Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/3133382e3230342e302e302f32322d3232203d3e203238303735.roa
File: 3133382e3230342e302e302f32322d3232203d3e203238303735.roa (raw, json)
Hash identifier: Cm7/481HT0J1DMgwAPAVmptmjgYujfZF3JAkn4DS2T0=
Subject key identifier: FB:92:EF:F8:C7:FA:A3:E9:97:2C:78:7D:85:55:DB:25:CD:BA:DB:52
Certificate issuer: /CN=CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18
Certificate serial: 103D227C4EEFE31A4AA0899427C7AFB1EA3A0A80
Authority key identifier: CC:C7:DF:B2:C7:C9:FC:F2:F1:14:06:14:76:EC:B8:7B:57:3A:4E:18
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/3133382e3230342e302e302f32322d3232203d3e203238303735.roa
Signing time: Tue 04 Feb 2025 19:59:00 +0000
ROA not before: Tue 04 Feb 2025 19:54:00 +0000
ROA not after: Tue 03 Feb 2026 19:59:00 +0000
asID: 28075
IP address blocks: 138.204.0.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:3d:22:7c:4e:ef:e3:1a:4a:a0:89:94:27:c7:af:b1:ea:3a:0a:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18
Validity
Not Before: Feb 4 19:54:00 2025 GMT
Not After : Feb 3 19:59:00 2026 GMT
Subject: CN=FB92EFF8C7FAA3E9972C787D8555DB25CDBADB52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5b:8c:a9:b5:c0:9f:38:50:e3:c7:3d:c1:77:
3f:6b:86:26:10:b8:38:71:2b:d6:06:28:79:05:92:
94:ea:07:a2:49:60:81:d3:a5:1a:ca:51:de:4e:a0:
9c:18:34:5f:37:7f:06:dd:9b:25:5e:e8:e2:fa:f8:
1d:38:5c:62:4b:99:06:13:c0:75:89:17:4b:3c:7f:
c6:18:fc:5f:12:95:3d:95:b9:f1:a5:1e:c8:c7:88:
2c:71:5a:c2:ab:68:d9:bb:da:17:07:60:7f:78:48:
5d:ca:c6:c1:03:e1:fb:03:ed:ac:e6:a9:4a:67:73:
75:e8:b0:cd:6c:a5:29:6b:e8:4a:21:6a:b2:a2:f8:
3a:10:ec:66:ec:88:2d:0c:d6:26:4d:5a:56:da:41:
6c:0d:46:f6:e9:36:af:98:ae:a7:28:e4:92:9f:38:
9a:7b:b0:f8:a1:27:19:c1:4e:8c:54:9e:e3:5f:07:
21:6f:fc:49:6a:54:d0:4f:3c:ec:da:a8:c5:1b:83:
3f:6f:59:d3:79:41:fe:e1:ba:1f:a9:18:08:84:fa:
31:4c:0e:6f:45:92:ad:cb:cb:c2:9f:26:13:3d:68:
f2:dd:a3:44:99:e7:bf:23:91:04:88:93:35:57:d2:
e4:70:3a:fd:04:5e:24:eb:1d:cf:18:0f:73:24:4a:
6c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:92:EF:F8:C7:FA:A3:E9:97:2C:78:7D:85:55:DB:25:CD:BA:DB:52
X509v3 Authority Key Identifier:
keyid:CC:C7:DF:B2:C7:C9:FC:F2:F1:14:06:14:76:EC:B8:7B:57:3A:4E:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/3133382e3230342e302e302f32322d3232203d3e203238303735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.0.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:ba:a9:57:e9:b9:0c:73:9a:c4:41:c5:32:94:58:50:ef:2b:
3d:09:51:15:25:58:0c:46:fe:75:b1:76:e1:10:43:b0:b5:84:
fc:ce:3c:ab:93:f0:c7:09:98:f1:54:e7:c5:c3:63:50:60:b7:
0c:2e:c2:cd:c3:b6:b5:e1:b2:1b:2a:dd:59:ff:fd:e2:f3:76:
32:86:9d:c0:ca:40:a0:2d:84:77:25:63:da:cf:46:29:63:af:
dd:7b:a7:3a:0f:1f:44:23:5d:1e:80:a1:5e:64:5c:bc:aa:34:
be:19:00:de:2a:2b:48:a9:d9:bb:2a:b1:af:48:f4:2d:69:02:
09:dc:c5:2a:a3:c5:ee:c2:91:c5:1b:3c:0b:b7:81:e6:f8:27:
ee:4a:11:00:58:e1:78:ff:5b:c1:93:3b:9d:66:4e:89:68:0d:
17:91:87:3c:c5:fe:b1:1c:f4:f6:61:8b:be:8c:e0:a6:f8:7a:
fe:f0:d5:be:04:a6:8e:61:37:2f:42:08:ce:6a:de:06:47:42:
6d:f0:9d:a4:07:4a:cf:37:18:1b:d9:8d:80:dd:bc:81:00:d4:
b4:a6:77:2a:15:a2:59:f1:74:91:df:8b:92:18:3e:e2:ed:21:
83:92:a4:aa:c0:b5:b2:0a:3c:09:a3:e7:8b:6e:f0:9c:2a:46:
49:b1:5d:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:03 2025 by rpki-client