Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5B938E0A55766E180F3875CA3B727D1C561C4F24EED17CC25FF9EB0ABD1B16F0/0/3133382e3231392e3137322e302f32322d3232203d3e20323633373335.roa
File: 3133382e3231392e3137322e302f32322d3232203d3e20323633373335.roa (raw, json)
Hash identifier: 8L+o8tOhEzRSBKyNZO6zj0B1ZLH+jzwpaq4Kddo/P6w=
Subject key identifier: 26:9C:94:33:85:64:BD:60:1C:EB:67:39:87:75:7B:2B:05:67:A1:43
Certificate issuer: /CN=2457663DFAA2799A1AD03DC43FCAF8D319422BD5
Certificate serial: 43FC8C47556748B35C3CB3C03D92CAB21D2C5040
Authority key identifier: 24:57:66:3D:FA:A2:79:9A:1A:D0:3D:C4:3F:CA:F8:D3:19:42:2B:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2457663DFAA2799A1AD03DC43FCAF8D319422BD5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5B938E0A55766E180F3875CA3B727D1C561C4F24EED17CC25FF9EB0ABD1B16F0/0/3133382e3231392e3137322e302f32322d3232203d3e20323633373335.roa
Signing time: Tue 04 Feb 2025 20:07:29 +0000
ROA not before: Tue 04 Feb 2025 20:02:29 +0000
ROA not after: Tue 03 Feb 2026 20:07:29 +0000
asID: 263735
IP address blocks: 138.219.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:fc:8c:47:55:67:48:b3:5c:3c:b3:c0:3d:92:ca:b2:1d:2c:50:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2457663DFAA2799A1AD03DC43FCAF8D319422BD5
Validity
Not Before: Feb 4 20:02:29 2025 GMT
Not After : Feb 3 20:07:29 2026 GMT
Subject: CN=269C94338564BD601CEB673987757B2B0567A143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:59:62:2a:46:2c:a8:7f:35:67:5d:cf:ec:68:
44:e2:a5:8f:59:45:83:9d:e5:90:01:a0:41:69:b3:
bb:9a:90:d9:e3:5f:2a:cb:2f:2f:18:29:d5:9e:26:
9a:b2:e4:70:25:df:88:a3:8c:41:1c:77:70:04:2e:
a8:90:f0:42:da:12:0e:06:cd:2e:4f:02:67:3e:62:
bf:9d:bb:e6:69:46:c7:15:ad:27:78:1a:99:d3:95:
e8:88:03:eb:1b:53:27:30:1f:af:da:f2:19:fd:77:
94:bd:de:a1:c6:ae:1f:b6:a9:dc:35:5f:9a:40:03:
8d:13:cf:3b:e4:3f:04:41:a8:fe:6e:65:13:a1:22:
95:9c:28:43:e9:24:a6:de:eb:8e:63:c9:2d:68:9a:
34:24:ad:f6:76:cb:99:b9:e4:84:bd:43:e2:bc:36:
c9:0b:77:30:ba:1e:23:38:3a:c0:6a:ea:a3:77:97:
b2:7c:e5:2f:40:f2:92:5a:0c:b9:3f:2d:8e:e0:7a:
3c:7b:ad:68:f4:e7:e1:d3:24:43:d2:ad:34:1c:dd:
3d:e9:db:7f:dc:58:5a:2d:2d:6f:35:f7:44:d4:3e:
83:f0:7b:e8:fd:c3:8a:e1:9e:c0:d4:06:0d:40:ea:
47:bb:6b:80:89:6a:03:46:25:60:d6:2a:14:a3:ff:
60:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:9C:94:33:85:64:BD:60:1C:EB:67:39:87:75:7B:2B:05:67:A1:43
X509v3 Authority Key Identifier:
keyid:24:57:66:3D:FA:A2:79:9A:1A:D0:3D:C4:3F:CA:F8:D3:19:42:2B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5B938E0A55766E180F3875CA3B727D1C561C4F24EED17CC25FF9EB0ABD1B16F0/0/2457663DFAA2799A1AD03DC43FCAF8D319422BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2457663DFAA2799A1AD03DC43FCAF8D319422BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5B938E0A55766E180F3875CA3B727D1C561C4F24EED17CC25FF9EB0ABD1B16F0/0/3133382e3231392e3137322e302f32322d3232203d3e20323633373335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.219.172.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:1d:ce:57:2a:27:54:79:5f:e0:2e:38:b7:71:a1:94:1b:65:
65:e6:e8:13:97:8a:b6:e2:94:11:15:14:1b:48:1f:a8:94:5e:
d8:52:48:bc:84:d0:73:69:f5:ac:46:40:52:15:e6:f3:96:35:
b8:bd:c8:5e:88:18:42:5b:3d:89:26:97:ab:e7:a1:78:c9:8e:
a3:8e:8b:ab:f2:de:95:ef:09:c6:06:a6:a2:4d:19:07:bf:bf:
3f:35:f7:92:c5:a8:b4:42:94:80:4b:75:94:5e:34:95:6f:80:
35:ad:14:df:1a:59:aa:86:f3:d0:6e:40:7c:9e:72:a9:af:49:
aa:a5:90:2b:e0:4f:de:d3:e1:52:ae:69:13:09:74:59:2e:f0:
59:9a:68:ed:5f:84:01:9b:fe:93:4e:b6:20:09:11:4f:c4:b6:
6a:e0:3e:aa:e5:4e:4b:69:01:78:f2:f0:b7:4c:27:97:6b:8d:
ff:33:ab:e5:28:21:a2:78:2a:13:f8:13:09:4b:69:0f:53:ed:
97:80:d7:28:40:e5:2f:74:70:de:6b:74:97:86:0a:a2:c6:81:
62:64:42:4a:99:65:cc:bf:68:82:ce:ab:96:f0:42:21:07:38:
d0:5e:c0:38:bb:21:64:2b:52:76:3c:1b:4b:ca:c8:8b:da:a5:
6d:22:b0:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:02:39 2025 by rpki-client