Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5B938E0A55766E180F3875CA3B727D1C561C4F24EED17CC25FF9EB0ABD1B16F0/0/3133382e35392e3230342e302f32322d3232203d3e20323633373335.roa
File: 3133382e35392e3230342e302f32322d3232203d3e20323633373335.roa (raw, json)
Hash identifier: D5WHbiQqgjQpQiXpkSg3hNnDUZOXLXYPr2mbuxDjP70=
Subject key identifier: 91:CB:13:F4:6C:0A:42:7E:E6:60:6E:E3:B2:9F:F3:45:96:95:0E:D5
Certificate issuer: /CN=2457663DFAA2799A1AD03DC43FCAF8D319422BD5
Certificate serial: 6F1086CC3F54D0107DD9FF8E21D71397FDBA4D08
Authority key identifier: 24:57:66:3D:FA:A2:79:9A:1A:D0:3D:C4:3F:CA:F8:D3:19:42:2B:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2457663DFAA2799A1AD03DC43FCAF8D319422BD5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5B938E0A55766E180F3875CA3B727D1C561C4F24EED17CC25FF9EB0ABD1B16F0/0/3133382e35392e3230342e302f32322d3232203d3e20323633373335.roa
Signing time: Tue 04 Feb 2025 20:07:28 +0000
ROA not before: Tue 04 Feb 2025 20:02:28 +0000
ROA not after: Tue 03 Feb 2026 20:07:28 +0000
asID: 263735
IP address blocks: 138.59.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:10:86:cc:3f:54:d0:10:7d:d9:ff:8e:21:d7:13:97:fd:ba:4d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2457663DFAA2799A1AD03DC43FCAF8D319422BD5
Validity
Not Before: Feb 4 20:02:28 2025 GMT
Not After : Feb 3 20:07:28 2026 GMT
Subject: CN=91CB13F46C0A427EE6606EE3B29FF34596950ED5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:89:9b:53:56:93:09:cc:6b:f3:e1:15:78:7f:
b2:c5:af:e6:2c:81:eb:74:69:d9:16:10:c6:e8:42:
98:e9:ee:ce:b0:7d:66:8b:c9:20:3a:51:44:4d:c1:
5d:10:b4:58:e5:40:ff:04:e2:6e:1f:8a:3b:87:c8:
8e:ab:83:3d:67:93:c1:83:60:1c:b2:06:29:a1:a0:
3a:80:68:9e:ff:75:c3:91:4a:f8:c9:08:9b:98:86:
77:8f:54:97:5d:94:e8:07:00:6f:5a:86:3b:13:22:
2f:da:f7:44:13:49:18:a5:dd:16:5f:6d:06:c3:d0:
17:2b:1e:11:75:69:aa:e3:c8:63:2c:fa:4c:47:0c:
46:9f:46:81:55:45:22:a2:f2:88:5a:1f:2c:71:44:
e0:f5:1b:38:dc:32:f8:56:40:47:f6:62:06:dd:4d:
da:4c:30:5e:ef:9f:34:26:08:e4:4a:6a:03:46:b0:
1e:40:65:b3:d1:5a:57:3c:23:0e:53:dd:b2:a3:d7:
3a:e4:30:7d:bd:06:d1:3a:ed:c5:43:c9:07:4a:f5:
aa:ac:9e:af:22:8c:a8:d9:d2:28:0a:84:1e:11:8b:
b1:67:0b:d6:28:52:c0:67:aa:18:13:5a:86:9b:e0:
a2:ab:bd:cc:29:26:e2:72:b7:90:85:37:17:32:45:
96:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:CB:13:F4:6C:0A:42:7E:E6:60:6E:E3:B2:9F:F3:45:96:95:0E:D5
X509v3 Authority Key Identifier:
keyid:24:57:66:3D:FA:A2:79:9A:1A:D0:3D:C4:3F:CA:F8:D3:19:42:2B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5B938E0A55766E180F3875CA3B727D1C561C4F24EED17CC25FF9EB0ABD1B16F0/0/2457663DFAA2799A1AD03DC43FCAF8D319422BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2457663DFAA2799A1AD03DC43FCAF8D319422BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5B938E0A55766E180F3875CA3B727D1C561C4F24EED17CC25FF9EB0ABD1B16F0/0/3133382e35392e3230342e302f32322d3232203d3e20323633373335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.59.204.0/22
Signature Algorithm: sha256WithRSAEncryption
46:dc:be:3f:fd:6b:ab:98:3c:c3:e6:64:ea:98:ac:56:6d:f5:
b1:fc:52:2e:71:4e:68:85:0f:b7:ea:e9:87:30:4e:8e:dc:80:
1d:e4:09:63:96:fc:5a:e2:ab:74:72:df:c0:0b:3f:d4:16:d0:
2c:03:fd:b4:c1:72:01:12:22:df:0b:47:fc:34:83:e8:a9:44:
c7:3a:fc:94:2d:59:ec:1a:45:34:bb:aa:ee:52:99:25:c5:f2:
40:75:d6:b5:b3:53:60:59:65:f5:69:5e:b3:49:62:07:31:c9:
21:c3:84:2d:0e:01:59:be:ae:7a:d4:86:84:bd:75:f8:c5:f5:
55:41:97:46:fd:15:4d:3d:ab:19:ec:95:38:ab:e8:c6:8a:e3:
d9:2f:9f:bc:61:f5:ce:01:cf:ee:fc:11:31:e5:76:f0:9a:7c:
34:a5:94:c0:a9:a0:eb:68:89:5f:21:d7:a4:dd:08:0d:f9:f6:
e5:18:8a:2f:45:e6:06:cb:1f:98:ac:2d:87:d6:e8:22:9f:40:
62:e6:89:f2:a2:b9:10:11:fd:30:15:c8:2c:71:cb:f5:f4:8b:
38:40:90:d3:0a:c6:32:a3:73:2a:a1:71:01:7a:9d:f9:f5:96:
21:53:d2:d3:ad:e2:f2:e9:c7:b5:07:78:86:3c:b3:c6:4c:4f:
a8:56:1c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:02:42 2025 by rpki-client