Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3138362e33322e36342e302f32332d3234203d3e203237373733.roa
File: 3138362e33322e36342e302f32332d3234203d3e203237373733.roa (raw, json)
Hash identifier: OvOler6kNCBi6l7UZ4CM8ZX43KASJa7mKIB122+XWjs=
Subject key identifier: 49:8C:07:50:44:5D:F1:F3:7E:CE:B2:CE:5C:4A:67:C3:FD:F5:91:DC
Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Certificate serial: 7035EEC04C2D449F30E223218F8A7858AE53015D
Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3138362e33322e36342e302f32332d3234203d3e203237373733.roa
Signing time: Tue 04 Feb 2025 20:02:12 +0000
ROA not before: Tue 04 Feb 2025 19:57:12 +0000
ROA not after: Tue 03 Feb 2026 20:02:12 +0000
asID: 27773
IP address blocks: 186.32.64.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:35:ee:c0:4c:2d:44:9f:30:e2:23:21:8f:8a:78:58:ae:53:01:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Validity
Not Before: Feb 4 19:57:12 2025 GMT
Not After : Feb 3 20:02:12 2026 GMT
Subject: CN=498C0750445DF1F37ECEB2CE5C4A67C3FDF591DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:22:bd:e6:a9:b3:a5:15:29:f8:9e:60:bc:05:
cb:5e:6d:8f:f8:70:c6:3e:62:24:e8:03:81:18:dc:
68:bb:72:05:c8:88:06:6e:1a:62:e5:ab:b9:d1:c5:
0a:03:0d:d4:93:ff:39:54:e8:15:60:d5:42:12:af:
8a:46:34:9e:3a:6b:ef:8d:bc:84:3c:79:7b:5b:23:
36:f4:fc:05:f7:08:61:ea:84:0a:e4:8a:03:b7:80:
75:2c:b2:3a:86:fa:b4:8c:1c:0d:1f:e9:0b:3b:a0:
86:65:ff:d6:fa:b2:40:1b:72:e4:61:35:e5:ea:9e:
b4:39:b2:cb:3e:39:55:1e:4f:6b:fe:33:e6:86:71:
e0:36:80:88:55:ff:30:f5:f0:0a:a9:cc:55:41:a8:
e0:8a:53:3b:a6:e6:3f:80:89:81:6c:51:22:7f:d3:
3b:a2:2a:de:25:53:9f:f9:e7:1b:41:fb:52:45:fe:
33:b6:aa:5b:24:ae:1f:b6:6c:be:e7:6b:18:7b:fa:
cf:1c:8c:50:5d:90:97:88:03:d8:ec:5c:56:d9:7d:
4a:23:91:74:d9:2d:76:c9:58:88:d2:0a:8f:fd:00:
6f:b6:a1:5c:89:4f:c2:2f:9e:98:3c:93:2f:f3:3c:
9c:2f:ab:16:80:eb:65:6a:a7:ae:ac:4b:a4:23:ad:
f3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8C:07:50:44:5D:F1:F3:7E:CE:B2:CE:5C:4A:67:C3:FD:F5:91:DC
X509v3 Authority Key Identifier:
keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3138362e33322e36342e302f32332d3234203d3e203237373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.32.64.0/23
Signature Algorithm: sha256WithRSAEncryption
34:28:45:d6:8a:e8:66:50:b7:23:43:4f:70:1d:43:5e:9f:2f:
cf:1d:e4:e4:cf:de:58:5b:00:6d:8a:40:db:4c:45:43:89:ae:
9a:ca:40:90:56:af:0b:1e:2b:2b:52:ca:1e:37:90:2a:c8:44:
a2:99:2e:26:18:7b:04:22:e2:e1:70:9f:b0:27:cb:91:24:a0:
22:9a:be:f2:df:b6:fc:c3:59:c7:8e:d0:6a:47:9a:c7:b1:31:
a2:a7:ad:76:2f:c0:c5:8f:95:16:e4:59:e8:51:50:ed:b3:c8:
78:bc:0c:0e:cb:27:3b:76:e4:06:f6:13:59:aa:97:a5:5f:36:
cf:c6:4a:dc:bb:4b:6a:25:04:d3:9b:3f:22:4c:19:db:48:49:
bd:1b:7a:ca:6c:69:59:82:a9:30:ad:21:2c:d0:0a:7b:94:bf:
a3:ca:7c:7e:2f:4d:f5:29:ed:49:12:23:02:fa:20:85:5d:6f:
b8:f6:cf:ec:35:6d:da:e4:f8:85:98:d9:9a:c2:1d:70:59:35:
74:dc:6c:ab:cb:66:7a:d5:3d:33:0b:1a:5a:ec:3e:0a:4d:a7:
e1:b6:ff:f7:a1:49:49:91:40:fb:ef:c7:9d:7d:3c:28:bf:46:
53:1b:22:9a:2a:34:a8:cc:9c:21:3b:25:75:0d:b8:8a:51:7f:
16:10:02:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:24:57 2025 by rpki-client