Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/213DDC6C525AA1D432F470A96D9261CF28FE1CED4EC7C1B8C1F5A018F75EEF4D/0/3133382e3235352e39382e302f32342d3234203d3e20323633383037.roa
File: 3133382e3235352e39382e302f32342d3234203d3e20323633383037.roa (raw, json)
Hash identifier: f66sSKhCawYcYMVYV4neG56khlt10MyE+PirKEn9vm4=
Subject key identifier: 3F:30:77:68:17:57:EB:3D:67:25:03:7A:2E:B4:51:94:A4:7F:88:F1
Certificate issuer: /CN=3F4E1DE876140740F25E5B57D8F6BB5386023F5F
Certificate serial: 68F9863AE5F69311C2BCCCE186EC900BF74E1334
Authority key identifier: 3F:4E:1D:E8:76:14:07:40:F2:5E:5B:57:D8:F6:BB:53:86:02:3F:5F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F4E1DE876140740F25E5B57D8F6BB5386023F5F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/213DDC6C525AA1D432F470A96D9261CF28FE1CED4EC7C1B8C1F5A018F75EEF4D/0/3133382e3235352e39382e302f32342d3234203d3e20323633383037.roa
Signing time: Tue 04 Feb 2025 18:34:39 +0000
ROA not before: Tue 04 Feb 2025 18:29:39 +0000
ROA not after: Tue 03 Feb 2026 18:34:39 +0000
asID: 263807
IP address blocks: 138.255.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:f9:86:3a:e5:f6:93:11:c2:bc:cc:e1:86:ec:90:0b:f7:4e:13:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F4E1DE876140740F25E5B57D8F6BB5386023F5F
Validity
Not Before: Feb 4 18:29:39 2025 GMT
Not After : Feb 3 18:34:39 2026 GMT
Subject: CN=3F3077681757EB3D6725037A2EB45194A47F88F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:bc:49:b4:6b:64:ca:01:55:c7:75:f0:82:5a:
07:72:43:f5:3c:0d:b5:36:c8:eb:c9:30:e6:61:4b:
c9:a4:00:5c:e0:7d:7c:26:00:2d:88:c3:82:04:67:
a8:8b:3c:55:01:66:b8:b6:2b:77:0d:9e:52:cd:6e:
9c:44:a8:c7:14:55:79:6b:29:80:b5:b6:d0:3d:cb:
ac:4e:40:72:0f:a1:39:17:2a:c2:53:31:02:d7:75:
7f:0d:2f:ad:3b:0c:ce:d4:75:3b:7e:a4:c3:42:cc:
27:f8:94:25:d0:66:e0:36:e9:70:bb:26:df:9c:b6:
68:5b:82:8c:6a:33:0d:f9:df:1f:19:32:d4:c9:17:
03:6b:bb:f2:fd:f9:cf:a3:d6:8f:f1:d4:2e:4c:d7:
5b:a3:e7:8c:6a:aa:c6:60:dd:82:6c:ea:b2:0e:4d:
a4:43:69:a4:31:7d:93:ba:9e:e5:1b:51:10:cb:f5:
7f:48:70:5d:b8:7d:65:31:1c:cc:70:61:0e:d7:e4:
6e:14:1e:e0:c8:4e:9c:70:6c:b8:c3:47:27:4b:8a:
fc:11:c7:20:04:45:29:7c:88:95:9c:eb:01:f6:2e:
e0:e3:6b:45:13:f9:84:1f:fc:c0:5d:0a:28:91:94:
46:63:85:0c:36:b2:60:a6:67:ab:95:d8:51:ae:35:
d0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:30:77:68:17:57:EB:3D:67:25:03:7A:2E:B4:51:94:A4:7F:88:F1
X509v3 Authority Key Identifier:
keyid:3F:4E:1D:E8:76:14:07:40:F2:5E:5B:57:D8:F6:BB:53:86:02:3F:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/213DDC6C525AA1D432F470A96D9261CF28FE1CED4EC7C1B8C1F5A018F75EEF4D/0/3F4E1DE876140740F25E5B57D8F6BB5386023F5F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F4E1DE876140740F25E5B57D8F6BB5386023F5F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/213DDC6C525AA1D432F470A96D9261CF28FE1CED4EC7C1B8C1F5A018F75EEF4D/0/3133382e3235352e39382e302f32342d3234203d3e20323633383037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.255.98.0/24
Signature Algorithm: sha256WithRSAEncryption
00:57:45:e8:63:97:2e:72:1b:27:82:fc:a1:c2:83:c7:a1:26:
b6:12:3c:f0:11:23:a0:5e:4a:04:60:03:a9:30:7e:23:ea:e8:
99:4b:7d:dd:40:b4:f8:ed:4e:12:8f:05:ab:96:8a:90:06:8e:
eb:32:65:b2:79:26:4d:45:3d:c8:0b:f2:91:91:91:a7:d6:00:
52:71:4a:3f:0f:6c:ac:d6:e8:5a:cd:38:4c:58:3a:96:a5:33:
a6:90:75:95:4b:89:0c:da:38:9d:39:62:43:eb:45:e6:b2:a0:
91:7b:fe:c2:8d:02:8a:0b:b6:dd:57:9c:97:61:a1:4f:b5:75:
29:0d:f9:3d:8d:73:a2:b1:60:77:7c:d2:74:c6:08:87:10:c8:
fb:e6:f3:1d:ca:07:da:a3:a3:1b:66:ee:36:39:6d:1e:c8:44:
8e:1b:68:37:7d:e5:72:30:19:a0:97:be:27:07:a8:e8:a9:41:
54:30:d1:f0:14:be:67:6e:e7:62:8d:88:7f:b7:6c:a4:e4:67:
8c:96:b1:7b:c9:ba:8e:ff:f5:22:72:e0:46:d8:05:41:ac:26:
e7:7b:85:fb:02:48:be:1a:d2:68:02:22:09:e1:86:7a:f7:fb:
82:d8:8f:51:c6:3c:74:90:b5:5b:11:9f:37:77:56:3a:08:98:
0f:9d:2b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:59 2025 by rpki-client