Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233382e302f32342d3234203d3e203237383233.roa
File: 3133382e33362e3233382e302f32342d3234203d3e203237383233.roa (raw, json)
Hash identifier: JIlvajgS7uXl+1nDTtVcYEmDWjRUYVPqk400+9SOvvc=
Subject key identifier: F7:03:98:15:01:30:EE:8B:4F:42:D1:C3:8A:68:44:77:14:1D:71:5D
Certificate issuer: /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Certificate serial: 293A2E8517D5BEFA561BD63A1A5AE5A612E746A8
Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233382e302f32342d3234203d3e203237383233.roa
Signing time: Tue 04 Feb 2025 18:08:19 +0000
ROA not before: Tue 04 Feb 2025 18:03:19 +0000
ROA not after: Tue 03 Feb 2026 18:08:19 +0000
asID: 27823
IP address blocks: 138.36.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:3a:2e:85:17:d5:be:fa:56:1b:d6:3a:1a:5a:e5:a6:12:e7:46:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Validity
Not Before: Feb 4 18:03:19 2025 GMT
Not After : Feb 3 18:08:19 2026 GMT
Subject: CN=F70398150130EE8B4F42D1C38A684477141D715D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:eb:13:38:11:5c:25:d9:4b:55:f1:a1:48:2d:
13:7a:ef:70:78:4e:79:a4:95:a9:36:b4:4a:a8:87:
8f:35:e5:41:08:2a:bb:76:db:c7:d5:9a:50:e9:65:
bd:59:ee:70:ac:e2:13:41:d6:8c:bf:af:a3:44:25:
93:b0:42:63:50:3c:2c:20:c7:9f:c2:36:f0:f8:7f:
85:5e:57:9b:e6:da:32:d9:4f:d0:1d:93:a5:16:cd:
cf:c0:d5:63:dc:fa:62:c3:41:32:9c:7a:a4:11:34:
63:a1:e2:90:9d:e3:13:18:81:72:fc:01:ff:0d:4d:
a7:64:4d:e9:f7:a6:d2:ad:32:38:5c:5b:21:72:bf:
c8:0b:94:96:dd:45:74:bf:a9:f8:7a:b6:05:de:16:
0b:39:2c:7e:22:af:e3:2c:32:23:bb:dc:22:cd:4e:
2a:38:b9:8f:ac:94:45:1e:c3:ad:00:0d:db:2f:3f:
8f:86:05:2f:dc:57:d2:93:09:83:c3:77:6d:07:80:
fa:d3:b0:9e:e0:ec:ee:e0:43:40:2c:e1:62:3c:e1:
76:df:d8:ce:17:71:6d:b3:97:26:22:d5:55:64:66:
00:68:c4:b2:56:c5:11:b6:70:bb:3d:64:7f:1e:cd:
38:ff:25:98:a7:96:b3:20:97:09:3d:eb:d2:81:46:
b0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:03:98:15:01:30:EE:8B:4F:42:D1:C3:8A:68:44:77:14:1D:71:5D
X509v3 Authority Key Identifier:
keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3133382e33362e3233382e302f32342d3234203d3e203237383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.36.238.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:5d:67:4c:cd:7b:cd:23:b0:dc:24:03:2b:c1:6c:37:95:73:
a8:45:d1:a7:d8:69:ce:f0:7f:59:6a:63:90:13:b1:7f:10:74:
d6:18:6d:bf:49:0d:21:02:0d:67:1a:71:d6:e2:5e:14:08:29:
9b:a5:f1:26:96:0a:c8:1d:fe:44:f6:ef:04:a4:ad:1b:d7:9a:
4c:ac:a4:cd:38:df:8d:52:2e:1a:d2:4f:0a:ea:73:a2:4b:dc:
ef:9d:0f:08:b3:28:7a:da:26:c9:65:07:91:d3:5b:92:54:46:
ee:d6:54:e7:64:c6:ee:70:6e:36:33:ce:cd:aa:cf:a1:59:fa:
33:b1:5d:eb:53:39:59:8d:56:12:a0:36:70:51:b3:97:21:f5:
48:70:19:a8:7a:55:0a:f4:da:c0:5d:f9:f6:c7:af:77:99:7d:
4c:9d:a3:4b:34:88:8d:a7:4b:8d:70:df:19:03:34:77:e2:b0:
03:00:b9:d6:1e:06:40:34:d0:4e:ae:35:29:19:c0:d7:5c:71:
8e:40:a7:c3:3d:fc:d1:7d:1f:8e:12:ab:ca:ec:c3:16:98:a2:
99:a3:ad:ea:b4:4e:f6:7f:ab:d8:75:0b:fd:57:f9:30:f4:3a:
77:ec:55:9f:b4:f3:ed:71:2b:6b:58:12:aa:2f:82:39:75:19:
be:c1:7b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:50:43 2025 by rpki-client