Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/321930FA337A4AC8D474ACAA8CA8F1514123E3C21B9B720CD404877AD4DCD9EA/0/3133312e37322e3232342e302f32322d3234203d3e203532333337.roa
File: 3133312e37322e3232342e302f32322d3234203d3e203532333337.roa (raw, json)
Hash identifier: 5d9J1MY1vR0MiDAKialCG3tjahjfRDl9A2NRt866BaM=
Subject key identifier: A7:85:37:27:DD:70:D0:92:18:4F:74:C7:64:05:E5:52:69:AD:C3:A7
Certificate issuer: /CN=53953B71C225D2143C92C173E8F140C5C5F22612
Certificate serial: 4E40D2D8FC4DA283A723D9A98FAAC97654CD4932
Authority key identifier: 53:95:3B:71:C2:25:D2:14:3C:92:C1:73:E8:F1:40:C5:C5:F2:26:12
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/53953B71C225D2143C92C173E8F140C5C5F22612.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/321930FA337A4AC8D474ACAA8CA8F1514123E3C21B9B720CD404877AD4DCD9EA/0/3133312e37322e3232342e302f32322d3234203d3e203532333337.roa
Signing time: Tue 04 Feb 2025 18:46:17 +0000
ROA not before: Tue 04 Feb 2025 18:41:17 +0000
ROA not after: Tue 03 Feb 2026 18:46:17 +0000
asID: 52337
IP address blocks: 131.72.224.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:40:d2:d8:fc:4d:a2:83:a7:23:d9:a9:8f:aa:c9:76:54:cd:49:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53953B71C225D2143C92C173E8F140C5C5F22612
Validity
Not Before: Feb 4 18:41:17 2025 GMT
Not After : Feb 3 18:46:17 2026 GMT
Subject: CN=A7853727DD70D092184F74C76405E55269ADC3A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:26:cf:8d:88:64:ac:d3:bb:6d:ed:ce:dd:a0:
11:f7:63:f4:53:c5:ad:f3:a2:29:93:2d:07:89:08:
07:a1:6d:ec:55:f3:9e:a4:82:21:b5:5d:03:fa:17:
5e:4a:1f:81:39:b6:9c:8e:71:0c:72:24:cc:5d:63:
7c:03:ec:62:44:eb:a4:e3:17:9a:4b:32:72:6a:ef:
c7:d6:e9:ee:d2:fd:e5:a5:d2:e3:6a:92:ec:85:fa:
10:7b:ee:4d:f0:6c:59:88:d7:75:d7:26:0a:67:5b:
90:5a:c2:40:d5:d2:84:5a:fe:21:b3:cd:3b:03:ed:
27:34:c1:9d:fc:f9:04:8b:6e:67:c6:20:12:e4:ed:
b6:60:d6:fb:d1:78:7a:06:90:88:5d:90:b8:c7:ee:
b7:11:e0:31:1f:17:8e:34:ab:eb:fe:5d:d6:9b:d0:
e8:9f:c6:1e:d8:5f:bd:52:22:b4:e1:3a:0b:c5:00:
53:6a:34:51:61:b6:ba:03:42:ea:ad:10:b3:82:9b:
df:b9:c0:b8:c4:50:04:a6:86:eb:73:e8:55:d4:6f:
81:f6:83:e8:e9:91:b9:83:cf:31:5b:61:33:40:c9:
3a:83:28:81:f5:dc:24:28:ec:3d:32:6f:24:1c:62:
0a:4d:2e:89:f8:7d:3c:76:53:98:57:45:e7:2a:76:
09:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:85:37:27:DD:70:D0:92:18:4F:74:C7:64:05:E5:52:69:AD:C3:A7
X509v3 Authority Key Identifier:
keyid:53:95:3B:71:C2:25:D2:14:3C:92:C1:73:E8:F1:40:C5:C5:F2:26:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/321930FA337A4AC8D474ACAA8CA8F1514123E3C21B9B720CD404877AD4DCD9EA/0/53953B71C225D2143C92C173E8F140C5C5F22612.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/53953B71C225D2143C92C173E8F140C5C5F22612.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/321930FA337A4AC8D474ACAA8CA8F1514123E3C21B9B720CD404877AD4DCD9EA/0/3133312e37322e3232342e302f32322d3234203d3e203532333337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.72.224.0/22
Signature Algorithm: sha256WithRSAEncryption
45:ac:bc:c5:bc:3c:89:3a:d3:64:88:79:6c:8c:b0:b3:fa:a2:
88:10:c9:28:7e:e5:bd:7d:8d:a3:35:34:a2:0e:83:d5:13:59:
f9:cd:aa:35:3c:dc:55:97:55:84:59:90:6f:94:8e:d4:61:c1:
6a:de:ae:80:9f:6a:8d:c0:9d:d2:8b:e0:07:53:6c:71:cd:44:
b5:34:cb:2a:88:ed:a0:f7:89:e7:81:14:c1:c3:ba:51:c5:85:
4d:ff:38:a8:b2:58:91:4d:46:ae:11:87:57:1e:fc:f7:f4:f9:
66:b0:bd:e8:b5:59:fc:8f:ef:16:c2:30:f9:80:ac:60:2f:b7:
c1:0d:a0:d4:f3:05:76:a9:af:87:a9:16:6c:7a:63:e0:3e:bd:
e9:4c:4d:d7:b6:0e:38:cd:2e:46:c3:27:28:f0:fc:68:cc:fd:
5c:c3:30:67:a4:3e:a4:74:57:ef:78:d8:f3:cc:7b:1b:1a:ff:
41:f8:a3:10:65:a2:5f:38:81:50:ef:68:d9:07:05:20:08:35:
e7:01:74:74:fe:3e:fb:66:55:0b:6d:d6:6a:bf:d9:f8:5e:12:
6e:8c:9d:ef:d4:6f:c2:dc:8e:22:29:15:3c:95:1d:8b:83:38:
49:c6:69:af:c7:6e:ad:a8:08:d3:e6:5b:7b:59:a6:e5:24:96:
a9:c0:89:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:18 2025 by rpki-client