Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3133382e3230342e3235332e302f32342d3234203d3e203634313034.roa
File: 3133382e3230342e3235332e302f32342d3234203d3e203634313034.roa (raw, json)
Hash identifier: MU293CJ95xK1pMiLC58ehihI8UnXYHM1ISgLqXgx86w=
Subject key identifier: 10:CB:28:3E:95:78:79:0D:8A:90:DD:61:57:AB:26:D4:93:CD:DC:25
Certificate issuer: /CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
Certificate serial: 2A942A395FADD90C524104C18CB40080F5127499
Authority key identifier: 48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3133382e3230342e3235332e302f32342d3234203d3e203634313034.roa
Signing time: Tue 04 Feb 2025 18:35:18 +0000
ROA not before: Tue 04 Feb 2025 18:30:18 +0000
ROA not after: Tue 03 Feb 2026 18:35:18 +0000
asID: 64104
IP address blocks: 138.204.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:94:2a:39:5f:ad:d9:0c:52:41:04:c1:8c:b4:00:80:f5:12:74:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
Validity
Not Before: Feb 4 18:30:18 2025 GMT
Not After : Feb 3 18:35:18 2026 GMT
Subject: CN=10CB283E9578790D8A90DD6157AB26D493CDDC25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:4b:d8:fe:df:98:c9:fb:7b:a3:2e:d8:fd:bc:
e6:41:9f:80:bb:ce:91:77:d0:16:c9:5d:82:16:cd:
45:6c:6c:e9:a4:ab:fe:09:db:29:9a:f7:7c:93:e6:
5d:ae:1e:b8:c5:bf:64:1b:69:55:2a:37:7c:42:65:
ba:04:0d:40:56:98:46:4e:54:e3:0c:41:f8:79:75:
42:88:27:ef:36:7c:51:b2:8e:6f:91:05:69:44:db:
b1:8a:01:35:36:00:bc:a2:46:4e:ab:ae:c8:21:2a:
18:c4:b5:4f:92:27:76:a5:5e:5d:9e:1d:09:eb:f5:
6b:84:2f:b9:54:78:85:29:75:3b:82:c7:b1:bf:74:
ac:89:6c:fb:1a:a3:b4:7f:db:69:8e:77:8d:3c:51:
66:a1:ac:44:ee:fb:da:01:bb:b0:75:eb:f8:0e:f2:
fa:7f:3f:67:97:48:75:aa:8a:f1:3f:03:80:5a:1a:
d9:d4:46:f2:0f:d4:1d:0b:cb:f8:26:2f:07:15:30:
1e:72:ce:f0:15:9f:0c:c2:76:6a:ee:ad:f1:04:7c:
2c:38:7b:59:cb:a3:ba:85:02:9d:ac:8f:13:d0:8f:
b8:84:43:a6:df:33:db:5d:46:00:94:18:d8:46:89:
7e:64:cb:b9:15:a8:dd:b1:d0:1b:21:04:94:01:cf:
65:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CB:28:3E:95:78:79:0D:8A:90:DD:61:57:AB:26:D4:93:CD:DC:25
X509v3 Authority Key Identifier:
keyid:48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3133382e3230342e3235332e302f32342d3234203d3e203634313034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.253.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:70:22:39:43:3d:17:9a:75:e8:ad:dd:48:bc:f6:64:20:ee:
40:fe:0d:4b:e5:d8:d8:79:69:95:af:96:fb:ec:0b:48:f5:88:
b2:60:f6:7c:11:a2:94:0e:14:92:82:96:bd:84:03:fb:bd:91:
6d:24:9c:e0:14:ba:5c:f6:97:86:27:29:ca:7c:6a:00:4d:db:
45:05:55:cc:d0:6b:06:0a:52:86:53:ed:69:c0:85:cc:08:c8:
b6:89:0e:28:18:fd:22:7b:73:41:19:e9:f6:83:d9:90:87:20:
92:a0:c3:85:63:55:9e:8a:66:80:4f:6f:a3:7d:fe:79:ba:b7:
98:2b:75:7a:0d:8b:43:28:7b:e6:3c:2c:81:32:24:d2:ca:a8:
12:ee:6c:b9:2d:5f:99:21:b9:f2:44:61:d4:b9:d6:9d:a4:ef:
79:7b:ae:4e:85:e9:3d:5f:ab:22:71:ac:7e:79:bd:ad:c6:83:
dc:dd:c1:cb:f1:28:19:0c:00:8e:de:78:e3:ae:f7:06:83:98:
59:83:6e:0c:37:d2:5a:ee:8a:16:4a:1c:1a:7d:f3:95:01:29:
73:58:02:52:37:19:59:c1:a9:ca:27:0c:39:a6:ff:c6:36:02:
8e:cc:bd:d1:f8:fe:35:fb:32:06:82:43:73:08:b4:b6:2f:27:
cb:98:3b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:05:09 2025 by rpki-client