Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/32CF848E94534A3CD76C920E9349CED510FEAA4D77C21940B4DC108E5AC2920F/0/3133382e3132312e3132342e302f32322d3234203d3e20323633373535.roa
File: 3133382e3132312e3132342e302f32322d3234203d3e20323633373535.roa (raw, json)
Hash identifier: E/dmP/UZH/bg+MsHq5g1OknPs9RhoHFcxxJDoa6r4JU=
Subject key identifier: 7B:D8:1A:95:F0:13:7D:C5:C6:43:B2:B0:52:A6:54:80:22:CA:34:32
Certificate issuer: /CN=64EBE7741095629A165538B55C948F9A0C4FB045
Certificate serial: 3B3CE42F10EE6242040F5AAF037E89DD2DD8CFA8
Authority key identifier: 64:EB:E7:74:10:95:62:9A:16:55:38:B5:5C:94:8F:9A:0C:4F:B0:45
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/64EBE7741095629A165538B55C948F9A0C4FB045.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/32CF848E94534A3CD76C920E9349CED510FEAA4D77C21940B4DC108E5AC2920F/0/3133382e3132312e3132342e302f32322d3234203d3e20323633373535.roa
Signing time: Tue 04 Feb 2025 18:42:15 +0000
ROA not before: Tue 04 Feb 2025 18:37:15 +0000
ROA not after: Tue 03 Feb 2026 18:42:15 +0000
asID: 263755
IP address blocks: 138.121.124.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:3c:e4:2f:10:ee:62:42:04:0f:5a:af:03:7e:89:dd:2d:d8:cf:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64EBE7741095629A165538B55C948F9A0C4FB045
Validity
Not Before: Feb 4 18:37:15 2025 GMT
Not After : Feb 3 18:42:15 2026 GMT
Subject: CN=7BD81A95F0137DC5C643B2B052A6548022CA3432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f7:ac:8b:81:e5:3d:a2:b2:21:f5:e6:e4:44:
69:b0:1f:81:e8:b2:36:16:30:d8:72:87:d6:61:64:
ec:e3:37:79:bc:9c:ec:90:9e:1a:24:ff:47:cf:ee:
2f:60:7a:dd:09:70:ec:77:a2:38:1d:42:61:de:b1:
48:f9:a1:13:7e:f5:17:f2:e5:d4:3b:04:a2:97:18:
f6:44:c5:3f:7f:ca:7e:e0:02:07:10:7a:25:dd:f3:
e3:4d:74:3c:a3:d2:ac:ee:13:52:90:06:ea:19:7b:
b5:9a:b9:53:31:34:87:86:80:04:da:ca:67:5d:38:
70:7e:ab:1e:e6:c2:ae:58:21:40:c3:53:83:a7:c9:
07:d6:d5:9a:8f:60:94:99:db:fa:25:dd:f5:be:ce:
0f:d6:39:64:53:8b:e3:a0:b7:c5:fd:e0:c5:19:46:
59:3d:68:9c:65:eb:5e:15:7c:f3:71:2c:2a:ce:7e:
cc:1a:be:de:34:bc:20:53:5b:6a:de:34:63:c2:d8:
1c:f7:44:37:a5:e4:44:9c:d2:5e:30:10:52:f6:e0:
c7:fa:17:11:51:a1:f3:41:bb:dd:b6:a3:e1:32:ce:
cc:1a:a9:b6:d4:f5:30:13:fd:76:0f:12:4f:75:7c:
90:27:84:83:81:fa:cf:a1:68:a1:64:7a:2f:69:d1:
4c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D8:1A:95:F0:13:7D:C5:C6:43:B2:B0:52:A6:54:80:22:CA:34:32
X509v3 Authority Key Identifier:
keyid:64:EB:E7:74:10:95:62:9A:16:55:38:B5:5C:94:8F:9A:0C:4F:B0:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/32CF848E94534A3CD76C920E9349CED510FEAA4D77C21940B4DC108E5AC2920F/0/64EBE7741095629A165538B55C948F9A0C4FB045.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/64EBE7741095629A165538B55C948F9A0C4FB045.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/32CF848E94534A3CD76C920E9349CED510FEAA4D77C21940B4DC108E5AC2920F/0/3133382e3132312e3132342e302f32322d3234203d3e20323633373535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.121.124.0/22
Signature Algorithm: sha256WithRSAEncryption
83:55:1b:03:3b:ae:9a:67:89:66:45:01:96:06:dd:86:55:3b:
47:d0:2a:e9:bf:0c:8f:54:0d:9b:fb:5b:7b:3e:ac:b1:32:d8:
d2:2f:ad:94:a3:d8:cf:d2:84:9f:70:63:86:4d:cd:84:51:24:
35:30:f3:21:73:04:a5:ff:3f:ac:63:bd:12:c8:e7:b8:1a:fe:
66:89:a5:6f:9b:56:93:2c:6d:03:9f:19:d1:ad:f6:4d:6b:a8:
73:92:3b:2a:00:04:47:61:84:60:f6:0e:71:c7:fa:e7:f8:bd:
9b:94:a2:35:f2:2b:55:15:f8:21:85:7f:bb:77:c2:55:c2:15:
cd:f5:b2:2a:f7:30:d9:46:ab:21:aa:2b:78:85:77:f0:e0:30:
c1:6e:da:14:59:02:a3:80:1d:bc:3f:25:29:f4:f4:c3:a9:c8:
b7:5d:aa:33:48:10:e1:32:19:02:b5:1f:f5:f4:77:a1:5a:30:
70:de:ec:41:d5:38:df:b1:8c:d0:65:79:4d:8d:64:01:fa:9b:
61:74:82:12:b8:44:0b:e6:b9:68:72:aa:de:e3:ab:dd:a8:ca:
ab:24:83:d0:2f:2d:c3:c7:c5:8c:2e:d7:08:3c:f6:09:f6:e6:
c3:3c:62:82:f6:a8:93:c5:e4:3a:f5:e0:13:0c:c6:74:1a:fc:
e6:82:bc:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:22 2025 by rpki-client