Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/65BCAF86490DE69A6BD6C41D86A84F0C8B0DACD9C7587D9663DE98A60A368D10/0/3133382e3235352e38382e302f32322d3237203d3e20323634363037.roa
File: 3133382e3235352e38382e302f32322d3237203d3e20323634363037.roa (raw, json)
Hash identifier: 2L6L51hIY7kCsW4EugGUO+VyR0ccBkCitDLZnkmZOd4=
Subject key identifier: 17:39:25:A8:86:41:5C:31:D8:D0:19:52:03:01:66:18:2E:22:47:05
Certificate issuer: /CN=91A405EDF63A9F2958C6B36662A6B3CEF476A89D
Certificate serial: 4F1496FDA84F65EAFF93AB11C86BEC0D15BE2E94
Authority key identifier: 91:A4:05:ED:F6:3A:9F:29:58:C6:B3:66:62:A6:B3:CE:F4:76:A8:9D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91A405EDF63A9F2958C6B36662A6B3CEF476A89D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/65BCAF86490DE69A6BD6C41D86A84F0C8B0DACD9C7587D9663DE98A60A368D10/0/3133382e3235352e38382e302f32322d3237203d3e20323634363037.roa
Signing time: Tue 04 Feb 2025 18:21:57 +0000
ROA not before: Tue 04 Feb 2025 18:16:57 +0000
ROA not after: Tue 03 Feb 2026 18:21:57 +0000
asID: 264607
IP address blocks: 138.255.88.0/22 maxlen: 27
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:14:96:fd:a8:4f:65:ea:ff:93:ab:11:c8:6b:ec:0d:15:be:2e:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91A405EDF63A9F2958C6B36662A6B3CEF476A89D
Validity
Not Before: Feb 4 18:16:57 2025 GMT
Not After : Feb 3 18:21:57 2026 GMT
Subject: CN=173925A886415C31D8D01952030166182E224705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8c:f9:d6:33:59:8e:6a:94:d1:2e:a0:d5:73:
26:6c:c2:d5:16:f2:b1:b1:b0:99:07:08:2d:22:ba:
1f:62:eb:8c:ab:7f:22:da:43:ae:07:92:11:8c:a7:
39:32:96:e0:2d:5b:79:21:f3:49:a3:bb:ac:c5:23:
f4:91:b5:de:ea:4f:f3:66:82:70:1b:54:d3:c1:6a:
c5:ca:c2:78:c9:c5:05:e4:92:c2:73:e5:50:9d:46:
80:e8:65:45:9c:ba:aa:51:4e:c5:b8:3f:4b:77:0e:
5b:d2:c7:2e:68:8a:13:77:d1:ae:42:83:87:32:6a:
1c:3c:65:09:d1:56:d8:00:30:73:4a:52:36:e2:7a:
f6:a1:f2:c0:95:42:11:dc:5b:78:af:fa:36:ec:a3:
df:61:bf:d4:51:53:7d:67:9a:70:ae:6a:d8:24:69:
7c:e4:c0:7e:ff:ac:fd:fe:6e:4d:5f:b0:71:a3:74:
cb:44:c9:6c:72:8d:8c:ba:7a:28:ba:84:3e:ef:94:
92:ff:d9:b6:fe:22:cf:cf:cb:06:03:65:38:51:0a:
8d:c2:05:df:54:03:c7:b0:ad:eb:7c:8d:9b:84:a0:
1b:b1:69:89:ed:be:13:c9:c2:a1:47:94:84:48:58:
f0:6d:77:f5:e3:72:42:e1:ec:7d:b5:2a:0a:eb:16:
bc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:39:25:A8:86:41:5C:31:D8:D0:19:52:03:01:66:18:2E:22:47:05
X509v3 Authority Key Identifier:
keyid:91:A4:05:ED:F6:3A:9F:29:58:C6:B3:66:62:A6:B3:CE:F4:76:A8:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/65BCAF86490DE69A6BD6C41D86A84F0C8B0DACD9C7587D9663DE98A60A368D10/0/91A405EDF63A9F2958C6B36662A6B3CEF476A89D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91A405EDF63A9F2958C6B36662A6B3CEF476A89D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/65BCAF86490DE69A6BD6C41D86A84F0C8B0DACD9C7587D9663DE98A60A368D10/0/3133382e3235352e38382e302f32322d3237203d3e20323634363037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.255.88.0/22
Signature Algorithm: sha256WithRSAEncryption
92:29:f0:7f:ae:23:ec:bc:b5:ec:c3:ab:a1:34:17:21:47:30:
7a:40:99:b2:d9:a3:c4:f7:cf:5a:98:29:04:9c:e2:ef:e6:82:
5f:8f:39:07:b3:c4:c4:ba:45:e8:d9:5d:95:29:71:c7:92:8d:
84:7d:56:e1:44:be:9e:de:20:92:b1:82:ef:49:d1:53:ac:62:
72:34:df:07:64:4c:e0:1b:47:e7:49:96:9d:cb:da:68:5b:29:
18:89:8a:97:50:53:34:5a:12:74:de:dc:b8:ed:8a:b3:7d:e5:
5b:2f:89:e7:59:03:59:dc:07:f8:31:e7:76:3a:2b:1d:04:e6:
7a:5e:f4:ca:eb:c7:db:d4:a8:e3:d8:5b:6f:b9:7c:19:ce:19:
07:e8:a8:b3:85:df:c3:2c:e7:f4:6a:f1:31:9c:b9:df:f9:41:
01:7b:a3:e7:cb:aa:70:0c:3e:53:eb:63:cb:c3:cf:bf:b3:bf:
d8:d9:7c:21:22:dc:57:66:6e:f2:21:49:3f:35:49:3a:c1:96:
50:f6:8d:93:81:97:69:5c:57:75:8f:9a:83:37:4a:20:21:6e:
c7:12:ee:79:c8:92:30:44:07:66:6d:20:30:39:15:54:04:92:
23:00:a3:ce:73:2f:b5:72:8f:fa:c6:e4:e6:80:e3:73:76:e5:
a2:5f:66:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:04:58 2025 by rpki-client