Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/3138312e3138392e3233382e302f32342d3234203d3e203532323836.roa
File: 3138312e3138392e3233382e302f32342d3234203d3e203532323836.roa (raw, json)
Hash identifier: nryZi+w7Dx7i2oXiGIGCWi/Ox+ODqVp5F5w6zFUjhY8=
Subject key identifier: 54:BF:A4:12:8F:E1:F6:31:35:5C:B3:62:AF:21:81:C3:7F:45:09:C3
Certificate issuer: /CN=995577D85E32451D9695955CFACF83EA0CB6F2A8
Certificate serial: 2A0AAFEF56A8E07A8A061BB1E433FABE46F304D8
Authority key identifier: 99:55:77:D8:5E:32:45:1D:96:95:95:5C:FA:CF:83:EA:0C:B6:F2:A8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/995577D85E32451D9695955CFACF83EA0CB6F2A8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/3138312e3138392e3233382e302f32342d3234203d3e203532323836.roa
Signing time: Mon 10 Feb 2025 16:09:25 +0000
ROA not before: Mon 10 Feb 2025 16:04:25 +0000
ROA not after: Mon 09 Feb 2026 16:09:25 +0000
asID: 52286
IP address blocks: 181.189.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:0a:af:ef:56:a8:e0:7a:8a:06:1b:b1:e4:33:fa:be:46:f3:04:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=995577D85E32451D9695955CFACF83EA0CB6F2A8
Validity
Not Before: Feb 10 16:04:25 2025 GMT
Not After : Feb 9 16:09:25 2026 GMT
Subject: CN=54BFA4128FE1F631355CB362AF2181C37F4509C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e6:f7:6d:5c:b2:63:ee:ef:b3:93:2f:b5:95:
73:74:ff:b9:d1:9c:26:f8:c6:df:fd:f8:5c:81:8c:
04:d4:1e:0f:48:7c:7d:5a:89:f3:ec:6e:a3:41:4d:
18:f8:ea:df:94:47:f4:ee:33:73:ab:6b:88:10:1e:
2a:bb:65:67:3d:d8:83:22:7a:36:53:ff:23:17:f3:
62:ad:c8:5e:07:80:13:15:9a:df:a0:1a:c3:11:1e:
7e:d4:7a:2b:8d:dd:a3:b4:4c:42:50:49:da:c7:db:
ab:f4:72:04:0f:3d:2b:ae:f3:bf:80:e2:1c:a4:f9:
cc:6f:98:69:51:bf:98:d5:96:8d:5a:ff:f6:a9:f6:
90:67:45:ee:90:71:a7:4d:40:42:b8:43:a8:49:e2:
e3:55:ad:af:f5:c2:44:6b:df:98:c2:37:8a:27:c9:
07:3f:ca:d6:87:3f:49:5b:5d:07:86:48:01:88:64:
4e:ae:36:85:c1:a1:5e:92:e0:4c:cf:3c:bd:d4:e7:
9b:83:e9:74:51:f0:77:a5:32:f4:a4:26:dc:6f:09:
a3:b1:04:07:a1:0f:fa:38:c2:8b:9b:4b:e6:fb:57:
93:15:be:4f:6c:58:94:20:e9:55:1c:20:24:47:f9:
dc:00:69:5b:44:ea:72:db:d0:a7:dc:83:45:8f:d3:
07:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:BF:A4:12:8F:E1:F6:31:35:5C:B3:62:AF:21:81:C3:7F:45:09:C3
X509v3 Authority Key Identifier:
keyid:99:55:77:D8:5E:32:45:1D:96:95:95:5C:FA:CF:83:EA:0C:B6:F2:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/995577D85E32451D9695955CFACF83EA0CB6F2A8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/995577D85E32451D9695955CFACF83EA0CB6F2A8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/3138312e3138392e3233382e302f32342d3234203d3e203532323836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.189.238.0/24
Signature Algorithm: sha256WithRSAEncryption
07:14:81:a9:53:57:c5:30:2f:95:12:6d:d4:b5:03:fd:9f:53:
7c:09:e8:7d:06:54:f1:5d:47:c3:bd:f4:73:05:09:dc:12:2b:
26:d5:9a:24:bd:0d:91:6c:92:14:bf:77:bf:e3:7c:58:52:cf:
2d:e8:9f:42:29:73:6d:0b:15:a3:d1:3d:34:43:1b:9a:b8:24:
87:6f:15:e8:f0:c3:fd:a8:2a:86:74:90:2c:3e:87:33:c0:66:
78:91:d7:f5:96:a1:0d:90:3e:d2:e9:8c:6f:bb:6a:01:fe:18:
1d:0c:1f:c0:6a:16:44:dc:87:4d:3a:d3:7b:4a:8c:f8:7c:e7:
a5:89:37:92:c0:fa:60:d2:c9:f5:04:02:06:82:8c:38:fb:a2:
32:c9:1f:78:de:eb:43:72:75:0d:df:dd:5d:10:a8:e3:77:c6:
9b:04:47:c3:bd:78:17:03:07:e2:5d:fa:04:f1:23:82:79:59:
67:37:09:ba:1e:d7:9f:4c:c8:6f:80:97:5b:49:20:9d:1d:3f:
1d:76:2f:ef:a9:c6:99:07:6c:52:41:3a:e4:a7:18:7a:95:f1:
6e:62:56:d8:a5:59:3a:c7:5a:db:a0:9c:e5:6d:b8:f2:d4:b8:
5e:20:fb:76:5d:99:97:57:68:90:ea:20:48:e8:a1:c7:d0:91:
ec:1a:78:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:23:13 2025 by rpki-client