Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/29B8B0B5027D8D861D7CA62358652D20126B06A83B7179BC698D7D2A0E733F4D/0/3133382e33362e39362e302f32342d3234203d3e20323633373236.roa
File: 3133382e33362e39362e302f32342d3234203d3e20323633373236.roa (raw, json)
Hash identifier: n4iL8M/0u/mcbAlVGc28nq4LmNmdGvvAQqHIf3C+bxE=
Subject key identifier: 5C:FC:74:77:26:EA:D3:CC:6B:D7:6F:7B:C8:E8:83:F1:92:88:C2:3A
Certificate issuer: /CN=A1C86299C5FA84F9AB35C2974EACE4484F0A087A
Certificate serial: 3A4707C8E897F9E5E587F50635B08CBDF726DDB7
Authority key identifier: A1:C8:62:99:C5:FA:84:F9:AB:35:C2:97:4E:AC:E4:48:4F:0A:08:7A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A1C86299C5FA84F9AB35C2974EACE4484F0A087A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/29B8B0B5027D8D861D7CA62358652D20126B06A83B7179BC698D7D2A0E733F4D/0/3133382e33362e39362e302f32342d3234203d3e20323633373236.roa
Signing time: Fri 14 Mar 2025 21:11:55 +0000
ROA not before: Fri 14 Mar 2025 21:06:55 +0000
ROA not after: Fri 13 Mar 2026 21:11:55 +0000
asID: 263726
IP address blocks: 138.36.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:47:07:c8:e8:97:f9:e5:e5:87:f5:06:35:b0:8c:bd:f7:26:dd:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A1C86299C5FA84F9AB35C2974EACE4484F0A087A
Validity
Not Before: Mar 14 21:06:55 2025 GMT
Not After : Mar 13 21:11:55 2026 GMT
Subject: CN=5CFC747726EAD3CC6BD76F7BC8E883F19288C23A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3b:88:68:31:3c:7d:36:e2:d4:97:dd:1f:3e:
96:5d:82:43:e7:74:84:f2:9b:ae:9d:42:a6:8b:e3:
98:fc:2c:c2:56:08:07:0a:db:97:77:07:24:eb:8c:
4e:16:ab:db:43:a3:d4:b8:e2:c3:15:0c:64:17:49:
b2:82:d5:d9:92:4f:57:23:25:aa:fa:b9:5f:09:32:
47:82:3b:f0:fa:e9:cf:88:ff:16:c2:7e:44:70:68:
4e:53:9a:2c:b7:06:3c:f8:2e:45:fe:4c:49:1f:6f:
72:8d:d2:a9:08:e2:5e:5c:b1:ee:9b:3e:29:0d:83:
52:c5:d3:0a:bd:0a:af:56:cf:81:0d:d4:b1:b3:07:
e7:d1:42:74:56:a4:4f:bc:ca:e2:8e:3f:03:df:5e:
23:eb:f6:85:72:82:1b:34:73:1b:d4:bb:59:dc:7f:
90:24:7f:40:8a:fd:4c:7e:64:5d:3e:cc:aa:db:cb:
2a:3d:fb:40:8e:27:2f:7c:d1:b6:a1:3f:ec:02:b0:
e6:d4:6b:94:e2:b5:28:5b:cb:be:e9:33:79:0a:2c:
62:ed:99:ea:59:d2:90:9e:9a:d8:60:d1:1b:e8:c6:
54:4e:cd:7e:26:39:c4:dd:3e:55:e4:2e:68:aa:74:
b8:57:52:e2:58:cc:09:8b:54:a0:a5:29:57:80:23:
20:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:FC:74:77:26:EA:D3:CC:6B:D7:6F:7B:C8:E8:83:F1:92:88:C2:3A
X509v3 Authority Key Identifier:
keyid:A1:C8:62:99:C5:FA:84:F9:AB:35:C2:97:4E:AC:E4:48:4F:0A:08:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/29B8B0B5027D8D861D7CA62358652D20126B06A83B7179BC698D7D2A0E733F4D/0/A1C86299C5FA84F9AB35C2974EACE4484F0A087A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A1C86299C5FA84F9AB35C2974EACE4484F0A087A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/29B8B0B5027D8D861D7CA62358652D20126B06A83B7179BC698D7D2A0E733F4D/0/3133382e33362e39362e302f32342d3234203d3e20323633373236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.36.96.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:f4:4b:82:45:7d:2c:9c:a0:a4:d5:2e:7b:f4:c5:61:76:77:
48:3b:4b:2e:cb:cf:70:14:f0:82:cb:c5:85:af:5c:13:24:71:
85:c3:71:90:75:74:1e:69:23:8a:6e:f5:ee:f9:3e:29:c0:c6:
85:65:20:45:67:f1:64:bb:23:5c:15:7a:97:d5:ec:37:63:08:
39:b5:a7:0e:a3:c5:b2:a9:b3:c9:79:0b:29:cb:d0:29:46:41:
b8:cd:e2:14:c3:1f:00:02:7b:28:f9:d3:2c:78:e1:d3:2d:6d:
8d:0c:62:f7:8e:a9:b4:5e:86:a7:e7:f5:e7:05:2d:fd:64:48:
a1:23:c0:fb:82:94:f2:80:f0:8d:98:28:ab:fc:e9:f4:eb:68:
bf:9d:24:5a:4d:6f:de:d5:ea:5c:6c:d4:e8:aa:55:2a:36:44:
d3:4a:24:d5:ba:e5:68:87:56:ec:cf:fa:26:d9:76:e5:a0:bf:
b3:26:df:af:82:9b:38:e1:3b:81:ce:f3:32:19:48:b6:91:ec:
d4:67:16:1e:d1:00:e9:ea:1f:fb:83:5a:90:d5:a0:2f:01:3a:
ee:96:a6:cf:6f:69:e6:aa:bc:e6:af:08:2d:79:8e:f0:61:37:
bf:3e:25:dc:c9:43:46:0c:c8:0c:5e:5a:f2:d3:45:11:e7:ca:
d8:b5:5c:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:08:51 2025 by rpki-client