Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6835E0579C68E4B706030A9D2B7DEEEA9EBB69E97F5A21E3B9FABE7362B92030/0/3133312e3232312e382e302f32322d3232203d3e2037373237.roa
File: 3133312e3232312e382e302f32322d3232203d3e2037373237.roa (raw, json)
Hash identifier: UFSoiXg6fzbxmqrtkuQvdQ3/uFR9BwdX/IZ/EpRgQj8=
Subject key identifier: CD:AE:FF:44:E6:2C:CF:3C:22:44:C5:1B:FD:B0:7B:62:78:32:21:DF
Certificate issuer: /CN=7DEC8FC037FE46A30FD532A83FCDEC72B729CC04
Certificate serial: 38BA798DFAE9E3943E338AE257C33454B94806B4
Authority key identifier: 7D:EC:8F:C0:37:FE:46:A3:0F:D5:32:A8:3F:CD:EC:72:B7:29:CC:04
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7DEC8FC037FE46A30FD532A83FCDEC72B729CC04.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6835E0579C68E4B706030A9D2B7DEEEA9EBB69E97F5A21E3B9FABE7362B92030/0/3133312e3232312e382e302f32322d3232203d3e2037373237.roa
Signing time: Tue 04 Feb 2025 18:19:50 +0000
ROA not before: Tue 04 Feb 2025 18:14:50 +0000
ROA not after: Tue 03 Feb 2026 18:19:50 +0000
asID: 7727
IP address blocks: 131.221.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:ba:79:8d:fa:e9:e3:94:3e:33:8a:e2:57:c3:34:54:b9:48:06:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7DEC8FC037FE46A30FD532A83FCDEC72B729CC04
Validity
Not Before: Feb 4 18:14:50 2025 GMT
Not After : Feb 3 18:19:50 2026 GMT
Subject: CN=CDAEFF44E62CCF3C2244C51BFDB07B62783221DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:22:6d:6b:f6:63:2c:77:93:a9:c1:8d:7a:f1:
48:2b:ad:41:25:07:7d:51:e1:9d:0b:cf:f3:27:59:
ed:95:50:76:0c:e8:ca:f1:91:74:8f:02:25:0a:bc:
13:23:3e:01:fe:bf:f7:3c:b3:83:e7:18:58:37:47:
ef:dc:bf:a1:21:57:5f:ef:34:09:ff:fe:59:ed:64:
11:35:73:c4:f3:f3:5d:3c:fa:9d:60:8d:79:23:73:
fc:d4:a1:43:63:af:b3:a4:f7:0e:26:e3:62:05:5c:
43:af:5a:0f:a6:4f:2f:85:30:8d:0e:e7:a4:78:3d:
26:c5:47:49:97:1e:b7:9a:e5:18:06:0b:bf:3f:bc:
01:cb:2c:ce:92:16:79:e2:50:9e:b2:a7:ed:79:a9:
43:ee:9f:51:3e:49:1f:f5:b9:8e:c7:8d:90:69:4a:
ad:e6:ca:11:f5:b0:4d:2d:8c:2b:50:0f:69:ba:50:
f2:40:07:7a:2b:a0:2a:4b:ac:63:62:12:44:d6:36:
f7:d2:03:ac:a6:cf:b8:6f:5a:49:57:a1:c4:a7:a3:
5c:f7:53:1e:ac:a5:42:fe:98:4e:0d:03:f8:b2:db:
7a:07:25:cf:97:64:8e:f7:ec:e3:ae:32:39:59:f9:
bb:f5:a8:33:8b:b1:ef:6e:f5:86:70:4e:08:76:82:
18:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:AE:FF:44:E6:2C:CF:3C:22:44:C5:1B:FD:B0:7B:62:78:32:21:DF
X509v3 Authority Key Identifier:
keyid:7D:EC:8F:C0:37:FE:46:A3:0F:D5:32:A8:3F:CD:EC:72:B7:29:CC:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6835E0579C68E4B706030A9D2B7DEEEA9EBB69E97F5A21E3B9FABE7362B92030/0/7DEC8FC037FE46A30FD532A83FCDEC72B729CC04.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7DEC8FC037FE46A30FD532A83FCDEC72B729CC04.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6835E0579C68E4B706030A9D2B7DEEEA9EBB69E97F5A21E3B9FABE7362B92030/0/3133312e3232312e382e302f32322d3232203d3e2037373237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.221.8.0/22
Signature Algorithm: sha256WithRSAEncryption
77:77:6f:b7:a9:ad:d4:b8:83:98:5f:21:b9:c2:af:b8:18:e3:
f3:d6:cb:7c:3d:6b:a1:22:9f:9f:97:5e:39:0c:9b:3f:fa:4d:
67:ae:14:a0:00:73:0f:2b:cd:6f:a1:81:22:62:f7:de:7b:40:
7a:4d:a2:d8:d6:47:df:54:29:ab:d6:7d:e4:2c:3b:1e:0d:41:
eb:f2:a3:20:b5:7e:dc:1c:1e:bb:41:b0:21:29:10:bc:39:06:
be:55:29:30:c1:57:dc:8a:e7:24:15:2f:c8:ee:30:66:67:24:
26:61:fd:50:51:f1:29:19:46:de:c8:eb:1c:f4:78:7c:6c:9f:
14:71:fb:3d:45:6b:26:43:64:d6:48:50:95:c8:ea:2b:35:61:
92:8d:27:8b:be:28:c5:11:7b:30:61:18:16:32:90:f0:c1:31:
b4:6f:1e:60:ac:f8:bb:a6:98:65:34:4f:d8:9e:26:ca:a8:d1:
16:60:6b:7a:6c:66:56:c1:8a:27:f0:d0:bf:8c:c3:23:b9:b8:
ef:24:fe:74:bc:c7:b0:f9:6d:40:de:9d:93:6d:e0:8b:ab:a1:
4d:57:2c:54:4c:8f:ac:73:72:3c:0b:46:96:94:74:0b:52:35:
07:e8:34:33:3b:76:3e:6a:46:42:fa:bb:a7:e5:22:9b:5e:ef:
ad:11:ee:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:23:13 2025 by rpki-client