Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233372e302f32342d3234203d3e203237383233.roa
File: 3133382e33362e3233372e302f32342d3234203d3e203237383233.roa (raw, json)
Hash identifier: 8aMq5z4BRdkpAV/BBzI4/XeYL2Z6+JAFs5U7P7kEsss=
Subject key identifier: D7:53:EE:D4:E4:BE:02:65:BA:EA:D3:7C:41:7D:2F:F3:15:76:4F:FD
Certificate issuer: /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Certificate serial: 7C8957869AEA991D3D591B7AE067BA130F3908E1
Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233372e302f32342d3234203d3e203237383233.roa
Signing time: Tue 04 Feb 2025 18:08:26 +0000
ROA not before: Tue 04 Feb 2025 18:03:26 +0000
ROA not after: Tue 03 Feb 2026 18:08:26 +0000
asID: 27823
IP address blocks: 138.36.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:89:57:86:9a:ea:99:1d:3d:59:1b:7a:e0:67:ba:13:0f:39:08:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Validity
Not Before: Feb 4 18:03:26 2025 GMT
Not After : Feb 3 18:08:26 2026 GMT
Subject: CN=D753EED4E4BE0265BAEAD37C417D2FF315764FFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0b:1c:47:d9:e3:7f:f9:5a:d4:94:9c:25:50:
14:24:b2:6e:6c:6e:79:ae:c8:16:be:7e:b5:5c:2a:
e8:d0:38:24:69:46:2e:5a:57:73:b3:ba:9d:7a:ee:
65:b6:1c:91:24:0d:c5:34:93:ee:ff:2d:07:f0:b7:
7c:e7:34:3b:be:45:3c:7b:86:2c:8a:fc:6d:a7:4e:
b2:3c:87:04:54:ac:4c:fc:b9:28:4d:39:c6:91:f1:
1b:d2:a1:6c:80:10:16:38:6f:db:70:a8:9d:48:66:
31:e8:19:c1:7c:8a:8f:8c:b4:5d:ab:43:45:aa:97:
ae:7c:16:bd:7c:4b:44:59:9b:08:1b:eb:ad:58:24:
85:25:89:6c:72:14:12:26:2e:31:93:57:76:d6:08:
8b:44:87:15:5b:15:31:f2:05:b5:94:01:d4:7d:a5:
9d:52:a3:1a:cb:0b:6a:4a:9a:f0:f4:64:d0:d4:d2:
e3:2e:73:15:6d:7d:a0:0e:e8:73:84:c5:b4:93:84:
11:10:f1:77:e7:12:f7:51:77:18:e2:f5:24:30:70:
a4:05:b6:e3:11:12:b4:88:70:a1:14:4a:30:04:74:
54:97:ab:3e:03:4d:44:14:04:52:67:50:ae:fc:7f:
0d:56:02:16:c7:c6:94:32:91:5c:e1:ba:fe:07:31:
36:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:53:EE:D4:E4:BE:02:65:BA:EA:D3:7C:41:7D:2F:F3:15:76:4F:FD
X509v3 Authority Key Identifier:
keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233372e302f32342d3234203d3e203237383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.36.237.0/24
Signature Algorithm: sha256WithRSAEncryption
63:ed:f2:32:20:ff:59:c4:c3:f7:f1:4f:fa:b3:52:2f:84:c4:
e9:a0:e0:8c:6e:8c:9e:46:e8:e4:0e:13:3a:a7:5a:45:7d:e4:
dd:f6:99:6b:0c:92:e1:d3:93:46:15:7a:5e:5c:df:5d:f4:c8:
fc:a1:24:0f:f3:12:89:91:22:8f:b1:54:38:75:c8:b4:e1:8a:
2d:de:71:71:dc:0f:cd:ea:72:c1:b9:02:10:03:5e:cc:dc:b7:
e7:38:54:c6:14:59:9f:8a:51:4c:25:9b:e0:ab:f3:c7:d2:56:
e4:dd:2b:1a:ce:10:c3:ce:75:2f:0c:bd:e7:ab:ca:bc:f1:d3:
b6:60:10:32:e9:7e:83:02:87:91:4c:f0:10:2b:60:c4:d9:26:
23:11:8a:89:1f:3e:b9:f1:df:d0:f2:ac:fc:cd:ec:54:0b:5e:
8e:09:ba:e7:3c:f6:5b:f6:db:46:79:6c:82:0e:dd:cb:b7:e8:
b9:d6:75:ba:7f:74:81:eb:66:46:1e:b3:a3:3d:2e:61:89:55:
79:93:9a:c3:3f:4d:d3:22:80:54:1d:24:f2:b6:0f:58:ed:99:
05:d1:02:48:fc:43:db:65:3c:b0:21:6f:c4:5b:ac:09:ff:df:
34:ce:c2:42:75:05:d5:82:40:f8:51:6c:a2:58:3b:8b:bf:06:
36:ab:3d:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:51:01 2025 by rpki-client