Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e37382e302f32342d3234203d3e20323633323039.roa
File: 3139312e39372e37382e302f32342d3234203d3e20323633323039.roa (raw, json)
Hash identifier: nFqekbrNHbpBNVb8AduKROZPOLyIlsOJT/Kz6Q++QlY=
Subject key identifier: 81:52:FA:DB:45:3E:0E:30:83:83:27:0E:1E:B0:5B:E6:60:0B:D7:8F
Certificate issuer: /CN=2D96E2BA3FE89933F1CF36BB037764F824FED7F0
Certificate serial: 1C08EAD38DE8393ABC89AD8AC081074386DC1A06
Authority key identifier: 2D:96:E2:BA:3F:E8:99:33:F1:CF:36:BB:03:77:64:F8:24:FE:D7:F0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e37382e302f32342d3234203d3e20323633323039.roa
Signing time: Tue 04 Feb 2025 18:28:30 +0000
ROA not before: Tue 04 Feb 2025 18:23:30 +0000
ROA not after: Tue 03 Feb 2026 18:28:30 +0000
asID: 263209
IP address blocks: 191.97.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:08:ea:d3:8d:e8:39:3a:bc:89:ad:8a:c0:81:07:43:86:dc:1a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D96E2BA3FE89933F1CF36BB037764F824FED7F0
Validity
Not Before: Feb 4 18:23:30 2025 GMT
Not After : Feb 3 18:28:30 2026 GMT
Subject: CN=8152FADB453E0E308383270E1EB05BE6600BD78F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:84:6e:57:b7:35:29:ed:0b:32:de:8c:68:62:
6b:2c:ac:88:6f:ec:5e:ed:73:49:cf:df:46:44:98:
49:93:2e:64:cd:b7:7c:dd:10:ee:fb:42:bc:47:85:
76:a1:4d:b7:a3:32:4c:da:a6:1d:0b:95:84:a3:23:
6e:e7:ca:e7:63:48:fb:01:ac:92:25:d4:82:e8:48:
c5:41:84:04:8f:00:2e:98:57:5b:c0:f2:2c:9d:51:
b0:cf:83:aa:3b:bb:d0:6a:2b:a8:e0:61:f8:ff:8f:
5d:bd:ce:4d:9c:07:84:91:8d:24:80:ef:2b:c8:1b:
4c:68:9f:fa:e5:31:48:5b:08:79:f6:02:57:5a:a0:
e9:cd:54:15:51:e1:8e:fd:47:d2:8c:4a:56:d7:01:
32:cc:8a:31:69:ba:8d:68:96:56:ba:61:f6:54:2c:
3c:ba:a9:27:4d:f8:7e:20:eb:c5:7e:fe:fa:da:e3:
98:4f:b8:53:28:4a:85:5a:dc:84:59:fd:95:29:0b:
7d:fb:0f:7b:6a:01:d8:b4:f5:82:6b:2a:1c:5c:0e:
c2:36:1c:57:45:bc:ee:97:61:ee:19:9d:ca:6b:e3:
ca:77:61:9f:c5:ba:aa:c0:19:28:21:98:f4:78:da:
dc:cb:87:42:a5:77:51:52:c1:a7:31:ac:d0:66:81:
89:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:52:FA:DB:45:3E:0E:30:83:83:27:0E:1E:B0:5B:E6:60:0B:D7:8F
X509v3 Authority Key Identifier:
keyid:2D:96:E2:BA:3F:E8:99:33:F1:CF:36:BB:03:77:64:F8:24:FE:D7:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D96E2BA3FE89933F1CF36BB037764F824FED7F0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ED9C7E865CB1DB939BAD43A2DE4A32D5FC0FBE71CCEB242DCB48964C937AB5C7/0/3139312e39372e37382e302f32342d3234203d3e20323633323039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.97.78.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:73:f5:0a:61:a4:4a:3b:2c:6d:d3:72:bd:f1:17:f1:ad:ae:
a0:55:17:b6:5c:58:f6:2a:43:3e:96:3e:82:7a:7f:7d:5b:ee:
c6:b8:fd:e8:f5:5a:81:c4:50:bb:01:3a:af:25:d0:2d:8a:ff:
5b:52:9b:2f:ea:ad:82:19:24:82:92:ff:b0:aa:3b:62:b0:50:
8b:a2:0e:dd:47:80:26:8d:09:20:5d:92:b6:a8:32:49:12:0b:
5e:94:f2:e2:3d:55:6e:2a:fd:bb:f6:8f:93:e8:03:75:36:56:
c1:64:4f:7f:b0:65:4d:24:56:5b:ae:97:95:c8:d7:0f:1a:e9:
75:93:db:e0:85:ea:06:66:6d:b5:32:4e:60:94:36:33:f9:92:
5c:1e:69:97:be:dc:85:29:f6:98:48:aa:20:01:9f:d5:1d:11:
07:70:22:5b:7a:1c:6b:75:71:53:dc:9d:e2:d5:9f:91:86:02:
59:1b:4f:41:c0:93:87:a2:e0:fb:f6:f7:8d:6a:18:84:e2:f0:
9d:63:fa:39:b4:67:f0:bd:e9:7a:2f:58:d2:77:51:18:be:bc:
4f:ea:60:88:f9:43:98:47:8d:e9:00:38:52:02:2f:c4:b6:70:
81:16:b9:47:ae:a9:d8:45:bf:ce:8d:53:4c:6a:35:26:46:11:
41:3e:21:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:57:06 2025 by rpki-client