Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233362e302f32322d3234203d3e203237383233.roa
File: 3133382e33362e3233362e302f32322d3234203d3e203237383233.roa (raw, json)
Hash identifier: uWvCQvd7ytzWoN2+DfdqWyyb4TGMexMndR2zD4/wh3A=
Subject key identifier: 4C:7E:36:69:CC:09:72:58:6C:EA:1C:01:65:0F:C3:66:B1:4E:E1:E6
Certificate issuer: /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Certificate serial: 68D15E6805F7317D84AC6379178B7EE921254BE3
Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233362e302f32322d3234203d3e203237383233.roa
Signing time: Tue 04 Feb 2025 18:08:10 +0000
ROA not before: Tue 04 Feb 2025 18:03:10 +0000
ROA not after: Tue 03 Feb 2026 18:08:10 +0000
asID: 27823
IP address blocks: 138.36.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:d1:5e:68:05:f7:31:7d:84:ac:63:79:17:8b:7e:e9:21:25:4b:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Validity
Not Before: Feb 4 18:03:10 2025 GMT
Not After : Feb 3 18:08:10 2026 GMT
Subject: CN=4C7E3669CC0972586CEA1C01650FC366B14EE1E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:20:c5:74:6f:f1:bf:0e:49:7c:2a:d6:3e:66:
8d:5f:e3:74:59:45:cd:9e:60:ea:df:14:31:0c:d4:
03:32:8b:59:18:c5:c5:e5:c4:ed:20:ab:64:64:52:
9d:51:85:21:15:27:7e:d8:0c:de:e0:d3:1a:f2:41:
28:d0:0f:ca:f5:49:87:9f:f3:60:fc:da:4a:ea:71:
6d:0b:8c:52:f5:02:d8:fd:2d:58:37:ab:cd:3e:14:
0d:aa:8f:b0:8f:f3:32:8f:f7:67:d1:71:f9:b4:f3:
99:4e:8a:21:b7:c2:9b:97:21:85:94:c2:e7:7e:40:
e0:4d:9c:3d:98:0c:82:e1:df:58:06:48:cc:e3:a0:
29:cb:62:3d:49:42:15:d0:f4:f6:61:de:c2:3e:13:
48:23:14:b1:f8:48:8a:88:ac:68:cf:49:ca:30:52:
3c:b8:c3:51:b3:74:09:34:05:6f:28:7c:4b:09:0f:
bd:57:65:f7:50:60:ec:18:c3:ad:0b:89:e3:3a:b3:
dc:51:b5:0d:e9:48:ef:9a:d8:fd:0f:64:e6:bd:31:
28:3e:9a:4b:90:b9:ce:bf:bf:bb:21:b1:a7:e6:cb:
de:58:49:0f:8f:a5:02:af:59:48:e9:5b:ce:7e:b0:
11:37:3a:c2:14:f9:fa:a1:83:9c:fa:41:55:3f:8d:
ff:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:7E:36:69:CC:09:72:58:6C:EA:1C:01:65:0F:C3:66:B1:4E:E1:E6
X509v3 Authority Key Identifier:
keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233362e302f32322d3234203d3e203237383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.36.236.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:5e:1d:74:e3:73:2f:53:31:2b:b2:02:2d:60:7f:b8:33:54:
b5:a8:f2:4e:6b:7d:3c:8a:16:1b:97:5d:f6:d2:a6:e9:7d:37:
e0:e5:b3:fe:9f:a3:50:88:17:d8:63:b9:43:18:df:2d:74:7d:
90:e9:09:ac:1f:65:1c:69:aa:e9:cd:43:69:62:ac:90:92:26:
1e:9d:f3:de:9e:70:93:38:16:41:b7:f2:95:0c:25:62:73:6f:
47:8f:7a:0f:91:87:61:be:69:7e:5a:cd:11:c8:11:0e:71:2f:
c0:71:c5:6f:31:61:42:57:24:ae:d6:83:fb:6c:10:f8:59:5c:
fc:8c:08:e7:4a:e3:44:29:c8:7d:b0:a6:d8:a3:a8:29:a5:23:
0e:af:d9:2d:10:ff:7e:ba:f9:5b:72:27:84:92:00:26:96:1b:
2b:0d:c0:b5:d7:dc:f5:75:1f:c5:5c:35:ca:ad:4a:cd:5b:92:
ff:e1:61:66:e1:8b:5f:98:0f:af:71:36:80:ae:f2:9b:2f:aa:
36:ed:b4:b3:ad:b0:f8:0d:a1:35:a0:3e:49:44:b9:d7:ec:38:
b2:19:f1:22:4b:25:11:c3:bf:3b:c6:4b:5f:87:6d:c9:62:05:
cb:56:9e:32:16:56:5d:ce:70:ad:b5:64:d4:57:84:3f:b1:bf:
23:fd:30:9d
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUaNFeaAX3MX2ErGN5F4t+6SElS+MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTVDMzFEQ0E0MDYyRkJBOEZGNDE3NUM1MThFRjIyNDZD
RjU3MEQ4MDAeFw0yNTAyMDQxODAzMTBaFw0yNjAyMDMxODA4MTBaMDMxMTAvBgNV
BAMTKDRDN0UzNjY5Q0MwOTcyNTg2Q0VBMUMwMTY1MEZDMzY2QjE0RUUxRTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZIMV0b/G/Dkl8KtY+Zo1f43RZ
Rc2eYOrfFDEM1AMyi1kYxcXlxO0gq2RkUp1RhSEVJ37YDN7g0xryQSjQD8r1SYef
82D82krqcW0LjFL1Atj9LVg3q80+FA2qj7CP8zKP92fRcfm085lOiiG3wpuXIYWU
wud+QOBNnD2YDILh31gGSMzjoCnLYj1JQhXQ9PZh3sI+E0gjFLH4SIqIrGjPScow
Ujy4w1GzdAk0BW8ofEsJD71XZfdQYOwYw60LieM6s9xRtQ3pSO+a2P0PZOa9MSg+
mkuQuc6/v7shsafmy95YSQ+PpQKvWUjpW85+sBE3OsIU+fqhg5z6QVU/jf9RAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUTH42acwJclhs6hwBZQ/DZrFO4eYwHwYDVR0j
BBgwFoAUpcMdykBi+6j/QXXFGO8iRs9XDYAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xNkIxQjU3QjE5Qjc0M0MxRTBCNjdEQzUwMjBFNzY5RkY2
OTdENUQ4RkU2NzY0NTQ0M0MwMTcwQTU5QTYyOEY0LzAvQTVDMzFEQ0E0MDYyRkJB
OEZGNDE3NUM1MThFRjIyNDZDRjU3MEQ4MC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BNUMzMURDQTQwNjJGQkE4RkY0
MTc1QzUxOEVGMjI0NkNGNTcwRDgwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMTZCMUI1N0IxOUI3NDNDMUUwQjY3REM1MDIwRTc2OUZGNjk3RDVEOEZF
Njc2NDU0NDNDMDE3MEE1OUE2MjhGNC8wLzMxMzMzODJlMzMzNjJlMzIzMzM2MmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNzM4MzIzMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAook7DAN
BgkqhkiG9w0BAQsFAAOCAQEASl4ddONzL1MxK7ICLWB/uDNUtajyTmt9PIoWG5dd
9tKm6X034OWz/p+jUIgX2GO5QxjfLXR9kOkJrB9lHGmq6c1DaWKskJImHp3z3p5w
kzgWQbfylQwlYnNvR496D5GHYb5pflrNEcgRDnEvwHHFbzFhQlckrtaD+2wQ+Flc
/IwI50rjRCnIfbCm2KOoKaUjDq/ZLRD/frr5W3InhJIAJpYbKw3Atdfc9XUfxVw1
yq1KzVuS/+FhZuGLX5gPr3E2gK7ymy+qNu20s62w+A2hNaA+SUS51+w4shnxIksl
EcO/O8ZLX4dtyWIFy1aeMhZWXc5wrbVk1FeEP7G/I/0wnQ==
-----END CERTIFICATE-----
Generated at Mon Apr 7 17:51:06 2025 by rpki-client