Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/288024DE8736033154151253525598CEC89B9A0DE075117B13A60C8B7128E2D0/0/3133382e3138352e33312e302f32342d3234203d3e20323633383137.roa
File: 3133382e3138352e33312e302f32342d3234203d3e20323633383137.roa (raw, json)
Hash identifier: Cwnl6RqLSCgGqfDtzxaDk3H22GaRUTtiAkHfzzBFMSA=
Subject key identifier: 93:E8:12:E1:9E:39:D6:62:BE:47:DC:A4:23:D3:88:35:6A:9B:8A:F9
Certificate issuer: /CN=BE7683A0995880FB51F3BF98293EDECD286AF6A3
Certificate serial: 6037DDB75878876BE317912057E440F819E5E038
Authority key identifier: BE:76:83:A0:99:58:80:FB:51:F3:BF:98:29:3E:DE:CD:28:6A:F6:A3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BE7683A0995880FB51F3BF98293EDECD286AF6A3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/288024DE8736033154151253525598CEC89B9A0DE075117B13A60C8B7128E2D0/0/3133382e3138352e33312e302f32342d3234203d3e20323633383137.roa
Signing time: Tue 06 Jan 2026 19:04:40 +0000
ROA not before: Tue 06 Jan 2026 18:59:40 +0000
ROA not after: Tue 05 Jan 2027 19:04:40 +0000
asID: 263817
IP address blocks: 138.185.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:37:dd:b7:58:78:87:6b:e3:17:91:20:57:e4:40:f8:19:e5:e0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7683A0995880FB51F3BF98293EDECD286AF6A3
Validity
Not Before: Jan 6 18:59:40 2026 GMT
Not After : Jan 5 19:04:40 2027 GMT
Subject: CN=93E812E19E39D662BE47DCA423D388356A9B8AF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ed:3b:23:f5:02:17:3a:ef:76:2b:7f:99:4b:
06:3a:f9:1f:8a:4c:2e:81:af:2e:83:2c:9b:f4:15:
bf:32:e8:97:90:32:f7:4e:50:fd:3a:9d:41:de:8c:
09:ea:db:2f:5f:05:69:18:3d:46:98:bc:02:4c:b7:
a3:57:a7:1f:96:50:43:99:dd:92:c2:27:cc:1f:cd:
77:e3:ca:9d:15:5a:15:ef:ab:0a:36:a0:18:77:70:
ee:ec:5a:e7:a4:6a:6c:79:cf:21:f5:06:e3:ab:da:
59:58:7c:c6:ce:b8:fa:ff:f2:87:f6:8d:ee:5a:2d:
8e:a7:8b:bc:6d:b7:39:db:d5:0b:8d:2c:ac:b1:12:
31:a0:33:5c:94:51:d7:88:b1:8f:6e:93:e3:80:20:
a6:58:f8:5c:b5:85:fd:80:bd:b2:12:bf:da:98:26:
c2:f6:9f:6a:d4:2a:0a:77:a0:b7:d6:01:37:ae:d5:
b2:b4:40:3a:61:4b:1a:c8:01:d6:46:5b:2f:77:64:
b8:7c:b7:a8:9c:44:2e:7f:00:57:c3:b2:0a:63:dc:
bd:ba:0f:10:65:99:f4:26:bb:c3:9d:c8:a6:23:d9:
db:4c:42:78:64:45:da:70:c1:cf:24:96:30:0a:91:
65:c2:c8:32:56:3a:58:6a:01:42:38:b3:e5:43:9f:
de:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E8:12:E1:9E:39:D6:62:BE:47:DC:A4:23:D3:88:35:6A:9B:8A:F9
X509v3 Authority Key Identifier:
keyid:BE:76:83:A0:99:58:80:FB:51:F3:BF:98:29:3E:DE:CD:28:6A:F6:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/288024DE8736033154151253525598CEC89B9A0DE075117B13A60C8B7128E2D0/0/BE7683A0995880FB51F3BF98293EDECD286AF6A3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BE7683A0995880FB51F3BF98293EDECD286AF6A3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/288024DE8736033154151253525598CEC89B9A0DE075117B13A60C8B7128E2D0/0/3133382e3138352e33312e302f32342d3234203d3e20323633383137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.185.31.0/24
Signature Algorithm: sha256WithRSAEncryption
40:df:74:67:96:04:bb:73:ac:d9:16:07:16:fa:28:02:96:97:
0e:a0:ea:25:48:ef:a1:d7:f3:cd:50:ae:bd:08:33:7f:b5:e2:
1b:0c:89:b4:45:3c:ec:98:75:b8:db:c0:d9:f9:26:c5:8b:20:
58:bb:90:67:bc:28:ff:30:a4:a3:12:7d:85:bc:ba:37:7b:a6:
e7:67:75:f1:a2:c8:23:9f:55:40:f4:a9:de:5b:1a:5f:d3:d1:
22:a8:9c:08:98:b2:c9:8b:ca:e4:52:8c:16:1f:50:e8:6d:c1:
43:03:f1:fa:b2:0b:b8:83:61:77:41:b5:b6:12:c3:d5:9f:9d:
30:88:1a:90:ec:c3:57:50:6f:09:ee:70:b0:25:72:cc:d5:6f:
ca:47:4c:c8:dc:2a:73:88:74:41:68:d2:71:d3:19:1f:64:ba:
cd:72:b4:f4:c7:a7:72:fd:64:61:14:ec:c1:74:6d:3d:94:e4:
20:0c:c6:56:01:6b:37:ce:cf:4b:69:e8:fe:3b:bd:06:0e:89:
8a:1f:82:57:4c:cd:6c:31:0f:9e:49:70:82:f8:cc:fc:1f:3d:
f1:7d:54:42:38:04:64:32:a5:6d:be:72:31:bd:02:81:53:17:
20:88:fa:48:40:4a:91:84:94:b0:16:d0:f9:c0:02:d3:0f:b2:
c5:1c:18:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 16 03:54:13 2026 by rpki-client