Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2A45A99CB839860F25E00B819CE7257773AAD4D4215D1C28EC8D35FD1F04D58D/0/3133312e3139362e3138382e302f32322d3234203d3e20323633373636.roa
File: 3133312e3139362e3138382e302f32322d3234203d3e20323633373636.roa (raw, json)
Hash identifier: qLk0xE/gWDd3HsL2FiRo3OQ6YUY4tK7bb2+IqakQQPE=
Subject key identifier: 3B:CE:CC:A1:F2:67:D8:E2:F7:A8:3F:87:6D:C9:F1:62:6D:D4:23:6B
Certificate issuer: /CN=D27A531CC81AF816305690F95709B8D48EE9B713
Certificate serial: 32897C92BF6A7FEED16D584B993464A0AB744DC8
Authority key identifier: D2:7A:53:1C:C8:1A:F8:16:30:56:90:F9:57:09:B8:D4:8E:E9:B7:13
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D27A531CC81AF816305690F95709B8D48EE9B713.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2A45A99CB839860F25E00B819CE7257773AAD4D4215D1C28EC8D35FD1F04D58D/0/3133312e3139362e3138382e302f32322d3234203d3e20323633373636.roa
Signing time: Tue 04 Feb 2025 18:19:55 +0000
ROA not before: Tue 04 Feb 2025 18:14:55 +0000
ROA not after: Tue 03 Feb 2026 18:19:55 +0000
asID: 263766
IP address blocks: 131.196.188.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:89:7c:92:bf:6a:7f:ee:d1:6d:58:4b:99:34:64:a0:ab:74:4d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D27A531CC81AF816305690F95709B8D48EE9B713
Validity
Not Before: Feb 4 18:14:55 2025 GMT
Not After : Feb 3 18:19:55 2026 GMT
Subject: CN=3BCECCA1F267D8E2F7A83F876DC9F1626DD4236B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f1:71:80:b9:95:a2:3d:a6:80:56:de:fe:fb:
4e:d0:bf:a3:b4:9d:ba:5e:2a:4a:0b:7e:81:c3:80:
80:09:30:7a:22:0c:83:6c:96:eb:51:29:ea:ff:ae:
20:88:c5:25:54:79:3f:c1:6e:df:b3:a1:c6:b0:af:
9f:3f:6e:a0:9b:58:74:5b:ce:f7:cf:e8:b6:07:9f:
67:39:7f:80:3b:b3:10:1a:66:9b:3c:a1:51:53:51:
03:63:d3:92:5f:a7:ce:a0:f9:6f:5a:c0:f2:c5:95:
aa:24:33:a3:a3:dd:b4:48:8d:19:08:29:c1:d9:61:
2e:80:f8:04:fb:13:35:19:87:d4:a4:02:a0:34:5b:
7f:4b:3c:67:b7:bd:15:ea:d5:20:9f:c9:e6:67:de:
ee:b6:60:57:61:1b:dc:03:3d:a3:00:a5:06:5b:a0:
8a:dd:78:16:6d:e8:aa:d2:7a:21:7e:9e:9b:17:55:
5f:77:c7:cb:94:74:0e:b4:1a:cd:d8:8c:37:ae:4e:
cd:28:a7:07:b1:bd:e4:da:b3:75:b0:27:c4:a7:6f:
3c:65:94:96:56:b6:14:04:17:1e:65:d6:d4:12:de:
bc:03:77:4f:29:f3:62:dc:cc:47:40:cd:56:c2:04:
e4:da:59:96:76:f8:0d:48:90:9c:54:b4:92:40:17:
08:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CE:CC:A1:F2:67:D8:E2:F7:A8:3F:87:6D:C9:F1:62:6D:D4:23:6B
X509v3 Authority Key Identifier:
keyid:D2:7A:53:1C:C8:1A:F8:16:30:56:90:F9:57:09:B8:D4:8E:E9:B7:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2A45A99CB839860F25E00B819CE7257773AAD4D4215D1C28EC8D35FD1F04D58D/0/D27A531CC81AF816305690F95709B8D48EE9B713.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D27A531CC81AF816305690F95709B8D48EE9B713.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2A45A99CB839860F25E00B819CE7257773AAD4D4215D1C28EC8D35FD1F04D58D/0/3133312e3139362e3138382e302f32322d3234203d3e20323633373636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.196.188.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:0b:39:72:29:39:09:f1:1b:5d:69:c4:c8:b7:f6:d8:0c:d2:
35:90:ee:fd:27:af:97:a3:21:ef:f6:5d:f2:db:6f:87:9c:f3:
a0:76:6b:f4:8b:02:32:f6:82:8e:c3:9c:35:51:4d:51:41:b3:
24:a6:29:fe:ab:37:d6:2d:ea:c9:8d:2e:5f:d3:e0:a2:7f:7c:
f5:45:a8:36:8f:91:e6:eb:85:55:1c:41:6c:cb:4d:ab:7d:16:
05:aa:d7:d0:c5:92:2b:95:ab:ca:6f:c0:c4:ed:cd:8e:b6:4a:
c3:0f:fa:d3:ab:2c:7c:89:34:33:37:a0:2b:68:0b:77:98:cb:
75:bc:94:97:56:66:f5:fc:43:07:d2:4c:b0:0e:27:83:04:43:
93:59:c5:16:9c:9e:18:a0:94:b7:1a:e0:ca:d8:2b:e5:3c:0c:
12:98:5d:ee:e6:b1:05:9a:fa:a4:54:72:2a:1d:01:17:3d:54:
ee:f0:fa:46:69:f1:5e:56:d2:48:63:cd:52:4c:92:c7:20:e6:
7f:79:8a:d2:77:58:19:9e:cc:92:cf:b5:08:d6:cf:3d:da:9b:
5e:a5:66:21:6c:a1:54:3e:bf:14:0b:1e:e7:0e:8a:a7:08:b7:
32:33:a2:79:7d:c4:28:a3:31:97:de:90:87:3b:9b:dc:f1:a7:
5f:9f:cc:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:23:24 2025 by rpki-client