Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3133382e3231392e322e302f32342d3239203d3e203532343034.roa
File: 3133382e3231392e322e302f32342d3239203d3e203532343034.roa (raw, json)
Hash identifier: 2Tfk0PDlz3Hug2DJSWMRn5xmqDVvy/nDPA6lBbDIh7o=
Subject key identifier: 7F:4F:32:06:41:1C:3F:40:3F:17:31:02:14:08:5F:69:F8:B3:36:66
Certificate issuer: /CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
Certificate serial: 12B309BBBA5D58BB3F68E3E51E7D6D3A57ACA6A7
Authority key identifier: 48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3133382e3231392e322e302f32342d3239203d3e203532343034.roa
Signing time: Tue 14 May 2024 13:10:00 +0000
ROA not before: Tue 14 May 2024 13:05:00 +0000
ROA not after: Tue 13 May 2025 13:10:00 +0000
asID: 52404
IP address blocks: 138.219.2.0/24 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:b3:09:bb:ba:5d:58:bb:3f:68:e3:e5:1e:7d:6d:3a:57:ac:a6:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
Validity
Not Before: May 14 13:05:00 2024 GMT
Not After : May 13 13:10:00 2025 GMT
Subject: CN=7F4F3206411C3F403F17310214085F69F8B33666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:11:84:7e:6d:1b:89:50:c9:1e:50:ae:b4:e9:
b3:e8:f9:a2:4f:f9:a1:b5:70:20:25:f7:07:5a:c6:
10:74:32:a0:ba:16:d9:85:14:66:b5:bf:e9:b4:d0:
b3:f5:b7:e3:7c:61:51:2d:d3:90:14:75:99:8d:e7:
79:62:80:4b:4e:88:38:fd:1c:de:a8:cc:7a:da:d4:
e0:1b:a0:c2:92:0b:f4:e4:f4:c3:5d:45:f3:0e:c2:
93:3e:7b:83:4d:01:5a:6b:d4:3a:b6:3c:ca:6b:6f:
0c:6e:28:99:04:74:da:97:0e:c9:72:5a:63:ea:df:
78:9e:91:ec:8b:45:7a:90:49:f1:0a:69:ec:68:9a:
e6:2a:f6:f2:e4:17:e0:a6:81:32:cf:31:26:11:92:
fb:2b:46:67:a1:55:d7:df:42:d3:3d:18:25:9a:4c:
df:d9:4c:17:ba:f7:12:fd:fc:b3:b8:bc:9e:6d:f5:
d2:91:79:36:23:a9:f5:0d:d1:0c:29:66:8a:25:28:
68:82:97:b1:70:87:18:4f:80:8b:66:e6:ae:2b:7f:
6f:dd:2a:3d:26:fe:aa:6e:e2:c2:f1:01:0d:07:27:
7a:97:31:be:bb:74:d1:a7:a9:95:13:75:07:40:05:
65:8e:25:da:ae:4a:55:7e:a8:b9:dd:06:9c:36:0d:
c1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:4F:32:06:41:1C:3F:40:3F:17:31:02:14:08:5F:69:F8:B3:36:66
X509v3 Authority Key Identifier:
keyid:48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3133382e3231392e322e302f32342d3239203d3e203532343034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.219.2.0/24
Signature Algorithm: sha256WithRSAEncryption
67:68:1e:86:44:f0:1c:d4:43:88:b2:87:73:4c:ea:2f:c2:ac:
47:d7:7d:2c:04:f5:c5:65:78:09:bb:34:c0:79:ae:7e:b4:6d:
29:37:aa:e5:b3:d9:27:1d:1d:61:80:66:12:a7:69:cc:13:fd:
a9:c2:95:a1:83:8e:17:06:21:87:65:02:74:60:56:52:08:ac:
28:a7:ad:5f:65:47:b7:a2:fc:ce:20:86:d0:64:c3:58:84:64:
7a:50:0c:04:66:2e:cb:d7:75:4d:d6:41:09:48:a7:60:6b:08:
bd:81:0b:cc:37:74:f5:99:72:2c:5b:d1:59:b0:c0:42:27:e7:
a0:ef:a0:30:e2:51:35:ab:b0:a9:43:6a:0a:8f:9b:07:57:df:
3a:5d:75:83:d6:f1:83:59:42:9b:92:c9:9d:03:d4:2c:cb:94:
c5:21:7f:52:10:6f:08:4e:15:73:7d:33:83:78:90:00:be:64:
ef:77:e5:3c:dd:f6:6c:29:f8:34:f0:42:c9:54:9d:be:f3:ae:
c0:9e:25:a2:2f:54:1e:dd:fb:8b:fc:be:3d:93:75:08:f2:e5:
6a:c7:1c:4b:ef:a3:3d:7d:9b:f0:86:14:05:a5:9a:bf:9b:e4:
bc:81:39:c0:7b:d9:2c:cc:ce:02:f3:58:c9:74:6f:05:9e:c3:
44:bf:e2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:02:43 2025 by rpki-client