Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/288024DE8736033154151253525598CEC89B9A0DE075117B13A60C8B7128E2D0/0/3133382e3138352e33312e302f32342d3234203d3e20323633383137.roa
File: 3133382e3138352e33312e302f32342d3234203d3e20323633383137.roa (raw, json)
Hash identifier: SmkpiIg0zZyBAsQ+if+UTKOc0IkT7mpHDaNOQdLljRM=
Subject key identifier: 07:E7:68:20:81:41:C6:09:D8:FE:49:70:81:81:33:DE:57:61:56:A7
Certificate issuer: /CN=BE7683A0995880FB51F3BF98293EDECD286AF6A3
Certificate serial: 48B41F3146C0F3C54653DE21F841AAEF89C0F252
Authority key identifier: BE:76:83:A0:99:58:80:FB:51:F3:BF:98:29:3E:DE:CD:28:6A:F6:A3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BE7683A0995880FB51F3BF98293EDECD286AF6A3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/288024DE8736033154151253525598CEC89B9A0DE075117B13A60C8B7128E2D0/0/3133382e3138352e33312e302f32342d3234203d3e20323633383137.roa
Signing time: Tue 04 Feb 2025 18:07:01 +0000
ROA not before: Tue 04 Feb 2025 18:02:01 +0000
ROA not after: Tue 03 Feb 2026 18:07:01 +0000
asID: 263817
IP address blocks: 138.185.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:b4:1f:31:46:c0:f3:c5:46:53:de:21:f8:41:aa:ef:89:c0:f2:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7683A0995880FB51F3BF98293EDECD286AF6A3
Validity
Not Before: Feb 4 18:02:01 2025 GMT
Not After : Feb 3 18:07:01 2026 GMT
Subject: CN=07E768208141C609D8FE4970818133DE576156A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ec:53:76:3e:31:0c:77:e0:13:3f:d4:a7:a1:
80:eb:09:7b:04:f6:93:09:f1:e6:b8:49:34:06:c5:
a5:f3:9c:a6:b7:ed:40:dd:6b:1b:f5:1c:94:5f:ae:
fc:12:b2:00:9d:07:82:62:36:e1:85:cb:b7:eb:5d:
47:a2:d8:15:b2:fa:a1:72:ab:2b:89:d1:6d:d6:fa:
ab:d3:22:5d:b3:a5:c7:a0:6d:11:3a:cb:25:63:04:
32:34:c8:6f:cc:14:91:9d:6f:16:ce:31:e4:c8:d1:
ec:38:4f:8c:df:d7:a6:1d:e8:5c:3e:47:bb:19:ac:
4b:2f:c2:0b:27:03:fd:e8:e6:6b:a6:58:ef:e8:f3:
05:55:7e:74:08:04:a9:87:0f:68:25:97:f1:cb:e5:
48:e7:54:fd:87:ca:0b:64:74:0c:9b:db:75:69:b5:
45:1c:43:99:40:e8:4b:a1:24:c6:16:b4:65:db:28:
7b:61:55:cf:ba:ae:b4:b7:9d:e0:b0:d4:b2:78:87:
0e:9d:12:c7:70:58:d1:73:2a:4e:dc:02:3f:e2:4d:
fe:39:ec:91:d4:8d:49:aa:6f:33:b8:97:77:58:52:
14:bc:8b:54:6a:27:9a:b0:68:44:a3:94:18:0d:8c:
c9:f6:68:c5:31:f6:00:7e:2b:c3:b5:6c:c3:30:77:
3a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E7:68:20:81:41:C6:09:D8:FE:49:70:81:81:33:DE:57:61:56:A7
X509v3 Authority Key Identifier:
keyid:BE:76:83:A0:99:58:80:FB:51:F3:BF:98:29:3E:DE:CD:28:6A:F6:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/288024DE8736033154151253525598CEC89B9A0DE075117B13A60C8B7128E2D0/0/BE7683A0995880FB51F3BF98293EDECD286AF6A3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BE7683A0995880FB51F3BF98293EDECD286AF6A3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/288024DE8736033154151253525598CEC89B9A0DE075117B13A60C8B7128E2D0/0/3133382e3138352e33312e302f32342d3234203d3e20323633383137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.185.31.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:c9:bb:83:34:96:6b:6e:10:b8:72:fb:2c:60:b1:e4:5f:7d:
5a:08:18:58:8b:de:17:55:5d:c5:80:64:8e:86:b4:9a:1b:e5:
e2:67:a3:0d:fa:64:67:6e:39:d4:7b:65:12:ba:91:06:bf:3a:
0f:b0:99:18:73:2d:d5:43:e2:d9:a6:38:23:e6:fc:ad:69:db:
09:2a:3c:21:54:9d:0f:ad:9d:fe:17:34:46:3e:5b:a1:bb:81:
a9:bd:23:c5:16:5f:03:1e:bb:d3:e1:83:7b:9b:8c:29:87:c6:
d3:96:59:6d:df:e5:b6:91:ee:a3:3c:53:7e:2d:75:6d:51:85:
73:91:eb:57:a6:d4:8a:0b:90:83:08:08:17:65:82:3e:af:92:
8e:aa:31:b8:46:1b:22:89:73:61:c2:6a:62:11:46:5b:d6:a7:
57:41:4b:b0:d9:87:87:75:3d:82:cd:12:95:d9:4b:15:62:12:
3d:e3:97:fb:cf:07:ff:63:7f:53:d8:e1:d8:a4:c6:d4:0f:49:
fa:cb:c2:44:94:46:89:92:d6:24:90:b7:8a:8e:36:a5:4b:7b:
1d:06:06:36:e8:3d:69:ef:60:bc:2e:eb:c0:ca:2b:99:56:3c:
e1:a0:ca:ef:3d:58:a5:5c:6c:60:da:31:5f:95:22:72:10:20:
6a:01:72:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:06 2025 by rpki-client