Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2A772A5EA252624044843818AB8DAB9DFFCB7346C9D2E1E5CA93FDE9BAAA92B4/0/3133382e39392e3130302e302f32332d3233203d3e20323633373530.roa
File: 3133382e39392e3130302e302f32332d3233203d3e20323633373530.roa (raw, json)
Hash identifier: SrhqBIz7l6NHcWGkZ5O/wo4Q4nUUtC1IrItPilPduvs=
Subject key identifier: 02:D9:B2:0B:CD:C5:4A:AE:4A:D9:D2:A4:D8:42:CD:E5:66:39:9B:5A
Certificate issuer: /CN=2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509
Certificate serial: 1897591AE2CC20F3C0392AB76F7465E2FCF8FB96
Authority key identifier: 2F:B4:7B:A0:2A:DB:C1:61:3D:B2:0F:1B:5E:C3:A1:AC:74:C5:25:09
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2A772A5EA252624044843818AB8DAB9DFFCB7346C9D2E1E5CA93FDE9BAAA92B4/0/3133382e39392e3130302e302f32332d3233203d3e20323633373530.roa
Signing time: Thu 27 Jun 2024 20:30:04 +0000
ROA not before: Thu 27 Jun 2024 20:25:04 +0000
ROA not after: Thu 26 Jun 2025 20:30:04 +0000
asID: 263750
IP address blocks: 138.99.100.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:97:59:1a:e2:cc:20:f3:c0:39:2a:b7:6f:74:65:e2:fc:f8:fb:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509
Validity
Not Before: Jun 27 20:25:04 2024 GMT
Not After : Jun 26 20:30:04 2025 GMT
Subject: CN=02D9B20BCDC54AAE4AD9D2A4D842CDE566399B5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:97:09:9c:3c:a0:5c:7e:b6:d3:c2:c9:f6:11:
4f:ba:6c:aa:c4:c7:59:37:0a:7a:d5:36:ab:bb:5c:
25:40:bc:37:02:40:a4:b6:f6:18:fb:a4:dd:be:8f:
26:56:3f:5a:1b:74:ed:4e:e8:20:10:fa:6b:6a:60:
30:bd:f6:a0:eb:79:c7:40:76:e0:98:d7:92:8e:90:
fe:56:1f:05:20:45:01:0e:be:d2:e5:bc:d3:6d:97:
b5:82:af:78:6e:73:96:86:5f:b1:fb:1b:1b:90:df:
52:1d:28:b6:da:0b:12:0b:8e:31:ea:f6:25:21:94:
0e:f5:ca:45:1e:ae:e4:62:b4:35:c9:cf:d2:93:19:
93:1a:b7:22:6e:84:88:78:94:37:dc:b6:24:dd:3c:
ea:a7:b6:a5:10:ec:7a:75:3a:f5:70:96:54:d8:a4:
da:97:6e:c2:e5:b8:1b:af:1c:8e:ac:81:63:4c:42:
8f:c4:d2:5c:d4:90:0b:db:fc:4a:ae:99:d5:65:23:
e9:16:8e:35:31:cb:0f:6e:cc:0c:15:20:b5:25:ba:
d0:6e:11:10:c0:a3:48:6d:be:c0:fe:25:aa:d3:bf:
c7:f3:ca:5d:a9:50:af:bd:d6:ca:03:43:df:74:b7:
c7:cb:a8:8b:54:05:8d:e5:ba:b0:39:01:ae:29:c1:
93:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D9:B2:0B:CD:C5:4A:AE:4A:D9:D2:A4:D8:42:CD:E5:66:39:9B:5A
X509v3 Authority Key Identifier:
keyid:2F:B4:7B:A0:2A:DB:C1:61:3D:B2:0F:1B:5E:C3:A1:AC:74:C5:25:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2A772A5EA252624044843818AB8DAB9DFFCB7346C9D2E1E5CA93FDE9BAAA92B4/0/2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FB47BA02ADBC1613DB20F1B5EC3A1AC74C52509.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2A772A5EA252624044843818AB8DAB9DFFCB7346C9D2E1E5CA93FDE9BAAA92B4/0/3133382e39392e3130302e302f32332d3233203d3e20323633373530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.100.0/23
Signature Algorithm: sha256WithRSAEncryption
61:77:99:23:84:bc:95:95:a1:3f:f7:e7:4b:ef:61:eb:60:a4:
c0:ba:ba:63:74:d7:5d:16:28:7f:c9:2b:d9:ab:7f:3b:27:69:
47:41:33:cb:45:69:bc:17:9a:99:8a:4a:34:75:13:1b:84:18:
0e:e7:5d:43:7b:2d:97:d1:36:a3:d1:9a:89:45:ba:f6:b1:1b:
d6:03:6d:2f:69:0f:c8:ea:03:43:2b:5d:d0:6d:17:6f:c3:4c:
e0:e0:72:0f:70:9e:fa:88:6a:07:a4:16:bc:9f:d0:15:3d:2e:
f8:18:64:b8:24:b6:d3:14:36:da:f5:a0:55:a1:88:b3:3a:c9:
0f:74:42:ce:de:71:5a:77:7e:bc:f0:88:d0:78:bf:86:e6:7d:
49:bb:e2:95:f6:3c:81:52:54:00:e1:e7:36:38:3d:db:45:95:
34:4d:ab:70:46:3e:70:6c:6f:50:a9:73:b1:c5:a2:ca:fd:e8:
e0:bb:8e:d4:70:ae:6a:41:b8:cd:ce:4b:9e:1e:2d:fe:96:49:
af:1a:31:aa:e0:54:d9:3f:c7:ce:22:47:f9:1d:ea:35:ce:ec:
19:fc:d7:87:ae:4f:92:b0:27:41:24:db:10:1d:11:57:45:b9:
79:9f:61:a1:93:34:60:17:6a:8d:8b:0d:16:0c:29:df:31:0c:
93:6d:59:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:36:05 2025 by rpki-client