Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1FC9B0DC05AFAB7ECB3A379DDC6D51C548D3A711D9C10462F2B6ABC1E75E1019/0/3133382e3235352e3131362e302f32322d3234203d3e20323730313536.roa
File: 3133382e3235352e3131362e302f32322d3234203d3e20323730313536.roa (raw, json)
Hash identifier: O6BnIOAS+8L0M3wsNqlmxFo8FVjSJjL+BMueCf7+jP4=
Subject key identifier: 86:21:DB:28:5A:FD:36:E8:23:B3:11:A3:04:54:E3:BE:7E:E4:9F:F0
Certificate issuer: /CN=35D619733A3D3A776B2D5FB84305186B942E249A
Certificate serial: 28C33DA8FDC297B13F3F8D3057F5FC930A1EC9E3
Authority key identifier: 35:D6:19:73:3A:3D:3A:77:6B:2D:5F:B8:43:05:18:6B:94:2E:24:9A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35D619733A3D3A776B2D5FB84305186B942E249A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1FC9B0DC05AFAB7ECB3A379DDC6D51C548D3A711D9C10462F2B6ABC1E75E1019/0/3133382e3235352e3131362e302f32322d3234203d3e20323730313536.roa
Signing time: Tue 04 Feb 2025 18:18:29 +0000
ROA not before: Tue 04 Feb 2025 18:13:29 +0000
ROA not after: Tue 03 Feb 2026 18:18:29 +0000
asID: 270156
IP address blocks: 138.255.116.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:c3:3d:a8:fd:c2:97:b1:3f:3f:8d:30:57:f5:fc:93:0a:1e:c9:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35D619733A3D3A776B2D5FB84305186B942E249A
Validity
Not Before: Feb 4 18:13:29 2025 GMT
Not After : Feb 3 18:18:29 2026 GMT
Subject: CN=8621DB285AFD36E823B311A30454E3BE7EE49FF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b7:90:b3:5d:7c:76:17:25:a0:fc:25:63:c8:
a2:e7:86:bb:b8:14:9f:0d:29:de:10:e5:17:b4:a0:
17:23:7d:3b:04:95:1f:e7:c2:af:05:a7:fe:6e:6a:
49:49:3d:29:b9:2b:be:00:c7:9d:c2:c4:4f:9a:01:
a0:7b:44:5d:b1:6e:e2:af:99:15:fb:ac:c4:b1:7b:
18:79:61:62:b7:55:48:7d:21:ea:94:1c:c9:17:8e:
8b:91:98:87:e3:9a:1a:cd:a4:7c:3c:a1:aa:5c:24:
66:db:38:21:84:52:a0:a0:50:8d:9c:50:cf:3d:25:
6e:44:bc:85:29:e9:28:60:d8:70:3f:21:f2:d1:dc:
13:0a:5e:a7:73:fb:48:88:5f:ac:72:50:7f:d2:71:
da:18:b0:57:eb:37:f4:4e:af:04:de:54:49:6e:1f:
1f:43:68:2c:47:da:31:45:12:08:e5:34:9b:63:11:
3e:49:4b:08:cf:d7:dc:28:7f:74:44:f4:1f:ff:8b:
a8:0a:b2:8f:d2:91:64:c3:b3:b5:f5:de:0a:46:ce:
ca:73:f6:7a:9a:0c:75:e2:9e:95:9c:f8:b6:79:c9:
c2:18:e0:67:d9:c0:dd:c4:85:a4:53:29:09:49:06:
b7:99:36:0f:c4:37:f3:d3:ec:35:b9:21:f4:f5:ff:
9a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:21:DB:28:5A:FD:36:E8:23:B3:11:A3:04:54:E3:BE:7E:E4:9F:F0
X509v3 Authority Key Identifier:
keyid:35:D6:19:73:3A:3D:3A:77:6B:2D:5F:B8:43:05:18:6B:94:2E:24:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1FC9B0DC05AFAB7ECB3A379DDC6D51C548D3A711D9C10462F2B6ABC1E75E1019/0/35D619733A3D3A776B2D5FB84305186B942E249A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35D619733A3D3A776B2D5FB84305186B942E249A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1FC9B0DC05AFAB7ECB3A379DDC6D51C548D3A711D9C10462F2B6ABC1E75E1019/0/3133382e3235352e3131362e302f32322d3234203d3e20323730313536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.255.116.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:8c:5e:90:fe:a3:ea:f6:13:0b:20:ad:17:4d:bb:71:dd:1d:
d9:b3:a0:ab:eb:84:21:18:00:ca:05:2b:85:4f:be:dd:c0:d5:
19:c3:a8:e5:df:58:36:69:7a:91:de:22:71:08:1e:f2:02:5c:
c4:04:3e:35:5d:d8:32:0a:83:5e:a9:69:3a:22:42:0f:87:46:
d1:d9:d8:d1:bb:ac:52:05:e8:65:ee:ee:a8:65:2d:5b:b2:8b:
99:4a:4a:7e:b1:2e:03:31:ce:37:a1:99:e8:7d:a9:a6:de:2e:
d4:d8:28:e0:cf:03:3d:77:ff:5a:24:88:0e:ee:b9:3c:94:15:
49:dc:60:a7:71:3c:b2:37:f6:6a:a2:02:0b:b6:ee:f1:2c:9e:
a0:76:7c:93:a2:82:77:00:09:9f:0f:95:f0:aa:b7:61:aa:93:
b7:57:8f:7d:eb:72:b4:99:df:25:d6:8e:4b:fc:c8:f1:ac:9a:
11:2a:ea:da:bc:e9:3c:b1:78:d6:5f:3e:3b:1e:88:a6:38:a3:
1a:da:0e:3d:f8:a8:fa:73:fe:93:55:db:3f:e4:4b:2c:c7:51:
08:d4:b4:fe:f8:33:08:01:31:46:e8:44:e2:4c:b2:73:ed:e1:
ab:12:57:db:cb:fc:47:ae:85:ca:26:ed:37:cb:d4:24:47:4a:
e8:7a:6f:6c
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUKMM9qP3Cl7E/P40wV/X8kwoeyeMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzVENjE5NzMzQTNEM0E3NzZCMkQ1RkI4NDMwNTE4NkI5
NDJFMjQ5QTAeFw0yNTAyMDQxODEzMjlaFw0yNjAyMDMxODE4MjlaMDMxMTAvBgNV
BAMTKDg2MjFEQjI4NUFGRDM2RTgyM0IzMTFBMzA0NTRFM0JFN0VFNDlGRjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2t5CzXXx2FyWg/CVjyKLnhru4
FJ8NKd4Q5Re0oBcjfTsElR/nwq8Fp/5uaklJPSm5K74Ax53CxE+aAaB7RF2xbuKv
mRX7rMSxexh5YWK3VUh9IeqUHMkXjouRmIfjmhrNpHw8oapcJGbbOCGEUqCgUI2c
UM89JW5EvIUp6Shg2HA/IfLR3BMKXqdz+0iIX6xyUH/ScdoYsFfrN/ROrwTeVElu
Hx9DaCxH2jFFEgjlNJtjET5JSwjP19wof3RE9B//i6gKso/SkWTDs7X13gpGzspz
9nqaDHXinpWc+LZ5ycIY4GfZwN3EhaRTKQlJBreZNg/EN/PT7DW5IfT1/5qZAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUhiHbKFr9NugjsxGjBFTjvn7kn/AwHwYDVR0j
BBgwFoAUNdYZczo9OndrLV+4QwUYa5QuJJowDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xRkM5QjBEQzA1QUZBQjdFQ0IzQTM3OUREQzZENTFDNTQ4
RDNBNzExRDlDMTA0NjJGMkI2QUJDMUU3NUUxMDE5LzAvMzVENjE5NzMzQTNEM0E3
NzZCMkQ1RkI4NDMwNTE4NkI5NDJFMjQ5QS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zNUQ2MTk3MzNBM0QzQTc3NkIy
RDVGQjg0MzA1MTg2Qjk0MkUyNDlBLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUZDOUIwREMwNUFGQUI3RUNCM0EzNzlEREM2RDUxQzU0OEQzQTcxMUQ5
QzEwNDYyRjJCNkFCQzFFNzVFMTAxOS8wLzMxMzMzODJlMzIzNTM1MmUzMTMxMzYy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM3MzAzMTM1MzYucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKK
/3QwDQYJKoZIhvcNAQELBQADggEBAE2MXpD+o+r2EwsgrRdNu3HdHdmzoKvrhCEY
AMoFK4VPvt3A1RnDqOXfWDZpepHeInEIHvICXMQEPjVd2DIKg16paToiQg+HRtHZ
2NG7rFIF6GXu7qhlLVuyi5lKSn6xLgMxzjehmeh9qabeLtTYKODPAz13/1okiA7u
uTyUFUncYKdxPLI39mqiAgu27vEsnqB2fJOigncACZ8PlfCqt2Gqk7dXj33rcrSZ
3yXWjkv8yPGsmhEq6tq86TyxeNZfPjseiKY4oxraDj34qPpz/pNV2z/kSyzHUQjU
tP74MwgBMUboROJMsnPt4asSV9vL/Eeuhcom7TfL1CRHSuh6b2w=
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:33:29 2025 by rpki-client