Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/527F9083A8D5CB3C6601D1A30419252600927049BEEAB605C45EC89B72BA9FDA/0/3133382e3131372e37362e302f32322d3234203d3e20323633373734.roa
File: 3133382e3131372e37362e302f32322d3234203d3e20323633373734.roa (raw, json)
Hash identifier: 9bzJJfwofgACgPkmZfgywMDVaEbzvETLw7VEiDYFjD0=
Subject key identifier: 99:E7:9A:D4:C5:8B:D8:D5:0C:79:82:11:9E:45:7A:23:97:AC:01:74
Certificate issuer: /CN=4B7687F569E5893215BAF86B72C4274237504316
Certificate serial: 4EB210893378D7052B764D74193FD10F8E860A81
Authority key identifier: 4B:76:87:F5:69:E5:89:32:15:BA:F8:6B:72:C4:27:42:37:50:43:16
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4B7687F569E5893215BAF86B72C4274237504316.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/527F9083A8D5CB3C6601D1A30419252600927049BEEAB605C45EC89B72BA9FDA/0/3133382e3131372e37362e302f32322d3234203d3e20323633373734.roa
Signing time: Tue 04 Feb 2025 18:31:27 +0000
ROA not before: Tue 04 Feb 2025 18:26:27 +0000
ROA not after: Tue 03 Feb 2026 18:31:27 +0000
asID: 263774
IP address blocks: 138.117.76.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:b2:10:89:33:78:d7:05:2b:76:4d:74:19:3f:d1:0f:8e:86:0a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4B7687F569E5893215BAF86B72C4274237504316
Validity
Not Before: Feb 4 18:26:27 2025 GMT
Not After : Feb 3 18:31:27 2026 GMT
Subject: CN=99E79AD4C58BD8D50C7982119E457A2397AC0174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cb:ac:d9:32:59:a6:6a:09:3e:de:c1:e9:95:
4a:97:ed:7e:d0:02:6b:15:88:f2:00:d1:d1:49:6a:
18:a7:36:38:7d:e5:c6:41:cd:42:ee:e0:cd:b3:71:
fa:2e:5c:f9:6d:d8:b0:48:32:58:e6:cb:a2:51:79:
94:09:3e:00:1b:4a:37:d7:c4:8a:58:aa:1c:37:73:
86:b0:c0:10:b8:78:0d:e4:0d:0e:52:29:ac:02:42:
7c:85:51:c4:c3:ca:b8:16:39:50:99:da:c7:5b:41:
28:0d:04:37:98:a6:cc:d7:9f:1e:6c:34:8f:f9:8e:
86:d7:da:80:34:85:21:e4:e6:e1:39:31:d9:18:24:
cb:9e:58:5d:7d:6b:bb:a2:10:2d:09:32:c6:17:16:
6b:9b:80:19:c9:71:6a:b2:b9:29:79:94:ed:1c:93:
4c:40:8f:6f:88:68:ef:35:1d:6d:20:ae:93:89:9e:
ab:c8:e6:59:f4:b8:85:7c:ff:51:50:ce:31:2f:0e:
83:76:43:86:cc:b6:56:6e:1f:f5:a9:5b:fa:bc:4d:
a6:59:d5:eb:46:2e:23:a2:8e:db:a7:b2:39:a8:43:
91:98:c8:ae:23:9d:91:6c:b8:bb:ba:e3:95:31:c9:
77:1d:5c:cf:c1:32:9d:5c:92:25:bc:ad:42:ca:5f:
57:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:E7:9A:D4:C5:8B:D8:D5:0C:79:82:11:9E:45:7A:23:97:AC:01:74
X509v3 Authority Key Identifier:
keyid:4B:76:87:F5:69:E5:89:32:15:BA:F8:6B:72:C4:27:42:37:50:43:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/527F9083A8D5CB3C6601D1A30419252600927049BEEAB605C45EC89B72BA9FDA/0/4B7687F569E5893215BAF86B72C4274237504316.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4B7687F569E5893215BAF86B72C4274237504316.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/527F9083A8D5CB3C6601D1A30419252600927049BEEAB605C45EC89B72BA9FDA/0/3133382e3131372e37362e302f32322d3234203d3e20323633373734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.76.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:c0:af:a8:9a:90:f6:8c:11:27:b8:6e:0b:a2:c1:44:80:9d:
08:69:4c:28:0e:27:b8:42:95:b6:1a:c9:60:0a:26:4f:c2:2d:
ce:9a:63:96:3e:45:e9:e6:e1:f5:89:c4:c8:76:51:b5:5e:68:
4e:26:24:68:41:b2:72:37:de:71:62:97:df:16:9f:10:a9:b6:
e7:95:f5:1b:e5:88:53:e3:34:f4:e5:9c:5a:19:bb:58:46:40:
d5:3f:fe:0e:6d:5f:59:ce:60:2e:02:91:02:78:03:b6:63:91:
22:7f:a5:00:ad:27:09:ef:26:5a:9d:a2:c9:8a:bf:4c:b3:90:
63:df:70:af:56:e3:78:14:f6:66:54:47:1a:e3:6c:d9:fe:81:
0b:c6:34:2e:ce:bf:f0:51:2b:56:f1:74:8b:e3:e1:ba:b6:55:
00:c9:bf:7c:d6:e9:1a:4c:ba:dd:b1:45:fb:04:ac:c9:01:49:
1b:d3:31:2b:e8:c7:cc:fe:2a:10:35:5e:3d:58:ac:6e:26:ce:
0f:cb:2d:0f:e6:8d:dc:95:d3:93:61:8b:9d:0c:5c:63:0e:8d:
3a:ee:9e:42:75:d2:0f:aa:c3:6b:cf:3e:d4:90:de:2a:fc:4b:
72:3b:e2:8a:c1:f3:88:56:ad:5b:51:47:23:af:c3:73:42:dc:
3a:8b:40:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 19:52:30 2025 by rpki-client