Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/296CACF4DBEE77502940FAD50279723AF0DA139E5C75A6B5BCEBA6B1C143DB88/0/3133312e3130382e3134302e302f32342d3234203d3e203631343930.roa
File: 3133312e3130382e3134302e302f32342d3234203d3e203631343930.roa (raw, json)
Hash identifier: Xk7kdKnH7ySRqM5jbPx5P2c7kxZVYEizDWQ+dzxTITc=
Subject key identifier: 6A:8C:04:0A:2C:E2:CA:CD:49:CE:AD:8A:A1:FD:5D:C6:69:0C:A4:47
Certificate issuer: /CN=D74EEC332802572047CBE0FAB13F3CF2BA417AFF
Certificate serial: 5AE1037A1F1B1EB6DD7303C718B77351912A7A1A
Authority key identifier: D7:4E:EC:33:28:02:57:20:47:CB:E0:FA:B1:3F:3C:F2:BA:41:7A:FF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D74EEC332802572047CBE0FAB13F3CF2BA417AFF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/296CACF4DBEE77502940FAD50279723AF0DA139E5C75A6B5BCEBA6B1C143DB88/0/3133312e3130382e3134302e302f32342d3234203d3e203631343930.roa
Signing time: Tue 04 Feb 2025 17:59:16 +0000
ROA not before: Tue 04 Feb 2025 17:54:16 +0000
ROA not after: Tue 03 Feb 2026 17:59:16 +0000
asID: 61490
IP address blocks: 131.108.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:e1:03:7a:1f:1b:1e:b6:dd:73:03:c7:18:b7:73:51:91:2a:7a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D74EEC332802572047CBE0FAB13F3CF2BA417AFF
Validity
Not Before: Feb 4 17:54:16 2025 GMT
Not After : Feb 3 17:59:16 2026 GMT
Subject: CN=6A8C040A2CE2CACD49CEAD8AA1FD5DC6690CA447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:28:88:38:67:2e:29:ba:f0:cf:76:47:61:2b:
ce:63:a6:60:c8:93:7f:e8:90:e2:52:42:ca:a4:6d:
57:ef:5a:fe:ab:73:7c:ba:d4:23:3d:45:e3:2e:2a:
d5:08:32:35:bd:27:df:a0:bf:28:ff:28:b2:85:7c:
1f:0a:d7:d0:b0:00:05:06:0c:ef:20:18:d3:f2:93:
31:7f:7d:c6:2e:c4:a5:54:4c:da:cd:aa:ae:5f:35:
f5:37:9d:91:ed:65:9c:13:59:3d:67:de:fc:78:eb:
fd:53:c7:e9:ed:23:12:0e:50:7c:42:5b:12:4f:26:
c3:aa:c0:a7:e9:20:3d:c5:15:45:f8:15:5d:b0:93:
95:d6:f7:65:71:b7:02:ae:3b:5b:30:59:92:f8:20:
18:45:4d:bd:1e:13:b8:21:1c:3b:dc:12:49:71:65:
e2:bd:e9:36:5d:2a:fc:e5:8b:78:6a:81:08:3e:c6:
50:74:3f:9a:e0:cc:c3:59:d2:a4:b8:32:99:89:46:
1b:66:26:91:bc:a2:dd:22:25:a0:bd:87:93:6c:4c:
ad:7d:37:b8:27:8e:f3:e7:5f:88:e5:1b:05:bf:2e:
53:98:cd:76:49:41:3b:d9:5f:dd:42:9c:b9:fb:56:
af:28:ff:9c:4a:64:76:57:16:d8:d8:1e:86:67:1a:
e7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:8C:04:0A:2C:E2:CA:CD:49:CE:AD:8A:A1:FD:5D:C6:69:0C:A4:47
X509v3 Authority Key Identifier:
keyid:D7:4E:EC:33:28:02:57:20:47:CB:E0:FA:B1:3F:3C:F2:BA:41:7A:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/296CACF4DBEE77502940FAD50279723AF0DA139E5C75A6B5BCEBA6B1C143DB88/0/D74EEC332802572047CBE0FAB13F3CF2BA417AFF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D74EEC332802572047CBE0FAB13F3CF2BA417AFF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/296CACF4DBEE77502940FAD50279723AF0DA139E5C75A6B5BCEBA6B1C143DB88/0/3133312e3130382e3134302e302f32342d3234203d3e203631343930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.108.140.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:e6:f2:89:81:0c:c2:ed:11:4d:ea:81:22:21:68:46:db:ce:
86:9d:fd:3c:f8:26:83:44:05:dd:d1:d4:d5:a9:d7:ec:b7:f4:
8d:cb:1c:07:5f:95:dd:c6:29:26:fd:c0:85:34:a0:42:7b:83:
08:8a:40:8f:43:a8:60:02:fc:8c:7d:42:97:c1:ef:21:9c:8d:
c2:f0:02:78:17:7d:6b:bf:d3:31:5b:83:7f:9f:49:be:a6:8b:
ec:f7:63:3f:19:4a:2c:49:e0:f4:f1:68:da:74:08:12:4f:c2:
19:5f:ef:c1:91:09:d5:41:24:60:e1:e9:af:4f:2a:24:ac:1f:
57:ab:11:71:bc:ab:c1:64:40:30:c8:73:39:9b:9a:67:14:9c:
99:47:8e:f5:f9:9a:39:56:a8:ff:14:92:1d:36:38:57:4e:fc:
2b:e6:0c:db:30:60:9e:92:7a:49:ee:d2:8c:f0:9a:18:cc:e7:
dd:3e:07:e0:62:3b:2e:3a:e5:4f:94:d5:c2:0d:d4:6f:10:41:
21:81:e1:f6:f0:45:ca:94:ec:63:d6:33:a3:ee:a6:01:bf:e4:
f7:ed:8f:89:a0:f4:43:e2:0c:f0:b2:9d:06:34:a1:64:dd:7e:
c3:33:f1:75:c8:15:ed:e7:b4:68:9e:41:9f:85:17:52:e3:8c:
d3:15:7b:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:46 2025 by rpki-client