Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e37382e302f32332d3233203d3e20323633323039.roa
File: 3139312e39372e37382e302f32332d3233203d3e20323633323039.roa (raw, json)
Hash identifier: sajrtudz4HHTAi7ImNn0eQy9zH7ky2X/+KIW98rv2qA=
Subject key identifier: A4:49:53:EA:0F:9A:48:E5:33:34:A3:08:3C:6E:DA:27:4E:B6:CF:92
Certificate issuer: /CN=2D96E2BA3FE89933F1CF36BB037764F824FED7F0
Certificate serial: 3FD7690AAD730255844C5443BBF19964F743E39A
Authority key identifier: 2D:96:E2:BA:3F:E8:99:33:F1:CF:36:BB:03:77:64:F8:24:FE:D7:F0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e37382e302f32332d3233203d3e20323633323039.roa
Signing time: Tue 04 Feb 2025 18:28:27 +0000
ROA not before: Tue 04 Feb 2025 18:23:27 +0000
ROA not after: Tue 03 Feb 2026 18:28:27 +0000
asID: 263209
IP address blocks: 191.97.78.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:d7:69:0a:ad:73:02:55:84:4c:54:43:bb:f1:99:64:f7:43:e3:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D96E2BA3FE89933F1CF36BB037764F824FED7F0
Validity
Not Before: Feb 4 18:23:27 2025 GMT
Not After : Feb 3 18:28:27 2026 GMT
Subject: CN=A44953EA0F9A48E53334A3083C6EDA274EB6CF92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:86:04:44:a1:0f:54:41:2c:39:c5:45:79:a8:
3b:64:95:51:d3:a4:b0:91:f1:d0:bf:f6:1b:70:3a:
ac:1d:0b:ae:62:e1:22:b9:b4:69:64:ce:19:44:a3:
15:bc:0d:b1:2e:ee:bc:a9:c5:c2:d3:9c:58:5e:71:
34:49:78:9f:31:77:ea:0a:bf:5e:cc:7d:18:9b:0b:
1d:28:d1:0c:f6:fe:77:c3:11:3c:5f:48:8a:c5:94:
43:21:e6:58:7d:3b:55:8d:2f:6d:91:6c:7f:86:f1:
b6:7f:93:ff:83:65:c8:90:c1:f9:54:b9:d1:be:46:
30:0b:85:01:cd:2b:0e:93:36:1d:a1:0a:0b:8d:93:
7d:e4:40:9a:f7:2d:43:84:13:26:f6:bd:5f:a8:09:
31:f5:f9:f1:53:74:51:68:90:27:10:9d:e1:97:c1:
d4:95:fa:8a:f0:3e:a4:43:54:41:34:97:90:a7:e1:
da:ba:e2:f9:44:c3:44:0e:53:d1:76:59:db:cf:0a:
ca:f6:fd:3e:cb:ab:66:1a:75:64:73:74:84:9a:49:
29:e8:b5:64:dd:ee:04:c7:7d:22:d5:dc:81:1d:35:
e9:9a:f7:c0:1e:9d:8a:33:4c:b8:b6:91:93:ba:26:
58:38:97:03:74:16:3e:ba:1d:6d:dd:4f:b8:c3:ef:
7e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:49:53:EA:0F:9A:48:E5:33:34:A3:08:3C:6E:DA:27:4E:B6:CF:92
X509v3 Authority Key Identifier:
keyid:2D:96:E2:BA:3F:E8:99:33:F1:CF:36:BB:03:77:64:F8:24:FE:D7:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e37382e302f32332d3233203d3e20323633323039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.97.78.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:1f:59:24:7c:c5:d6:6d:c5:70:0e:d9:86:ab:c8:ca:f0:0d:
2f:86:ec:b5:eb:9c:62:92:ac:15:f1:f4:76:ab:09:a3:73:0d:
33:12:c5:c1:ec:4c:2b:03:14:32:63:a2:69:5e:1f:83:d0:27:
3f:ab:38:e4:36:ff:8e:3b:d1:96:27:74:6b:35:ed:64:ae:c0:
1f:ab:d2:d9:63:c0:10:63:3d:4b:1d:37:7a:a2:41:06:e2:82:
93:03:e7:6e:da:76:61:92:80:a5:2f:c0:af:39:7a:18:69:de:
00:cb:32:82:ca:f4:66:e1:d1:bf:85:19:80:43:e0:74:00:f9:
c1:c3:7f:db:2b:46:3a:2a:47:96:f9:51:2b:6a:2c:df:11:4b:
5a:ce:bc:64:d0:50:6f:84:1d:0f:30:a1:98:52:27:1b:d4:c8:
8a:43:6a:c1:ad:b4:db:6f:fa:24:4f:b4:88:c4:98:95:1a:81:
3b:0c:5e:86:dc:59:f5:3c:34:ac:5d:a2:51:5d:8c:1a:da:84:
70:a6:f9:81:f3:34:0c:6b:44:5d:6d:24:1e:bf:f0:0c:53:90:
47:3a:04:8b:a7:a9:98:ef:3b:51:8a:28:27:4f:7d:b0:45:c5:
e4:71:e3:2f:58:40:36:48:58:bb:f3:29:4a:3d:7e:4f:75:82:
0f:e8:d3:b0
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUP9dpCq1zAlWETFRDu/GZZPdD45owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkQ5NkUyQkEzRkU4OTkzM0YxQ0YzNkJCMDM3NzY0Rjgy
NEZFRDdGMDAeFw0yNTAyMDQxODIzMjdaFw0yNjAyMDMxODI4MjdaMDMxMTAvBgNV
BAMTKEE0NDk1M0VBMEY5QTQ4RTUzMzM0QTMwODNDNkVEQTI3NEVCNkNGOTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuhgREoQ9UQSw5xUV5qDtklVHT
pLCR8dC/9htwOqwdC65i4SK5tGlkzhlEoxW8DbEu7rypxcLTnFhecTRJeJ8xd+oK
v17MfRibCx0o0Qz2/nfDETxfSIrFlEMh5lh9O1WNL22RbH+G8bZ/k/+DZciQwflU
udG+RjALhQHNKw6TNh2hCguNk33kQJr3LUOEEyb2vV+oCTH1+fFTdFFokCcQneGX
wdSV+orwPqRDVEE0l5Cn4dq64vlEw0QOU9F2WdvPCsr2/T7Lq2YadWRzdISaSSno
tWTd7gTHfSLV3IEdNema98AenYozTLi2kZO6Jlg4lwN0Fj66HW3dT7jD736ZAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUpElT6g+aSOUzNKMIPG7aJ062z5IwHwYDVR0j
BBgwFoAULZbiuj/omTPxzza7A3dk+CT+1/AwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9FRDlDN0U4NjVDQjFEQjkzOUJBRDQzQTJERTRBMzJENUZD
MEZCRTcxQ0NFQjI0MkRDQjQ4OTY0QzkzN0FCNUM3LzAvMkQ5NkUyQkEzRkU4OTkz
M0YxQ0YzNkJCMDM3NzY0RjgyNEZFRDdGMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yRDk2RTJCQTNGRTg5OTMzRjFD
RjM2QkIwMzc3NjRGODI0RkVEN0YwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRUQ5QzdFODY1Q0IxREI5MzlCQUQ0M0EyREU0QTMyRDVGQzBGQkU3MUND
RUIyNDJEQ0I0ODk2NEM5MzdBQjVDNy8wLzMxMzkzMTJlMzkzNzJlMzczODJlMzAy
ZjMyMzMyZDMyMzMyMDNkM2UyMDMyMzYzMzMyMzAzOS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAb9hTjAN
BgkqhkiG9w0BAQsFAAOCAQEATB9ZJHzF1m3FcA7ZhqvIyvANL4bsteucYpKsFfH0
dqsJo3MNMxLFwexMKwMUMmOiaV4fg9AnP6s45Db/jjvRlid0azXtZK7AH6vS2WPA
EGM9Sx03eqJBBuKCkwPnbtp2YZKApS/Arzl6GGneAMsygsr0ZuHRv4UZgEPgdAD5
wcN/2ytGOipHlvlRK2os3xFLWs68ZNBQb4QdDzChmFInG9TIikNqwa2022/6JE+0
iMSYlRqBOwxehtxZ9Tw0rF2iUV2MGtqEcKb5gfM0DGtEXW0kHr/wDFOQRzoEi6ep
mO87UYooJ099sEXF5HHjL1hANkhYu/MpSj1+T3WCD+jTsA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 18:53:20 2025 by rpki-client