Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/67A7EB4B8D2C47FB9BE1F84A6A6B982B4D97011B86E46F5690C2AF1AE6B112DB/0/3133382e3131372e3134382e302f32322d3234203d3e20323635383331.roa
File: 3133382e3131372e3134382e302f32322d3234203d3e20323635383331.roa (raw, json)
Hash identifier: bC6AF6BEIXc1e+s1/aKCNIemD3/55VjPddEPlsE6EeU=
Subject key identifier: 0D:5E:F7:F5:BA:14:53:E8:7A:55:BA:79:14:EE:C8:E1:FB:FB:79:73
Certificate issuer: /CN=B3A46BC24267EDFAF47C68E3B569F05EF63B4B14
Certificate serial: 317F61E292356C350B1331E15A3B76E3C5AC12AA
Authority key identifier: B3:A4:6B:C2:42:67:ED:FA:F4:7C:68:E3:B5:69:F0:5E:F6:3B:4B:14
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B3A46BC24267EDFAF47C68E3B569F05EF63B4B14.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/67A7EB4B8D2C47FB9BE1F84A6A6B982B4D97011B86E46F5690C2AF1AE6B112DB/0/3133382e3131372e3134382e302f32322d3234203d3e20323635383331.roa
Signing time: Tue 04 Feb 2025 18:36:44 +0000
ROA not before: Tue 04 Feb 2025 18:31:44 +0000
ROA not after: Tue 03 Feb 2026 18:36:44 +0000
asID: 265831
IP address blocks: 138.117.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:7f:61:e2:92:35:6c:35:0b:13:31:e1:5a:3b:76:e3:c5:ac:12:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B3A46BC24267EDFAF47C68E3B569F05EF63B4B14
Validity
Not Before: Feb 4 18:31:44 2025 GMT
Not After : Feb 3 18:36:44 2026 GMT
Subject: CN=0D5EF7F5BA1453E87A55BA7914EEC8E1FBFB7973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d9:7c:d9:86:5e:94:78:03:cb:ef:86:23:48:
5c:20:ac:73:66:60:9e:b9:3c:54:b1:54:69:79:41:
62:04:4f:24:61:03:d3:77:5f:e0:7e:a4:3b:44:2f:
73:e0:86:83:cd:98:60:76:cd:51:0f:95:96:f4:67:
be:e7:ba:27:84:3b:af:4d:2b:5e:63:07:74:7f:d2:
a1:e6:b6:14:58:8c:c9:0a:32:38:91:5a:53:95:3a:
54:bc:58:c1:96:ce:17:be:7f:ce:60:73:2a:42:23:
57:07:e2:31:88:48:c6:5e:cf:9f:ab:25:86:5a:74:
d2:f5:78:04:d4:f9:f8:6e:ee:1f:79:c8:aa:c7:f6:
b4:a5:a5:73:4d:57:85:51:f2:df:42:34:80:da:bb:
9e:60:08:67:c0:b4:a1:22:96:29:0e:16:ee:36:aa:
83:ec:1b:5c:c3:e3:f6:fa:2d:7d:d1:7b:7f:e2:a3:
0d:97:3b:3a:31:86:5d:b1:6d:31:8a:04:1c:d0:4e:
8e:04:71:c5:7b:cf:03:06:88:ce:10:a6:ce:a3:9b:
1b:f0:5a:fe:39:8c:63:38:d5:fb:71:7e:2a:d7:03:
74:db:ef:37:13:c9:52:83:d1:45:0e:c1:cd:07:41:
6b:23:51:49:39:ed:66:0d:86:96:c1:65:7e:56:51:
c1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:5E:F7:F5:BA:14:53:E8:7A:55:BA:79:14:EE:C8:E1:FB:FB:79:73
X509v3 Authority Key Identifier:
keyid:B3:A4:6B:C2:42:67:ED:FA:F4:7C:68:E3:B5:69:F0:5E:F6:3B:4B:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/67A7EB4B8D2C47FB9BE1F84A6A6B982B4D97011B86E46F5690C2AF1AE6B112DB/0/B3A46BC24267EDFAF47C68E3B569F05EF63B4B14.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B3A46BC24267EDFAF47C68E3B569F05EF63B4B14.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/67A7EB4B8D2C47FB9BE1F84A6A6B982B4D97011B86E46F5690C2AF1AE6B112DB/0/3133382e3131372e3134382e302f32322d3234203d3e20323635383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.148.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:55:76:d0:09:21:78:51:34:c4:ae:9d:c1:13:c3:28:15:f3:
44:76:a7:da:b6:1a:5d:a7:0d:e7:6b:0b:c9:f3:14:04:ba:e2:
f8:57:bd:72:6b:85:b4:c4:83:e2:d4:cf:ff:c5:21:d5:f7:c9:
e1:66:49:d2:c2:6a:c6:45:14:c9:b5:72:f0:d4:6c:2e:d4:f2:
53:6a:e8:08:3d:6a:3e:a9:96:17:d7:a8:6c:e9:1b:52:65:79:
9a:8d:89:aa:f4:4d:bd:58:26:d7:6d:98:b3:ba:7b:df:ec:cf:
c4:e9:3a:0c:3f:43:d8:40:53:71:f3:5c:de:ea:81:0f:59:aa:
61:af:20:e5:2d:02:92:72:00:fc:33:ad:af:86:e7:d8:03:97:
cd:83:57:a8:aa:31:a8:cb:26:e1:c0:c5:dc:06:3e:63:46:46:
bf:a9:e4:6e:41:eb:39:fc:d4:44:02:7a:0e:50:92:c5:8a:9d:
23:f1:93:fe:41:49:cc:cc:b1:58:8b:f1:63:f0:1c:9b:e9:7d:
1e:7d:b5:d4:9a:5a:91:49:e7:ee:7b:d7:8a:b6:b3:9a:82:dd:
dc:1a:04:ad:ac:1f:82:ef:c1:fa:30:aa:a3:2a:53:1f:84:76:
3a:29:0a:ca:cc:b7:9a:99:ac:31:0f:64:90:9d:8c:37:e9:09:
fe:59:26:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:11:50 2025 by rpki-client