Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4D58F4E06F82CC440713E7E43376265B7270312DDB84BD9F95C171730AA2DF65/0/3133382e39392e3135312e302f32342d3234203d3e203238333938.roa
File: 3133382e39392e3135312e302f32342d3234203d3e203238333938.roa (raw, json)
Hash identifier: CwmMgkWoa1MAfgWP9k7uWry9NzvmL2TXMTNdXoInXKM=
Subject key identifier: B5:B0:B4:0A:A7:37:ED:85:DC:57:3C:A5:D6:29:12:4A:67:9A:55:02
Certificate issuer: /CN=8190D453933A57C152D409DC05B6F96B6F662E76
Certificate serial: 0689A358B4EDFEE8186A25C44BDE5E6331926951
Authority key identifier: 81:90:D4:53:93:3A:57:C1:52:D4:09:DC:05:B6:F9:6B:6F:66:2E:76
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8190D453933A57C152D409DC05B6F96B6F662E76.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4D58F4E06F82CC440713E7E43376265B7270312DDB84BD9F95C171730AA2DF65/0/3133382e39392e3135312e302f32342d3234203d3e203238333938.roa
Signing time: Tue 04 Feb 2025 18:39:35 +0000
ROA not before: Tue 04 Feb 2025 18:34:35 +0000
ROA not after: Tue 03 Feb 2026 18:39:35 +0000
asID: 28398
IP address blocks: 138.99.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:89:a3:58:b4:ed:fe:e8:18:6a:25:c4:4b:de:5e:63:31:92:69:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8190D453933A57C152D409DC05B6F96B6F662E76
Validity
Not Before: Feb 4 18:34:35 2025 GMT
Not After : Feb 3 18:39:35 2026 GMT
Subject: CN=B5B0B40AA737ED85DC573CA5D629124A679A5502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f5:d8:6f:e5:5f:7e:31:b1:c6:cb:9b:30:7d:
2f:e9:cf:6a:ad:08:3b:0a:c4:60:6d:c5:09:f7:b1:
b0:96:5c:69:21:8b:f3:5b:a0:27:07:d3:eb:4f:b9:
64:e4:c6:3b:bb:9f:dd:ba:04:0f:66:12:74:6e:66:
5c:c6:6e:59:13:f6:18:54:27:0f:6d:f0:ed:b1:c0:
5b:c7:be:6e:83:7c:81:34:d4:71:37:5d:1c:f1:c0:
30:48:d3:a4:59:85:48:09:d1:a7:4d:4e:3c:12:2c:
a1:e7:4a:89:f1:c6:c6:4d:fa:be:9a:8a:66:e9:6d:
0d:dc:9d:88:00:74:bc:39:4a:be:86:45:00:61:77:
d8:a6:e2:8d:68:75:86:46:e6:78:f5:e7:6e:ff:9a:
96:19:4d:c7:5b:b1:88:5f:56:10:09:91:cd:03:fc:
07:92:0c:96:ad:a8:f8:53:1d:19:b2:8e:71:6d:7d:
5d:81:c7:80:5a:6b:5b:54:b2:95:65:50:bf:29:08:
52:f5:4b:5b:9c:16:c4:31:3a:fe:75:f2:67:c7:7e:
e1:fd:23:e2:56:27:60:36:80:3e:40:77:56:ae:f5:
b6:c2:66:c8:3c:fd:3d:3b:f7:14:07:9c:1e:e5:40:
d4:3e:b2:5b:e5:1e:77:56:03:ee:cb:36:41:c3:69:
37:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B0:B4:0A:A7:37:ED:85:DC:57:3C:A5:D6:29:12:4A:67:9A:55:02
X509v3 Authority Key Identifier:
keyid:81:90:D4:53:93:3A:57:C1:52:D4:09:DC:05:B6:F9:6B:6F:66:2E:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4D58F4E06F82CC440713E7E43376265B7270312DDB84BD9F95C171730AA2DF65/0/8190D453933A57C152D409DC05B6F96B6F662E76.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8190D453933A57C152D409DC05B6F96B6F662E76.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4D58F4E06F82CC440713E7E43376265B7270312DDB84BD9F95C171730AA2DF65/0/3133382e39392e3135312e302f32342d3234203d3e203238333938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.151.0/24
Signature Algorithm: sha256WithRSAEncryption
34:b4:48:96:65:99:bb:9e:62:07:4c:b8:6f:7a:57:e9:15:0c:
a5:fa:05:e8:68:56:ef:ab:36:6a:63:28:67:10:f0:4f:ba:f4:
a7:c3:f3:0c:56:3a:2c:2b:df:81:f2:0e:ef:11:2f:47:5d:6a:
2d:f9:bf:89:5a:79:19:d8:39:e0:56:32:58:04:03:cd:f1:c3:
7d:c3:40:65:2f:26:ac:cb:24:f8:b1:89:87:a0:4a:1c:10:89:
1d:0c:94:fa:df:45:6c:ba:fc:d4:0b:fb:a6:12:c1:f9:a9:65:
45:84:fa:59:70:df:90:d0:78:14:92:1b:eb:e5:cc:43:ac:73:
07:d0:d5:c7:96:bc:76:e9:bc:fd:77:95:67:f3:c9:45:96:43:
1b:f7:ce:1a:57:d1:b6:e7:15:92:5a:68:76:1e:bd:97:34:2d:
a6:61:f7:59:70:63:fd:e9:c5:da:6c:af:c4:7d:da:55:cc:7c:
23:a0:a9:ac:6c:c8:9d:46:1f:e1:87:5b:48:11:2e:85:f5:7e:
f8:22:b7:2a:35:66:f0:59:16:f2:e8:1c:90:1d:c6:30:16:c4:
6f:08:98:67:e9:da:74:7c:65:25:6a:d2:a5:2d:47:bc:07:f2:
8b:80:82:2c:1a:bf:2a:5f:f5:1f:8d:c3:d7:4b:93:75:42:e7:
a5:3e:0e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:22:26 2025 by rpki-client