Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230322e3234382e302f32332d3234203d3e203138373334.roa
File: 3138392e3230322e3234382e302f32332d3234203d3e203138373334.roa (raw, json)
Hash identifier: V9PKrRIoduWWNFa+JwGwqthgZEPf6YMapgT6B7aGsnQ=
Subject key identifier: 67:96:42:6E:C7:43:13:48:13:FD:BB:93:B9:7E:76:D8:96:A1:B5:4D
Certificate issuer: /CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Certificate serial: 4AC31CDBFE9417CEFD96206BF5E76D4B5E1298D4
Authority key identifier: 79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230322e3234382e302f32332d3234203d3e203138373334.roa
Signing time: Tue 04 Feb 2025 18:06:43 +0000
ROA not before: Tue 04 Feb 2025 18:01:43 +0000
ROA not after: Tue 03 Feb 2026 18:06:43 +0000
asID: 18734
IP address blocks: 189.202.248.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:c3:1c:db:fe:94:17:ce:fd:96:20:6b:f5:e7:6d:4b:5e:12:98:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7997A25836B429E9E6D15518DC739700B6C9C4FD
Validity
Not Before: Feb 4 18:01:43 2025 GMT
Not After : Feb 3 18:06:43 2026 GMT
Subject: CN=6796426EC743134813FDBB93B97E76D896A1B54D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:31:82:aa:7d:16:d1:03:8a:98:e2:1f:48:ac:
72:83:72:49:4d:1e:5a:26:6c:6f:6f:2d:31:d4:56:
be:b2:76:6a:7c:13:1f:61:00:af:e2:b5:aa:4d:39:
a6:7a:38:20:78:ee:bb:46:55:21:ff:1c:dd:dc:ef:
fa:52:df:c7:27:da:40:0e:c7:4c:1f:5d:46:b1:23:
bf:f1:e9:ed:ba:7e:5b:75:55:ab:a5:09:2c:8b:7b:
5c:9d:c6:13:35:9b:14:c8:39:00:d3:85:41:da:06:
e6:b8:6d:33:4d:c9:d6:97:96:6b:d8:47:c9:2b:69:
b6:9d:72:f6:70:8b:dd:34:2b:01:d4:ed:01:c2:29:
94:86:a5:92:df:4d:cf:13:2c:3a:52:db:4a:df:2b:
1a:41:40:c7:27:9c:62:86:54:d1:3b:81:e4:99:30:
54:88:c7:da:37:94:1a:ed:02:ea:7d:f9:78:62:b4:
f8:40:c5:45:33:43:12:a3:d9:97:ae:0f:14:f7:4d:
64:12:08:99:82:e7:f0:81:99:ca:0a:34:f8:82:7c:
21:12:9c:01:e7:32:e1:61:a7:e1:e5:54:46:46:2c:
30:c9:47:ec:67:30:d1:c8:b7:98:8b:32:25:a9:d3:
12:e5:95:f5:7e:ec:96:31:f1:2d:ea:8b:fe:e7:2c:
3b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:96:42:6E:C7:43:13:48:13:FD:BB:93:B9:7E:76:D8:96:A1:B5:4D
X509v3 Authority Key Identifier:
keyid:79:97:A2:58:36:B4:29:E9:E6:D1:55:18:DC:73:97:00:B6:C9:C4:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7997A25836B429E9E6D15518DC739700B6C9C4FD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4F2FFFB0B3834045F7C4282AEB4C645DD9461750CCD5338F8CC6FD65F5AE1CCA/0/3138392e3230322e3234382e302f32332d3234203d3e203138373334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.202.248.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:bb:c5:49:9c:9e:1f:6f:b4:4c:4f:28:95:8a:2d:8c:af:66:
71:1d:aa:68:70:20:f3:1b:6d:c9:ef:fa:7f:a4:f9:55:0a:57:
a6:d7:58:7e:c3:99:d5:b1:7b:a9:9b:1e:3d:c8:49:ba:a5:20:
9f:1a:63:0c:8f:ac:38:bc:d8:6b:53:a8:03:5e:86:4b:37:18:
be:18:f1:14:dc:eb:a0:e6:0b:d3:db:9b:0e:e0:b0:46:cd:4c:
37:72:c7:9c:df:a8:10:49:45:0e:df:c4:d3:ca:ea:e7:43:f6:
bc:4e:97:ce:44:c5:98:50:77:2d:91:15:e3:61:4e:0a:df:4a:
83:a1:8b:fe:4c:15:ae:c8:c8:c1:3a:d7:07:b9:bb:fa:cb:ad:
88:bf:8d:9a:79:b9:0b:ea:0b:49:14:ac:c0:71:72:a7:0f:59:
af:13:db:54:21:c6:32:8c:70:d9:4c:c0:ee:fd:0b:45:9f:b1:
1d:81:e6:73:da:ef:24:24:ec:7b:4c:51:7f:4b:db:9a:cd:4c:
5f:2c:fd:12:b8:f2:66:f5:af:46:76:4a:1e:a2:ea:82:9a:04:
78:9b:ff:fb:55:af:d3:f4:c9:e4:e3:1e:50:1f:5b:02:f6:d5:
5e:8e:ac:7e:c7:10:23:88:dc:ef:87:4b:71:85:b3:07:df:42:
e0:22:c7:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:31:46 2025 by rpki-client