Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6DEDFC3ADA868CCCC6A25DD6131FCB2037F11A91548D095F26BD6C8F11B47111/0/3133382e39392e3132302e302f32322d3232203d3e203631333137.roa
File: 3133382e39392e3132302e302f32322d3232203d3e203631333137.roa (raw, json)
Hash identifier: VarDWHTwl0NgVgrnO2f0zeoDAdZlPiYAvOHeZZILHUM=
Subject key identifier: 02:07:14:01:D7:2E:F6:C2:DB:E5:54:24:62:9B:51:CD:C3:2A:64:55
Certificate issuer: /CN=6690D3CA7AAB44AA19568CA2CFF8AC6EE70EDCBF
Certificate serial: 28E56FDE21654D6E7D1FE151CFC786E4A76BC579
Authority key identifier: 66:90:D3:CA:7A:AB:44:AA:19:56:8C:A2:CF:F8:AC:6E:E7:0E:DC:BF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6690D3CA7AAB44AA19568CA2CFF8AC6EE70EDCBF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6DEDFC3ADA868CCCC6A25DD6131FCB2037F11A91548D095F26BD6C8F11B47111/0/3133382e39392e3132302e302f32322d3232203d3e203631333137.roa
Signing time: Tue 04 Feb 2025 20:06:15 +0000
ROA not before: Tue 04 Feb 2025 20:01:15 +0000
ROA not after: Tue 03 Feb 2026 20:06:15 +0000
asID: 61317
IP address blocks: 138.99.120.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:e5:6f:de:21:65:4d:6e:7d:1f:e1:51:cf:c7:86:e4:a7:6b:c5:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6690D3CA7AAB44AA19568CA2CFF8AC6EE70EDCBF
Validity
Not Before: Feb 4 20:01:15 2025 GMT
Not After : Feb 3 20:06:15 2026 GMT
Subject: CN=02071401D72EF6C2DBE55424629B51CDC32A6455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:73:6f:e3:2f:b5:e5:d7:f2:e6:01:fc:a4:92:
60:0c:f2:fe:a6:68:60:54:fd:fc:47:d3:d2:7d:1e:
78:dc:6c:5f:3a:6d:1b:2d:50:9e:1f:50:56:23:e5:
ea:2b:1e:d2:84:e1:85:c1:da:fb:e5:aa:37:3a:25:
2b:c9:72:3a:77:33:7d:0c:69:2e:47:10:b1:b2:20:
c0:c6:66:f5:0c:fa:ca:a5:9f:46:9e:3e:01:c9:62:
ec:95:02:c1:07:43:d9:6e:72:7f:f3:75:f6:80:3b:
0e:b4:3c:74:64:4d:68:d3:0d:7e:f2:15:99:68:37:
db:b7:9d:ca:76:a7:5d:20:71:58:a2:79:6c:f2:d3:
72:8b:9f:a6:9e:a0:f0:b2:8c:71:86:d0:06:9f:14:
82:1c:94:96:36:e5:82:20:73:28:fd:2f:76:7b:c2:
f3:a0:7a:d9:88:73:56:86:25:66:98:00:08:62:9c:
29:e4:d1:c3:d6:e3:aa:e1:e0:e1:75:7e:96:d7:d5:
06:af:b1:bf:d3:0d:28:b5:5a:47:5c:30:1f:5d:b8:
d4:71:3c:ef:6e:0d:22:37:16:18:40:40:75:63:18:
2e:d6:76:0f:64:43:44:85:13:16:73:d0:5e:c4:c0:
e9:89:e9:f0:99:97:aa:ca:50:bd:01:ed:08:10:ab:
c1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:07:14:01:D7:2E:F6:C2:DB:E5:54:24:62:9B:51:CD:C3:2A:64:55
X509v3 Authority Key Identifier:
keyid:66:90:D3:CA:7A:AB:44:AA:19:56:8C:A2:CF:F8:AC:6E:E7:0E:DC:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6DEDFC3ADA868CCCC6A25DD6131FCB2037F11A91548D095F26BD6C8F11B47111/0/6690D3CA7AAB44AA19568CA2CFF8AC6EE70EDCBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6690D3CA7AAB44AA19568CA2CFF8AC6EE70EDCBF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6DEDFC3ADA868CCCC6A25DD6131FCB2037F11A91548D095F26BD6C8F11B47111/0/3133382e39392e3132302e302f32322d3232203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.120.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:79:50:e0:48:73:97:7f:31:c0:e0:56:49:83:c5:45:ed:dc:
ee:6b:af:e1:c5:68:07:ee:a7:35:2d:c2:85:08:cd:2d:2d:3d:
03:a3:95:2e:00:04:f7:8a:1c:b8:db:82:28:08:46:6e:26:67:
40:6f:a7:a3:86:c2:59:2b:e8:85:cd:40:85:17:f2:eb:10:69:
a5:b6:99:f5:c1:aa:ca:93:9d:1a:ad:1a:1e:c1:1d:c1:2c:2c:
4b:3b:49:50:89:6d:58:3e:df:d6:14:29:77:24:48:4a:a1:cc:
1b:68:24:15:92:a5:40:24:45:ee:42:7b:34:c4:0c:c4:d7:18:
fb:2e:d1:95:ed:0a:61:87:9b:26:8b:e6:22:c9:6f:71:fd:db:
7c:f8:40:3a:30:e3:a7:ad:90:70:25:40:fd:13:66:bb:92:c8:
12:92:70:b5:42:fe:28:42:29:43:7f:e8:d0:32:a8:fb:8b:ba:
a5:c2:2d:8c:32:9c:1a:89:d5:b9:a9:7f:8b:f4:bb:f5:50:5e:
e8:82:9a:92:33:1e:a5:12:ae:f7:a6:61:d0:00:9c:98:77:86:
11:b6:04:e6:c4:f2:ca:78:70:62:81:d7:0d:21:a3:6e:66:33:
f8:00:e9:b7:5a:d3:74:1e:0d:82:17:43:dd:2d:2f:22:8f:9f:
ac:a9:26:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:38:09 2025 by rpki-client