Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FB312F853A363B8255AABD25954A11A432350EFBEA8F18F431E800E4C2AE0F07/0/3139302e3132332e3132382e302f32302d3234203d3e203238303836.roa
File: 3139302e3132332e3132382e302f32302d3234203d3e203238303836.roa (raw, json)
Hash identifier: HAozw/g0Zo00BvBqXzWgY7oBQxjZdR/1juFdEy2I6BY=
Subject key identifier: D0:5B:DC:E6:FF:11:D6:A2:8C:B8:01:F7:B1:A6:0E:51:B4:AE:23:8A
Certificate issuer: /CN=7576B30485208191B54BA2BD59339967753E0699
Certificate serial: 78F805E876EBEC22C7EE8F5A6FA119855DB0C85A
Authority key identifier: 75:76:B3:04:85:20:81:91:B5:4B:A2:BD:59:33:99:67:75:3E:06:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7576B30485208191B54BA2BD59339967753E0699.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/FB312F853A363B8255AABD25954A11A432350EFBEA8F18F431E800E4C2AE0F07/0/3139302e3132332e3132382e302f32302d3234203d3e203238303836.roa
Signing time: Tue 04 Feb 2025 18:55:00 +0000
ROA not before: Tue 04 Feb 2025 18:50:00 +0000
ROA not after: Tue 03 Feb 2026 18:55:00 +0000
asID: 28086
IP address blocks: 190.123.128.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:f8:05:e8:76:eb:ec:22:c7:ee:8f:5a:6f:a1:19:85:5d:b0:c8:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7576B30485208191B54BA2BD59339967753E0699
Validity
Not Before: Feb 4 18:50:00 2025 GMT
Not After : Feb 3 18:55:00 2026 GMT
Subject: CN=D05BDCE6FF11D6A28CB801F7B1A60E51B4AE238A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b4:72:73:a3:56:cb:de:93:6a:ff:a0:da:8c:
6c:4d:4d:55:fb:d1:6f:4c:81:74:a1:27:6f:3d:4b:
dd:94:58:04:9c:d8:ac:51:55:58:e1:23:b8:c3:46:
2a:63:c3:97:64:ba:0b:be:15:17:6f:f3:75:c8:51:
64:59:4c:c8:c6:a4:8f:f1:d6:5d:bf:1b:1e:49:e0:
bb:69:9e:52:bd:e8:20:1b:66:96:60:55:9b:2f:69:
0e:c4:92:85:36:66:7b:a5:fd:b7:7e:ab:1f:d0:d7:
50:49:ae:f5:9e:11:4f:d8:98:2b:63:3a:e1:7e:a4:
7b:a8:e4:83:26:c0:07:5b:e2:bf:2f:79:43:d7:a9:
fa:48:f8:2d:66:33:f1:a1:f9:60:03:b8:d4:b6:be:
91:09:23:7d:60:eb:5a:43:fd:1c:35:9a:bf:15:6d:
53:ab:a4:bc:48:25:a9:88:35:d1:8a:8b:62:91:61:
e2:1d:a1:20:32:e1:06:81:e9:0c:c6:1b:d8:50:f3:
a5:1d:5b:96:e8:82:ed:8f:9f:87:e2:52:e2:8c:44:
63:3d:f5:22:b3:16:ca:a5:aa:15:84:b9:2a:4a:86:
20:76:a9:e9:f6:99:99:bb:86:4c:f8:e4:97:e6:32:
06:0d:53:28:7a:97:35:87:83:43:d2:2d:4c:2e:90:
2f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:5B:DC:E6:FF:11:D6:A2:8C:B8:01:F7:B1:A6:0E:51:B4:AE:23:8A
X509v3 Authority Key Identifier:
keyid:75:76:B3:04:85:20:81:91:B5:4B:A2:BD:59:33:99:67:75:3E:06:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/FB312F853A363B8255AABD25954A11A432350EFBEA8F18F431E800E4C2AE0F07/0/7576B30485208191B54BA2BD59339967753E0699.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7576B30485208191B54BA2BD59339967753E0699.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/FB312F853A363B8255AABD25954A11A432350EFBEA8F18F431E800E4C2AE0F07/0/3139302e3132332e3132382e302f32302d3234203d3e203238303836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.123.128.0/20
Signature Algorithm: sha256WithRSAEncryption
45:0c:45:12:1f:40:e9:4f:a9:2c:96:73:17:83:45:6d:dd:c3:
ea:b2:6f:85:51:16:05:25:78:c7:4b:ce:79:7e:55:98:a7:fb:
3e:c4:af:a7:f3:3a:35:96:d2:3a:15:c1:62:ef:93:bf:91:a0:
fb:ad:5c:47:87:be:ad:60:df:60:34:10:af:63:78:c0:e6:67:
36:6e:84:c2:92:15:0d:64:42:93:91:7a:08:b6:b1:41:e6:cd:
3f:f7:ec:0d:d9:6a:0e:e0:51:3d:03:e2:6e:03:98:3a:af:39:
64:96:b4:fb:ee:94:62:86:49:24:47:da:a8:21:8c:53:d7:2a:
23:8d:9f:7f:c6:97:16:43:e7:47:32:41:64:40:af:a4:27:b4:
4c:aa:98:f3:52:4a:19:89:49:29:3a:b6:99:25:09:b2:39:cc:
c1:9f:ba:7c:14:9c:67:1c:02:7a:51:b2:dc:b9:e2:3f:fc:5d:
3f:82:22:68:dd:23:05:80:4c:e5:3c:c9:a1:32:70:a9:14:1d:
5e:71:a8:22:cd:0a:4a:3e:03:4b:8f:54:de:32:ab:62:2e:8f:
ac:9e:b5:29:0d:75:53:1b:c3:f9:cc:01:e9:f9:7a:e1:85:40:
3b:33:8b:3e:07:31:4e:b4:a7:7a:b9:55:04:fb:3a:d4:97:bd:
e5:12:15:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 15:35:14 2025 by rpki-client