Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e37362e302f32332d3233203d3e20323633323039.roa
File: 3139312e39372e37362e302f32332d3233203d3e20323633323039.roa (raw, json)
Hash identifier: wR7hQrD+lFi3zmHiQ3xyS5FXFH5LwFxMwPHpWIVe01Q=
Subject key identifier: F1:A0:3E:3E:17:9B:39:2C:F0:79:13:A3:73:BD:4A:E3:4B:2B:4F:13
Certificate issuer: /CN=2D96E2BA3FE89933F1CF36BB037764F824FED7F0
Certificate serial: 4A81C7E2FB439B1EDA086AC811B84B6D07FC5761
Authority key identifier: 2D:96:E2:BA:3F:E8:99:33:F1:CF:36:BB:03:77:64:F8:24:FE:D7:F0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e37362e302f32332d3233203d3e20323633323039.roa
Signing time: Tue 04 Feb 2025 18:28:29 +0000
ROA not before: Tue 04 Feb 2025 18:23:29 +0000
ROA not after: Tue 03 Feb 2026 18:28:29 +0000
asID: 263209
IP address blocks: 191.97.76.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:81:c7:e2:fb:43:9b:1e:da:08:6a:c8:11:b8:4b:6d:07:fc:57:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D96E2BA3FE89933F1CF36BB037764F824FED7F0
Validity
Not Before: Feb 4 18:23:29 2025 GMT
Not After : Feb 3 18:28:29 2026 GMT
Subject: CN=F1A03E3E179B392CF07913A373BD4AE34B2B4F13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:79:e6:68:46:94:d5:69:56:6a:03:5b:52:58:
8d:92:e0:23:4c:f0:20:04:71:b8:92:7e:a7:4f:b4:
d0:5c:2f:e5:f8:ef:25:7f:04:53:e0:54:06:e0:b7:
39:00:bc:b0:43:15:be:26:73:44:19:59:0f:ac:74:
d6:cc:f7:ea:ba:fa:9d:26:46:f8:c4:4e:5b:1c:a5:
ee:a6:cf:f0:61:8c:ec:f6:8b:78:f4:b8:80:65:3b:
79:2e:7c:67:d5:d8:54:94:9b:77:92:18:58:12:00:
03:41:d0:57:56:5c:a2:6b:8d:53:1e:1f:3e:67:08:
a1:de:44:02:8e:cc:e5:2b:46:fe:e6:fc:61:aa:3c:
52:d3:0d:39:2d:1f:b5:39:dc:05:13:84:e6:04:8d:
aa:97:78:fa:7b:86:84:99:5e:81:d2:ff:f0:11:64:
cd:3f:d4:9a:bd:e5:97:87:b7:5d:34:e8:69:f7:13:
d5:11:44:67:9b:b6:b5:4c:89:bf:af:3c:37:37:f4:
a0:a9:d1:82:44:4e:bd:49:2a:24:5f:50:4a:4b:2a:
6f:24:d0:4f:7d:93:52:49:c0:49:b0:29:53:2e:3f:
ab:ca:68:42:19:40:a5:38:19:b4:26:ae:84:ee:44:
fb:ca:ae:8a:4e:c1:f8:23:fa:82:0a:66:b1:37:00:
74:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:A0:3E:3E:17:9B:39:2C:F0:79:13:A3:73:BD:4A:E3:4B:2B:4F:13
X509v3 Authority Key Identifier:
keyid:2D:96:E2:BA:3F:E8:99:33:F1:CF:36:BB:03:77:64:F8:24:FE:D7:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e37362e302f32332d3233203d3e20323633323039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.97.76.0/23
Signature Algorithm: sha256WithRSAEncryption
08:f2:2e:d3:06:f2:fa:cc:59:d6:1a:e4:32:e8:a0:79:59:45:
29:d1:02:ae:a3:41:92:97:21:6c:b0:c6:8e:1e:d4:0c:32:e2:
f4:dd:fd:3f:dc:5f:3a:3e:a3:65:9e:10:53:70:44:1d:b6:b2:
3e:1f:48:01:04:d5:e7:35:10:92:a5:c3:3f:30:2d:b9:ce:ab:
6f:9d:3f:f6:ae:90:f1:d2:5d:57:b0:2b:b0:48:a8:a9:84:67:
02:76:52:b0:01:e1:87:03:19:72:2a:5f:18:58:1c:ee:39:56:
bc:9d:1f:b0:ff:c4:2b:6f:aa:db:1a:49:22:24:29:8a:ea:46:
82:13:70:28:a6:f8:22:db:d6:66:37:a6:1e:4c:29:0a:5c:95:
4e:5c:c8:f0:54:95:3c:69:8b:2f:3e:ec:8d:02:62:14:88:9b:
ee:2b:27:dd:cd:5a:06:48:93:fe:46:a5:76:b3:e7:9c:d9:4f:
13:29:26:6d:15:36:31:e8:3f:05:1e:ec:a8:f1:1a:7f:85:6f:
cd:02:b7:13:de:26:32:67:1a:d3:fd:12:8c:a3:3e:f0:19:22:
21:d3:54:d1:b7:97:22:f9:66:92:ff:a8:fb:ca:95:76:48:a1:
fa:ef:e3:04:6f:3f:e5:4a:7f:d9:8a:ab:d8:61:e6:e8:c8:15:
a5:5d:a0:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:48:58 2025 by rpki-client