Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3234392e302f32342d3234203d3e203237373733.roa
File: 3133382e3138362e3234392e302f32342d3234203d3e203237373733.roa (raw, json)
Hash identifier: Pdp4zp+m8c7kAmFQiCu9zNkkUBweao0toTnaz75Iciw=
Subject key identifier: 86:72:30:43:85:21:00:E8:73:73:63:6C:F7:C0:59:6A:30:2A:92:EA
Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Certificate serial: 13E7758ED03D1D9D9E1AB09FCC85C120F25542A8
Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3234392e302f32342d3234203d3e203237373733.roa
Signing time: Tue 04 Feb 2025 20:02:23 +0000
ROA not before: Tue 04 Feb 2025 19:57:23 +0000
ROA not after: Tue 03 Feb 2026 20:02:23 +0000
asID: 27773
IP address blocks: 138.186.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:e7:75:8e:d0:3d:1d:9d:9e:1a:b0:9f:cc:85:c1:20:f2:55:42:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Validity
Not Before: Feb 4 19:57:23 2025 GMT
Not After : Feb 3 20:02:23 2026 GMT
Subject: CN=86723043852100E87373636CF7C0596A302A92EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:93:0b:27:bd:09:da:4a:2d:59:a8:f2:0b:9a:
89:73:bd:29:e6:f2:27:91:54:86:fc:2f:8e:62:11:
3a:c1:67:0d:ec:91:98:33:56:3a:eb:ca:9f:16:1f:
ca:75:14:d7:89:8a:e7:cb:8d:21:9e:fd:1f:96:a9:
41:ab:1b:9b:ae:79:15:92:1d:2e:53:19:c9:05:ce:
01:df:14:68:96:ac:25:1b:0b:01:74:a4:07:a9:02:
31:7a:c5:ef:7b:78:54:ae:36:33:89:46:1a:7d:f5:
92:ae:41:4a:54:cc:13:bf:8f:95:94:3f:f6:49:89:
f0:06:1a:b1:2f:5b:11:30:d4:04:d0:e7:3b:af:17:
58:11:c9:fc:34:bd:76:8b:f0:57:3b:10:9f:f8:bd:
be:7d:b4:97:92:ee:fd:02:f2:36:e5:8e:d3:d2:de:
c4:28:15:84:c0:91:f8:e3:18:bd:d7:82:ca:a9:e7:
71:0b:6a:20:b1:69:43:af:cc:b0:04:f0:72:77:16:
44:45:00:71:f5:e9:38:9b:54:15:95:96:37:6c:10:
6f:4e:25:b6:17:53:91:83:c9:18:26:f5:63:e4:87:
2d:b9:26:01:44:0c:d2:83:a6:6d:8f:b1:d1:f1:55:
ed:f5:39:4c:4e:96:a3:0b:1a:9a:af:63:1a:13:73:
98:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:72:30:43:85:21:00:E8:73:73:63:6C:F7:C0:59:6A:30:2A:92:EA
X509v3 Authority Key Identifier:
keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3234392e302f32342d3234203d3e203237373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.186.249.0/24
Signature Algorithm: sha256WithRSAEncryption
84:94:fd:ed:68:e9:47:18:41:fe:4e:02:cc:cf:37:37:0c:60:
71:75:7a:9b:0e:d5:1a:67:ef:0d:61:bf:82:7e:17:7b:6d:10:
c9:f4:c5:51:8d:8a:0a:25:e4:a0:51:8d:61:cf:69:e2:41:62:
f7:b1:c8:f6:6a:fc:4e:ea:a0:0a:e2:9c:c3:db:3f:e6:09:92:
16:22:d6:e6:c7:4d:8c:55:ce:d5:9d:6a:91:6f:a2:40:44:0b:
ac:71:ad:a0:43:3a:79:4d:5c:0e:6d:b5:fc:2d:98:c1:23:35:
4e:97:d5:c1:b2:dd:6e:9e:a1:0b:a6:da:a5:26:cb:5d:31:04:
0f:28:18:e9:5c:82:d2:8c:e5:b1:38:0c:ac:71:34:7e:f7:ab:
1a:49:f1:4f:1f:e4:ae:fc:b4:8d:e5:9f:46:79:56:ee:ef:ee:
ef:90:d8:a4:ff:42:33:43:66:32:0f:16:bb:2c:bb:cf:15:ee:
fa:54:7e:89:fa:e4:b6:22:29:c2:90:22:15:97:8c:c5:d9:07:
c6:79:9e:a0:06:99:48:19:44:70:13:bf:93:d9:a7:94:ba:af:
e1:e5:07:45:44:4a:63:3b:df:e9:3d:71:d0:97:9a:85:5f:e0:
5f:e3:a8:25:34:62:bc:55:10:84:b1:38:ea:b3:9c:27:d9:db:
f6:43:01:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:07:59 2025 by rpki-client