:0a:81:97:c5:54:25:6e:00:b0:8d:44:86:
61:b1:da:d4:28:eb:79:f0:2d:b8:c3:50:25:c6:b7:
d5:b9:1f:08:22:3b:3f:56:0d:a4:7c:64:13:b7:88:
22:17:27:a6:68:76:bf:ce:2b:ef:09:56:58:d4:5b:
5d:3e:a1:ce:ef:15:d7:11:a5:c4:77:91:d3:d8:09:
cb:a8:80:a1:ef:76:6f:16:0b:e6:97:5c:87:b0:98:
a3:88:ac:74:b4:6b:91:01:e9:fc:b4:19:04:b1:3b:
ff:6b:61:bf:a8:7f:e8:89:09:84:86:7b:73:ae:9f:
44:f5:a6:34:b6:ad:03:38:67:76:b2:89:af:cb:f1:
1c:8b:75:85:c3:93:90:a4:fe:77:fc:06:cd:84:b2:
04:0f:48:ee:31:fd:38:82:f3:8c:a7:7b:5c:1b:5b:
2b:eb:79:0a:57:92:cd:7d:95:0c:90:1e:ad:6a:56:
87:7e:d0:f1:32:b7:d9:44:58:ac:40:39:38:0c:96:
c5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:78:4A:A8:E6:74:89:2B:5A:5C:61:78:BB:5D:1B:16:32:2D:BC:0A
X509v3 Authority Key Identifier:
keyid:2D:96:E2:BA:3F:E8:99:33:F1:CF:36:BB:03:77:64:F8:24:FE:D7:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e36392e302f32342d3234203d3e20323633323039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.97.69.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:c9:9d:24:ea:35:9a:95:2b:5f:54:a8:0f:50:37:84:6f:69:
66:a9:da:b0:a7:9f:bf:11:55:c5:ee:b6:b0:81:4c:94:6e:4f:
ed:24:42:ff:d1:2a:15:33:a4:1c:2c:1c:78:49:78:0c:55:66:
f5:75:3d:32:bb:7e:e2:56:64:ce:f7:74:84:28:39:6e:d9:da:
08:26:62:91:4e:a4:8a:18:48:47:7e:2e:f9:e3:2a:81:c3:5d:
ec:79:00:43:02:de:99:b7:70:1f:64:03:d6:5a:bf:db:1e:da:
82:34:ac:e2:c4:b3:b8:92:46:b8:ad:a3:7d:6c:19:bd:26:d4:
37:8e:56:5b:fd:ee:58:3a:b6:96:00:81:65:f9:4f:5f:8f:5b:
6a:34:e9:2b:95:1d:32:34:3c:6b:a3:22:96:b4:62:50:69:91:
95:25:bf:d6:c3:86:54:f8:19:1b:ea:9b:7c:b2:ab:0d:cc:25:
11:1d:73:c5:b1:cc:b0:b6:d5:eb:6b:11:de:a5:0c:e0:f6:94:
9a:39:00:c0:4e:95:ad:47:4d:ce:68:bd:03:67:2b:9b:29:37:
1f:ee:f0:2a:e1:5c:a9:12:47:07:b5:de:fb:f6:fd:50:84:86:
16:60:34:40:9c:21:68:4d:05:bf:45:5e:4e:85:59:32:b5:94:
32:05:a5:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:56:45 2025 by rpki-client