Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8C627A8492D0F6162F2D56DF55C5632C720E787C5C6BC995A761DBC5C9000903/0/3133382e3131382e3230382e302f32322d3234203d3e203532333233.roa
File: 3133382e3131382e3230382e302f32322d3234203d3e203532333233.roa (raw, json)
Hash identifier: 0kYdJUZo3z9x+E7YGBsHAZrPE9tPZKYFelL7zfGAi+M=
Subject key identifier: A9:A3:E9:E5:45:A5:4C:A4:1D:6E:84:9F:E6:E1:B3:BD:6C:EE:9A:FD
Certificate issuer: /CN=76A0230D67817D92BA5DB107F27A059EBFFAF282
Certificate serial: 43520CFA86C2922FCD39D66A805B329EEBB9549B
Authority key identifier: 76:A0:23:0D:67:81:7D:92:BA:5D:B1:07:F2:7A:05:9E:BF:FA:F2:82
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76A0230D67817D92BA5DB107F27A059EBFFAF282.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8C627A8492D0F6162F2D56DF55C5632C720E787C5C6BC995A761DBC5C9000903/0/3133382e3131382e3230382e302f32322d3234203d3e203532333233.roa
Signing time: Tue 04 Feb 2025 18:00:28 +0000
ROA not before: Tue 04 Feb 2025 17:55:28 +0000
ROA not after: Tue 03 Feb 2026 18:00:28 +0000
asID: 52323
IP address blocks: 138.118.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:52:0c:fa:86:c2:92:2f:cd:39:d6:6a:80:5b:32:9e:eb:b9:54:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76A0230D67817D92BA5DB107F27A059EBFFAF282
Validity
Not Before: Feb 4 17:55:28 2025 GMT
Not After : Feb 3 18:00:28 2026 GMT
Subject: CN=A9A3E9E545A54CA41D6E849FE6E1B3BD6CEE9AFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cb:9c:6b:fc:b6:1a:62:f5:33:47:52:42:5d:
26:d7:b4:5e:b6:62:95:9d:ce:f8:c6:0d:03:4e:e9:
11:91:bc:e5:5e:af:77:8d:10:db:50:19:6a:ff:d5:
00:f5:44:af:7b:3e:68:ea:ca:71:ac:88:b0:8b:76:
49:b1:91:87:79:61:f1:94:31:95:db:69:9c:44:f6:
24:a0:e1:e2:4a:52:55:03:ba:00:89:5c:d5:da:1d:
dc:b5:c6:31:f9:bb:3d:36:8c:c5:eb:a1:17:3d:f0:
46:8c:14:9d:fd:9b:25:14:13:28:cc:c6:ab:b2:ac:
fd:76:96:fe:2b:78:f3:f0:2b:43:34:d2:5a:f4:23:
4e:46:79:42:0c:7b:81:a6:41:d8:a8:8b:2f:2f:76:
ba:10:ac:e9:d4:19:4c:a1:f1:b1:1b:8f:ec:b0:9d:
62:34:25:18:3c:a1:de:e7:63:95:a5:87:38:1b:42:
be:b6:2d:8b:e3:14:3e:10:0b:05:bd:2e:ea:90:de:
04:48:e8:f3:0e:56:af:4a:ff:95:36:d3:7b:f5:b0:
29:71:d4:19:1b:5e:9a:e4:ae:31:1e:42:42:a3:04:
70:40:59:44:7a:c6:ec:10:b1:d2:28:67:56:9a:28:
71:7f:a0:82:ae:64:2b:62:84:87:b4:d1:bb:b5:d8:
35:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A3:E9:E5:45:A5:4C:A4:1D:6E:84:9F:E6:E1:B3:BD:6C:EE:9A:FD
X509v3 Authority Key Identifier:
keyid:76:A0:23:0D:67:81:7D:92:BA:5D:B1:07:F2:7A:05:9E:BF:FA:F2:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8C627A8492D0F6162F2D56DF55C5632C720E787C5C6BC995A761DBC5C9000903/0/76A0230D67817D92BA5DB107F27A059EBFFAF282.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/76A0230D67817D92BA5DB107F27A059EBFFAF282.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8C627A8492D0F6162F2D56DF55C5632C720E787C5C6BC995A761DBC5C9000903/0/3133382e3131382e3230382e302f32322d3234203d3e203532333233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.118.208.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:cb:f5:93:99:a2:c9:f0:44:af:f4:27:da:52:a0:b6:93:b3:
75:11:19:2f:0e:11:53:e1:65:72:86:7e:f2:9b:f3:ae:07:29:
01:7c:a7:65:9e:a5:92:cb:ed:d9:fd:df:cf:c0:a2:53:85:ee:
51:82:6c:66:94:df:a4:85:02:fd:aa:8f:0d:83:d6:f5:82:19:
45:0a:5a:77:c2:1a:10:de:3e:3e:48:03:da:4d:a5:90:a6:19:
38:4b:78:92:4e:bd:1c:bd:8d:f2:08:1c:ab:e7:68:49:c0:84:
e2:4d:09:2d:f0:0b:f8:62:70:5a:7f:7b:91:de:e8:c1:9b:b7:
38:68:db:7d:e8:44:8f:97:6c:85:ee:dd:01:f0:2a:40:50:35:
c0:9c:3d:4b:31:d5:6e:ee:70:5a:38:51:e8:1c:56:b6:3a:52:
22:59:2c:38:4d:a1:63:79:93:20:98:c2:63:f5:dc:84:59:47:
e6:7c:95:11:0a:74:47:98:d6:c8:09:07:a8:44:c0:b3:82:28:
1c:08:3e:27:49:81:c6:80:3c:b0:fd:df:57:86:20:7a:23:b5:
74:d6:2b:a4:eb:0a:07:32:94:a8:87:9c:94:a4:c1:9f:37:58:
0c:6b:ec:d6:65:e0:f0:1d:0f:f2:c8:88:3e:ec:45:ea:8e:06:
12:f2:09:0c
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUQ1IM+obCki/NOdZqgFsynuu5VJswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzZBMDIzMEQ2NzgxN0Q5MkJBNURCMTA3RjI3QTA1OUVC
RkZBRjI4MjAeFw0yNTAyMDQxNzU1MjhaFw0yNjAyMDMxODAwMjhaMDMxMTAvBgNV
BAMTKEE5QTNFOUU1NDVBNTRDQTQxRDZFODQ5RkU2RTFCM0JENkNFRTlBRkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKy5xr/LYaYvUzR1JCXSbXtF62
YpWdzvjGDQNO6RGRvOVer3eNENtQGWr/1QD1RK97PmjqynGsiLCLdkmxkYd5YfGU
MZXbaZxE9iSg4eJKUlUDugCJXNXaHdy1xjH5uz02jMXroRc98EaMFJ39myUUEyjM
xquyrP12lv4rePPwK0M00lr0I05GeUIMe4GmQdioiy8vdroQrOnUGUyh8bEbj+yw
nWI0JRg8od7nY5WlhzgbQr62LYvjFD4QCwW9LuqQ3gRI6PMOVq9K/5U203v1sClx
1BkbXprkrjEeQkKjBHBAWUR6xuwQsdIoZ1aaKHF/oIKuZCtihIe00bu12DXtAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUqaPp5UWlTKQdboSf5uGzvWzumv0wHwYDVR0j
BBgwFoAUdqAjDWeBfZK6XbEH8noFnr/68oIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy84QzYyN0E4NDkyRDBGNjE2MkYyRDU2REY1NUM1NjMyQzcy
MEU3ODdDNUM2QkM5OTVBNzYxREJDNUM5MDAwOTAzLzAvNzZBMDIzMEQ2NzgxN0Q5
MkJBNURCMTA3RjI3QTA1OUVCRkZBRjI4Mi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83NkEwMjMwRDY3ODE3RDkyQkE1
REIxMDdGMjdBMDU5RUJGRkFGMjgyLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOEM2MjdBODQ5MkQwRjYxNjJGMkQ1NkRGNTVDNTYzMkM3MjBFNzg3QzVD
NkJDOTk1QTc2MURCQzVDOTAwMDkwMy8wLzMxMzMzODJlMzEzMTM4MmUzMjMwMzgy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNTMyMzMzMjMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCinbQ
MA0GCSqGSIb3DQEBCwUAA4IBAQBvy/WTmaLJ8ESv9CfaUqC2k7N1ERkvDhFT4WVy
hn7ym/OuBykBfKdlnqWSy+3Z/d/PwKJThe5RgmxmlN+khQL9qo8Ng9b1ghlFClp3
whoQ3j4+SAPaTaWQphk4S3iSTr0cvY3yCByr52hJwITiTQkt8Av4YnBaf3uR3ujB
m7c4aNt96ESPl2yF7t0B8CpAUDXAnD1LMdVu7nBaOFHoHFa2OlIiWSw4TaFjeZMg
mMJj9dyEWUfmfJURCnRHmNbICQeoRMCzgigcCD4nSYHGgDyw/d9XhiB6I7V01iuk
6woHMpSoh5yUpMGfN1gMa+zWZeDwHQ/yyIg+7EXqjgYS8gkM
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:22 2025 by rpki-client