Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F060645F94748832A65DAB54A01A729A0208E4446C8232A17BA6FE073CD465C5/0/3139302e39362e3133362e302f32312d3231203d3e2033383136.roa
File: 3139302e39362e3133362e302f32312d3231203d3e2033383136.roa (raw, json)
Hash identifier: XZBHgfVPfNesEacsuTokTFPzRv2XBf/+Kto6EzuJCpc=
Subject key identifier: 68:B4:3E:C8:43:22:25:B9:39:C4:93:23:10:A7:AD:5E:A0:4D:C0:E0
Certificate issuer: /CN=DA5A371FC01989AA596FE268CE70A3C4DCAA7A9B
Certificate serial: 1645A8F6A30EAF40D0B1CD5E64A899CC30B59D7B
Authority key identifier: DA:5A:37:1F:C0:19:89:AA:59:6F:E2:68:CE:70:A3:C4:DC:AA:7A:9B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DA5A371FC01989AA596FE268CE70A3C4DCAA7A9B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F060645F94748832A65DAB54A01A729A0208E4446C8232A17BA6FE073CD465C5/0/3139302e39362e3133362e302f32312d3231203d3e2033383136.roa
Signing time: Tue 04 Feb 2025 18:22:23 +0000
ROA not before: Tue 04 Feb 2025 18:17:23 +0000
ROA not after: Tue 03 Feb 2026 18:22:23 +0000
asID: 3816
IP address blocks: 190.96.136.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:45:a8:f6:a3:0e:af:40:d0:b1:cd:5e:64:a8:99:cc:30:b5:9d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DA5A371FC01989AA596FE268CE70A3C4DCAA7A9B
Validity
Not Before: Feb 4 18:17:23 2025 GMT
Not After : Feb 3 18:22:23 2026 GMT
Subject: CN=68B43EC8432225B939C4932310A7AD5EA04DC0E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:42:d1:fb:dd:33:8f:f9:79:0c:54:74:ab:c6:
06:8e:9b:01:43:2f:bd:38:21:07:6e:da:fc:e8:fc:
16:e8:cd:42:4d:d4:09:65:16:c6:0a:1a:bb:16:4f:
d9:38:21:b1:5f:a4:f1:08:33:a0:6c:51:03:ec:cb:
b4:f5:10:36:ea:a4:9c:ab:3d:c4:8b:02:5b:51:5d:
3a:fe:cd:18:0b:05:c7:e3:c3:dc:45:ff:2b:7b:bf:
e5:e0:bd:47:69:f6:44:a8:26:53:44:5c:47:98:29:
9a:02:86:d4:a6:d7:34:a6:24:e0:43:b1:6e:79:9a:
70:45:94:74:55:e3:99:0f:b1:52:b8:b1:a3:6b:8b:
4d:3c:08:ba:34:15:52:85:1d:23:13:84:84:ce:91:
eb:6c:f2:92:50:15:54:23:3e:0b:65:cf:7e:27:f6:
49:73:3d:fa:67:84:93:b5:e5:58:9e:27:cb:15:15:
84:02:10:fb:f5:3c:8a:69:a6:57:13:23:8b:c5:4b:
f2:74:27:f8:61:8e:a3:57:88:e0:8e:37:4a:6a:68:
1b:fa:13:f9:7f:5e:5a:4e:63:79:8d:0a:43:3d:2d:
8a:38:b4:e7:e6:52:2c:d6:8b:fd:f1:76:da:e2:74:
fb:52:03:9a:ca:fa:aa:61:cb:e4:a7:dc:d0:0f:43:
c9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B4:3E:C8:43:22:25:B9:39:C4:93:23:10:A7:AD:5E:A0:4D:C0:E0
X509v3 Authority Key Identifier:
keyid:DA:5A:37:1F:C0:19:89:AA:59:6F:E2:68:CE:70:A3:C4:DC:AA:7A:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F060645F94748832A65DAB54A01A729A0208E4446C8232A17BA6FE073CD465C5/0/DA5A371FC01989AA596FE268CE70A3C4DCAA7A9B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DA5A371FC01989AA596FE268CE70A3C4DCAA7A9B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F060645F94748832A65DAB54A01A729A0208E4446C8232A17BA6FE073CD465C5/0/3139302e39362e3133362e302f32312d3231203d3e2033383136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.96.136.0/21
Signature Algorithm: sha256WithRSAEncryption
3c:fe:a2:ae:8b:d2:91:46:3f:04:7f:38:18:89:c5:99:be:c0:
10:8b:96:c3:4c:37:3a:a1:de:86:4a:8d:8e:ae:95:e4:a4:ce:
e7:33:52:80:86:bb:62:fe:58:65:a1:01:72:c5:d3:e8:75:1f:
67:08:49:94:ae:f3:e0:9b:2e:06:a7:88:54:46:79:41:69:58:
06:c5:2c:04:3e:0e:23:5b:b1:5c:41:49:b8:f1:cd:74:7f:d0:
79:f3:46:31:87:f2:0e:e4:49:67:80:76:60:0f:0f:0e:ab:31:
d7:86:9e:cb:40:67:e1:68:f3:93:7f:c7:58:38:b9:01:e8:83:
f2:22:5b:6f:f6:b7:f2:2d:dd:00:63:c0:0b:c1:e7:a1:65:0f:
38:e2:6a:a1:63:72:db:4a:76:75:fe:66:30:cf:49:6e:5b:2b:
35:85:77:8d:a9:40:90:83:3e:ab:2b:f9:83:f9:06:7e:9c:35:
94:0c:0d:05:3a:59:ba:f4:5c:67:36:47:bc:8a:c1:b7:f2:32:
a1:7d:a1:98:df:43:3d:0e:ec:dd:25:28:c8:18:e7:c1:0b:7b:
54:81:af:f6:a0:14:5b:50:d0:62:80:17:2a:65:f0:18:3b:8b:
03:01:bb:81:f8:36:0b:9f:17:4c:96:cb:0c:5a:c1:7c:4c:ea:
41:38:24:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:53:56 2025 by rpki-client