Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/3133382e3132312e3134302e302f32322d3234203d3e203238333137.roa
File: 3133382e3132312e3134302e302f32322d3234203d3e203238333137.roa (raw, json)
Hash identifier: X0lE1VIj6zqgHoApeRP5MN3fYjJI3zLaxbPzpEHCKco=
Subject key identifier: EC:78:61:B4:F6:F5:C9:C9:60:CD:F6:FC:99:35:70:FA:A0:E6:C5:46
Certificate issuer: /CN=858889372446EF678E35E9D349C0785A81B8FBB7
Certificate serial: 1D715A4735527459A0A76E5B3F92BFDF0643C7CE
Authority key identifier: 85:88:89:37:24:46:EF:67:8E:35:E9:D3:49:C0:78:5A:81:B8:FB:B7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/858889372446EF678E35E9D349C0785A81B8FBB7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/3133382e3132312e3134302e302f32322d3234203d3e203238333137.roa
Signing time: Thu 06 Feb 2025 17:09:14 +0000
ROA not before: Thu 06 Feb 2025 17:04:14 +0000
ROA not after: Thu 05 Feb 2026 17:09:14 +0000
asID: 28317
IP address blocks: 138.121.140.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:71:5a:47:35:52:74:59:a0:a7:6e:5b:3f:92:bf:df:06:43:c7:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=858889372446EF678E35E9D349C0785A81B8FBB7
Validity
Not Before: Feb 6 17:04:14 2025 GMT
Not After : Feb 5 17:09:14 2026 GMT
Subject: CN=EC7861B4F6F5C9C960CDF6FC993570FAA0E6C546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ac:d3:57:86:fd:f9:25:a9:db:32:78:30:bc:
7b:48:63:75:42:e2:9c:eb:59:fe:cc:ae:4e:70:b2:
af:cf:f1:7a:73:88:58:fa:03:08:57:8c:a5:63:86:
39:b0:a3:79:78:68:2f:d4:c2:0c:07:9a:88:ac:9b:
6e:53:3b:a1:e1:d5:d0:ed:26:ff:20:eb:11:c8:7f:
84:2d:0c:65:38:10:10:c9:79:71:3b:63:d1:93:f7:
d3:0f:e6:49:28:70:a4:f6:65:b0:fa:a5:be:21:a0:
2b:6b:0d:aa:8b:3a:12:e6:71:4f:b8:6d:2c:c4:15:
18:0f:f2:23:98:6e:df:9f:50:b3:77:e2:1b:bf:3e:
f8:ef:0a:78:b9:97:76:a3:b9:37:30:af:40:5e:6a:
73:31:43:39:0f:7a:f8:6d:c5:f1:3a:18:4c:cf:c2:
d9:18:da:87:b8:ee:e6:1c:49:1a:bc:95:1c:2b:8d:
75:91:82:30:a4:d4:5b:e6:cb:b5:2b:a8:b5:8c:fa:
a0:16:ab:85:af:11:9f:d8:2c:bd:af:45:fe:16:e5:
fe:28:14:3e:99:48:d2:59:ad:3e:28:c8:6e:db:cd:
da:43:85:da:99:25:32:d4:2d:80:e7:3c:84:a5:ce:
fa:8e:58:b0:1e:9c:d9:53:4d:58:c0:33:99:ad:e1:
10:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:78:61:B4:F6:F5:C9:C9:60:CD:F6:FC:99:35:70:FA:A0:E6:C5:46
X509v3 Authority Key Identifier:
keyid:85:88:89:37:24:46:EF:67:8E:35:E9:D3:49:C0:78:5A:81:B8:FB:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/858889372446EF678E35E9D349C0785A81B8FBB7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/858889372446EF678E35E9D349C0785A81B8FBB7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/3133382e3132312e3134302e302f32322d3234203d3e203238333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.121.140.0/22
Signature Algorithm: sha256WithRSAEncryption
92:48:dc:4d:33:41:b9:4e:23:d7:62:7f:18:20:3f:c1:11:e9:
ec:3e:42:48:08:10:2a:a2:ab:9c:26:e5:c6:9e:90:62:13:f0:
67:86:46:30:34:b8:9e:4b:3b:94:28:9a:9d:f9:b1:31:45:88:
f1:51:4a:96:80:17:44:cc:67:5a:4e:4a:a6:1d:be:cb:b0:ce:
0d:e3:04:28:d9:fc:83:4d:e6:0b:2f:79:68:c9:ab:77:0d:f0:
b8:ab:c2:7c:75:fe:67:65:d0:77:27:c3:ad:15:ad:61:94:ed:
e3:4a:8a:f2:e3:ec:df:f0:3d:63:7e:96:da:6c:2d:66:9a:f5:
27:e6:9c:81:45:b7:d2:23:90:22:f0:87:66:77:84:73:cd:c5:
85:4c:59:31:f4:cd:97:c4:30:b8:fe:98:fc:1a:4a:e5:4f:1a:
f2:1b:d1:58:33:52:35:f1:97:79:7d:a8:3d:64:43:e8:1e:dc:
fb:c0:e3:e8:b8:ae:0c:b3:56:5d:34:2d:fc:8a:79:5b:27:48:
41:19:57:d0:2f:fe:59:20:10:d8:a9:a7:9c:d7:a9:e8:96:4e:
36:31:2d:5f:d3:d1:ed:27:d3:a6:67:7d:1a:27:ab:0c:78:26:
95:cd:e7:7c:b2:84:23:16:86:22:62:25:aa:f0:e8:d3:ac:c0:
5f:b4:af:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:13:12 2025 by rpki-client